last executing test programs: 1m21.298743907s ago: executing program 1 (id=460): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8108c4, &(0x7f0000000300)={[{@resv_level={'resv_level', 0x3d, 0x400}}, {@heartbeat_none}, {@resv_level={'resv_level', 0x3d, 0x1}}, {@coherency_full}, {@err_ro}, {@localalloc={'localalloc', 0x3d, 0x1}}, {@intr}, {@localalloc}]}, 0x1, 0x442f, &(0x7f000000e480)="$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") r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00') read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2100) 1m20.109273993s ago: executing program 1 (id=474): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x1a1281) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 1m19.40874618s ago: executing program 1 (id=467): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0) 1m19.234280494s ago: executing program 1 (id=469): syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000140)='./file0\x00', 0x81c00a, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2cf, &(0x7f0000002080)="$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") mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0/../file0/../file0\x00', &(0x7f0000000240)='debugfs\x00', 0x0, 0x0) 1m18.905250531s ago: executing program 1 (id=472): r0 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) 1m18.358429285s ago: executing program 1 (id=481): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x4}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000140)={0x1e6, @tick=0x9}) 1m17.982051625s ago: executing program 32 (id=481): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x4}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000140)={0x1e6, @tick=0x9}) 14.983758727s ago: executing program 3 (id=1038): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendmsg$rds(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@fadd={0x58, 0x114, 0x6, {{}, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x3}}], 0x58}, 0x0) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876) 14.778462104s ago: executing program 3 (id=1039): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_to_team\x00', 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0xc59f, 0x4) 14.637702105s ago: executing program 3 (id=1041): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2000000, &(0x7f0000000580)={[{@gid}, {@codepage={'codepage', 0x3d, 'cp932'}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}]}, 0x1, 0x2db, &(0x7f0000000200)="$eJzs3T9v004cx/HPOUmb/lF//rVFSCygQiVYKgoMiCUIZWVnQkCTShVREW2RgIWCGBEPgJ2nwINgAfEEYGLiAXQzusvZdRrbaUsT98/7JTWyz3fn7+ns+L6WIAJwZt1r/vx887f9M1JFFUl3pEBSXapKOqfz9RfrW2tbnXarqKOKa2H/jLotTV+dlfV2VlPbzrXwQrtX1XS6LM3094xDiqLo7q+yg0Dp3N2fIZDG/X3ojtdHHNewbEsXy45h1NITbHa0o5eaKTEcAMAx4J//gX9MTLsioyCQFv1j/1Q9/3fKDuBo3er0FUWFDVLPf7e6i4yd3//cod18zyVa9ngQZ4n7Caa2Z39M3SurZ4FpBmWVLpZgYnWtqqWVt2oFeqeGl6o27z5b3Us3NiDahYzctEB+bzXdn+yOxq0o94pDWl3rtMftRir+OIK5g53x35mv5rt5aEJ9UitZ/1UjY6fJzVS4Z6aCmo3/en6PU66VrSU/sEajEfRU+d+d5II/gzdglPXsjCTdZ/yCYDuJoChOd+5Z9b5W6I5ueUCruaxWYbKX02q+p1XFXwlLK886ha9ShiMeovloHpgF/dEXNVPr/8DGt6jUnVn0VW9cTX9ldMczll2z6mqGfU+O3dvlUhKBN37gsUHKe1uW44Oe6LZmNl+9flrpdNobduNxxsbz6Q3jS2rvpcw6w9+oqKCOtndLIutNFO2352iYwV870g7t90dSYm+frMr2LktKglFP01nZaH5T0QV5cjaiSMo5NLTvKRwjmyaedLdb1UTZEWHE7LrLdPM/t5L3qzqXoNiPsGCdXpxkqqfH5SSD610KzrrPyQNlcFP5GVzqjDdyckaXc12+Kl1JFRoVnjH0cZ4SpqkfesT7fwAAAAAAAAAAAAAAAAAAgJNmFP/SoOwxAgAAAAAAAAAAAAAAAAAAAABw0h3q93+z/o949/u/4Uh+/xfA0fgbAAD//wA5eM4=") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) 14.396718855s ago: executing program 3 (id=1043): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0xfffffffc, 0x0, 0x0, 0x44024, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x50) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x9, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="400000002000010000000000000000000200000000000000000000001400110067656e65766531000000000000000000080010000000000008000a"], 0x40}, 0x1, 0x0, 0x0, 0x4010}, 0x0) 14.149859945s ago: executing program 3 (id=1048): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, 0x0) 14.043366683s ago: executing program 3 (id=1050): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90224fc60100005fd0a00020005", 0x1d}], 0x1}, 0x0) syz_usb_connect$printer(0x4, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x5, [{{0x9, 0x4, 0x0, 0xbb, 0x2, 0x7, 0x1, 0x1, 0x1, "", {{{0x9, 0x5, 0x1, 0x2, 0x40, 0xa}}}}}]}}]}}, 0x0) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8) 2.291682425s ago: executing program 0 (id=1121): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0xff) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) 2.143465847s ago: executing program 0 (id=1123): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f00000003c0)=0x6, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e23, @loopback}], 0x10) 1.911606516s ago: executing program 0 (id=1126): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c) setsockopt$MRT_DEL_MFC_PROXY(r0, 0x0, 0xd3, &(0x7f00000000c0)={@multicast2, @multicast1, 0x0, "c6c0e6ec8755b5dc4e305886d95f086707764f8d0e5a0358ea21274f844a69e9", 0x0, 0x200}, 0x3c) 1.85675894s ago: executing program 0 (id=1127): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000f40)=ANY=[@ANYBLOB="12010000dc3f6e4013080100083a000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) 1.710978142s ago: executing program 4 (id=1129): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$SNDCTL_SEQ_TESTMIDI(r0, 0x40045108, &(0x7f0000000200)=0x4) close(r0) 1.643649628s ago: executing program 2 (id=1130): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) 1.541901116s ago: executing program 4 (id=1131): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000600), r0) sendmsg$NFC_CMD_DEP_LINK_DOWN(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000700)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fcdb07250500000008000400ffffffff0800010036"], 0x24}}, 0x20000000) 1.541592536s ago: executing program 2 (id=1132): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007040)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x83}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0) 1.395683437s ago: executing program 2 (id=1133): futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000) futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, 0x0, 0x0, 0x3) futex(&(0x7f000000cffc)=0x2, 0xa, 0x1, 0x0, 0x0, 0x1) 1.358650591s ago: executing program 4 (id=1134): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001240), 0xffffffffffffffff) sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)={&(0x7f0000001280)={0x14, r1, 0x711, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8048045}, 0x40c0) 509.998709ms ago: executing program 2 (id=1135): r0 = syz_open_dev$cec(&(0x7f0000000200), 0xffffffffffffffff, 0x4ae60) ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000040)={'\x00\f\x00', 0x0, 0x5, 0x2, 0x0, 0x9, "00000000020000000000002100", "00004702", "0300", "97ad3700", ["fdffffff84a438dfc5d5c010", "d78cb8b0211a83be12ff0bff", "0000efffffffffffbfff00"]}) ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f00000000c0)={"4c97aef4", 0xb, 0x5, 0x0, 0x3, 0x1000006, "5b0004000001030094000000f000", "1575a859", "0725eade", '\'q6O', ["aabe8459c62224475793e8a7", "7f9ce2d2c4f439ff80e1d1c8", "fa0700f22b42a3023be516d1", "969a13a6806ad2b97b77791a"]}) 509.11819ms ago: executing program 4 (id=1143): bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x10, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000711829000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @sk_msg, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffa4}, 0x94) 451.592604ms ago: executing program 4 (id=1136): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x100, 0x4, 0x28}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x18) 365.679951ms ago: executing program 4 (id=1137): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f0000000300)={[{@i_version}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@sysvgroups}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000001f00)=ANY=[], 0xe00f, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x242, 0x0) 355.174822ms ago: executing program 2 (id=1138): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) 208.369453ms ago: executing program 2 (id=1139): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7) ioctl$TIOCGLCKTRMIOS(r0, 0x8926, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, "bf23d75e189214f7f8f3760042b4c711663f46"}) 201.118894ms ago: executing program 0 (id=1148): unshare(0x8000400) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_tcp_buf(r0, 0x6, 0x14, 0x0, &(0x7f0000000140)) 0s ago: executing program 0 (id=1140): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_BASE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0) kernel console output (not intermixed with test programs): change from 0 to 64 [ 86.268796][ T6248] netlink: 68 bytes leftover after parsing attributes in process `syz.3.164'. [ 86.720985][ T6271] loop0: detected capacity change from 0 to 128 [ 86.876497][ T6274] loop2: detected capacity change from 0 to 64 [ 87.013340][ T6277] loop1: detected capacity change from 0 to 1024 [ 87.020707][ T6277] EXT4-fs: Ignoring removed orlov option [ 87.049760][ T6278] process 'syz.3.176' launched './file0' with NULL argv: empty string added [ 87.085475][ T6277] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 87.139951][ T6277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.323811][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.434585][ T6290] netlink: 4108 bytes leftover after parsing attributes in process `syz.2.183'. [ 87.462185][ T6292] loop0: detected capacity change from 0 to 512 [ 87.507408][ T6292] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 87.555046][ T6292] EXT4-fs (loop0): orphan cleanup on readonly fs [ 87.605240][ T6292] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.181: iget: bogus i_mode (5) [ 87.629254][ T6292] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.181: couldn't read orphan inode 15 (err -117) [ 87.650858][ T6292] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 87.716357][ T6301] netlink: 5 bytes leftover after parsing attributes in process `syz.2.185'. [ 87.748082][ T6301] gretap0: entered promiscuous mode [ 87.797178][ T6301] netlink: 'syz.2.185': attribute type 1 has an invalid length. [ 87.820210][ T6301] netlink: 3 bytes leftover after parsing attributes in process `syz.2.185'. [ 87.879885][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.000463][ T6345] loop1: detected capacity change from 0 to 4096 [ 89.022270][ T6347] sp0: Synchronizing with TNC [ 89.073164][ T6346] [U] è` [ 89.144191][ T6345] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 89.151471][ T6327] loop2: detected capacity change from 0 to 32768 [ 89.221635][ T6327] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 89.257601][ T6354] loop0: detected capacity change from 0 to 64 [ 89.310331][ T6345] ntfs3: loop1: Failed to load $Extend (-22). [ 89.337987][ T6345] ntfs3: loop1: Failed to initialize $Extend. [ 89.487249][ T6327] XFS (loop2): Ending clean mount [ 89.591033][ T6343] loop3: detected capacity change from 0 to 32768 [ 89.635177][ T6343] BTRFS: device fsid 3a492a15-ac49-4ce6-945e-cef7a687c6c9 devid 1 transid 8 /dev/loop3 scanned by syz.3.208 (6343) [ 89.692067][ T6343] BTRFS info (device loop3): first mount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 89.720730][ T6343] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 89.745090][ T6343] BTRFS info (device loop3): using free space tree [ 89.756620][ T5777] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 89.909334][ T6343] BTRFS info (device loop3): enabling ssd optimizations [ 89.980520][ T6343] BTRFS info (device loop3): auto enabling async discard [ 90.238339][ T5780] BTRFS info (device loop3): last unmount of filesystem 3a492a15-ac49-4ce6-945e-cef7a687c6c9 [ 90.280963][ T6380] loop2: detected capacity change from 0 to 164 [ 90.330079][ T27] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 90.338152][ T6380] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 90.398856][ T6380] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 90.538385][ T6359] loop0: detected capacity change from 0 to 40427 [ 90.547742][ T27] usb 2-1: Using ep0 maxpacket: 8 [ 90.560485][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 90.586346][ T6359] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x7ffff [ 90.600459][ T27] usb 2-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00 [ 90.631432][ T6359] F2FS-fs (loop0): invalid crc value [ 90.637890][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.666288][ T27] usb 2-1: config 0 descriptor?? [ 90.702510][ T6359] F2FS-fs (loop0): Found nat_bits in checkpoint [ 90.842301][ T6359] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 90.969565][ T6391] loop3: detected capacity change from 0 to 4096 [ 91.036317][ T6391] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 91.134553][ T27] hid-multitouch 0003:0EEF:72C4.0001: unknown main item tag 0x0 [ 91.187000][ T27] hid-multitouch 0003:0EEF:72C4.0001: hidraw0: USB HID v0.03 Device [HID 0eef:72c4] on usb-dummy_hcd.1-1/input0 [ 91.191622][ T5778] syz-executor: attempt to access beyond end of device [ 91.191622][ T5778] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 91.224345][ T5778] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 91.391393][ T55] usb 2-1: USB disconnect, device number 2 [ 91.698058][ T6402] loop2: detected capacity change from 0 to 256 [ 91.758650][ T6402] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 92.430744][ T6427] overlayfs: missing 'lowerdir' [ 92.447479][ T6425] loop0: detected capacity change from 0 to 1024 [ 92.507464][ T6425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.775454][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.193845][ T6458] bridge1: entered promiscuous mode [ 93.199885][ T6458] bridge1: entered allmulticast mode [ 93.209591][ T6461] loop3: detected capacity change from 0 to 512 [ 93.221483][ T6458] team0: Port device bridge1 added [ 93.288837][ T6461] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 93.330956][ T6465] loop1: detected capacity change from 0 to 128 [ 93.437391][ T6461] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.249: path /58/file0: bad entry in directory: rec_len is too small for name_len - offset=24, inode=11, rec_len=20, size=4096 fake=0 [ 93.474037][ T6465] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 93.514604][ T6442] loop2: detected capacity change from 0 to 32768 [ 93.524117][ T6465] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 93.635332][ T5780] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 93.855342][ T5779] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 93.868373][ T6475] loop3: detected capacity change from 0 to 256 [ 94.023874][ T6475] FAT-fs (loop3): Directory bread(block 64) failed [ 94.046864][ T6475] FAT-fs (loop3): Directory bread(block 65) failed [ 94.061090][ T6475] FAT-fs (loop3): Directory bread(block 66) failed [ 94.067962][ T6475] FAT-fs (loop3): Directory bread(block 