last executing test programs: 3.836286726s ago: executing program 0 (id=3938): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000180)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c00598f2f223a0a12f76404ad3bd59a04fbd75d1008c039c51a2a013e63af1c9ed7416faa1e2ea98d0f1c7337a5c81920988a4299a77054cdb12285fd7a0e5b43382d962372b73042593a5bd6b7db4a1b3721c62f11018727c29f3a1bd1e554474ea0d1da2a20b205df342a04a34b65e16a23e8e7811a984963073ebcbead85f9e4332bdef4c1ce54a1c6f7a47b75aa95b9e8cb616be40a0000b1309ee426d1803ef09abb9509846c34b9ac0bf109cedbd12c850effda9ae677566159f9c83da7ff6e247e3ac43c0a663c8c83650692e474bac2c047b238601bd5187d6bed82fe2034512ef11b74a98252198c4402bcf3165561157678e9d50831c27d1094a04d8c7607d7164033cda7a8170482"], 0x1, 0x4446, &(0x7f00000088c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) pwritev2(r0, &(0x7f0000000400)=[{&(0x7f0000000540)="e4", 0x1}], 0x1, 0x8800000, 0x0, 0x0) 2.508274088s ago: executing program 0 (id=3947): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x2, 0x4) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000000100)) 2.39863304s ago: executing program 3 (id=3948): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000d"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfebd}, [@call={0x85, 0x0, 0x0, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 2.181697623s ago: executing program 0 (id=3951): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f00000000c0)='\x00', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}}, 0x1c) 2.126685355s ago: executing program 3 (id=3952): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x4, 0x4) 1.920077798s ago: executing program 1 (id=3954): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xa, &(0x7f0000000000)=@raw=[@map_fd={0x18, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0xfffff7c6}, @alu={0x4, 0x1, 0x6, 0x6, 0xa, 0x20, 0xfffffffffffffff0}, @ldst={0x1, 0x3, 0x4, 0x4, 0x0, 0x1, 0x8}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x7fff}, @map_fd={0x18, 0x6}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[]) 1.892718488s ago: executing program 0 (id=3955): r0 = semget$private(0x0, 0x4000000009, 0x0) semop(r0, &(0x7f0000000680)=[{0x4, 0x5, 0xc00}, {0x4, 0xfff8}], 0x2) semop(r0, &(0x7f0000000000)=[{0x0, 0x8b31, 0x1000}, {0x3, 0x9, 0x800}], 0x2) 1.78202129s ago: executing program 3 (id=3956): r0 = socket$inet(0x2, 0x3, 0x6) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @dev}}) ioctl$sock_inet_SIOCSARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x0, @local}, 0x4a, {0x2, 0x0, @multicast2}, 'syz_tun\x00'}) 1.712059202s ago: executing program 1 (id=3958): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000005c0), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002ab97000ffdbdf25040000000800020005000000080007007f0000e0070008"], 0x2c}, 0x1, 0x0, 0x0, 0x4000010}, 0x24004854) 1.575357293s ago: executing program 1 (id=3960): syz_mount_image$jfs(&(0x7f0000000040), &(0x7f0000000240)='./file7\x00', 0x803, &(0x7f0000000280)=ANY=[@ANYRES8=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="d77668d5c4ae49c8c2b70f72fa6c1c49c40754b9e0fd092738e81ffb6eb1eefeac3d858552e95c2dca86be4cf465f524a0c72afb6390bfd3eb2d650088ba981a85db0ca4", @ANYRES16=0x0, @ANYRES32, @ANYRES64=0x0, @ANYBLOB="23c1b81594cc327df586683b21b739b1e3c8b8368ca75e2163af26609775700909ef447912aa2b0b8e9f8b0b94f900c7b26535537dbc4049fa776e4a4a7118426760ceba481a2508076f392d43795db353dd07f7fe51d4175126792c"], 0x2, 0x6035, &(0x7f00000151c0)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 1.523892924s ago: executing program 3 (id=3961): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200080, &(0x7f0000000000)={[{@errors_remount}, {@noload}, {@bsdgroups}]}, 0x4, 0x56d, &(0x7f0000000c00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) fsetxattr$system_posix_acl(r0, &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000280)={{}, {}, [], {}, [], {0x10, 0x6}}, 0x24, 0x2) 1.523411814s ago: executing program 2 (id=3962): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) capset(&(0x7f0000000000)={0x20071026}, &(0x7f00000003c0)={0x0, 0x8004}) ioctl$sock_netdev_private(r0, 0x8943, &(0x7f0000000280)) 1.428313096s ago: executing program 2 (id=3963): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000002c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@sb={'sb', 0x3d, 0x1}}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x10b142, 0x1fe) fallocate(r0, 0x10, 0x800008fff, 0x7fff) 1.16064853s ago: executing program 3 (id=3964): r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000380)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce\x14///\x00\x00\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b, priority 10 [ 338.140754][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/775.tmp-b7:2' failed: Read-only file system [ 338.162604][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/770.tmp-b7:3' failed: Read-only file system [ 338.209816][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/770.tmp-b7:3' failed: Read-only file system [ 338.235417][T13747] loop2: detected capacity change from 0 to 512 [ 338.248377][T13747] EXT4-fs: Ignoring removed bh option [ 338.265200][T13747] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 338.312488][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/777.tmp-b7:2' failed: Read-only file system [ 338.339626][T13747] EXT4-fs (loop2): 1 truncate cleaned up [ 338.356769][T13747] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 338.380983][T13751] printk: syz.3.3398 (13751): Attempt to access syslog with CAP_SYS_ADMIN but no CAP_SYSLOG (deprecated). [ 338.381052][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-label/\x86\x5b.tmp-b7:2' failed: Read-only file system [ 338.431293][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 338.509901][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 338.523539][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/777.tmp-b7:2' failed: Read-only file system [ 338.565472][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-label/\x86\x5b.tmp-b7:2' failed: Read-only file system [ 338.590979][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.619922][T13739] loop1: detected capacity change from 0 to 32768 [ 338.732314][T13739] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 338.840522][T13739] XFS (loop1): Ending clean mount [ 338.869592][T13739] XFS (loop1): Quotacheck needed: Please wait. [ 338.974638][T13739] XFS (loop1): Quotacheck: Done. [ 339.120708][ T5778] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 339.177513][ T23] tipc: Node number set to 2886997007 [ 339.266942][T13779] loop2: detected capacity change from 0 to 4096 [ 339.287350][T13779] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 339.540815][T13783] loop0: detected capacity change from 0 to 4096 [ 339.649558][T13783] ntfs3: loop0: failed to convert "0080" to koi8-r [ 339.695558][T13783] ntfs3: loop0: failed to convert name for inode 1e. [ 339.787173][ T23] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 339.845155][T13789] tipc: New replicast peer: 255.255.255.255 [ 339.855466][T13789] tipc: Enabled bearer , priority 10 [ 339.992622][ T23] usb 4-1: config 0 has an invalid interface number: 64 but max is 0 [ 340.004972][ T23] usb 4-1: config 0 has no interface number 0 [ 340.020170][ T23] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 340.039827][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 340.057210][ T23] usb 4-1: Product: syz [ 340.067408][ T23] usb 4-1: Manufacturer: syz [ 340.077582][ T23] usb 4-1: SerialNumber: syz [ 340.089694][ T23] usb 4-1: config 0 descriptor?? [ 340.204926][T13801] loop2: detected capacity change from 0 to 512 [ 340.229423][T13801] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 340.291129][T13801] EXT4-fs (loop2): 1 truncate cleaned up [ 340.311063][T13801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.363160][ T23] usb 4-1: Found UVC 0.08 device syz (046d:0823) [ 340.394855][ T23] usb 4-1: No valid video chain found. [ 340.400924][T13801] EXT4-fs error (device loop2): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.2.3423: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 340.412653][ T23] usb 4-1: USB disconnect, device number 23 [ 340.431314][T13801] EXT4-fs (loop2): Remounting filesystem read-only [ 340.452207][T13801] EXT4-fs warning (device loop2): ext4_rename_delete:3778: inode #2: comm syz.2.3423: Deleting old file: nlink 4, error=-117 [ 340.507253][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.030736][T13824] netlink: 209824 bytes leftover after parsing attributes in process `syz.3.3433'. [ 341.084368][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 341.379786][T13835] loop0: detected capacity change from 0 to 1024 [ 341.427778][T13835] EXT4-fs: inline encryption not supported [ 341.445224][T13835] EXT4-fs: Ignoring removed i_version option [ 341.481443][T13835] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 341.568826][T13835] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm syz.0.3436: lblock 2 mapped to illegal pblock 2 (length 1) [ 341.634397][T13835] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 341.676256][T13835] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 48: comm syz.0.3436: lblock 0 mapped to illegal pblock 48 (length 1) [ 341.740634][T13835] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.3436: Failed to acquire dquot type 0 [ 341.779750][T13835] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 341.811421][T13835] EXT4-fs error (device loop0): ext4_evict_inode:252: inode #11: comm syz.0.3436: mark_inode_dirty error [ 341.830732][T13827] loop2: detected capacity change from 0 to 32768 [ 341.837668][T13835] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 341.849618][T13835] EXT4-fs (loop0): 1 orphan inode deleted [ 341.855503][T13827] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.3431 (13827) [ 341.870714][ T76] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1) [ 341.871611][T13835] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 341.910368][T13827] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 341.935350][ T76] __quota_error: 1 callbacks suppressed [ 341.935366][ T76] Quota error (device loop0): remove_tree: Can't read quota data block 1 [ 341.945049][T13827] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 341.997352][T13827] BTRFS info (device loop2): using free space tree [ 342.004731][ T76] EXT4-fs error (device loop0): ext4_release_dquot:6974: comm kworker/u4:5: Failed to release dquot type 0 [ 342.058421][ T5770] usb 2-1: new full-speed USB device number 19 using dummy_hcd [ 342.108102][ T76] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm kworker/u4:5: lblock 2 mapped to illegal pblock 2 (length 1) [ 342.184387][ T76] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 342.193399][ T76] EXT4-fs error (device loop0): ext4_write_dquot:6918: comm kworker/u4:5: Failed to commit dquot type 0 [ 342.205928][T13827] BTRFS info (device loop2): enabling ssd optimizations [ 342.217681][T13827] BTRFS info (device loop2): auto enabling async discard [ 342.242161][ T12] BTRFS warning (device loop2): checksum verify