67) failed [ 94.077897][ T6475] FAT-fs (loop3): Directory bread(block 68) failed [ 94.085603][ T6475] FAT-fs (loop3): Directory bread(block 69) failed [ 94.098156][ T6475] FAT-fs (loop3): Directory bread(block 70) failed [ 94.104905][ T6475] FAT-fs (loop3): Directory bread(block 71) failed [ 94.111679][ T6475] FAT-fs (loop3): Directory bread(block 72) failed [ 94.120121][ T6475] FAT-fs (loop3): Directory bread(block 73) failed [ 94.514911][ T6491] loop2: detected capacity change from 0 to 1024 [ 94.597424][ T6491] hfsplus: keylen 65060 too large [ 94.607481][ T6491] hfsplus: xattr searching failed [ 94.759180][ T6493] loop3: detected capacity change from 0 to 4096 [ 94.802886][ T6493] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 94.847131][ T6493] ntfs3: loop3: It is recommened to use chkdsk. [ 95.034247][ T6502] loop0: detected capacity change from 0 to 4096 [ 95.098711][ T6504] vlan2: entered promiscuous mode [ 96.042202][ T6528] loop0: detected capacity change from 0 to 1024 [ 96.108646][ T6530] loop3: detected capacity change from 0 to 4096 [ 96.122422][ T6528] hfsplus: bad catalog entry type [ 96.227782][ T3468] hfsplus: b-tree write err: -5, ino 4 [ 96.272473][ T6531] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 96.331132][ T6515] loop2: detected capacity change from 0 to 32768 [ 96.576349][ T6521] loop1: detected capacity change from 0 to 32768 [ 96.610353][ T6535] loop0: detected capacity change from 0 to 2048 [ 96.635595][ T6541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.281'. [ 96.647206][ T6521] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 96.716501][ T6535] loop0: p1 < > p4 [ 96.769930][ T6535] loop0: p4 size 8388608 extends beyond EOD, truncated [ 96.854862][ T6521] XFS (loop1): Ending clean mount [ 96.934333][ T6521] XFS (loop1): Quotacheck needed: Please wait. [ 97.100861][ T6521] XFS (loop1): Quotacheck: Done. [ 97.336573][ T5770] udevd[5770]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 97.336806][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 97.383211][ T5779] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 97.393702][ T6559] loop2: detected capacity change from 0 to 512 [ 97.411516][ T6559] EXT4-fs: Ignoring removed orlov option [ 97.430038][ T6559] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 97.437082][ T5770] udevd[5770]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 97.445277][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 97.511851][ T6559] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 97.573601][ T6559] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.283: corrupted in-inode xattr: e_value size too large [ 97.639754][ T6563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.289'. [ 97.662754][ T6563] bridge0: entered promiscuous mode [ 97.673966][ T6559] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.283: couldn't read orphan inode 15 (err -117) [ 97.698548][ T6563] bridge0: port 3(macvlan2) entered blocking state [ 97.716913][ T6563] bridge0: port 3(macvlan2) entered disabled state [ 97.722255][ T6559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.727209][ T6563] macvlan2: entered allmulticast mode [ 97.756306][ T6563] bridge0: entered allmulticast mode [ 97.766755][ T6563] macvlan2: left allmulticast mode [ 97.766776][ T6563] bridge0: left allmulticast mode [ 97.768193][ T6563] bridge0: left promiscuous mode [ 97.880148][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.212031][ T6577] loop2: detected capacity change from 0 to 64 [ 98.494189][ T6583] loop2: detected capacity change from 0 to 1024 [ 98.516292][ T6587] zonefs (nullb0) ERROR: Not a zoned block device [ 98.708133][ T6591] netlink: 16 bytes leftover after parsing attributes in process `syz.1.303'. [ 99.143630][ T6606] loop0: detected capacity change from 0 to 256 [ 99.197044][ T6606] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d) [ 99.289055][ T6606] syz.0.310: attempt to access beyond end of device [ 99.289055][ T6606] loop0: rw=0, sector=311, nr_sectors = 1 limit=256 [ 99.532819][ T6612] loop0: detected capacity change from 0 to 512 [ 99.633260][ T6612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.690186][ T6612] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 99.719800][ T6603] loop3: detected capacity change from 0 to 40427 [ 99.744290][ T6603] F2FS-fs (loop3): Wrong segment_count / block_count (31 > 0) [ 99.747656][ T6612] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.779843][ T6603] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 99.780495][ T6618] loop1: detected capacity change from 0 to 1024 [ 99.804185][ T6603] F2FS-fs (loop3): invalid crc value [ 99.828202][ T6603] F2FS-fs (loop3): Found nat_bits in checkpoint [ 99.847298][ T6618] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 100.035666][ T6603] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 100.048782][ T6603] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 100.217020][ T6624] loop1: detected capacity change from 0 to 4096 [ 100.277222][ T5780] syz-executor: attempt to access beyond end of device [ 100.277222][ T5780] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 100.305596][ T6630] netlink: 56 bytes leftover after parsing attributes in process `syz.2.320'. [ 100.314981][ T5780] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 100.414963][ T6632] loop2: detected capacity change from 0 to 1024 [ 101.209248][ T6628] loop0: detected capacity change from 0 to 32768 [ 101.671987][ T6661] loop2: detected capacity change from 0 to 64 [ 102.145552][ T6669] loop2: detected capacity change from 0 to 4096 [ 102.187705][ T6648] loop1: detected capacity change from 0 to 32768 [ 102.260059][ T6673] loop3: detected capacity change from 0 to 256 [ 102.302536][ T6673] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 102.368247][ T6673] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 103.132785][ T6694] netlink: 16 bytes leftover after parsing attributes in process `syz.1.347'. [ 103.550118][ T6683] loop0: detected capacity change from 0 to 40427 [ 103.558977][ T6683] F2FS-fs (loop0): Wrong SSA boundary, start(3584) end(4096) blocks(0) [ 103.582236][ T6683] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 103.607568][ T6683] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x6 [ 103.658129][ T6683] F2FS-fs (loop0): invalid crc value [ 103.709908][ T6683] F2FS-fs (loop0): Found nat_bits in checkpoint [ 103.863919][ T6683] F2FS-fs (loop0): Start checkpoint disabled! [ 103.911790][ T6683] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 103.912051][ T5899] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 103.918867][ T6683] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 103.923110][ T6714] loop3: detected capacity change from 0 to 4096 [ 103.966722][ T6714] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 104.091885][ T6714] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 104.130608][ T5899] usb 3-1: Using ep0 maxpacket: 16 [ 104.143430][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 104.191882][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 104.217599][ T5899] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00 [ 104.222419][ T1312] kworker/u4:6: attempt to access beyond end of device [ 104.222419][ T1312] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 104.241027][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.243494][ T5899] usb 3-1: config 0 descriptor?? [ 104.275546][ T1312] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 104.290671][ T1312] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 104.710001][ T5899] apple 0003:05AC:024B.0002: unknown main item tag 0x6 [ 104.710439][ T5899] apple 0003:05AC:024B.0002: ignoring exceeding usage max [ 104.711415][ T5899] apple 0003:05AC:024B.0002: invalid report_size 16640 [ 104.711433][ T5899] apple 0003:05AC:024B.0002: item 0 2 1 7 parsing failed [ 104.712321][ T5899] apple 0003:05AC:024B.0002: parse failed [ 104.712423][ T5899] apple: probe of 0003:05AC:024B.0002 failed with error -22 [ 105.016785][ T5785] usb 3-1: USB disconnect, device number 3 [ 105.019301][ T6739] loop3: detected capacity change from 0 to 4096 [ 105.062456][ T6739] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 105.198841][ T6739] ntfs3: loop3: failed to convert "c46c" to iso8859-13 [ 105.984070][ T6745] loop0: detected capacity change from 0 to 32768 [ 106.018893][ T6745] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.367 (6745) [ 106.065788][ T6745] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 106.082059][ T6745] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 106.144209][ T6745] BTRFS info (device loop0): enabling auto defrag [ 106.163814][ T6745] BTRFS info (device loop0): doing ref verification [ 106.180844][ T6745] BTRFS warning (device loop0): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 106.211820][ T6745] BTRFS info (device loop0): trying to use backup root at mount time [ 106.240519][ T6745] BTRFS info (device loop0): max_inline at 4096 [ 106.265016][ T6745] BTRFS info (device loop0): enabling ssd optimizations [ 106.302117][ T6745] BTRFS info (device loop0): using spread ssd allocation scheme [ 106.312347][ T6745] BTRFS info (device loop0): using free space tree [ 106.490550][ T6757] loop2: detected capacity change from 0 to 32768 [ 106.560828][ T6745] BTRFS info (device loop0): auto enabling async discard [ 106.876289][ T5778] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 106.879996][ T6797] loop1: detected capacity change from 0 to 1024 [ 107.087367][ T6777] loop3: detected capacity change from 0 to 32768 [ 107.164181][ T5791] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 9 /dev/loop0 scanned by udevd (5791) [ 107.210873][ T3468] hfsplus: b-tree write err: -5, ino 4 [ 107.219117][ T6777] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 107.357671][ T6777] XFS (loop3): Ending clean mount [ 107.461985][ T5899] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 107.523414][ T5780] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 107.682109][ T5899] usb 3-1: Using ep0 maxpacket: 8 [ 107.690490][ T5899] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 107.703179][ T5785] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 107.715571][ T5899] usb 3-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 107.731421][ T5899] usb 3-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 107.771813][ T5899] usb 3-1: Product: syz [ 107.786495][ T5899] usb 3-1: Manufacturer: syz [ 107.791150][ T5899] usb 3-1: SerialNumber: syz [ 107.912674][ T5785] usb 2-1: Using ep0 maxpacket: 16 [ 107.922469][ T5785] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.949467][ T5785] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.974435][ T6823] loop3: detected capacity change from 0 to 512 [ 107.990225][ T5785] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 108.022853][ T5785] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 108.026204][ T5899] usb 3-1: Handspring Visor / Palm OS: No valid connect info available [ 108.039443][ T5785] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.048988][ T5899] usb 3-1: Handspring Visor / Palm OS: port 255, is for unknown use [ 108.049012][ T5899] usb 3-1: Handspring Visor / Palm OS: port 255, is for unknown use [ 108.049030][ T5899] usb 3-1: Handspring Visor / Palm OS: Number of ports: 2 [ 108.083533][ T6823] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.092119][ T5785] usb 2-1: config 0 descriptor?? [ 108.220746][ T5899] usb 3-1: palm_os_3_probe - error -71 getting bytes available request [ 108.256161][ T5899] visor 3-1:1.0: Handspring Visor / Palm OS converter detected [ 108.262103][ T6829] netlink: 340 bytes leftover after parsing attributes in process `syz.0.392'. [ 108.302988][ T5899] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 108.320951][ T5899] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 108.357395][ T5899] usb 3-1: USB disconnect, device number 4 [ 108.399689][ T5899] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 108.441525][ T5899] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 108.473398][ T5899] visor 3-1:1.0: device disconnected [ 108.534295][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.537290][ T5785] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 108.577482][ T5785] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 108.637319][ T5785] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0003/input/input5 [ 108.727609][ T6837] Cannot find add_set index 1 as target [ 108.800672][ T5785] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 108.845261][ T6839] loop3: detected capacity change from 0 to 1024 [ 108.866168][ T6839] EXT4-fs: Ignoring removed i_version option [ 108.884574][ T5785] usb 2-1: USB disconnect, device number 3 [ 108.908672][ T6839] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 108.995516][ T6839] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:478: comm syz.3.397: Invalid block bitmap block 0 in block_group 0 [ 109.031937][ T6839] __quota_error: 9 callbacks suppressed [ 109.031953][ T6839] Quota error (device loop3): write_blk: dquota write failed [ 109.046265][ T6839] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 109.057009][ T6839] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.397: Failed to acquire dquot type 0 [ 109.076155][ T6839] EXT4-fs error (device loop3): ext4_free_blocks:6681: comm syz.3.397: Freeing blocks not in datazone - block = 0, count = 4096 [ 109.088123][ T6840] fido_id[6840]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 109.095549][ T6839] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.397: Invalid inode bitmap blk 0 in block_group 0 [ 109.140182][ T12] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 109.164229][ T12] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:1: Failed to release dquot type 0 [ 109.180156][ T6839] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem [ 109.206865][ T6839] EXT4-fs (loop3): 1 orphan inode deleted [ 109.214545][ T6839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.261128][ T6839] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 109.321145][ T6839] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #2: block 16: comm syz.3.397: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 109.406974][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.674355][ T6853] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 109.701051][ T6842] loop0: detected capacity change from 0 to 32768 [ 109.880968][ T6859] loop3: detected capacity change from 0 to 1024 [ 110.103167][ T6866] netlink: 36 bytes leftover after parsing attributes in process `syz.2.409'. [ 110.471172][ T6876] loop1: detected capacity change from 0 to 4096 [ 110.573629][ T6876] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.760285][ T6876] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz.1.414: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 110.793052][ T6891] loop0: detected capacity change from 0 to 2048 [ 110.799639][ T6889] loop2: detected capacity change from 0 to 1024 [ 110.830268][ T6889] EXT4-fs: Ignoring removed nobh option [ 110.838227][ T6876] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz.1.414: directory missing '..' [ 110.847906][ T6889] EXT4-fs: Ignoring removed bh option [ 110.877900][ T6894] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 110.913049][ T6889] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 110.976514][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.048532][ T6889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.353040][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.291210][ T6930] netlink: 32 bytes leftover after parsing attributes in process `syz.3.438'. [ 112.485400][ T6939] nbd: socks must be embedded in a SOCK_ITEM attr [ 112.494326][ T6942] loop3: detected capacity change from 0 to 512 [ 112.507870][ T28] audit: type=1326 audit(1755230809.750:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.563713][ T28] audit: type=1326 audit(1755230809.750:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.607255][ T28] audit: type=1326 audit(1755230809.780:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.629672][ T28] audit: type=1326 audit(1755230809.790:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.637022][ T6942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.718351][ T28] audit: type=1326 audit(1755230809.790:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.811954][ T6942] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.832300][ T28] audit: type=1326 audit(1755230809.790:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 112.904568][ T28] audit: type=1326 audit(1755230809.790:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf3cb8ebe9 code=0x7ffc0000 [ 113.122371][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.166646][ T6961] loop1: detected capacity change from 0 to 128 [ 113.200635][ T6961] ufs: You didn't specify the type of your ufs filesystem [ 113.200635][ T6961] [ 113.200635][ T6961] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 113.200635][ T6961] [ 113.200635][ T6961] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 113.277813][ T6963] loop3: detected capacity change from 0 to 256 [ 113.305514][ T6950] loop0: detected capacity change from 0 to 32768 [ 113.312410][ T6963] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 113.322361][ T6961] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 113.335733][ T6950] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.446 (6950) [ 113.350001][ T6963] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 113.388599][ T6963] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 113.414069][ T6950] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 113.443849][ T6950] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 113.514006][ T6950] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 113.541772][ T6950] BTRFS info (device loop0): use lzo compression, level 0 [ 113.548977][ T6950] BTRFS info (device loop0): using free space tree [ 113.737125][ T6950] BTRFS info (device loop0): enabling ssd optimizations [ 113.770595][ T6950] BTRFS info (device loop0): auto enabling async discard [ 113.930869][ T6993] loop2: detected capacity change from 0 to 16 [ 113.977384][ T6993] erofs: (device loop2): mounted with root inode @ nid 36. [ 114.102214][ T5814] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 114.117175][ T5778] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 114.336534][ T5814] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 114.355354][ T5814] usb 4-1: config 0 has no interface number 0 [ 114.361518][ T5814] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 114.374200][ T6996] loop2: detected capacity change from 0 to 4096 [ 114.425388][ T5814] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 114.437515][ T6996] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 114.455945][ T5814] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 114.483527][ T5814] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.493362][ T6996] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096) [ 114.524315][ T5814] usb 4-1: config 0 descriptor?? [ 114.591071][ T7000] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 114.619475][ T6991] loop1: detected capacity change from 0 to 32768 [ 114.698379][ T6991] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 114.856673][ T6991] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 114.960222][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 114.989174][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.022246][ T5779] ocfs2: Unmounting device (7,1) on (node local) [ 115.023380][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.039829][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.070180][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.090632][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.110970][ T5814] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0 [ 115.148846][ T5814] prodikeys 0003:041E:2801.0004: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.3-1/input1 [ 115.170988][ T5814] hid_prodikeys: hid-prodikeys: failed to find output report [ 115.170988][ T5814] [ 115.221300][ T5814] usb 4-1: USB disconnect, device number 4 [ 115.282122][ T5899] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 115.305103][ T7010] fido_id[7010]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 115.536456][ T5899] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 115.561917][ T5899] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 115.581804][ T5899] usb 1-1: New USB device found, idVendor=17ef, idProduct=6067, bcdDevice= 0.00 [ 115.590880][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.625586][ T5899] usb 1-1: config 0 descriptor?? [ 115.658622][ T7012] loop2: detected capacity change from 0 to 32768 [ 115.678860][ T7012] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 115.679634][ T55] kernel read not supported for file /dsp (pid: 55 comm: kworker/1:2) [ 115.752383][ T7012] XFS (loop2): Ending clean mount [ 115.921097][ T5777] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 116.027558][ T7026] loop1: detected capacity change from 0 to 256 [ 116.085047][ T5899] lenovo 0003:17EF:6067.0005: unknown main item tag 0xd [ 116.132858][ T5899] lenovo 0003:17EF:6067.0005: hidraw0: USB HID v0.01 Device [HID 17ef:6067] on usb-dummy_hcd.0-1/input0 [ 116.227737][ T5779] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 116.268585][ T5779] FAT-fs (loop1): Filesystem has been set read-only [ 116.304322][ T5779] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 116.344705][ T5899] usb 1-1: USB disconnect, device number 3 [ 116.773692][ T7045] loop2: detected capacity change from 0 to 16 [ 116.799476][ T7045] erofs: (device loop2): mounted with root inode @ nid 36. [ 116.875571][ T7045] erofs: (device loop2): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 116.902462][ T7045] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535 [ 116.916927][ T1011] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.009360][ T7047] netlink: 12 bytes leftover after parsing attributes in process `syz.3.482'. [ 117.104600][ T1011] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.269850][ T1011] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.414352][ T1011] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.502751][ T5987] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 117.739198][ T5987] usb 1-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1 [ 117.776956][ T5987] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.813032][ T5987] usb 1-1: config 0 descriptor?? [ 117.825460][ T5987] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 117.846657][ T5987] dvb_usb_af9015: probe of 1-1:0.0 failed with error -22 [ 117.903975][ T5782] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 117.921964][ T5782] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 117.940742][ T5782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 117.951852][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 117.972095][ T5782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 117.980495][ T5782] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 118.060340][ T5987] usb 1-1: USB disconnect, device number 4 [ 118.208988][ T7053] loop2: detected capacity change from 0 to 40427 [ 118.232794][ T7053] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff [ 118.265901][ T7053] F2FS-fs (loop2): Image doesn't support compression [ 118.313022][ T7053] F2FS-fs (loop2): invalid crc value [ 118.340489][ T7053] F2FS-fs (loop2): Found nat_bits in checkpoint [ 118.528124][ T7053] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 118.905993][ T5777] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x516/0x19c0 [ 118.948668][ T5777] F2FS-fs (loop2): invalid blkaddr: 1535, type: 10, run fsck to fix. [ 119.478864][ T7063] chnl_net:caif_netlink_parms(): no params data found [ 119.938118][ T7122] netlink: 4692 bytes leftover after parsing attributes in process `syz.2.499'. [ 120.092095][ T5782] Bluetooth: hci3: command tx timeout [ 120.179076][ T7131] loop0: detected capacity change from 0 to 256 [ 120.214339][ T7131] exfat: Deprecated parameter 'utf8' [ 120.228941][ T7131] exfat: Deprecated parameter 'utf8' [ 120.259971][ T7110] loop3: detected capacity change from 0 to 40427 [ 120.260615][ T7063] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.297588][ T7063] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.304664][ T7110] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 120.304687][ T7110] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 120.317632][ T7110] F2FS-fs (loop3): invalid crc value [ 120.328050][ T7063] bridge_slave_0: entered allmulticast mode [ 120.341548][ T7063] bridge_slave_0: entered promiscuous mode [ 120.356210][ T7131] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 120.376616][ T7110] F2FS-fs (loop3): Found nat_bits in checkpoint [ 120.385622][ T7136] loop2: detected capacity change from 0 to 64 [ 120.398003][ T7063] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.428733][ T7063] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.464543][ T7063] bridge_slave_1: entered allmulticast mode [ 120.498583][ T7063] bridge_slave_1: entered promiscuous mode [ 120.670088][ T7110] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 120.691895][ T7110] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 120.701549][ T1011] hsr_slave_0: left promiscuous mode [ 120.725656][ T1011] hsr_slave_1: left promiscuous mode [ 120.754679][ T1011] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.781937][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.824109][ T1011] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.831580][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.860073][ T1011] bridge_slave_1: left allmulticast mode [ 120.892010][ T1011] bridge_slave_1: left promiscuous mode [ 120.900422][ T1011] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.954961][ T1011] bridge_slave_0: left allmulticast mode [ 120.960679][ T1011] bridge_slave_0: left promiscuous mode [ 120.973138][ T1011] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.080827][ T1011] veth1_macvtap: left promiscuous mode [ 121.087692][ T1011] veth0_macvtap: left promiscuous mode [ 121.105552][ T1011] veth1_vlan: left promiscuous mode [ 121.131658][ T1011] veth0_vlan: left promiscuous mode [ 121.351595][ T7138] loop0: detected capacity change from 0 to 32768 [ 121.452187][ T7138] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 121.632893][ T7138] (syz.0.504,7138,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=16, inode=65, rec_len=64016, name_len=255 [ 121.796062][ T1011] team0 (unregistering): Port device bridge1 removed [ 121.811323][ T7162] loop3: detected capacity change from 0 to 16 [ 121.838481][ T5778] ocfs2: Unmounting device (7,0) on (node local) [ 121.854197][ T7162] erofs: (device loop3): mounted with root inode @ nid 36. [ 121.916541][ T7162] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 121.971462][ T7162] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -21 in[56, 4040] out[1851] [ 121.987951][ T7162] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 122.182020][ T5782] Bluetooth: hci3: command tx timeout [ 122.791310][ T1011] team0 (unregistering): Port device team_slave_1 removed [ 122.847055][ T1011] team0 (unregistering): Port device team_slave_0 removed [ 122.909899][ T1011] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 122.980221][ T1011] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.630237][ T7179] loop3: detected capacity change from 0 to 32768 [ 123.725192][ T7179] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 123.761076][ T1011] bond0 (unregistering): Released all slaves [ 123.861904][ T7179] XFS (loop3): Ending clean mount [ 123.880615][ T7179] XFS (loop3): Quotacheck needed: Please wait. [ 123.914388][ T7179] XFS (loop3): Quotacheck: Done. [ 124.004951][ T5780] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 124.013058][ T7063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 124.070091][ T7063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 124.252314][ T5782] Bluetooth: hci3: command tx timeout [ 124.339133][ T7063] team0: Port device team_slave_0 added [ 124.391330][ T7194] loop0: detected capacity change from 0 to 8 [ 124.394831][ T7063] team0: Port device team_slave_1 added [ 124.636579][ T7063] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 124.664333][ T7063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 124.710143][ T7063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 124.760808][ T7063] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 124.788058][ T7063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 124.847786][ T7063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 125.102500][ T7063] hsr_slave_0: entered promiscuous mode [ 125.115683][ T7063] hsr_slave_1: entered promiscuous mode [ 125.133518][ T7063] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 125.141136][ T7063] Cannot create hsr debugfs directory [ 125.155630][ T7213] tipc: Started in network mode [ 125.161203][ T7213] tipc: Node identity aaaaaaaaaa35, cluster identity 4711 [ 125.169052][ T7213] tipc: Enabled bearer , priority 10 [ 125.843724][ T7234] loop3: detected capacity change from 0 to 4096 [ 125.929495][ T7063] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 126.001921][ T7063] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 126.035371][ T7063] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 126.079407][ T7063] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 126.246850][ T7234] ntfs3: Cannot use different iocharset when remounting! [ 126.284405][ T965] tipc: Node number set to 10463914 [ 126.332683][ T5782] Bluetooth: hci3: command tx timeout [ 126.408411][ T7063] 8021q: adding VLAN 0 to HW filter on device bond0 [ 126.507341][ T7063] 8021q: adding VLAN 0 to HW filter on device team0 [ 126.597561][ T1011] bridge0: port 1(bridge_slave_0) entered blocking state [ 126.604833][ T1011] bridge0: port 1(bridge_slave_0) entered forwarding state [ 126.622645][ T7259] loop2: detected capacity change from 0 to 256 [ 126.629961][ T7259] exfat: Deprecated parameter 'utf8' [ 126.657895][ T7259] exfat: Deprecated parameter 'utf8' [ 126.666160][ T1011] bridge0: port 2(bridge_slave_1) entered blocking state [ 126.673386][ T1011] bridge0: port 2(bridge_slave_1) entered forwarding state [ 126.708502][ T7259] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 126.838121][ T7239] loop0: detected capacity change from 0 to 32768 [ 126.875923][ T7239] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.541 (7239) [ 126.921842][ T55] usb 4-1: new full-speed USB device number 5 using dummy_hcd [ 126.962266][ T7239] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 126.993530][ T7239] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 127.027982][ T7239] BTRFS info (device loop0): enabling auto defrag [ 127.065368][ T7239] BTRFS info (device loop0): max_inline at 0 [ 127.071434][ T7239] BTRFS info (device loop0): enabling ssd optimizations [ 127.122550][ T7239] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 127.153598][ T7239] BTRFS info (device loop0): use lzo compression, level 0 [ 127.164848][ T55] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 127.189087][ T55] usb 4-1: config 0 has no interface number 0 [ 127.196812][ T7239] BTRFS info (device loop0): using free space tree [ 127.211863][ T55] usb 4-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 127.244913][ T55] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 127.298473][ T55] usb 4-1: config 0 descriptor?? [ 127.342667][ T55] usb 4-1: selecting invalid altsetting 1 [ 127.364236][ T55] dvb_ttusb_budget: ttusb_init_controller: error [ 127.377274][ T55] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 127.470995][ T7063] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 127.657444][ T55] DVB: Unable to find symbol cx22700_attach() [ 127.678682][ T5778] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 127.755663][ T7303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.550'. [ 127.769103][ T7303] netlink: 4 bytes leftover after parsing attributes in process `syz.2.550'. [ 127.808457][ T7303] netlink: 'syz.2.550': attribute type 12 has an invalid length. [ 127.816291][ T55] DVB: Unable to find symbol tda10046_attach() [ 127.816306][ T55] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 127.832186][ T7303] netlink: 'syz.2.550': attribute type 13 has an invalid length. [ 127.846942][ T55] usb 4-1: USB disconnect, device number 5 [ 128.475412][ T7319] loop2: detected capacity change from 0 to 1024 [ 128.577490][ T7063] veth0_vlan: entered promiscuous mode [ 128.656788][ T7063] veth1_vlan: entered promiscuous mode [ 128.810376][ T7063] veth0_macvtap: entered promiscuous mode [ 128.844381][ T7063] veth1_macvtap: entered promiscuous mode [ 128.913559][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.939005][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.977309][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 129.011081][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 129.041470][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 129.071780][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 129.093099][ T7063] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 129.116214][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 129.147197][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 129.167704][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 129.201625][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 129.221377][ T7063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 129.243380][ T7063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 129.282574][ T7063] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 129.302270][ T55] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 129.344323][ T7063] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.381937][ T7063] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.401010][ T7063] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.421353][ T7063] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.525749][ T55] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 129.551941][ T55] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 129.553384][ T7320] loop3: detected capacity change from 0 to 40427 [ 129.589632][ T55] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 129.632612][ T55] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 129.637485][ T7320] F2FS-fs (loop3): invalid crc value [ 129.676608][ T55] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.710486][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.740816][ T55] usb 1-1: config 0 descriptor?? [ 129.752282][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.868645][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.869153][ T7320] F2FS-fs (loop3): Start checkpoint disabled! [ 129.890722][ T7320] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 129.898807][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.211138][ T55] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max [ 130.236633][ T55] plantronics 0003:047F:FFFF.0006: unsupported Resolution Multiplier 0 [ 130.257808][ T55] plantronics 0003:047F:FFFF.0006: unsupported Resolution Multiplier 0 [ 130.282113][ T55] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 130.332559][ T55] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 130.483998][ T7359] netlink: 20 bytes leftover after parsing attributes in process `syz.4.562'. [ 130.499262][ T55] usb 1-1: USB disconnect, device number 5 [ 130.580788][ T7358] fido_id[7358]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 131.114500][ T7352] loop2: detected capacity change from 0 to 32768 [ 131.132236][ T7352] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.568 (7352) [ 131.159858][ T7352] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 131.189960][ T7352] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 131.261966][ T7352] BTRFS info (device loop2): enabling auto defrag [ 131.268507][ T7352] BTRFS info (device loop2): max_inline at 0 [ 131.344488][ T7352] BTRFS info (device loop2): enabling ssd optimizations [ 131.392079][ T7352] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8) [ 131.448753][ T7352] BTRFS info (device loop2): use lzo compression, level 0 [ 131.481957][ T7352] BTRFS info (device loop2): using free space tree [ 131.653628][ T5987] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 131.857164][ T5987] usb 4-1: Using ep0 maxpacket: 16 [ 131.868437][ T5987] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 131.892340][ T5777] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 131.909781][ T5987] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 131.935715][ T5987] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 131.975768][ T5987] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 131.999198][ T5987] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 132.028118][ T5987] usb 4-1: config 0 descriptor?? [ 132.043096][ T5899] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 132.278788][ T5899] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 132.297602][ T5899] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 132.328395][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 132.394297][ T5899] usb 1-1: config 0 descriptor?? [ 132.422780][ T7412] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 132.467879][ T7427] loop4: detected capacity change from 0 to 512 [ 132.519474][ T5987] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0007/input/input8 [ 132.602393][ T5987] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 132.633407][ T7427] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.578: bg 0: block 5: invalid block bitmap [ 132.674423][ T7427] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 132.761220][ T5987] usb 4-1: USB disconnect, device number 6 [ 132.784606][ T7427] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.578: invalid indirect mapped block 3 (level 2) [ 132.855965][ T7427] EXT4-fs (loop4): 1 orphan inode deleted [ 132.908231][ T7427] EXT4-fs (loop4): 1 truncate cleaned up [ 132.925924][ T7427] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.962522][ T5899] elan 0003:04F3:0755.0008: unknown main item tag 0x0 [ 132.969459][ T5899] elan 0003:04F3:0755.0008: item fetching failed at offset 3/5 [ 133.000897][ T7435] fido_id[7435]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 133.020943][ T5899] elan 0003:04F3:0755.0008: Hid Parse failed [ 133.031906][ T5899] elan: probe of 0003:04F3:0755.0008 failed with error -22 [ 133.119785][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.580'. [ 133.147125][ T5782] Bluetooth: hci3: command tx timeout [ 133.150414][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.161666][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.186686][ T55] usb 1-1: USB disconnect, device number 6 [ 133.198997][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.580'. [ 133.246298][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.408301][ T7447] loop4: detected capacity change from 0 to 512 [ 133.424853][ T7447] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 133.472476][ T7447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 133.548552][ T7447] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 133.778629][ T7447] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-6 [ 133.832017][ T7447] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 133.879673][ T7447] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.581: Failed to acquire dquot type 0 [ 134.079638][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 134.091300][ T28] audit: type=1326 audit(1755230831.320:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.134766][ T28] audit: type=1326 audit(1755230831.320:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.145812][ T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 134.236316][ T28] audit: type=1326 audit(1755230831.370:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.352695][ T28] audit: type=1326 audit(1755230831.370:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.420542][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.452258][ T9] usb 1-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00 [ 134.461360][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.462845][ T7486] program syz.4.593 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 134.483176][ T28] audit: type=1326 audit(1755230831.370:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.525634][ T9] usb 1-1: config 0 descriptor?? [ 134.571419][ T28] audit: type=1326 audit(1755230831.370:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.631858][ T28] audit: type=1326 audit(1755230831.370:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7473 comm="syz.2.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 134.985594][ T9] dragonrise 0003:0079:0006.0009: hidraw0: USB HID v0.00 Device [HID 0079:0006] on usb-dummy_hcd.0-1/input0 [ 135.001297][ T9] dragonrise 0003:0079:0006.0009: no inputs found [ 135.040020][ T9] dragonrise 0003:0079:0006.0009: force feedback init failed [ 135.261208][ T9] usb 1-1: USB disconnect, device number 7 [ 135.440078][ T7516] loop4: detected capacity change from 0 to 256 [ 135.587628][ T7520] loop2: detected capacity change from 0 to 2048 [ 135.619623][ T7520] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 135.646260][ T7520] UDF-fs: Scanning with blocksize 512 failed [ 135.709345][ T7520] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 135.996772][ T7532] loop2: detected capacity change from 0 to 512 [ 136.046263][ T7532] EXT4-fs: Ignoring removed oldalloc option [ 136.053756][ T7532] EXT4-fs: Ignoring removed bh option [ 136.075355][ T7532] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c118, mo2=0002] [ 136.095869][ T7532] System zones: 1-12 [ 136.107857][ T7532] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.614: corrupted in-inode xattr: e_value size too large [ 136.142784][ T7532] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.614: couldn't read orphan inode 15 (err -117) [ 136.158403][ T7532] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.235346][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.763968][ T7557] loop0: detected capacity change from 0 to 2048 [ 136.828209][ T7557] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 136.855610][ T7557] UDF-fs: Scanning with blocksize 512 failed [ 136.891029][ T7557] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 137.361909][ T5814] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 137.556426][ T5814] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 137.582648][ T5814] usb 5-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00 [ 137.596050][ T5814] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.618907][ T5814] usb 5-1: config 0 descriptor?? [ 137.699312][ T7581] loop0: detected capacity change from 0 to 8192 [ 137.718641][ T7565] loop2: detected capacity change from 0 to 32768 [ 137.727228][ T7565] XFS: noikeep mount option is deprecated. [ 137.737627][ T7581] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 137.783462][ T7581] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 137.794188][ T7581] REISERFS (device loop0): using ordered data mode [ 137.801507][ T7581] reiserfs: using flush barriers [ 137.807627][ T7565] XFS (loop2): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 137.835952][ T7581] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 137.897054][ T7581] REISERFS (device loop0): checking transaction log (loop0) [ 137.936265][ T7565] XFS (loop2): Ending clean mount [ 137.948739][ T7581] REISERFS (device loop0): Using r5 hash to sort names [ 137.994370][ T7581] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 138.039439][ T7581] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 138.060787][ T5777] XFS (loop2): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 138.087321][ T5814] hid_mf 0003:0079:1846.000A: hidraw0: USB HID v0.00 Device [HID 0079:1846] on usb-dummy_hcd.4-1/input0 [ 138.152267][ T5814] hid_mf 0003:0079:1846.000A: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler [ 138.368866][ T5814] usb 5-1: USB disconnect, device number 2 [ 138.419471][ T7599] fido_id[7599]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory [ 139.180245][ T7615] loop3: detected capacity change from 0 to 512 [ 139.247923][ T7615] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.645: corrupted in-inode xattr: invalid ea_ino [ 139.328644][ T7615] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.645: couldn't read orphan inode 15 (err -117) [ 139.363806][ T7615] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.527218][ T7601] loop2: detected capacity change from 0 to 32768 [ 139.573304][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.630892][ T7601] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 139.718678][ T7601] XFS (loop2): Ending clean mount [ 139.745189][ T7601] XFS (loop2): Quotacheck needed: Please wait. [ 139.821246][ T7641] loop3: detected capacity change from 0 to 4096 [ 