failed on logical 5267456 mirror 1 wanted 0xd975d843 found 0x5347a4a8 level 0 [ 342.250353][ T76] Quota error (device loop0): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync! [ 342.270058][ T5770] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 342.287590][T13827] BTRFS warning (device loop2): failed to read fs tree: -5 [ 342.290681][ T5770] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00 [ 342.305171][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.308515][ T5770] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.328903][ T5779] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 342.360802][ T5770] usb 2-1: config 0 descriptor?? [ 342.378860][ T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 342.415143][ T5779] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 342.473872][T13827] BTRFS error (device loop2): open_ctree failed: -5 [ 342.484283][ T5779] EXT4-fs error (device loop0): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 343.009223][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/790.tmp-b7:0' failed: Read-only file system [ 343.041030][ T5770] usb 2-1: string descriptor 0 read error: -71 [ 343.052122][ T5770] uclogic 0003:5543:006E.001B: failed retrieving string descriptor #200: -71 [ 343.080952][ T5770] uclogic 0003:5543:006E.001B: failed retrieving pen parameters: -71 [ 343.089647][ T5792] udevd[5792]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 343.090335][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/791.tmp-b7:2' failed: Read-only file system [ 343.111557][ T5770] uclogic 0003:5543:006E.001B: failed probing pen v2 parameters: -71 [ 343.126585][ T5770] uclogic 0003:5543:006E.001B: failed probing parameters: -71 [ 343.136066][ T5770] uclogic: probe of 0003:5543:006E.001B failed with error -71 [ 343.169914][ T5770] usb 2-1: USB disconnect, device number 19 [ 343.333375][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 343.335140][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/790.tmp-b7:0' failed: Read-only file system [ 343.391425][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/791.tmp-b7:2' failed: Read-only file system [ 343.454829][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/790.tmp-b7:0' failed: Read-only file system [ 343.474827][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 343.513896][T13883] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 343.591388][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 343.626306][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/790.tmp-b7:0' failed: Read-only file system [ 343.683078][T13891] loop0: detected capacity change from 0 to 64 [ 343.911003][T13899] loop0: detected capacity change from 0 to 256 [ 344.023669][T13899] FAT-fs (loop0): Directory bread(block 64) failed [ 344.040793][T13899] FAT-fs (loop0): Directory bread(block 65) failed [ 344.063509][T13899] FAT-fs (loop0): Directory bread(block 66) failed [ 344.083893][T13899] FAT-fs (loop0): Directory bread(block 67) failed [ 344.098831][T13899] FAT-fs (loop0): Directory bread(block 68) failed [ 344.116751][T13899] FAT-fs (loop0): Directory bread(block 69) failed [ 344.142516][T13899] FAT-fs (loop0): Directory bread(block 70) failed [ 344.155155][T13899] FAT-fs (loop0): Directory bread(block 71) failed [ 344.168574][T13899] FAT-fs (loop0): Directory bread(block 72) failed [ 344.175591][T13899] FAT-fs (loop0): Directory bread(block 73) failed [ 344.767176][ T787] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 344.783404][T13898] loop2: detected capacity change from 0 to 40427 [ 344.800551][T13898] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 344.812333][T13898] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 344.821573][T13898] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x7ffff [ 344.845233][T13898] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x6 [ 344.849550][T13924] loop0: detected capacity change from 0 to 128 [ 344.858951][T13898] F2FS-fs (loop2): invalid crc value [ 344.866612][T13924] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 344.885922][T13924] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 344.903097][T13898] F2FS-fs (loop2): Found nat_bits in checkpoint [ 344.993670][ T787] usb 2-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc [ 345.013746][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 345.037117][ T787] usb 2-1: Product: syz [ 345.041432][ T787] usb 2-1: Manufacturer: syz [ 345.076392][ T787] usb 2-1: SerialNumber: syz [ 345.099372][T13898] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 345.108368][ T787] usb 2-1: config 0 descriptor?? [ 345.116704][ T787] i2c-tiny-usb 2-1:0.0: version 6d.cc found at bus 002 address 020 [ 345.121003][T13898] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 345.263195][ T28] audit: type=1800 audit(1753401584.947:140): pid=13898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3459" name="file1" dev="loop2" ino=10 res=0 errno=0 [ 345.356399][T11502] syz-executor: attempt to access beyond end of device [ 345.356399][T11502] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 345.391588][T11502] F2FS-fs (loop2): Remounting filesystem read-only [ 345.736318][ T787] i2c i2c-1: failure reading functionality [ 345.766213][ T787] i2c i2c-1: connected i2c-tiny-usb device [ 345.776749][ T787] usb 2-1: USB disconnect, device number 20 [ 345.787179][ T5770] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 345.830763][T13946] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3481'. [ 346.009069][ T5770] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 346.037278][ T5770] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 346.058203][ T5770] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 346.074581][ T5770] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 346.084253][ T5770] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 346.099829][ T5770] usb 4-1: config 0 descriptor?? [ 346.542848][ T5770] plantronics 0003:047F:FFFF.001C: report is too long [ 346.562944][ T5770] plantronics 0003:047F:FFFF.001C: item 0 4 0 8 parsing failed [ 346.563753][T13966] loop1: detected capacity change from 0 to 256 [ 346.583016][ T5770] plantronics 0003:047F:FFFF.001C: parse failed [ 346.603617][ T5770] plantronics: probe of 0003:047F:FFFF.001C failed with error -22 [ 346.609938][T13966] FAT-fs (loop1): Directory bread(block 64) failed [ 346.631809][T13966] FAT-fs (loop1): Directory bread(block 65) failed [ 346.657883][T13966] FAT-fs (loop1): Directory bread(block 66) failed [ 346.674891][T13966] FAT-fs (loop1): Directory bread(block 67) failed [ 346.686944][T13966] FAT-fs (loop1): Directory bread(block 68) failed [ 346.711502][T13966] FAT-fs (loop1): Directory bread(block 69) failed [ 346.719702][T13966] FAT-fs (loop1): Directory bread(block 70) failed [ 346.726791][T13966] FAT-fs (loop1): Directory bread(block 71) failed [ 346.733967][T13966] FAT-fs (loop1): Directory bread(block 72) failed [ 346.736294][ T5770] usb 4-1: USB disconnect, device number 24 [ 346.741130][T13966] FAT-fs (loop1): Directory bread(block 73) failed [ 346.838365][ T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 346.943553][T13959] loop2: detected capacity change from 0 to 32768 [ 346.980822][T13959] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.3486 (13959) [ 347.026861][T13959] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 347.066431][T13959] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 347.087413][T13959] BTRFS info (device loop2): using free space tree [ 347.216428][T13959] BTRFS info (device loop2): enabling ssd optimizations [ 347.224923][T13959] BTRFS info (device loop2): auto enabling async discard [ 347.257156][ T8] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 347.460198][T11502] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 347.478701][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 347.500027][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 347.524392][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 347.540220][ T8] usb 1-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00 [ 347.551276][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 347.564893][ T8] usb 1-1: config 0 descriptor?? [ 348.014663][ T8] logitech 0003:046D:C29C.001D: unknown main item tag 0xe [ 348.028492][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 348.044410][ T8] logitech 0003:046D:C29C.001D: unknown main item tag 0x0 [ 348.064310][ T8] logitech 0003:046D:C29C.001D: unknown main item tag 0x0 [ 348.077385][ T8] logitech 0003:046D:C29C.001D: unexpected long global item [ 348.096461][ T8] logitech 0003:046D:C29C.001D: parse failed [ 348.114502][T14008] loop1: detected capacity change from 0 to 4096 [ 348.117678][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/803.tmp-b7:2' failed: Read-only file system [ 348.134877][ T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 348.156697][T14008] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 348.157266][ T8] logitech: probe of 0003:046D:C29C.001D failed with error -22 [ 348.192486][T14008] ntfs3: loop1: It is recommened to use chkdsk. [ 348.245926][ T8] usb 1-1: USB disconnect, device number 27 [ 348.263053][T14013] loop2: detected capacity change from 0 to 1024 [ 348.301958][T14013] EXT4-fs: inline encryption not supported [ 348.308668][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/776.tmp-b7:3' failed: Read-only file system [ 348.331246][T14013] EXT4-fs: Ignoring removed i_version option [ 348.341416][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/804.tmp-b7:1' failed: Read-only file system [ 348.362164][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 348.365477][T14013] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 348.392576][ T5792] udevd[5792]: symlink '../../loop2' '/dev/disk/by-diskseq/805.tmp-b7:2' failed: Read-only file system [ 348.405832][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-uuid/68CE0ED73BAA5F78.tmp-b7:1' failed: Read-only file system [ 348.433277][ T5792] udevd[5792]: symlink '../../loop2' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:2' failed: Read-only file system [ 348.434028][T14013] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.3505: lblock 2 mapped to illegal pblock 2 (length 1) [ 348.464880][T14008] ntfs3: loop1: failed to convert "076c" to cp857 [ 348.466634][T14013] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 348.478816][T14008] ntfs3: loop1: ino=5, "/" directory corrupted [ 348.481235][T14013] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.3505: lblock 0 mapped to illegal pblock 48 (length 1) [ 348.507336][T14013] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 348.537287][T14013] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3505: Failed to acquire dquot type 0 [ 348.541730][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/804.tmp-b7:1' failed: Read-only file system [ 348.567249][T14013] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 348.593263][T14013] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.3505: mark_inode_dirty error [ 348.642024][T14013] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 