139.855496][ T7641] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 139.905345][ T7644] loop4: detected capacity change from 0 to 256 [ 139.919556][ T7601] XFS (loop2): Quotacheck: Done. [ 139.923263][ T7644] exfat: Deprecated parameter 'utf8' [ 139.973783][ T7644] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 140.160423][ T5777] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 140.643099][ T7655] loop2: detected capacity change from 0 to 1024 [ 140.682209][ T5814] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 140.768414][ T3468] hfsplus: b-tree write err: -5, ino 4 [ 140.880568][ T7659] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.904009][ T5814] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 140.926418][ T7642] loop0: detected capacity change from 0 to 40427 [ 140.933451][ T5814] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 140.947399][ T5814] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 140.969220][ T7642] F2FS-fs (loop0): invalid crc value [ 140.982557][ T5814] usb 5-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00 [ 141.030573][ T5814] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 141.049043][ T7642] F2FS-fs (loop0): Found nat_bits in checkpoint [ 141.052228][ T7665] netlink: 8 bytes leftover after parsing attributes in process `syz.3.658'. [ 141.067819][ T5814] usb 5-1: config 0 descriptor?? [ 141.201927][ T7642] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 141.283504][ T7672] capability: warning: `syz.2.661' uses 32-bit capabilities (legacy support in use) [ 141.296495][ T28] audit: type=1800 audit(1755230838.530:41): pid=7642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.651" name="file1" dev="loop0" ino=10 res=0 errno=0 [ 141.322615][ T5778] syz-executor: attempt to access beyond end of device [ 141.322615][ T5778] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 141.351942][ T5778] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 141.547769][ T5814] wacom 0003:056A:0027.000B: ignoring exceeding usage max [ 141.571054][ T5814] wacom 0003:056A:0027.000B: Unknown device_type for 'HID 056a:0027'. Assuming pen. [ 141.614722][ T5814] wacom 0003:056A:0027.000B: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.4-1/input0 [ 141.662832][ T5814] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0027.000B/input/input9 [ 141.768088][ T5814] usb 5-1: USB disconnect, device number 3 [ 141.798539][ T7684] netlink: 4 bytes leftover after parsing attributes in process `syz.3.667'. [ 142.159231][ T7692] loop0: detected capacity change from 0 to 128 [ 142.282405][ T7696] devtmpfs: Too few inodes for current use [ 142.544299][ T7707] netlink: 60 bytes leftover after parsing attributes in process `syz.2.677'. [ 142.704094][ T7712] loop0: detected capacity change from 0 to 512 [ 142.722447][ T7712] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 142.771850][ T7712] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 142.844604][ T7712] EXT4-fs (loop0): 1 orphan inode deleted [ 142.869779][ T7712] EXT4-fs (loop0): 1 truncate cleaned up [ 142.887351][ T7712] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.969742][ T7702] loop4: detected capacity change from 0 to 32768 [ 143.032043][ T5814] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 143.062591][ T7702] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 143.095502][ T7702] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 143.178225][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.222300][ T5814] usb 3-1: Using ep0 maxpacket: 16 [ 143.246736][ T5814] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 143.262848][ T5814] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 143.286106][ T5814] usb 3-1: Product: syz [ 143.290334][ T5814] usb 3-1: Manufacturer: syz [ 143.302130][ T5814] usb 3-1: SerialNumber: syz [ 143.309981][ T5814] usb 3-1: config 0 descriptor?? [ 143.448161][ T7063] ocfs2: Unmounting device (7,4) on (node local) [ 143.622554][ T965] usb 3-1: USB disconnect, device number 5 [ 143.748426][ T7736] nbd: must specify an index to disconnect [ 143.888372][ T7738] loop0: detected capacity change from 0 to 8192 [ 143.904659][ T7738] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 143.917882][ T7738] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 143.927245][ T7738] REISERFS (device loop0): using ordered data mode [ 143.934451][ T7738] reiserfs: using flush barriers [ 143.942611][ T7738] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 143.972605][ T7738] REISERFS (device loop0): checking transaction log (loop0) [ 144.159797][ T7748] loop4: detected capacity change from 0 to 512 [ 144.196389][ T7748] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 144.248461][ T7748] EXT4-fs (loop4): 1 orphan inode deleted [ 144.261969][ T7748] EXT4-fs (loop4): 1 truncate cleaned up [ 144.277513][ T7748] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.312528][ T7738] REISERFS (device loop0): Using tea hash to sort names [ 144.321172][ T7738] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 144.337705][ T28] audit: type=1326 audit(1755230841.540:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 144.463865][ T28] audit: type=1326 audit(1755230841.540:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 144.489663][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.564599][ T28] audit: type=1326 audit(1755230841.540:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 144.660568][ T28] audit: type=1326 audit(1755230841.540:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 144.711480][ T7760] loop4: detected capacity change from 0 to 512 [ 144.764265][ T28] audit: type=1326 audit(1755230841.540:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 144.794707][ T7760] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 144.835839][ T7764] loop2: detected capacity change from 0 to 512 [ 144.854163][ T7760] EXT4-fs (loop4): orphan cleanup on readonly fs [ 144.892386][ T7760] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #3: comm syz.4.696: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0) [ 144.931942][ T28] audit: type=1326 audit(1755230841.540:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 145.052421][ T7764] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.697: corrupted in-inode xattr: invalid ea_ino [ 145.080402][ T28] audit: type=1326 audit(1755230841.540:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 145.111314][ T7760] EXT4-fs error (device loop4): ext4_quota_enable:7132: comm syz.4.696: Bad quota inode: 3, type: 0 [ 145.135919][ T7760] EXT4-fs warning (device loop4): ext4_enable_quotas:7173: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 145.142211][ T7764] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.697: couldn't read orphan inode 15 (err -117) [ 145.176430][ T28] audit: type=1326 audit(1755230841.540:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 145.200765][ T7760] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 145.208922][ T7764] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 145.217103][ T7760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 145.252177][ T28] audit: type=1326 audit(1755230841.550:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facf018ebe9 code=0x7fc00000 [ 145.402461][ T7760] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.696: bg 0: block 64: padding at end of block bitmap is not set [ 145.505536][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.672453][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.714075][ T7790] loop2: detected capacity change from 0 to 1024 [ 145.845296][ T7790] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 145.894316][ T7790] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 145.994415][ T7790] EXT4-fs error (device loop2): ext4_free_blocks:6681: comm syz.2.705: Freeing blocks not in datazone - block = 0, count = 16 [ 146.062609][ T7790] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 146.275210][ T55] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 146.283262][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.467500][ T55] usb 4-1: Using ep0 maxpacket: 16 [ 146.485756][ T55] usb 4-1: config 4 has an invalid interface number: 51 but max is 0 [ 146.512562][ T55] usb 4-1: config 4 has no interface number 0 [ 146.518739][ T55] usb 4-1: config 4 interface 51 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 16 [ 146.570400][ T55] usb 4-1: config 4 interface 51 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 146.594990][ T55] usb 4-1: config 4 interface 51 has no altsetting 0 [ 146.625821][ T55] usb 4-1: New USB device found, idVendor=954f, idProduct=4199, bcdDevice= f.76 [ 146.639494][ T55] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 146.650639][ T55] usb 4-1: Product: syz [ 146.660166][ T55] usb 4-1: Manufacturer: syz [ 146.666285][ T55] usb 4-1: SerialNumber: syz [ 146.699840][ T7804] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 146.710859][ T7804] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 146.983813][ T55] cdc_eem: probe of 4-1:4.51 failed with error -71 [ 147.016546][ T55] usb 4-1: USB disconnect, device number 7 [ 147.078669][ T7837] loop0: detected capacity change from 0 to 4096 [ 147.126857][ T7837] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 147.496349][ T7849] loop2: detected capacity change from 0 to 4096 [ 147.529852][ T7849] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 147.610420][ T7826] loop4: detected capacity change from 0 to 40427 [ 147.711517][ T7826] F2FS-fs (loop4): invalid crc value [ 147.757810][ T7826] F2FS-fs (loop4): Found nat_bits in checkpoint [ 147.792420][ T5899] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 147.934282][ T7826] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 147.991913][ T5899] usb 1-1: Using ep0 maxpacket: 16 [ 147.997299][ T55] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 148.012116][ T5899] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 148.048378][ T5899] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 148.063547][ T28] kauditd_printk_skb: 23 callbacks suppressed [ 148.063561][ T28] audit: type=1800 audit(1755230845.310:74): pid=7826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.717" name="file1" dev="loop4" ino=10 res=0 errno=0 [ 148.074781][ T5899] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 148.144127][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 148.175979][ T5899] usb 1-1: Product: syz [ 148.180293][ T5899] usb 1-1: Manufacturer: syz [ 148.195062][ T7063] syz-executor: attempt to access beyond end of device [ 148.195062][ T7063] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 148.213988][ T5899] usb 1-1: SerialNumber: syz [ 148.238167][ T7063] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 148.273596][ T55] usb 4-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 148.298044][ T55] usb 4-1: config 0 interface 0 altsetting 252 endpoint 0x81 has invalid wMaxPacketSize 0 [ 148.328066][ T55] usb 4-1: config 0 interface 0 has no altsetting 0 [ 148.360074][ T55] usb 4-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00 [ 148.390262][ T55] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.413446][ T55] usb 4-1: config 0 descriptor?? [ 148.710905][ T5899] usb 1-1: cannot find UAC_HEADER [ 148.838470][ T5899] snd-usb-audio: probe of 1-1:1.0 failed with error -22 [ 148.858929][ T55] uclogic 0003:5543:0064.000C: item fetching failed at offset 5/7 [ 148.883246][ T55] uclogic 0003:5543:0064.000C: parse failed [ 148.899590][ T55] uclogic: probe of 0003:5543:0064.000C failed with error -22 [ 148.937954][ T6807] udevd[6807]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 149.081166][ T55] usb 1-1: USB disconnect, device number 8 [ 149.099943][ T7881] loop4: detected capacity change from 0 to 512 [ 149.117906][ T5814] usb 4-1: USB disconnect, device number 8 [ 149.151393][ T7881] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 149.219368][ T7881] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 149.354618][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.924074][ T7913] loop4: detected capacity change from 0 to 256 [ 150.098903][ T7913] FAT-fs (loop4): Directory bread(block 64) failed [ 150.125005][ T7913] FAT-fs (loop4): Directory bread(block 65) failed [ 150.152283][ T7913] FAT-fs (loop4): Directory bread(block 66) failed [ 150.174101][ T7913] FAT-fs (loop4): Directory bread(block 67) failed [ 150.207102][ T7913] FAT-fs (loop4): Directory bread(block 68) failed [ 150.222321][ T7913] FAT-fs (loop4): Directory bread(block 69) failed [ 150.229009][ T7913] FAT-fs (loop4): Directory bread(block 70) failed [ 150.242988][ T7923] loop0: detected capacity change from 0 to 512 [ 150.270196][ T7923] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 150.297999][ T7913] FAT-fs (loop4): Directory bread(block 71) failed [ 150.333118][ T7913] FAT-fs (loop4): Directory bread(block 72) failed [ 150.340463][ T7913] FAT-fs (loop4): Directory bread(block 73) failed [ 150.364328][ T7923] EXT4-fs (loop0): 1 orphan inode deleted [ 150.370131][ T7923] EXT4-fs (loop0): 1 truncate cleaned up [ 150.443127][ T7923] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.557218][ T7923] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.0.739: path /166/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0 [ 150.648018][ T7923] EXT4-fs (loop0): Remounting filesystem read-only [ 150.650550][ T7903] loop2: detected capacity change from 0 to 32768 [ 150.762659][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.856962][ T7903] ialloc: diAlloc returned -5! [ 151.007934][ T111] ERROR: (device loop2): diUpdatePMap: the iag is outside the map [ 151.007934][ T111] [ 151.069673][ T111] ERROR: (device loop2): remounting filesystem as read-only [ 151.115792][ T7940] loop4: detected capacity change from 0 to 64 [ 151.158487][ T7940] hfs: hfs: Invalid key length: 94 [ 151.254635][ T7916] loop3: detected capacity change from 0 to 40427 [ 151.316964][ T7916] F2FS-fs (loop3): invalid crc value [ 151.340809][ T7063] hfs: node 4:3 still has 1 user(s)! [ 151.357570][ T7916] F2FS-fs (loop3): Found nat_bits in checkpoint [ 151.566691][ T7916] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 151.692809][ T965] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 151.738569][ T28] audit: type=1800 audit(1755230848.980:75): pid=7916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.737" name="file1" dev="loop3" ino=10 res=0 errno=0 [ 151.806688][ T5780] syz-executor: attempt to access beyond end of device [ 151.806688][ T5780] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 151.808357][ T5780] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 151.891883][ T965] usb 1-1: Using ep0 maxpacket: 16 [ 151.896023][ T965] usb 1-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 151.951790][ T965] usb 1-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 151.971954][ T965] usb 1-1: Product: syz [ 151.981789][ T965] usb 1-1: Manufacturer: syz [ 151.986443][ T965] usb 1-1: SerialNumber: syz [ 152.008260][ T965] usb 1-1: config 0 descriptor?? [ 152.400410][ T965] usb 1-1: USB disconnect, device number 9 [ 152.651233][ T7983] loop4: detected capacity change from 0 to 1024 [ 152.839668][ T59] hfsplus: b-tree write err: -5, ino 4 [ 153.518656][ T8016] macsec1: entered promiscuous mode [ 153.561854][ T8016] macsec1: entered allmulticast mode [ 153.778825][ T8027] netlink: 8 bytes leftover after parsing attributes in process `syz.4.769'. [ 153.799272][ T8029] loop0: detected capacity change from 0 to 512 [ 153.806060][ T8027] netlink: 4 bytes leftover after parsing attributes in process `syz.4.769'. [ 153.831404][ T8027] netlink: 'syz.4.769': attribute type 18 has an invalid length. [ 153.895548][ T8029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 153.985484][ T8029] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 154.286847][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.369342][ T8052] loop3: detected capacity change from 0 to 2048 [ 154.422351][ T8053] loop4: detected capacity change from 0 to 2048 [ 154.499340][ T8053] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.510355][ T8052] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 154.567311][ T8052] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.800438][ T8065] loop0: detected capacity change from 0 to 256 [ 154.832865][ T8065] exfat: Deprecated parameter 'utf8' [ 154.838247][ T8065] exfat: Deprecated parameter 'utf8' [ 154.861899][ T8065] exfat: Deprecated parameter 'utf8' [ 154.875840][ T8067] netlink: 8 bytes leftover after parsing attributes in process `syz.4.783'. [ 154.919215][ T8065] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 154.935653][ T8067] netlink: 12 bytes leftover after parsing attributes in process `syz.4.783'. [ 154.961840][ T8067] netlink: 'syz.4.783': attribute type 7 has an invalid length. [ 155.652332][ T8095] loop0: detected capacity change from 0 to 64 [ 156.156456][ T8110] loop0: detected capacity change from 0 to 256 [ 156.179881][ T8110] exfat: Deprecated parameter 'namecase' [ 156.195665][ T8110] exfat: Deprecated parameter 'utf8' [ 156.207244][ T8110] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 156.268502][ T8114] loop4: detected capacity change from 0 to 256 [ 156.313231][ T8114] exfat: Deprecated parameter 'namecase' [ 156.364970][ T8114] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 156.492361][ T8116] loop2: detected capacity change from 0 to 1024 [ 156.499831][ T8116] EXT4-fs: inline encryption not supported [ 156.530505][ T8118] netlink: 28 bytes leftover after parsing attributes in process `syz.0.807'. [ 156.539627][ T8116] EXT4-fs: Ignoring removed i_version option [ 156.565357][ T8116] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 156.595448][ T8101] loop3: detected capacity change from 0 to 40427 [ 156.608325][ T8116] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.806: lblock 2 mapped to illegal pblock 2 (length 1) [ 156.627721][ T8101] F2FS-fs (loop3): Invalid segment count (1) [ 156.635340][ T8116] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 156.660219][ T8101] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 156.696446][ T8116] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.806: lblock 0 mapped to illegal pblock 48 (length 1) [ 156.739382][ T8101] F2FS-fs (loop3): heap/no_heap options were deprecated [ 156.750208][ T8116] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 156.761654][ T8116] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.806: Failed to acquire dquot type 0 [ 156.783377][ T8101] F2FS-fs (loop3): invalid crc value [ 156.816231][ T8101] F2FS-fs (loop3): Found nat_bits in checkpoint [ 156.856646][ T8116] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 156.899118][ T8116] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.806: mark_inode_dirty error [ 156.939248][ T8116] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 156.979586][ T8116] EXT4-fs (loop2): 1 orphan inode deleted [ 156.979660][ T8101] F2FS-fs (loop3): Try to recover 1th superblock, ret: -30 [ 156.998955][ T8101] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 157.005068][ T8116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.235837][ T28] audit: type=1326 audit(1755230854.480:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.4.813" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5af6d8ebe9 code=0x0 [ 157.323118][ T8116] EXT4-fs: Ignoring removed orlov option [ 157.338590][ T8116] EXT4-fs (loop2): stripe (16) is not aligned with cluster size (4096), stripe is disabled [ 157.366462][ T8116] EXT4-fs (loop2): can't enable nombcache during remount [ 157.969489][ T8138] loop3: detected capacity change from 0 to 2048 [ 157.991724][ C0] sched: RT throttling activated [ 158.171557][ T8138] loop3: detected capacity change from 0 to 2048 [ 158.497630][ T8142] netlink: 8 bytes leftover after parsing attributes in process `syz.4.819'. [ 158.984138][ T11] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 159.024768][ T11] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 159.055677][ T11] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:0: Failed to release dquot type 0 [ 159.110537][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.154283][ T5777] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 159.205687][ T8129] loop0: detected capacity change from 0 to 262144 [ 159.211516][ T5777] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 159.284296][ T5777] EXT4-fs error (device loop2): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 159.295956][ T8129] F2FS-fs (loop0): Found nat_bits in checkpoint [ 159.349086][ T8129] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 159.541029][ T8148] loop3: detected capacity change from 0 to 32768 [ 159.573273][ T8148] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.822 (8148) [ 159.683755][ T8148] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 159.725200][ T8148] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 159.752953][ T8148] BTRFS info (device loop3): using free space tree [ 159.876311][ T8172] loop2: detected capacity change from 0 to 64 [ 159.952206][ T8172] hfs: hfs: Invalid key length: 94 [ 159.981866][ T8148] BTRFS info (device loop3): enabling ssd optimizations [ 159.994063][ T8148] BTRFS info (device loop3): auto enabling async discard [ 160.038150][ T5777] hfs: node 4:3 still has 1 user(s)! [ 160.355199][ T8185] loop2: detected capacity change from 0 to 8 [ 160.429563][ T5780] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 160.507828][ T8185] SQUASHFS error: Unable to read inode 0x87 [ 160.913714][ T8191] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 161.112091][ T9] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 161.325161][ T9] usb 3-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00 [ 161.341895][ T5814] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 161.360922][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.377819][ T9] usb 3-1: config 0 descriptor?? [ 161.398638][ T8201] netlink: 32 bytes leftover after parsing attributes in process `syz.0.837'. [ 161.517359][ T28] audit: type=1326 audit(1755230858.760:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.562934][ T5814] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 161.589763][ T28] audit: type=1326 audit(1755230858.780:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.597379][ T5814] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 161.658690][ T28] audit: type=1326 audit(1755230858.800:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.681180][ T5814] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 161.681233][ T5814] usb 4-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00 [ 161.681256][ T5814] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.704649][ T5814] usb 4-1: config 0 descriptor?? [ 161.788921][ T28] audit: type=1326 audit(1755230858.800:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.838483][ T9] macally 0003:060B:0001.000D: unknown main item tag 0x0 [ 161.851785][ T9] macally 0003:060B:0001.000D: unknown main item tag 0x0 [ 161.864674][ T28] audit: type=1326 audit(1755230858.800:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.892044][ T9] macally 0003:060B:0001.000D: unknown main item tag 0x0 [ 161.909396][ T9] macally 0003:060B:0001.000D: unknown main item tag 0x0 [ 161.919518][ T9] macally 0003:060B:0001.000D: unknown main item tag 0x0 [ 161.942685][ T28] audit: type=1326 audit(1755230858.800:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 161.972556][ T9] macally 0003:060B:0001.000D: hidraw0: USB HID v0.05 Device [HID 060b:0001] on usb-dummy_hcd.2-1/input0 [ 162.016870][ T28] audit: type=1326 audit(1755230858.800:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f019cd8ebe9 code=0x7ffc0000 [ 162.146022][ T5785] usb 3-1: USB disconnect, device number 6 [ 162.239597][ T5814] wacom 0003:056A:0027.000E: ignoring exceeding usage max [ 162.250323][ T8208] fido_id[8208]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 162.260572][ T5814] wacom 0003:056A:0027.000E: Unknown device_type for 'HID 056a:0027'. Assuming pen. [ 162.295513][ T5814] wacom 0003:056A:0027.000E: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.3-1/input0 [ 162.329905][ T5814] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0027.000E/input/input12 [ 162.493943][ T5814] usb 4-1: USB disconnect, device number 9 [ 162.527345][ T8199] loop4: detected capacity change from 0 to 40427 [ 162.610714][ T8199] F2FS-fs (loop4): invalid crc value [ 162.649322][ T8214] fido_id[8214]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory [ 162.698071][ T8199] F2FS-fs (loop4): Found nat_bits in checkpoint [ 162.886757][ T8199] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 162.925681][ T8225] loop0: detected capacity change from 0 to 128 [ 163.009489][ T28] audit: type=1800 audit(1755230860.250:84): pid=8225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.846" name="file1" dev="loop0" ino=1048681 res=0 errno=0 [ 163.330935][ T8233] loop2: detected capacity change from 0 to 256 [ 163.357478][ T8231] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 163.385231][ T8233] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d) [ 163.616332][ T8239] netlink: 8 bytes leftover after parsing attributes in process `syz.4.848'. [ 163.635063][ T8239] netlink: 4 bytes leftover after parsing attributes in process `syz.4.848'. [ 163.655261][ T8239] netlink: 'syz.4.848': attribute type 19 has an invalid length. [ 163.673914][ T8239] netlink: 8 bytes leftover after parsing attributes in process `syz.4.848'. [ 163.725754][ T8241] loop2: detected capacity change from 0 to 512 [ 163.779480][ T8241] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c02c, mo2=0002] [ 163.837746][ T8246] loop4: detected capacity change from 0 to 4096 [ 163.845766][ T8241] System zones: 0-7 [ 163.849850][ T8246] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 163.869859][ T8241] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.936935][ T8241] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #14: comm syz.2.854: attempt to clear invalid blocks 1886221359 len 1 [ 163.973751][ T8241] EXT4-fs (loop2): Remounting filesystem read-only [ 164.153657][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.395208][ T8262] loop3: detected capacity change from 0 to 128 [ 164.411362][ T8262] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.420509][ T8262] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.466939][ T8262] EXT4-fs (loop3): Test dummy encryption mode enabled [ 164.528846][ T8262] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 164.559368][ T8262] ext4 filesystem being mounted at /205/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 164.705714][ T8262] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 ro. [ 164.707925][ T8272] tmpfs: Bad value for 'mpol' [ 164.743357][ T8262] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. [ 164.815448][ T5780] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 165.261924][ T5785] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 165.473006][ T5785] usb 3-1: Using ep0 maxpacket: 16 [ 165.484979][ T5785] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 165.516870][ T5785] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 165.537221][ T5785] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 165.571009][ T5785] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 165.602620][ T5785] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.635014][ T5785] usb 3-1: config 0 descriptor?? [ 166.096638][ T8319] netlink: 24 bytes leftover after parsing attributes in process `syz.4.890'. [ 166.149933][ T5785] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.000F/input/input15 [ 166.196126][ T5785] microsoft 0003:045E:07DA.000F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 166.434409][ T9] usb 3-1: USB disconnect, device number 7 [ 167.597401][ T8369] loop3: detected capacity change from 0 to 1024 [ 167.646253][ T8369] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.699770][ T8369] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.937721][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.159035][ T8374] loop0: detected capacity change from 0 to 32768 [ 168.256039][ T8393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.921'. [ 168.383899][ T8397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.923'. [ 168.476726][ T8399] netlink: 'syz.2.925': attribute type 7 has an invalid length. [ 168.495238][ T8399] netlink: 'syz.2.925': attribute type 8 has an invalid length. [ 169.102641][ T8416] loop2: detected capacity change from 0 to 1024 [ 169.201237][ T8404] loop0: detected capacity change from 0 to 32768 [ 169.242061][ T8404] XFS: attr2 mount option is deprecated. [ 169.310737][ T1312] hfsplus: b-tree write err: -5, ino 4 [ 169.330067][ T8404] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 169.511141][ T8435] loop3: detected capacity change from 0 to 4096 [ 169.531842][ T8435] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 169.555259][ T28] audit: type=1326 audit(1755230866.800:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.590922][ T8404] XFS (loop0): Ending clean mount [ 169.617057][ T28] audit: type=1326 audit(1755230866.820:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.671502][ T8404] XFS (loop0): Quotacheck needed: Please wait. [ 169.736282][ T28] audit: type=1326 audit(1755230866.820:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5af6d8d550 code=0x7ffc0000 [ 169.848657][ T28] audit: type=1326 audit(1755230866.830:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.877400][ T28] audit: type=1326 audit(1755230866.830:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.887292][ T8404] XFS (loop0): Quotacheck: Done. [ 169.900805][ T28] audit: type=1326 audit(1755230866.830:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.940368][ T28] audit: type=1326 audit(1755230866.830:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 169.990559][ T8441] loop4: detected capacity change from 0 to 4096 [ 170.011015][ T28] audit: type=1326 audit(1755230866.830:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8436 