348.656499][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/804.tmp-b7:1' failed: Read-only file system [ 348.679021][T14013] EXT4-fs (loop2): 1 orphan inode deleted [ 348.696813][T14013] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 348.718147][ T58] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 348.762194][ T58] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 348.790004][ T58] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:4: Failed to release dquot type 0 [ 348.867752][ T58] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm kworker/u4:4: lblock 2 mapped to illegal pblock 2 (length 1) [ 348.923623][ T58] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 348.947466][ T58] EXT4-fs error (device loop2): ext4_write_dquot:6918: comm kworker/u4:4: Failed to commit dquot type 0 [ 348.982327][ T58] Quota error (device loop2): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync! [ 349.009394][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 349.042120][T11502] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 349.077028][T11502] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 349.101738][T11502] EXT4-fs error (device loop2): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 349.469158][T14015] loop3: detected capacity change from 0 to 40427 [ 349.509308][T14015] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 349.526795][T14015] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 349.534953][T14039] loop2: detected capacity change from 0 to 16 [ 349.536472][T14015] F2FS-fs (loop3): build fault injection attr: rate: 17008, type: 0x7ffff [ 349.554732][T14039] erofs: (device loop2): mounted with root inode @ nid 36. [ 349.574673][T14015] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x6 [ 349.657231][T14015] F2FS-fs (loop3): invalid crc value [ 349.675178][T11502] erofs: (device loop2): erofs_fill_dentries: bogus dirent @ nid 46 [ 349.705201][T11502] erofs: (device loop2): erofs_readdir: invalid de[0].nameoff 0 @ nid 89 [ 349.742216][T11502] erofs: (device loop2): erofs_readdir: invalid de[0].nameoff 0 @ nid 89 [ 349.770867][T14015] F2FS-fs (loop3): Found nat_bits in checkpoint [ 349.880208][T14029] loop1: detected capacity change from 0 to 32768 [ 349.913282][T14029] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.3513 (14029) [ 349.938931][T14015] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 349.946019][T14015] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 349.979023][T14029] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 349.994606][T14029] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 350.004255][T14029] BTRFS info (device loop1): using free space tree [ 350.062000][ T28] audit: type=1800 audit(1753401589.747:141): pid=14015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3506" name="file1" dev="loop3" ino=10 res=0 errno=0 [ 350.166119][ T5780] syz-executor: attempt to access beyond end of device [ 350.166119][ T5780] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 350.180997][ T5780] F2FS-fs (loop3): Remounting filesystem read-only [ 350.224942][T14029] BTRFS info (device loop1): enabling ssd optimizations [ 350.238299][T14029] BTRFS info (device loop1): auto enabling async discard [ 350.376723][ T28] audit: type=1800 audit(1753401590.057:142): pid=14029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3513" name="file1" dev="loop1" ino=260 res=0 errno=0 [ 350.579697][T14071] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3524'. [ 350.756646][ T5778] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 350.799283][T14046] loop2: detected capacity change from 0 to 32768 [ 350.883648][T14046] syz.2.3519: attempt to access beyond end of device [ 350.883648][T14046] loop14: rw=0, sector=8, nr_sectors = 8 limit=0 [ 350.917428][T14046] lbmIODone: I/O error in JFS log [ 350.927857][T14046] *** Log Format Error ! *** [ 350.933139][T14046] lmLogInit: exit(-22) [ 350.943217][T14075] loop0: detected capacity change from 0 to 64 [ 351.000347][T14046] lmLogOpen: exit(-22) [ 351.383888][T14081] loop3: detected capacity change from 0 to 512 [ 351.491004][T14083] loop2: detected capacity change from 0 to 764 [ 351.829552][ T5786] Bluetooth: hci2: unexpected event for opcode 0x0c25 [ 351.859659][T14093] loop0: detected capacity change from 0 to 1024 [ 351.893561][T14099] loop1: detected capacity change from 0 to 512 [ 351.945794][T14099] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 352.007741][T14099] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 352.078867][T14099] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.3535: Invalid block bitmap block 0 in block_group 0 [ 352.094927][T14099] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 352.126782][T14099] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.3535: attempt to clear invalid blocks 983261 len 1 [ 352.149237][T14099] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm syz.1.3535: Invalid inode table block 0 in block_group 0 [ 352.166754][T14099] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 352.177958][T14099] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 352.187025][T14099] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm syz.1.3535: Invalid inode table block 0 in block_group 0 [ 352.204413][T14099] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 352.216314][T14099] EXT4-fs error (device loop1): ext4_truncate:4288: inode #11: comm syz.1.3535: mark_inode_dirty error [ 352.228197][T14099] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 352.239216][T14099] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm syz.1.3535: Invalid inode table block 0 in block_group 0 [ 352.252769][T14099] EXT4-fs (loop1): 1 truncate cleaned up [ 352.260020][T14099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 352.323807][ T5778] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.347482][ T23] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 352.595190][ T23] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 352.608940][ T76] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 352.624672][ T23] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 352.661467][ T23] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 352.678495][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 352.699161][T14104] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 352.711276][ T23] usb 3-1: Quirk or no altest; falling back to MIDI 1.0 [ 353.022897][ T23] usb 3-1: USB disconnect, device number 21 [ 353.172449][ T8410] udevd[8410]: symlink '../../loop1' '/dev/disk/by-diskseq/825.tmp-b7:1' failed: Read-only file system [ 353.195266][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/824.tmp-b7:0' failed: Read-only file system [ 353.363651][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/821.tmp-b7:3' failed: Read-only file system [ 353.494826][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/821.tmp-b7:3' failed: Read-only file system [ 353.646512][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/820.tmp-b7:2' failed: Read-only file system [ 353.676985][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/821.tmp-b7:3' failed: Read-only file system [ 353.697376][T14143] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3555'. [ 353.822433][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/820.tmp-b7:2' failed: Read-only file system [ 353.853256][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/821.tmp-b7:3' failed: Read-only file system [ 353.956249][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/820.tmp-b7:2' failed: Read-only file system [ 354.011280][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/821.tmp-b7:3' failed: Read-only file system [ 354.102362][T14154] comedi comedi3: 8255: I/O port conflict (0x10003,4) [ 354.137702][T14154] comedi comedi3: 8255: I/O port conflict (0x10000,4) [ 354.152389][T14154] comedi comedi3: 8255: I/O port conflict (0x7f,4) [ 354.174199][T14136] loop0: detected capacity change from 0 to 40427 [ 354.210824][T14136] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 354.236768][T14136] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 354.262216][T14136] F2FS-fs (loop0): invalid crc value [ 354.329402][T14136] F2FS-fs (loop0): Found nat_bits in checkpoint [ 354.380026][T14164] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3564'. [ 354.509266][T14136] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 354.530652][T14136] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 354.872351][ T76] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 354.908129][ T76] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 355.348212][T14195] loop1: detected capacity change from 0 to 1024 [ 355.467331][ T8] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 355.549523][ T12] hfsplus: b-tree write err: -5, ino 4 [ 355.667445][ T8] usb 4-1: Using ep0 maxpacket: 32 [ 355.694915][ T8] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 355.710166][ T8] usb 4-1: config 0 has no interface number 0 [ 355.719125][ T8] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 355.728580][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.747190][ T8] usb 4-1: Product: syz [ 355.751410][ T8] usb 4-1: Manufacturer: syz [ 355.764188][ T8] usb 4-1: SerialNumber: syz [ 355.783608][ T8] usb 4-1: config 0 descriptor?? [ 355.815530][ T8] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 355.824546][ T8] usb 4-1: selecting invalid altsetting 1 [ 355.830785][ T8] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 355.848457][ T8] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 355.867644][ T8] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 355.875987][ T8] usb 4-1: media controller created [ 355.913630][ T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 356.014485][ T8] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 356.027278][ T8] zl10353_read_register: readreg error (reg=127, ret==-71) [ 356.067411][ T8] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 356.162458][ T8] usb 4-1: USB disconnect, device number 25 [ 356.310215][T14201] loop2: detected capacity change from 0 to 40427 [ 356.366876][T14201] F2FS-fs (loop2): Found nat_bits in checkpoint [ 356.472723][T14201] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 356.528865][T14204] loop1: detected capacity change from 0 to 40427 [ 356.576092][T14204] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 356.596446][T14204] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 356.628605][T14201] F2FS-fs (loop2): Inconsistent error blkaddr:5633, sit bitmap:0 [ 356.652059][T14204] F2FS-fs (loop1): invalid crc value [ 356.670929][T14201] CPU: 0 PID: 14201 Comm: syz.2.3580 Not tainted 6.6.100-syzkaller #0 [ 356.679141][T14201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 356.689232][T14201] Call Trace: [ 356.692537][T14201] [ 356.695506][T14201] dump_stack_lvl+0x16c/0x230 [ 356.700215][T14201] ? show_regs_print_info+0x20/0x20 [ 356.705453][T14201] ? f2fs_get_next_page_offset+0x690/0x690 [ 356.713638][T14201] ? __asan_memset+0x22/0x40 [ 356.718406][T14201] ? __lookup_extent_tree+0xba0/0xba0 [ 356.723829][T14201] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 356.729255][T14201] f2fs_get_read_data_page+0x3a4/0x5c0 [ 356.729308][T14201] ? f2fs_reserve_block+0x240/0x240 [ 356.729349][T14201] f2fs_find_data_page+0x9f/0x3a0 [ 356.729377][T14201] f2fs_readdir+0x464/0x8c0 [ 356.729419][T14201] ? f2fs_fill_dentries+0xbb0/0xbb0 [ 356.729442][T14201] ? read_lock_is_recursive+0x20/0x20 [ 356.729461][T14201] ? lockdep_hardirqs_on+0x98/0x150 [ 356.729483][T14201] ? __fdget_pos+0x2a3/0x330 [ 356.729506][T14201] ? mutex_lock_nested+0x20/0x20 [ 356.729526][T14201] ? end_current_label_crit_section+0x149/0x170 [ 356.729554][T14201] ? down_read_killable+0x1d0/0x340 [ 356.729574][T14201] ? fsnotify_perm+0x271/0x5e0 [ 356.729600][T14201] iterate_dir+0x1c2/0x580 [ 356.729623][T14201] ? 