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x7ffc0000 [ 170.130323][ T8441] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 170.182111][ T8441] ntfs3: loop4: Failed to load $Extend (-22). [ 170.212130][ T8441] ntfs3: loop4: Failed to initialize $Extend. [ 170.339795][ T8441] ntfs3: loop4: ino=1b, "file0" directory corrupted [ 170.394761][ T5778] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 170.998300][ T8475] netlink: 96 bytes leftover after parsing attributes in process `syz.2.957'. [ 171.022481][ T8475] netlink: 64 bytes leftover after parsing attributes in process `syz.2.957'. [ 171.534498][ T55] usb 3-1: new low-speed USB device number 8 using dummy_hcd [ 171.738825][ T55] usb 3-1: No LPM exit latency info found, disabling LPM. [ 171.747508][ T8488] loop4: detected capacity change from 0 to 32768 [ 171.756855][ T55] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 171.796070][ T8488] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.963 (8488) [ 171.830800][ T55] usb 3-1: config 1 interface 0 altsetting 195 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 171.859614][ T8488] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 171.879109][ T8488] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 171.884556][ T55] usb 3-1: config 1 interface 0 has no altsetting 0 [ 171.900351][ T8488] BTRFS info (device loop4): setting nodatacow, compression disabled [ 171.916546][ T55] usb 3-1: string descriptor 0 read error: -22 [ 171.932280][ T55] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 171.938803][ T8488] BTRFS info (device loop4): max_inline at 0 [ 171.960537][ T8488] BTRFS info (device loop4): enabling disk space caching [ 171.961800][ T55] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 171.991835][ T8488] BTRFS info (device loop4): turning off barriers [ 172.003625][ T55] usb 3-1: bad CDC descriptors [ 172.019782][ T8488] BTRFS info (device loop4): turning on flush-on-commit [ 172.040014][ T8488] BTRFS info (device loop4): doing ref verification [ 172.072617][ T8488] BTRFS info (device loop4): force clearing of disk cache [ 172.079840][ T8488] BTRFS info (device loop4): enabling ssd optimizations [ 172.120918][ T8488] BTRFS info (device loop4): max_inline at 0 [ 172.143652][ T8488] BTRFS info (device loop4): disk space caching is enabled [ 172.340896][ T8486] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 172.341646][ T8488] BTRFS info (device loop4): auto enabling async discard [ 172.355317][ T8486] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 172.372231][ T27] usb 3-1: USB disconnect, device number 8 [ 172.379839][ T8512] loop0: detected capacity change from 0 to 512 [ 172.431136][ T8488] BTRFS info (device loop4): rebuilding free space tree [ 172.457917][ T8512] EXT4-fs: Ignoring removed i_version option [ 172.515922][ T8512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.545067][ T8488] BTRFS info (device loop4): disabling free space tree [ 172.547934][ T8512] ext4 filesystem being mounted at /226/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 172.552859][ T8488] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 172.579470][ T8488] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 172.640061][ T8512] EXT4-fs (loop0): resizing filesystem from 128 to 1 blocks [ 172.650989][ T8512] EXT4-fs warning (device loop0): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 172.713466][ T5814] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 172.728184][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.828449][ T7063] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 172.952071][ T5814] usb 4-1: Using ep0 maxpacket: 8 [ 172.972320][ T5788] Bluetooth: hci3: command tx timeout [ 172.992471][ T5814] usb 4-1: config 0 interface 0 has no altsetting 0 [ 172.999170][ T5814] usb 4-1: New USB device found, idVendor=0c70, idProduct=f003, bcdDevice= 0.00 [ 173.062074][ T5814] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.123019][ T5814] usb 4-1: config 0 descriptor?? [ 173.522324][ T965] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 173.554709][ T5814] hid-generic 0003:0C70:F003.0010: unknown main item tag 0x0 [ 173.567920][ T8537] loop4: detected capacity change from 0 to 1764 [ 173.586168][ T5814] hid-generic 0003:0C70:F003.0010: hidraw0: USB HID v0.00 Device [HID 0c70:f003] on usb-dummy_hcd.3-1/input0 [ 173.722090][ T965] usb 1-1: Using ep0 maxpacket: 8 [ 173.741905][ T965] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 173.762008][ T965] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.770120][ T965] usb 1-1: Product: syz [ 173.791917][ T965] usb 1-1: Manufacturer: syz [ 173.796572][ T965] usb 1-1: SerialNumber: syz [ 173.820550][ T965] usb 1-1: config 0 descriptor?? [ 173.827009][ T5814] usb 4-1: USB disconnect, device number 10 [ 173.835051][ T965] gspca_main: se401-2.14.0 probing 047d:5003 [ 173.985702][ T28] audit: type=1326 audit(1755230871.220:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8550 comm="syz.2.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 173.994526][ T8551] loop2: detected capacity change from 0 to 512 [ 174.020497][ T28] audit: type=1326 audit(1755230871.230:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8550 comm="syz.2.982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f233e78ebe9 code=0x7ffc0000 [ 174.054181][ T8551] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 174.112890][ T8551] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 174.124317][ T8551] System zones: 0-2, 18-18, 34-34 [ 174.153457][ T8551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.172677][ T8551] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.262169][ T965] gspca_se401: Bayer format not supported! [ 174.381532][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.508794][ T965] usb 1-1: USB disconnect, device number 10 [ 174.553950][ T8563] loop2: detected capacity change from 0 to 256 [ 174.571453][ T8563] exfat: Deprecated parameter 'namecase' [ 174.612159][ T8563] exfat: Deprecated parameter 'utf8' [ 174.668879][ T8565] netlink: 52 bytes leftover after parsing attributes in process `syz.3.988'. [ 174.692789][ T8563] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 175.252555][ T8580] loop2: detected capacity change from 0 to 512 [ 175.349734][ T8580] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.392272][ T8580] ext4 filesystem being mounted at /276/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 175.497365][ T8580] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.994: corrupted inode contents [ 175.576312][ T8580] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.994: mark_inode_dirty error [ 175.588665][ T8580] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.994: corrupted inode contents [ 175.750198][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.979290][ T8596] loop2: detected capacity change from 0 to 256 [ 176.016776][ T8578] loop3: detected capacity change from 0 to 32768 [ 176.073030][ T8578] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 176.378247][ T8578] XFS (loop3): Ending clean mount [ 176.387555][ T8578] XFS (loop3): Quotacheck needed: Please wait. [ 176.446649][ T8578] XFS (loop3): Quotacheck: Done. [ 176.542026][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 176.542041][ T28] audit: type=1800 audit(1755230873.780:115): pid=8578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.995" name="file2" dev="loop3" ino=9287 res=0 errno=0 [ 176.742209][ T5780] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 177.403288][ T965] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 177.541930][ T5987] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 177.586943][ T8643] loop2: detected capacity change from 0 to 2048 [ 177.592137][ T965] usb 1-1: Using ep0 maxpacket: 8 [ 177.608187][ T965] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 177.627956][ T8643] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 177.642039][ T965] usb 1-1: config 1 has no interface number 1 [ 177.648205][ T965] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 177.662417][ T8646] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 177.673471][ T8643] syz.2.1020: attempt to access beyond end of device [ 177.673471][ T8643] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 177.714144][ T965] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 177.752423][ T965] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.760477][ T965] usb 1-1: Product: syz [ 177.773664][ T5987] usb 4-1: config 0 has no interfaces? [ 177.782571][ T5987] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 177.801809][ T965] usb 1-1: Manufacturer: syz [ 177.807027][ T5987] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 177.816163][ T965] usb 1-1: SerialNumber: syz [ 177.841216][ T5987] usb 4-1: Product: syz [ 177.848261][ T5987] usb 4-1: Manufacturer: syz [ 177.874029][ T5987] usb 4-1: config 0 descriptor?? [ 178.082894][ T965] usb 1-1: 2:1 : format type 0 is detected, processed as PCM [ 178.103074][ T8637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 178.105603][ T965] usb 1-1: 2:1 : sample bitwidth 243 in over sample bytes 3 [ 178.122461][ T8637] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 178.141302][ T965] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 178.152492][ T965] usb 1-1: 2:1 : invalid channels 0 [ 178.162607][ T5788] Bluetooth: hci2: unknown advertising packet type: 0x40 [ 178.162709][ T5788] Bluetooth: hci2: Malformed LE Event: 0x02 [ 178.179814][ T8650] loop2: detected capacity change from 0 to 512 [ 178.188720][ T27] usb 4-1: USB disconnect, device number 11 [ 178.204820][ T965] usb 1-1: USB disconnect, device number 11 [ 178.205196][ T8650] EXT4-fs: Ignoring removed i_version option [ 178.308570][ T5791] udevd[5791]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 178.379947][ T8650] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 178.423626][ T8650] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 178.428531][ T8645] loop4: detected capacity change from 0 to 32768 [ 178.452213][ T8645] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1021 (8645) [ 178.454877][ T8650] EXT4-fs (loop2): 1 truncate cleaned up [ 178.490649][ T8645] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 178.502158][ T8645] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 178.510859][ T8645] BTRFS info (device loop4): force clearing of disk cache [ 178.518860][ T8645] BTRFS info (device loop4): metadata ratio 0 [ 178.525115][ T8645] BTRFS info (device loop4): enabling ssd optimizations [ 178.532564][ T8645] BTRFS info (device loop4): using spread ssd allocation scheme [ 178.540230][ T8645] BTRFS info (device loop4): using free space tree [ 178.546401][ T8650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.817363][ T5777] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.847464][ T8645] BTRFS info (device loop4): auto enabling async discard [ 178.871196][ T8645] BTRFS info (device loop4): rebuilding free space tree [ 179.144324][ T8672] loop0: detected capacity change from 0 to 4096 [ 179.183411][ T8672] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 179.240232][ T1312] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 179.251814][ T5785] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 179.361522][ T8672] ntfs3: loop0: failed to convert "c46c" to macromanian [ 179.433859][ T5785] usb 3-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36 [ 179.443649][ T5785] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.466983][ T5785] usb 3-1: config 0 descriptor?? [ 179.492096][ T7063] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 179.787620][ T5785] kaweth 3-1:0.0: Firmware present in device. [ 179.958611][ T5785] kaweth 3-1:0.0: Statistics collection: 0 [ 179.974711][ T5785] kaweth 3-1:0.0: Multicast filter limit: 0 [ 179.977996][ T8692] loop0: detected capacity change from 0 to 256 [ 179.980642][ T5785] kaweth 3-1:0.0: MTU: 0 [ 179.980661][ T5785] kaweth 3-1:0.0: Read MAC address 00:00:00:00:00:00 [ 180.162386][ T5785] kaweth: probe of 3-1:0.0 failed with error -5 [ 180.193447][ T5785] usb 3-1: USB disconnect, device number 9 [ 180.609655][ T8704] loop3: detected capacity change from 0 to 64 [ 180.966177][ T8716] netlink: 'syz.0.1046': attribute type 3 has an invalid length. [ 181.020200][ T8716] netlink: 666 bytes leftover after parsing attributes in process `syz.0.1046'. [ 181.279762][ T8728] netlink: 232 bytes leftover after parsing attributes in process `syz.4.1053'. [ 181.836557][ T8736] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1057'. [ 182.018242][ T8738] loop4: detected capacity change from 0 to 512 [ 182.023575][ T8724] loop2: detected capacity change from 0 to 32768 [ 182.085544][ T8724] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 182.087811][ T8738] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 182.106628][ T8724] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 182.240783][ T8730] loop0: detected capacity change from 0 to 32768 [ 182.342183][ T28] audit: type=1800 audit(1755230879.580:116): pid=8730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1054" name="file1" dev="loop0" ino=4 res=0 errno=0 [ 182.382695][ T8724] XFS (loop2): Ending clean mount [ 182.464755][ T8724] XFS (loop2): Quotacheck needed: Please wait. [ 182.599726][ T8724] XFS (loop2): Quotacheck: Done. [ 182.616286][ T8751] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1060'. [ 182.652487][ T8751] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1060'. [ 182.843617][ T5777] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 183.126422][ T8757] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1064'. [ 183.140862][ T8757] netlink: 'syz.0.1064': attribute type 5 has an invalid length. [ 183.351312][ T8763] loop4: detected capacity change from 0 to 64 [ 183.644015][ T8769] sp0: Synchronizing with TNC [ 184.297723][ T8765] loop2: detected capacity change from 0 to 32768 [ 184.333021][ T5785] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 184.345848][ T8771] loop4: detected capacity change from 0 to 32768 [ 184.387486][ T8765] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 184.520931][ T8765] XFS (loop2): Ending clean mount [ 184.522020][ T5785] usb 1-1: Using ep0 maxpacket: 32 [ 184.566022][ T5785] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 184.602896][ T8765] XFS (loop2): Quotacheck needed: Please wait. [ 184.628445][ T5785] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 184.646268][ T5785] usb 1-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 184.674911][ T5785] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 184.697910][ T8765] XFS (loop2): Quotacheck: Done. [ 184.713136][ T5785] usb 1-1: config 0 descriptor?? [ 184.898928][ T5777] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 185.192227][ T5785] aquacomputer_d5next 0003:0C70:F0B6.0011: hidraw0: USB HID vff.fc Device [HID 0c70:f0b6] on usb-dummy_hcd.0-1/input0 [ 185.363920][ T55] usb 1-1: USB disconnect, device number 12 [ 185.442220][ T5814] usb 5-1: new full-speed USB device number 4 using dummy_hcd [ 185.645521][ T5814] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 185.656837][ T5814] usb 5-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00 [ 185.666976][ T5814] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.682844][ T5814] usb 5-1: config 0 descriptor?? [ 185.692562][ T8788] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 185.731979][ T5785] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 185.914369][ T5785] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 185.931855][ T5785] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.967982][ T5785] usb 3-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 185.997453][ T5785] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 186.036523][ T5785] usb 3-1: config 0 descriptor?? [ 186.154028][ T5814] belkin 0003:050D:3201.0012: unbalanced collection at end of report description [ 186.167380][ T5814] belkin 0003:050D:3201.0012: parse failed [ 186.192407][ T5814] belkin: probe of 0003:050D:3201.0012 failed with error -22 [ 186.387839][ T5814] usb 5-1: USB disconnect, device number 4 [ 186.677971][ T5785] razer 0003:1532:010E.0013: failed to enable macro keys: -71 [ 186.698165][ T5785] razer 0003:1532:010E.0013: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.2-1/input0 [ 186.731143][ T5785] usb 3-1: USB disconnect, device number 10 [ 186.790619][ T8795] loop0: detected capacity change from 0 to 40427 [ 186.840382][ T8796] fido_id[8796]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 186.843049][ T8795] F2FS-fs (loop0): Found nat_bits in checkpoint [ 186.998455][ T8795] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 187.072176][ T8795] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 187.117605][ T8802] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1078'. [ 187.162080][ T28] audit: type=1800 audit(1755230884.400:117): pid=8795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1077" name="file1" dev="loop0" ino=10 res=0 errno=0 [ 187.221611][ T5778] syz-executor: attempt to access beyond end of device [ 187.221611][ T5778] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 187.244346][ T5778] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 188.098005][ T8808] loop4: detected capacity change from 0 to 32768 [ 188.138733][ T8808] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1082 (8808) [ 188.265090][ T8808] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 188.286477][ T8808] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 188.303271][ T8808] BTRFS info (device loop4): using free space tree [ 188.460822][ T8808] BTRFS info (device loop4): enabling ssd optimizations [ 188.481822][ T8808] BTRFS info (device loop4): auto enabling async discard [ 188.612123][ T7063] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 188.721621][ T8839] loop0: detected capacity change from 0 to 8192 [ 188.731072][ T8844] loop2: detected capacity change from 0 to 4096 [ 188.816143][ T8845] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 188.843598][ T8839] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 188.882551][ T8839] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 188.895906][ T6807] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by udevd (6807) [ 188.902845][ T8839] REISERFS (device loop0): using journaled data mode [ 188.985163][ T8839] reiserfs: using flush barriers [ 189.091262][ T8839] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 189.212685][ T8839] REISERFS (device loop0): checking transaction log (loop0) [ 189.271919][ T8839] REISERFS (device loop0): Using r5 hash to sort names [ 189.279183][ T8839] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 189.331208][ T8839] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 189.580363][ T8855] loop4: detected capacity change from 0 to 128 [ 189.660354][ T8855] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 189.722328][ T8855] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 189.830884][ T8855] overlayfs: failed to create directory ./file0/work (errno: 28); mounting read-only [ 189.876130][ T8855] overlayfs: failed to get uuid (/file4, err=-95); falling back to uuid=null. [ 189.948609][ T8861] loop0: detected capacity change from 0 to 128 [ 190.008688][ T8864] loop2: detected capacity change from 0 to 164 [ 190.037242][ T8861] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 190.177760][ T8861] ext4 filesystem being mounted at /264/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 190.219617][ T8861] EXT4-fs warning (device loop0): ext4_group_add:1742: No reserved GDT blocks, can't resize [ 190.340838][ T5778] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 190.394536][ T8869] netlink: 'syz.2.1101': attribute type 6 has an invalid length. [ 190.698909][ T8877] loop4: detected capacity change from 0 to 256 [ 190.795913][ T8877] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 191.353357][ T8875] loop0: detected capacity change from 0 to 32768 [ 191.370660][ T8875] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 scanned by syz.0.1104 (8875) [ 191.428712][ T8875] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 191.462060][ T8875] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 191.491857][ T8875] BTRFS info (device loop0): allowing degraded mounts [ 191.514856][ T8875] BTRFS info (device loop0): using free space tree [ 191.541957][ T5790] Bluetooth: hci0: command 0x0406 tx timeout [ 191.548041][ T5790] Bluetooth: hci2: command 0x0406 tx timeout [ 191.554232][ T5793] Bluetooth: hci1: command 0x0406 tx timeout [ 191.668281][ T8875] BTRFS info (device loop0): enabling ssd optimizations [ 191.714100][ T8875] BTRFS info (device loop0): auto enabling async discard [ 191.996179][ T5778] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 192.130401][ T28] audit: type=1326 audit(1755230889.370:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8910 comm="syz.4.1114" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5af6d8ebe9 code=0x0 [ 192.196219][ T6807] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 10 /dev/loop0 scanned by udevd (6807) [ 193.601823][ T5785] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 193.797406][ T5785] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 193.815504][ T5785] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.845278][ T5785] usb 1-1: config 0 descriptor?? [ 193.857544][ T5785] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 194.268237][ T5785] gspca_cpia1: usb_control_msg 03, error -32 [ 194.278184][ T5785] gspca_cpia1: usb_control_msg 03, error -71 [ 194.287500][ T5785] gspca_cpia1: usb_control_msg 01, error -71 [ 194.296089][ T5785] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0) [ 194.310064][ T5785] usb 1-1: USB disconnect, device number 13 [ 194.581813][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.588164][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.853431][ T8968] loop4: detected capacity change from 0 to 512 [ 194.866073][ T8968] EXT4-fs: Ignoring removed i_version option [ 194.893563][ T8968] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 194.943504][ T8968] EXT4-fs (loop4): 1 truncate cleaned up [ 194.950468][ T8968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.081473][ T8975] sp0: Synchronizing with TNC [ 195.181303][ T8968] [ 195.183686][ T8968] ====================================================== [ 195.190723][ T8968] WARNING: possible circular locking dependency detected [ 195.197766][ T8968] 6.6.101-syzkaller #0 Not tainted [ 195.202888][ T8968] ------------------------------------------------------ [ 195.209945][ T8968] syz.4.1137/8968 is trying to acquire lock: [ 195.215933][ T8968] ffff888078375e10 (&sb->s_type->i_mutex_key#8/1){+.+.}-{3:3}, at: ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 195.227816][ T8968] [ 195.227816][ T8968] but task is already holding lock: [ 195.235193][ T8968] ffff8880782e1688 (&ei->i_data_sem/3){++++}-{3:3}, at: ext4_setattr+0x15fa/0x1c90 [ 195.244548][ T8968] [ 195.244548][ T8968] which lock already depends on the new lock. [ 195.244548][ T8968] [ 195.254981][ T8968] [ 195.254981][ T8968] the existing dependency chain (in reverse order) is: [ 195.264023][ T8968] [ 195.264023][ T8968] -> #1 (&ei->i_data_sem/3){++++}-{3:3}: [ 195.271886][ T8968] down_write+0x97/0x1f0 [ 195.276677][ T8968] ext4_xattr_inode_lookup_create+0x15fe/0x1d80 [ 195.283472][ T8968] ext4_xattr_ibody_set+0x202/0x6a0 [ 195.289218][ T8968] ext4_xattr_set_handle+0xaad/0x1290 [ 195.295138][ T8968] ext4_xattr_set+0x22d/0x320 [ 195.300362][ T8968] __vfs_setxattr+0x431/0x470 [ 195.305589][ T8968] __vfs_setxattr_noperm+0x12d/0x5e0 [ 195.311428][ T8968] vfs_setxattr+0x16c/0x2f0 [ 195.316486][ T8968] path_setxattr+0x362/0x550 [ 195.321638][ T8968] __x64_sys_lsetxattr+0xb8/0xd0 [ 195.327117][ T8968] do_syscall_64+0x55/0xb0 [ 195.332076][ T8968] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 195.338517][ T8968] [ 195.338517][ T8968] -> #0 (&sb->s_type->i_mutex_key#8/1){+.+.}-{3:3}: [ 195.347340][ T8968] __lock_acquire+0x2ddb/0x7c80 [ 195.352733][ T8968] lock_acquire+0x197/0x410 [ 195.357781][ T8968] down_write+0x97/0x1f0 [ 195.362565][ T8968] ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 195.369363][ T8968] ext4_xattr_block_set+0x23e/0x32a0 [ 195.375202][ T8968] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 195.381663][ T8968] __ext4_expand_extra_isize+0x306/0x400 [ 195.387847][ T8968] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 195.393856][ T8968] ext4_setattr+0x1673/0x1c90 [ 195.399089][ T8968] notify_change+0xb0d/0xe10 [ 195.404222][ T8968] do_truncate+0x19b/0x220 [ 195.409180][ T8968] path_openat+0x298c/0x3190 [ 195.414319][ T8968] do_filp_open+0x1c5/0x3d0 [ 195.419373][ T8968] do_sys_openat2+0x12c/0x1c0 [ 195.424602][ T8968] __x64_sys_openat+0x139/0x160 [ 195.430004][ T8968] do_syscall_64+0x55/0xb0 [ 195.434959][ T8968] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 195.441407][ T8968] [ 195.441407][ T8968] other info that might help us debug this: [ 195.441407][ T8968] [ 195.451649][ T8968] Possible unsafe locking scenario: [ 195.451649][ T8968] [ 195.459109][ T8968] CPU0 CPU1 [ 195.464486][ T8968] ---- ---- [ 195.469864][ T8968] lock(&ei->i_data_sem/3); [ 195.474479][ T8968] lock(&sb->s_type->i_mutex_key#8/1); [ 195.482578][ T8968] lock(&ei->i_data_sem/3); [ 195.489710][ T8968] lock(&sb->s_type->i_mutex_key#8/1); [ 195.495301][ T8968] [ 195.495301][ T8968] *** DEADLOCK *** [ 195.495301][ T8968] [ 195.503457][ T8968] 5 locks held by syz.4.1137/8968: [ 195.508577][ T8968] #0: ffff88802f29a418 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 195.517766][ T8968] #1: ffff8880782e1810 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: do_truncate+0x187/0x220 [ 195.528083][ T8968] #2: ffff8880782e19a0 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_setattr+0xef3/0x1c90 [ 195.538318][ T8968] #3: ffff8880782e1688 (&ei->i_data_sem/3){++++}-{3:3}, at: ext4_setattr+0x15fa/0x1c90 [ 195.548113][ T8968] #4: ffff8880782e14c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 195.558509][ T8968] [ 195.558509][ T8968] stack backtrace: [ 195.564420][ T8968] CPU: 1 PID: 8968 Comm: syz.4.1137 Not tainted 6.6.101-syzkaller #0 [ 195.572504][ T8968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 195.582588][ T8968] Call Trace: [ 195.585879][ T8968] [ 195.588826][ T8968] dump_stack_lvl+0x16c/0x230 [ 195.593528][ T8968] ? load_image+0x3b0/0x3b0 [ 195.598056][ T8968] ? show_regs_print_info+0x20/0x20 [ 195.603288][ T8968] ? print_circular_bug+0x12b/0x1a0 [ 195.608513][ T8968] check_noncircular+0x2bd/0x3c0 [ 195.613479][ T8968] ? print_deadlock_bug+0x5d0/0x5d0 [ 195.618695][ T8968] ? lockdep_lock+0xe0/0x220 [ 195.623315][ T8968] __lock_acquire+0x2ddb/0x7c80 [ 195.628199][ T8968] ? verify_lock_unused+0x140/0x140 [ 195.633431][ T8968] lock_acquire+0x197/0x410 [ 195.637958][ T8968] ? ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 195.644399][ T8968] ? __might_sleep+0xe0/0xe0 [ 195.649011][ T8968] ? read_lock_is_recursive+0x20/0x20 [ 195.654403][ T8968] ? dquot_free_inode+0x871/0xa00 [ 195.659457][ T8968] ? ext4_mark_iloc_dirty+0x67c/0x1ca0 [ 195.664945][ T8968] down_write+0x97/0x1f0 [ 195.669212][ T8968] ? ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 195.675662][ T8968] ? down_read_killable+0x340/0x340 [ 195.680885][ T8968] ? ext4_get_dquots+0xd/0x20 [ 195.685596][ T8968] ? dquot_drop+0x135/0x160 [ 195.690126][ T8968] ext4_xattr_inode_lookup_create+0x1917/0x1d80 [ 195.696405][ T8968] ? mark_lock+0x94/0x320 [ 195.700762][ T8968] ? ext4_xattr_ibody_set+0x6a0/0x6a0 [ 195.706165][ T8968] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 195.712254][ T8968] ? lock_chain_count+0x20/0x20 [ 195.717146][ T8968] ? ext4_xattr_block_set+0xd6/0x32a0 [ 195.722548][ T8968] ext4_xattr_block_set+0x23e/0x32a0 [ 195.727864][ T8968] ? __might_sleep+0xe0/0xe0 [ 195.732486][ T8968] ? ext4_xattr_inode_get+0x1a9/0x310 [ 195.737888][ T8968] ? __getblk_gfp+0x54/0x660 [ 195.742514][ T8968] ? ext4_xattr_block_find+0x350/0x350 [ 195.748005][ T8968] ? ext4_xattr_block_find+0x2d4/0x350 [ 195.753492][ T8968] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 195.759436][ T8968] __ext4_expand_extra_isize+0x306/0x400 [ 195.765108][ T8968] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 195.770601][ T8968] ext4_setattr+0x1673/0x1c90 [ 195.775315][ T8968] ? ext4_write_inode+0x550/0x550 [ 195.780369][ T8968] notify_change+0xb0d/0xe10 [ 195.784986][ T8968] do_truncate+0x19b/0x220 [ 195.789428][ T8968] ? put_page_bootmem+0x2c0/0x2c0 [ 195.794473][ T8968] ? apparmor_file_truncate+0x23f/0x2d0 [ 195.800040][ T8968] ? ima_bprm_check+0x1f0/0x1f0 [ 195.805006][ T8968] path_openat+0x298c/0x3190 [ 195.809729][ T8968] ? do_filp_open+0x3d0/0x3d0 [ 195.814494][ T8968] do_filp_open+0x1c5/0x3d0 [ 195.819029][ T8968] ? vfs_tmpfile+0x490/0x490 [ 195.823653][ T8968] ? _raw_spin_unlock+0x28/0x40 [ 195.828526][ T8968] ? alloc_fd+0x58f/0x630 [ 195.832882][ T8968] do_sys_openat2+0x12c/0x1c0 [ 195.837580][ T8968] ? do_sys_open+0xe0/0xe0 [ 195.842020][ T8968] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 195.848025][ T8968] ? lock_chain_count+0x20/0x20 [ 195.852902][ T8968] __x64_sys_openat+0x139/0x160 [ 195.857781][ T8968] do_syscall_64+0x55/0xb0 [ 195.862477][ T8968] ? clear_bhb_loop+0x40/0x90 [ 195.867345][ T8968] ? clear_bhb_loop+0x40/0x90 [ 195.872045][ T8968] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 195.877971][ T8968] RIP: 0033:0x7f5af6d8ebe9 [ 195.882414][ T8968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.902052][ T8968] RSP: 002b:00007f5af7bc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 195.910490][ T8968] RAX: ffffffffffffffda RBX: 00007f5af6fb5fa0 RCX: 00007f5af6d8ebe9 [ 195.918482][ T8968] RDX: 0000000000000242 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 195.926474][ T8968] RBP: 00007f5af6e11e19 R08: 0000000000000000 R09: 0000000000000000 [ 195.934468][ T8968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.942462][ T8968] R13: 00007f5af6fb6038 R14: 00007f5af6fb5fa0 R15: 00007ffe537c71c8 [ 195.950461][ T8968] [ 196.063215][ T7063] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.