0xffffffff81000000 [ 356.729641][T14201] __se_sys_getdents+0xe9/0x260 [ 356.729664][T14201] ? __x64_sys_getdents+0x80/0x80 [ 356.729684][T14201] ? fillonedir+0x430/0x430 [ 356.729703][T14201] ? 0xffffffff81000000 [ 356.729726][T14201] ? lockdep_hardirqs_on+0x98/0x150 [ 356.729751][T14201] do_syscall_64+0x55/0xb0 [ 356.729769][T14201] ? clear_bhb_loop+0x40/0x90 [ 356.729785][T14201] ? clear_bhb_loop+0x40/0x90 [ 356.729804][T14201] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 356.729827][T14201] RIP: 0033:0x7f062fb8e9a9 [ 356.729842][T14201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 356.729858][T14201] RSP: 002b:00007f0630a9e038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 356.729879][T14201] RAX: ffffffffffffffda RBX: 00007f062fdb5fa0 RCX: 00007f062fb8e9a9 [ 356.729893][T14201] RDX: 0000000000000058 RSI: ffffffff81000000 RDI: 0000000000000004 [ 356.729905][T14201] RBP: 00007f062fc10d69 R08: 0000000000000000 R09: 0000000000000000 [ 356.729917][T14201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 356.729928][T14201] R13: 0000000000000000 R14: 00007f062fdb5fa0 R15: 00007fff8c684b78 [ 356.729951][T14201] ? 0xffffffff81000000 [ 356.729969][T14201] [ 356.754474][T14208] loop0: detected capacity change from 0 to 32768 [ 356.766155][T14204] F2FS-fs (loop1): Found nat_bits in checkpoint [ 357.008479][T14208] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 357.149401][T14204] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 357.156493][T14204] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 357.199238][T14219] loop3: detected capacity change from 0 to 4096 [ 357.271287][ T5779] ocfs2: Unmounting device (7,0) on (node local) [ 357.324596][T14219] ntfs3: loop3: failed to convert "0080" to cp932 [ 357.346039][T14219] ntfs3: loop3: failed to convert name for inode 1e. [ 357.488688][ T1149] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 357.534506][ T1149] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 357.718243][ T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 358.255725][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/835.tmp-b7:0' failed: Read-only file system [ 358.350609][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/834.tmp-b7:2' failed: Read-only file system [ 358.418762][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/837.tmp-b7:1' failed: Read-only file system [ 358.474493][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/835.tmp-b7:0' failed: Read-only file system [ 358.482502][T14252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3588'. [ 358.525377][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/834.tmp-b7:2' failed: Read-only file system [ 358.601256][T14256] loop2: detected capacity change from 0 to 128 [ 358.639267][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/837.tmp-b7:1' failed: Read-only file system [ 358.659478][T14256] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 358.729564][ T5792] udevd[5792]: symlink '../../loop0' '/dev/disk/by-diskseq/835.tmp-b7:0' failed: Read-only file system [ 358.738725][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/838.tmp-b7:2' failed: Read-only file system [ 358.779074][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:2' failed: Read-only file system [ 358.799314][T14256] ext4 filesystem being mounted at /264/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 358.822909][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/837.tmp-b7:1' failed: Read-only file system [ 358.883187][T11502] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 359.069897][T14243] loop3: detected capacity change from 0 to 32768 [ 359.126413][T14243] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.3595 (14243) [ 359.208318][T14243] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 359.238279][T14243] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 359.272147][T14243] BTRFS info (device loop3): using free space tree [ 359.338332][T14243] BTRFS info (device loop3): enabling ssd optimizations [ 359.352679][T14243] BTRFS info (device loop3): auto enabling async discard [ 359.461049][ T28] audit: type=1800 audit(1753401599.147:143): pid=14243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3595" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 359.719027][ T5780] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 359.810743][T14268] loop1: detected capacity change from 0 to 32768 [ 359.840740][T14268] XFS: attr2 mount option is deprecated. [ 359.936497][T14268] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 360.072060][T14268] XFS (loop1): Ending clean mount [ 360.275079][T14310] x_tables: ip_tables: osf match: only valid for protocol 6 [ 360.454649][T14316] loop2: detected capacity change from 0 to 512 [ 360.514657][ T5778] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 360.515676][T14316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 360.567695][T14316] ext4 filesystem being mounted at /267/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 360.621056][T14316] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3615: corrupted inode contents [ 360.657579][T14316] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.3615: mark_inode_dirty error [ 360.740571][T14316] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3615: corrupted inode contents [ 360.802407][T14325] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3615: corrupted inode contents [ 360.862294][T14325] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.3615: mark_inode_dirty error [ 360.927284][T14325] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.3615: corrupted inode contents [ 361.100432][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.283410][T14338] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 361.544069][T14326] loop0: detected capacity change from 0 to 32768 [ 361.589732][T14326] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 361.614827][T14326] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 361.625317][T14344] loop1: detected capacity change from 0 to 4096 [ 362.131855][ T5779] ocfs2: Unmounting device (7,0) on (node local) [ 362.372331][T14342] loop3: detected capacity change from 0 to 40427 [ 362.405710][T14342] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 362.438925][T14342] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 362.479598][T14342] F2FS-fs (loop3): Found nat_bits in checkpoint [ 362.626869][T14342] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 362.644079][T14342] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 362.703106][T14368] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.712227][T14368] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.721132][T14368] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.730003][T14368] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 362.756463][T14342] F2FS-fs (loop3): Stopped filesystem due to reason: 0 [ 363.210448][T14365] loop1: detected capacity change from 0 to 32768 [ 363.228357][T14365] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.3634 (14365) [ 363.263999][T14365] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 363.296838][T14365] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 363.316513][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/852.tmp-b7:1' failed: Read-only file system [ 363.317681][T14365] BTRFS info (device loop1): using free space tree [ 363.349411][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:1' failed: Read-only file system [ 363.378080][ T787] usb 3-1: new full-speed USB device number 22 using dummy_hcd [ 363.384547][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/851.tmp-b7:3' failed: Read-only file system [ 363.439002][T14365] BTRFS info (device loop1): enabling ssd optimizations [ 363.439027][T14365] BTRFS info (device loop1): auto enabling async discard [ 363.483497][ T1029] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 363.561792][ T787] usb 3-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00 [ 363.561821][ T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.564165][ T787] usb 3-1: config 0 descriptor?? [ 363.604374][T14365] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 363.663530][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/849.tmp-b7:0' failed: Read-only file system [ 363.733192][ T5778] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 363.777617][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/852.tmp-b7:1' failed: Read-only file system [ 363.805769][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-uuid/a6a605fc-d5f1-4e66-8595-3726e2b761d6.tmp-b7:1' failed: Read-only file system [ 364.010684][ T787] macally 0003:060B:0001.001E: unknown main item tag 0x0 [ 364.028250][ T787] macally 0003:060B:0001.001E: unknown main item tag 0x0 [ 364.057922][ T787] macally 0003:060B:0001.001E: unknown main item tag 0x0 [ 364.072160][ T787] macally 0003:060B:0001.001E: unknown main item tag 0x0 [ 364.103463][ T787] macally 0003:060B:0001.001E: unknown main item tag 0x0 [ 364.114351][ T787] macally 0003:060B:0001.001E: hidraw0: USB HID v0.05 Device [HID 060b:0001] on usb-dummy_hcd.2-1/input0 [ 364.196236][ T5792] udevd[5792]: symlink '../../loop3' '/dev/disk/by-diskseq/851.tmp-b7:3' failed: Read-only file system [ 364.255159][ T8] usb 3-1: USB disconnect, device number 22 [ 364.343922][T14403] loop1: detected capacity change from 0 to 4096 [ 364.366274][T14403] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 364.462398][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/852.tmp-b7:1' failed: Read-only file system [ 364.476006][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 364.493999][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-uuid/7089678B273CDB5C.tmp-b7:1' failed: Read-only file system [ 364.577802][ T5817] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 364.649882][T14407] sp0: Synchronizing with TNC [ 364.708937][T14407] sp0: Found TNC [ 364.732697][T14406] [U] è` [ 364.772373][ T5817] usb 4-1: config 0 has an invalid interface number: 64 but max is 0 [ 364.781521][ T5817] usb 4-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 364.793311][ T5817] usb 4-1: config 0 has no interface number 0 [ 364.815809][ T5817] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 364.845008][ T5817] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 364.859049][ T5817] usb 4-1: Product: syz [ 364.867811][ T5817] usb 4-1: Manufacturer: syz [ 364.872649][ T5817] usb 4-1: SerialNumber: syz [ 364.891093][ T5817] usb 4-1: config 0 descriptor?? [ 365.000653][T14415] loop2: detected capacity change from 0 to 2048 [ 365.054494][T14415] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 365.171395][ T28] audit: type=1800 audit(1753401604.857:144): pid=14415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3648" name="file1" dev="loop2" ino=1346 res=0 errno=0 [ 365.335692][ T5817] usb 4-1: Found UVC 0.00 device syz (046d:0823) [ 365.377786][ T5817] usb 4-1: No valid video chain found. [ 365.558411][ T5817] usb 4-1: USB disconnect, device number 26 [ 365.737182][ T5770] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 365.910421][T14429] loop1: detected capacity change from 0 to 32768 [ 365.950633][ T5770] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 365.994782][ T5770] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.037928][ T5770] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 366.059669][ T5770] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.092425][ T5770] usb 3-1: config 0 descriptor?? [ 366.168659][T14442] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.3661'. [ 366.221988][T14444] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«= [ 366.236108][T14443] [U] J"—E:ÀÆ" [ 366.391547][T14450] loop1: detected capacity change from 0 to 2048 [ 366.424483][T14450] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 366.462268][T14450] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 366.479348][T14450] UDF-fs: Scanning with blocksize 512 failed [ 366.553589][T14450] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 366.559581][ T5770] hid-steam 0003:28DE:1142.001F: unknown main item tag 0x0 [ 366.580449][T14452] syz.3.3666 (14452) used obsolete PPPIOCDETACH ioctl [ 366.606715][ T5770] hid-steam 0003:28DE:1142.001F: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0 [ 366.691878][ T5770] hid-steam 0003:28DE:1142.001F: Steam wireless receiver connected [ 366.701423][ T5770] hid-steam 0003:28DE:1142.001F: No HID_FEATURE_REPORT submitted - nothing to read [ 366.722006][ T5770] hid-steam 0003:28DE:1142.0020: unknown main item tag 0x0 [ 366.750280][ T5770] hid-steam 0003:28DE:1142.0020: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0 [ 366.751564][T14456] loop0: detected capacity change from 0 to 2048 [ 366.838809][ T5770] usb 3-1: USB disconnect, device number 23 [ 366.876743][T14456] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 366.939771][ T5770] hid-steam 0003:28DE:1142.001F: Steam wireless receiver disconnected [ 366.971563][T14461] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 366.987840][T14456] syz.0.3668: attempt to access beyond end of device [ 366.987840][T14456] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 367.106663][T14460] fido_id[14460]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 367.120616][T14456] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 367.195818][T14456] Remounting filesystem read-only [ 367.216023][T14456] NILFS error (device loop0): nilfs_bmap_last_key: broken bmap (inode number=16) [ 367.277124][T14456] NILFS (loop0): error -5 truncating bmap (ino=16) [ 367.389893][ T5779] NILFS (loop0): discard dirty page: offset=4096, ino=6 [ 367.409876][ T5779] NILFS (loop0): discard dirty block: blocknr=39, size=1024 [ 367.424323][ T5779] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 367.443987][ T5779] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 367.486623][ T5779] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 367.507711][ T5779] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 367.809413][T14476] loop3: detected capacity change from 0 to 4096 [ 367.831034][T14476] EXT4-fs: Ignoring removed mblk_io_submit option [ 367.832428][T14480] loop0: detected capacity change from 0 to 128 [ 367.868603][T14476] EXT4-fs (loop3): Test dummy encryption mode enabled [ 367.938839][T14476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 368.134959][ T28] audit: type=1800 audit(1753401607.817:145): pid=14476 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3676" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 368.192841][T14488] loop2: detected capacity change from 0 to 64 [ 368.205053][T14470] loop1: detected capacity change from 0 to 32768 [ 368.303785][T14470] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 368.327720][T14470] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 368.354777][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.396169][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/867.tmp-b7:2' failed: Read-only file system [ 368.475691][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/868.tmp-b7:1' failed: Read-only file system [ 368.489156][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/867.tmp-b7:2' failed: Read-only file system [ 368.491757][ T5792] udevd[5792]: symlink '../../loop3' '/dev/disk/by-diskseq/864.tmp-b7:3' failed: Read-only file system [ 368.519051][ T1149] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 368.554292][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:1' failed: Read-only file system [ 368.582781][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/864.tmp-b7:3' failed: Read-only file system [ 368.618867][T14493] smc: net device bond0 applied user defined pnetid SYZ0 [ 368.657886][ T5778] ocfs2: Unmounting device (7,1) on (node local) [ 368.747991][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/868.tmp-b7:1' failed: Read-only file system [ 368.774725][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/869.tmp-b7:2' failed: Read-only file system [ 368.782651][ T5792] udevd[5792]: symlink '../../loop3' '/dev/disk/by-diskseq/870.tmp-b7:3' failed: Read-only file system [ 368.803760][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:1' failed: Read-only file system [ 369.126826][T14500] loop2: detected capacity change from 0 to 8192 [ 369.136029][T14486] loop0: detected capacity change from 0 to 32768 [ 369.168530][T14486] XFS: attr2 mount option is deprecated. [ 369.206610][T14500] loop2: p3 p4 < > [ 369.213642][T14500] loop2: p3 start 18548 is beyond EOD, truncated [ 369.255756][T14486] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 369.286029][T14514] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3690'. [ 369.466174][T14486] XFS (loop0): Ending clean mount [ 369.716534][ T5779] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 370.089415][T14534] sp0: Synchronizing with TNC [ 370.383049][T14516] loop1: detected capacity change from 0 to 32768 [ 370.389236][T14540] team0: Device ip6tnl2 is of different type [ 370.630669][T14548] loop0: detected capacity change from 0 to 64 [ 370.779074][T14550] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3707'. [ 371.080071][T14557] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3709'. [ 371.113089][T14557] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3709'. [ 371.147937][T14555] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3709'. [ 371.240972][T14544] loop3: detected capacity change from 0 to 40427 [ 371.270173][T14544] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 371.317233][T14544] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 371.335867][T14544] F2FS-fs (loop3): build fault injection attr: rate: 17008, type: 0x7ffff [ 371.378259][T14544] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x6 [ 371.393697][T14544] F2FS-fs (loop3): invalid crc value [ 371.442463][T14544] F2FS-fs (loop3): Found nat_bits in checkpoint [ 371.619707][T14544] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 371.626793][T14544] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 371.785421][ T5780] syz-executor: attempt to access beyond end of device [ 371.785421][ T5780] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 371.819593][ T5780] F2FS-fs (loop3): Remounting filesystem read-only [ 371.835425][T14578] vlan0: entered promiscuous mode [ 371.920599][T14578] team0: Port device vlan0 added [ 372.157549][T14566] loop1: detected capacity change from 0 to 32768 [ 372.184916][T14566] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 372.225029][T14566] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 372.491969][T14582] loop0: detected capacity change from 0 to 32768 [ 372.553342][T14582] (syz.0.3720,14582,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 372.614211][T14582] (syz.0.3720,14582,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 372.671742][T14591] delete_channel: no stack [ 372.678113][ T5778] ocfs2: Unmounting device (7,1) on (node local) [ 372.740612][T14582] JBD2: Ignoring recovery information on journal [ 372.926813][T14582] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 373.238975][ T5779] ocfs2: Unmounting device (7,0) on (node local) [ 373.240547][T14609] loop2: detected capacity change from 0 to 1024 [ 373.304307][T14609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.410027][T14609] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.3730: bg 0: block 260: invalid block bitmap [ 373.423505][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/885.tmp-b7:2' failed: Read-only file system [ 373.450489][ T787] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 373.481985][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/884.tmp-b7:1' failed: Read-only file system [ 373.494969][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 373.526251][ T5792] udevd[5792]: symlink '../../loop0' '/dev/disk/by-diskseq/886.tmp-b7:0' failed: Read-only file system [ 373.585850][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.662986][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/885.tmp-b7:2' failed: Read-only file system [ 373.691807][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/884.tmp-b7:1' failed: Read-only file system [ 373.704151][ T787] usb 4-1: Using ep0 maxpacket: 16 [ 373.757895][ T787] usb 4-1: config 0 interface 0 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 373.761978][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/885.tmp-b7:2' failed: Read-only file system [ 373.786813][ T787] usb 4-1: config 0 interface 0 has no altsetting 0 [ 373.812663][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/887.tmp-b7:2' failed: Read-only file system [ 373.842443][ T787] usb 4-1: New USB device found, idVendor=046d, idProduct=c52b, bcdDevice= 0.00 [ 373.872988][ T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.923810][ T787] usb 4-1: config 0 descriptor?? [ 373.944000][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/884.tmp-b7:1' failed: Read-only file system [ 374.011105][T14614] loop0: detected capacity change from 0 to 32768 [ 374.051773][T14614] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by syz.0.3731 (14614) [ 374.082480][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/887.tmp-b7:2' failed: Read-only file system [ 374.100707][T14614] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 374.132989][T14614] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 374.165163][T14614] BTRFS info (device loop0): using free space tree [ 374.266296][T14614] BTRFS info (device loop0): enabling ssd optimizations [ 374.276908][T14614] BTRFS info (device loop0): auto enabling async discard [ 374.359442][ T48] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 374.471356][T14614] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 374.562446][ T787] usb 4-1: USB disconnect, device number 27 [ 374.572687][ T5779] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 374.781071][T14654] loop2: detected capacity change from 0 to 64 [ 374.830764][T14654] hfs: unable to locate alternate MDB [ 374.836187][T14654] hfs: continuing without an alternate MDB [ 374.861700][T14654] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 374.935398][T14654] hfs: bad catalog entry type 0 [ 375.391724][T14650] loop1: detected capacity change from 0 to 32768 [ 375.417546][T14650] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 375.517253][ T8] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 375.603783][T14650] XFS (loop1): Ending clean mount [ 375.624366][ T23] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x20 [ 375.654523][ T23] XFS (loop1): Unmount and run xfs_repair [ 375.668035][ T23] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 375.675587][ T23] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 375.690040][ T23] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40 ....... .......@ [ 375.701337][ T23] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a ...B..N....xv... [ 375.714435][ T23] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37 .......F......@7 [ 375.727142][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 375.732451][ T23] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 375.739506][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 375.742473][ T23] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00 ................ [ 375.766531][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 375.781574][ T23] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 375.791732][ T23] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 375.796753][ T8] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00 [ 375.810398][T14650] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1d7/0x2d0" at daddr 0x20 len 8 error 74 [ 375.822542][ T5101] Bluetooth: hci3: command 0x0406 tx timeout [ 375.828810][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.830651][T14662] loop3: detected capacity change from 0 to 32768 [ 375.845768][ T8] usb 1-1: config 0 descriptor?? [ 375.849643][T14650] XFS (loop1): Failed to initialize disk quotas. [ 376.040195][ T5778] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 376.078298][T14662] ERROR: (device loop3): dbAlloc: the hint is outside the map [ 376.078298][T14662] [ 376.121621][T14662] ERROR: (device loop3): remounting filesystem as read-only [ 376.180257][T14662] ialloc: diAlloc returned -5! [ 376.184538][T14674] loop2: detected capacity change from 0 to 32768 [ 376.294423][ T8] uclogic 0003:5543:0522.0022: No inputs registered, leaving [ 376.325139][T14674] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 376.360850][ T8] uclogic 0003:5543:0522.0022: hidraw0: USB HID v0.00 Device [HID 5543:0522] on usb-dummy_hcd.0-1/input0 [ 376.495672][T14674] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 376.603219][ T787] usb 1-1: USB disconnect, device number 28 [ 376.621007][T14674] XFS (loop2): Ending clean mount [ 376.644831][T14674] XFS (loop2): Quotacheck needed: Please wait. [ 376.764635][T14674] XFS (loop2): Quotacheck: Done. [ 376.935280][T11502] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 377.661372][T14716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3765'. [ 377.832626][T14722] dlm: no local IP address has been set [ 377.874076][T14722] dlm: cannot start dlm midcomms -107 [ 378.075149][T14730] loop2: detected capacity change from 0 to 1024 [ 378.102958][T14730] EXT4-fs: Ignoring removed orlov option [ 378.173882][T14730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 378.279910][T14730] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2797: inode #15: comm syz.2.3771: corrupted in-inode xattr: bad magic number in in-inode xattr [ 378.329575][T14730] EXT4-fs (loop2): Remounting filesystem read-only [ 378.402881][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.451862][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/898.tmp-b7:2' failed: Read-only file system [ 378.511183][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/898.tmp-b7:2' failed: Read-only file system [ 378.524876][ T5770] usb 4-1: new full-speed USB device number 28 using dummy_hcd [ 378.573938][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/889.tmp-b7:0' failed: Read-only file system [ 378.691146][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/899.tmp-b7:2' failed: Read-only file system [ 378.711470][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/895.tmp-b7:1' failed: Read-only file system [ 378.760132][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/889.tmp-b7:0' failed: Read-only file system [ 378.786493][ T5770] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 378.815709][ T5770] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.829204][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/895.tmp-b7:1' failed: Read-only file system [ 378.860622][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.869587][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.880265][ T5770] usb 4-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00 [ 378.892592][ T5770] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.905865][ T5770] usb 4-1: config 0 descriptor?? [ 378.913801][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/899.tmp-b7:2' failed: Read-only file system [ 378.993574][ T5942] udevd[5942]: symlink '../../loop1' '/dev/disk/by-diskseq/895.tmp-b7:1' failed: Read-only file system [ 379.028126][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/889.tmp-b7:0' failed: Read-only file system [ 379.190753][T14764] loop1: detected capacity change from 0 to 512 [ 379.198732][T14764] EXT4-fs: Ignoring removed bh option [ 379.205703][T14764] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 379.222794][T14764] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 379.231853][T14764] EXT4-fs (loop1): orphan cleanup on readonly fs [ 379.243825][T14764] EXT4-fs error (device loop1): ext4_quota_enable:7125: comm syz.1.3787: Bad quota inum: 4294967291, type: 0 [ 379.263044][T14764] EXT4-fs (loop1): Remounting filesystem read-only [ 379.269808][T14764] EXT4-fs warning (device loop1): ext4_enable_quotas:7173: Failed to enable quota tracking (type=0, err=-117, ino=4294967291). Please run e2fsck to fix. [ 379.285648][T14764] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 379.293589][T14764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 379.354950][ T5770] samsung 0003:0419:0001.0023: unbalanced collection at end of report description [ 379.370931][ T5770] samsung 0003:0419:0001.0023: parse failed [ 379.371112][ T5778] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.381703][ T5770] samsung: probe of 0003:0419:0001.0023 failed with error -22 [ 379.603196][ T5770] usb 4-1: USB disconnect, device number 28 [ 379.927269][ T787] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 380.007345][ T8] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 380.109896][ T787] usb 2-1: Using ep0 maxpacket: 16 [ 380.121428][ T76] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 380.136151][ T787] usb 2-1: unable to get BOS descriptor or descriptor too short [ 380.137189][ T5770] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 380.155932][ T787] usb 2-1: config 249 has an invalid interface number: 115 but max is 0 [ 380.175484][ T787] usb 2-1: config 249 has no interface number 0 [ 380.188385][ T787] usb 2-1: config 249 interface 115 has no altsetting 0 [ 380.206815][ T787] usb 2-1: New USB device found, idVendor=413c, idProduct=8195, bcdDevice= 1.f8 [ 380.207576][ T8] usb 1-1: Using ep0 maxpacket: 32 [ 380.216687][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 380.229665][ T787] usb 2-1: Product: syz [ 380.233076][ T8] usb 1-1: New USB device found, idVendor=1039, idProduct=2120, bcdDevice= 2.a7 [ 380.233833][ T787] usb 2-1: Manufacturer: syz [ 380.248186][ T8] usb 1-1: New USB device strings: Mfr=249, Product=255, SerialNumber=3 [ 380.248246][ T8] usb 1-1: Product: syz [ 380.248260][ T8] usb 1-1: Manufacturer: syz [ 380.248274][ T8] usb 1-1: SerialNumber: syz [ 380.266556][ T8] usb 1-1: config 0 descriptor?? [ 380.273057][ T787] usb 2-1: SerialNumber: syz [ 380.348691][ T5770] usb 3-1: Using ep0 maxpacket: 32 [ 380.364763][ T5770] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.382556][ T5770] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.392816][ T5770] usb 3-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 380.402178][ T5770] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.415476][ T5770] usb 3-1: config 0 descriptor?? [ 380.506372][ T787] qmi_wwan: probe of 2-1:249.115 failed with error -22 [ 380.511214][ T8] usb 1-1: [ueagle-atm] ADSL device founded vid (0X1039) pid (0X2120) Rev (0X2A7): Eagle II [ 380.538321][ T9] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 380.542367][ T787] usb 2-1: USB disconnect, device number 21 [ 380.740673][ T9] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 380.750274][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 380.760168][ T9] usb 4-1: Product: syz [ 380.764394][ T9] usb 4-1: Manufacturer: syz [ 380.769742][ T9] usb 4-1: SerialNumber: syz [ 380.782209][ T9] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 380.803160][ T5862] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 380.857345][ T5770] aquacomputer_d5next 0003:0C70:F0B6.0024: hidraw0: USB HID vff.fc Device [HID 0c70:f0b6] on usb-dummy_hcd.2-1/input0 [ 381.020468][ T8] usb 1-1: reset high-speed USB device number 29 using dummy_hcd [ 381.061682][ T787] usb 3-1: USB disconnect, device number 24 [ 381.142408][T14782] loop1: detected capacity change from 0 to 256 [ 381.283899][T14784] loop1: detected capacity change from 0 to 64 [ 381.305770][T14784] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 381.436632][ T8] usb 1-1: [UEAGLE-ATM] interface 1 not found [ 381.458590][ T8] ueagle-atm 1-1:0.0: usbatm_usb_probe: bind failed: -19! [ 381.463727][ T5817] usb 4-1: USB disconnect, device number 29 [ 381.506960][ T8] usb 1-1: USB disconnect, device number 29 [ 381.662228][T14788] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280 [ 381.887195][ T5862] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 381.908538][ T5862] ath9k_htc: Failed to initialize the device [ 381.925618][ T5817] usb 4-1: ath9k_htc: USB layer deinitialized [ 381.941201][T14801] loop2: detected capacity change from 0 to 128 [ 381.970922][T14801] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 381.993934][T14801] ext4 filesystem being mounted at /322/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 382.091282][T14805] loop1: detected capacity change from 0 to 512 [ 382.159129][T14805] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 382.205802][T14805] EXT4-fs (loop1): 1 truncate cleaned up [ 382.211865][T11502] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 382.253132][T14805] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 382.333892][T14814] netlink: 312 bytes leftover after parsing attributes in process `syz.0.3809'. [ 382.413517][T14816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3810'. [ 382.588495][ T5778] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.698242][T14826] loop2: detected capacity change from 0 to 512 [ 382.746176][T14826] EXT4-fs: Ignoring removed orlov option [ 382.810591][T14826] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 383.188022][T14841] Bluetooth: MGMT ver 1.22 [ 383.253173][T14843] loop3: detected capacity change from 0 to 512 [ 383.298999][T14843] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 383.312762][T14843] EXT4-fs (loop3): 1 truncate cleaned up [ 383.321819][T14843] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 383.357525][ T5817] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 383.437395][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.503670][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/912.tmp-b7:3' failed: Read-only file system [ 383.508948][T14828] loop0: detected capacity change from 0 to 32768 [ 383.548241][ T5817] usb 3-1: Using ep0 maxpacket: 16 [ 383.551690][T14828] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.3815 (14828) [ 383.559747][ T5817] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 383.588227][ T5942] udevd[5942]: symlink '../../loop3' '/dev/disk/by-diskseq/912.tmp-b7:3' failed: Read-only file system [ 383.610754][ T5817] usb 3-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 383.630721][ T5817] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 383.651705][ T5817] usb 3-1: Product: syz [ 383.654497][T14828] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 383.655892][ T5817] usb 3-1: Manufacturer: syz [ 383.681477][T14828] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 383.691030][ T5817] usb 3-1: SerialNumber: syz [ 383.705341][T14828] BTRFS info (device loop0): force zlib compression, level 3 [ 383.718661][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/914.tmp-b7:0' failed: Read-only file system [ 383.731630][ T5817] usb 3-1: config 0 descriptor?? [ 383.736294][T14828] BTRFS info (device loop0): force clearing of disk cache [ 383.746847][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-uuid/e417788f-7a09-42b2-9266-8ddc5d5d35d2.tmp-b7:0' failed: Read-only file system [ 383.754159][ T5817] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 383.765541][T14828] BTRFS info (device loop0): setting nodatasum [ 383.774974][T14828] BTRFS info (device loop0): allowing degraded mounts [ 383.782136][T14828] BTRFS info (device loop0): enabling disk space caching [ 383.802298][T14828] BTRFS info (device loop0): disk space caching is enabled [ 383.871818][T14828] BTRFS info (device loop0): auto enabling async discard [ 383.892513][T14828] BTRFS info (device loop0): rebuilding free space tree [ 383.923547][T14828] BTRFS info (device loop0): disabling free space tree [ 383.937275][T14828] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 383.973548][T14828] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 384.126321][ T8] usb 3-1: USB disconnect, device number 25 [ 384.138483][ T5779] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 384.144611][ T9] kernel read not supported for file /dsp (pid: 9 comm: kworker/0:1) [ 384.284098][T14848] loop1: detected capacity change from 0 to 40427 [ 384.296604][T14848] F2FS-fs (loop1): Small segment_count (9 < 1 * 24) [ 384.306707][T14848] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 384.343469][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/913.tmp-b7:3' failed: Read-only file system [ 384.401928][T14848] F2FS-fs (loop1): Found nat_bits in checkpoint [ 384.495140][T14870] loop3: detected capacity change from 0 to 256 [ 384.512796][ T5942] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop0 scanned by udevd (5942) [ 384.587663][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/914.tmp-b7:0' failed: Read-only file system [ 384.597871][ T5792] udevd[5792]: symlink '../../loop1' '/dev/disk/by-diskseq/915.tmp-b7:1' failed: Read-only file system [ 384.633954][ T5792] udevd[5792]: symlink '../../loop1' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:1' failed: Read-only file system [ 384.634273][ T8409] udevd[8409]: symlink '../../loop3' '/dev/disk/by-diskseq/916.tmp-b7:3' failed: Read-only file system [ 384.680053][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-uuid/e417788f-7a09-42b2-9266-8ddc5d5d35d2.tmp-b7:0' failed: Read-only file system [ 384.756166][T14848] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 384.766118][T14870] FAT-fs (loop3): Directory bread(block 64) failed [ 384.787099][T14848] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 384.810527][T14870] FAT-fs (loop3): Directory bread(block 65) failed [ 384.828452][T14870] FAT-fs (loop3): Directory bread(block 66) failed [ 384.835022][T14870] FAT-fs (loop3): Directory bread(block 67) failed [ 384.910581][T14870] FAT-fs (loop3): Directory bread(block 68) failed [ 384.954844][T14870] FAT-fs (loop3): Directory bread(block 69) failed [ 384.975601][T14877] loop2: detected capacity change from 0 to 256 [ 385.027260][T14870] FAT-fs (loop3): Directory bread(block 70) failed [ 385.033833][T14870] FAT-fs (loop3): Directory bread(block 71) failed [ 385.093177][ T5778] syz-executor: attempt to access beyond end of device [ 385.093177][ T5778] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 385.107301][T14870] FAT-fs (loop3): Directory bread(block 72) failed [ 385.107335][T14870] FAT-fs (loop3): Directory bread(block 73) failed [ 385.200952][ T5778] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 385.618011][ T5817] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 385.807665][ T5817] usb 1-1: Using ep0 maxpacket: 8 [ 385.837877][ T5817] usb 1-1: config 6 has an invalid interface number: 171 but max is 0 [ 385.861993][ T5817] usb 1-1: config 6 has no interface number 0 [ 385.869111][ T5817] usb 1-1: config 6 interface 171 has no altsetting 0 [ 385.878745][ T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 385.899199][ T5817] usb 1-1: Dual-Role OTG device on HNP port [ 385.910730][ T5817] usb 1-1: New USB device found, idVendor=1a0a, idProduct=0101, bcdDevice=d1.1e [ 385.931767][ T5817] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 385.957965][ T5817] usb 1-1: Product: syz [ 385.962268][ T5817] usb 1-1: Manufacturer: syz [ 385.966894][ T5817] usb 1-1: SerialNumber: syz [ 386.389081][T14894] loop3: detected capacity change from 0 to 40427 [ 386.416084][T14894] F2FS-fs (loop3): invalid crc value [ 386.429297][ T5817] usb_ehset_test: probe of 1-1:6.171 failed with error -32 [ 386.462446][T14894] F2FS-fs (loop3): Found nat_bits in checkpoint [ 386.590529][T14906] loop2: detected capacity change from 0 to 64 [ 386.629122][T14894] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 386.657004][ T5817] usb 1-1: USB disconnect, device number 30 [ 386.700048][T14906] hfs: hfs: Invalid key length: 94 [ 386.794300][T11502] hfs: node 4:3 still has 1 user(s)! [ 387.004927][T14916] loop2: detected capacity change from 0 to 256 [ 387.040545][T14916] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 387.694031][T14932] loop0: detected capacity change from 0 to 4096 [ 387.701505][ T28] audit: type=1326 audit(1753401627.387:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14933 comm="syz.1.3851" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff4fc98e9a9 code=0x0 [ 387.740469][T14932] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 387.765837][T14936] loop2: detected capacity change from 0 to 1024 [ 387.775997][T14932] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096) [ 387.797825][ T9] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 387.816040][T14938] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 387.826033][T14936] hfsplus: bad catalog entry type [ 387.931248][ T58] hfsplus: b-tree write err: -5, ino 4 [ 388.017136][ T9] usb 4-1: Using ep0 maxpacket: 16 [ 388.025527][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.055581][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.077452][ T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 388.097293][ T9] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 388.112107][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.125884][ T9] usb 4-1: config 0 descriptor?? [ 388.484551][T14954] loop0: detected capacity change from 0 to 256 [ 388.551480][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/930.tmp-b7:2' failed: Read-only file system [ 388.566697][ T9] microsoft 0003:045E:07DA.0025: unbalanced collection at end of report description [ 388.610721][ T9] microsoft 0003:045E:07DA.0025: parse failed [ 388.623643][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/932.tmp-b7:0' failed: Read-only file system [ 388.628569][ T5792] udevd[5792]: symlink '../../loop1' '/dev/disk/by-diskseq/921.tmp-b7:1' failed: Read-only file system [ 388.641555][ T9] microsoft: probe of 0003:045E:07DA.0025 failed with error -22 [ 388.705908][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/932.tmp-b7:0' failed: Read-only file system [ 388.792068][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/932.tmp-b7:0' failed: Read-only file system [ 388.808955][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/930.tmp-b7:2' failed: Read-only file system [ 388.827494][ T9] usb 4-1: USB disconnect, device number 30 [ 388.871750][ T8410] udevd[8410]: symlink '../../loop1' '/dev/disk/by-diskseq/921.tmp-b7:1' failed: Read-only file system [ 388.914133][ T5942] udevd[5942]: symlink '../../loop0' '/dev/disk/by-diskseq/932.tmp-b7:0' failed: Read-only file system [ 388.965337][T14964] loop0: detected capacity change from 0 to 2048 [ 388.980277][ T5942] udevd[5942]: symlink '../../loop2' '/dev/disk/by-diskseq/930.tmp-b7:2' failed: Read-only file system [ 389.043486][T14964] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 389.085324][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/934.tmp-b7:0' failed: Read-only file system [ 389.203995][T14977] loop2: detected capacity change from 0 to 512 [ 389.218043][T14977] EXT4-fs (loop2): Test dummy encryption mode enabled [ 389.232196][T14977] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 389.255294][T14977] EXT4-fs (loop2): 1 truncate cleaned up [ 389.271799][T14977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 389.348486][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.366542][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.369782][T14981] loop1: detected capacity change from 0 to 256 [ 389.807374][ T8] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 390.007402][ T8] usb 3-1: Using ep0 maxpacket: 8 [ 390.019629][ T8] usb 3-1: config 0 has no interfaces? [ 390.025164][ T8] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 390.043054][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.059919][ T8] usb 3-1: config 0 descriptor?? [ 390.282792][T14998] loop1: detected capacity change from 0 to 32768 [ 390.296529][T14998] XFS: ikeep mount option is deprecated. [ 390.331704][T14998] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 390.338606][ T5817] usb 3-1: USB disconnect, device number 26 [ 390.488858][T14998] XFS (loop1): Ending clean mount [ 390.674433][ T5778] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 390.774528][T15024] loop0: detected capacity change from 0 to 512 [ 390.929459][T15024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.966545][T15024] ext4 filesystem being mounted at /940/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 391.151440][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.603528][T15047] loop2: detected capacity change from 0 to 512 [ 391.640028][ T1029] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 391.658406][T15047] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 391.695732][T15047] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 391.744253][T15047] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.3898: corrupted in-inode xattr: overlapping e_value [ 391.760212][T15049] loop1: detected capacity change from 0 to 512 [ 391.812388][T15049] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 391.875732][T15047] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.3898: couldn't read orphan inode 15 (err -117) [ 391.925142][T15049] EXT4-fs (loop1): 1 truncate cleaned up [ 391.932448][T15043] loop0: detected capacity change from 0 to 32768 [ 391.939215][T15047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 391.972634][T15049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.001056][T15043] find_entry called with index = 0 [ 392.007941][T15043] read_mapping_page failed! [ 392.013016][T15043] ERROR: (device loop0): txCommit: [ 392.013016][T15043] [ 392.072070][ T28] audit: type=1800 audit(1753401631.757:147): pid=15047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3898" name="file1" dev="loop2" ino=18 res=0 errno=0 [ 392.233053][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.262582][ T5778] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.642368][T15068] loop1: detected capacity change from 0 to 64 [ 392.658016][T15064] loop3: detected capacity change from 0 to 2048 [ 392.702635][T15064] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 392.713919][ T5786] Bluetooth: hci0: unexpected event for opcode 0x0809 [ 392.832335][T15064] UDF-fs: unknown compression code (0) [ 392.844212][T15070] loop0: detected capacity change from 0 to 4096 [ 392.984987][T15074] loop1: detected capacity change from 0 to 256 [ 392.994461][T15070] ntfs3: loop0: failed to convert "0080" to macturkish [ 392.999474][T15072] loop2: detected capacity change from 0 to 4096 [ 393.024526][T15070] ntfs3: loop0: failed to convert name for inode 1e. [ 393.057181][T15074] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 393.059675][T15072] NILFS (loop2): invalid segment: Checksum error in segment payload [ 393.129986][T15072] NILFS (loop2): trying rollback from an earlier position [ 393.208550][T15072] NILFS (loop2): recovery complete [ 393.258561][T15079] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 393.561514][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/955.tmp-b7:2' failed: Read-only file system [ 393.564019][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-uuid/53ef1790-6acb-496c-bd13-8113447d28c8.tmp-b7:2' failed: Read-only file system [ 393.668655][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/955.tmp-b7:2' failed: Read-only file system [ 393.690526][ T28] audit: type=1326 audit(1753401633.377:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15089 comm="syz.2.3914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 393.721916][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/955.tmp-b7:2' failed: Read-only file system [ 393.730826][ T5792] udevd[5792]: symlink '../../loop1' '/dev/disk/by-diskseq/957.tmp-b7:1' failed: Read-only file system [ 393.764747][ T28] audit: type=1326 audit(1753401633.377:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15089 comm="syz.2.3914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 393.788616][ T28] audit: type=1326 audit(1753401633.427:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15089 comm="syz.2.3914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 393.814037][ T28] audit: type=1326 audit(1753401633.427:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15089 comm="syz.2.3914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 393.852807][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/959.tmp-b7:2' failed: Read-only file system [ 393.906543][ T5792] udevd[5792]: symlink '../../loop0' '/dev/disk/by-diskseq/958.tmp-b7:0' failed: Read-only file system [ 393.949157][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/959.tmp-b7:2' failed: Read-only file system [ 394.028404][ T5792] udevd[5792]: symlink '../../loop0' '/dev/disk/by-diskseq/958.tmp-b7:0' failed: Read-only file system [ 394.105316][ T8409] udevd[8409]: symlink '../../loop0' '/dev/disk/by-diskseq/958.tmp-b7:0' failed: Read-only file system [ 394.221335][ T28] audit: type=1326 audit(1753401633.907:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15105 comm="syz.2.3923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 394.286554][ T28] audit: type=1326 audit(1753401633.907:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15105 comm="syz.2.3923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 394.286603][ T28] audit: type=1326 audit(1753401633.907:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15105 comm="syz.2.3923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 394.286638][ T28] audit: type=1326 audit(1753401633.907:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15105 comm="syz.2.3923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f062fb8e9a9 code=0x7ffc0000 [ 394.531503][T15117] loop3: detected capacity change from 0 to 1024 [ 394.643156][ T12] hfsplus: b-tree write err: -5, ino 4 [ 395.402523][T15125] loop3: detected capacity change from 0 to 32768 [ 395.520393][T15128] loop2: detected capacity change from 0 to 32768 [ 395.650589][T15128] find_entry called with index = 0 [ 395.685654][T15128] read_mapping_page failed! [ 395.706358][T15128] ERROR: (device loop2): txCommit: [ 395.706358][T15128] [ 396.121909][T15136] loop0: detected capacity change from 0 to 32768 [ 396.234579][T15136] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 396.412909][T15136] (syz.0.3938,15136,0):ocfs2_file_write_iter:2445 ERROR: status = -27 [ 396.603649][ T5779] ocfs2: Unmounting device (7,0) on (node local) [ 396.615450][T15144] loop1: detected capacity change from 0 to 32768 [ 396.669112][T15144] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 11 [ 396.763810][ T76] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 396.889570][ T8410] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 11 [ 397.212212][T15175] program syz.1.3954 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 397.590829][T15192] loop3: detected capacity change from 0 to 512 [ 397.636518][T15192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.678184][T15192] ext4 filesystem being mounted at /991/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 397.730827][T15192] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.3961: corrupted inode contents [ 397.758415][T15197] loop2: detected capacity change from 0 to 1024 [ 397.785758][T15197] EXT4-fs: Ignoring removed oldalloc option [ 397.807564][T15192] EXT4-fs (loop3): Remounting filesystem read-only [ 397.831188][T15197] EXT4-fs: Ignoring removed bh option [ 397.853620][T15197] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 397.879861][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.904320][ T12] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync! [ 397.920663][T15197] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.949749][ T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 397.988008][ T12] Quota error (device loop3): write_blk: dquota write failed [ 398.021655][T15190] loop1: detected capacity change from 0 to 32768 [ 398.088613][T15190] non-latin1 character 0xffff found in JFS file name [ 398.096045][T15190] mount with iocharset=utf8 to access [ 398.144624][T11502] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.579456][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/974.tmp-b7:1' failed: Read-only file system [ 398.687611][ T5817] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 398.738248][ T8409] udevd[8409]: symlink '../../loop1' '/dev/disk/by-diskseq/974.tmp-b7:1' failed: Read-only file system [ 398.888323][ T5817] usb 4-1: Using ep0 maxpacket: 8 [ 398.895457][ T5817] usb 4-1: config 0 has an invalid interface number: 31 but max is 0 [ 398.914573][ T5817] usb 4-1: config 0 has no interface number 0 [ 398.944235][ T5817] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 398.959252][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/975.tmp-b7:2' failed: Read-only file system [ 398.982504][ T5817] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 399.001435][ T5817] usb 4-1: Product: syz [ 399.011568][ T5817] usb 4-1: Manufacturer: syz [ 399.016218][ T5817] usb 4-1: SerialNumber: syz [ 399.037588][ T5824] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 399.048507][ T5817] usb 4-1: config 0 descriptor?? [ 399.060838][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/975.tmp-b7:2' failed: Read-only file system [ 399.072245][T15211] loop0: detected capacity change from 0 to 32768 [ 399.124666][T15211] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 399.172183][T15223] loop2: detected capacity change from 0 to 4096 [ 399.223823][T15223] ntfs3: loop2: It is recommened to use chkdsk. [ 399.231339][ T8410] udevd[8410]: symlink '../../loop0' '/dev/disk/by-diskseq/976.tmp-b7:0' failed: Read-only file system [ 399.243489][ T5824] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 399.248665][ T8410] udevd[8410]: symlink '../../loop0' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:0' failed: Read-only file system [ 399.280986][ T5817] usb 4-1: Found UVC 0.04 device syz (046d:08c3) [ 399.289011][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 399.296910][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 399.311313][ T5824] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 399.336646][ T5817] usb 4-1: Failed to initialize entity for entity 6 [ 399.341590][T15211] [ 399.343887][ T5817] usb 4-1: Failed to register entities (-22). [ 399.345572][T15211] ====================================================== [ 399.345579][T15211] WARNING: possible circular locking dependency detected [ 399.353378][ T5824] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 399.358627][T15211] 6.6.100-syzkaller #0 Not tainted [ 399.358639][T15211] ------------------------------------------------------ [ 399.358644][T15211] syz.0.3969/15211 is trying to acquire lock: [ 399.358653][T15211] ffff88805c4aa2e0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 399.358704][T15211] [ 399.358704][T15211] but task is already holding lock: [ 399.358709][T15211] ffff88805c4aa378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x320 [ 399.358749][T15211] [ 399.358749][T15211] which lock already depends on the new lock. [ 399.358749][T15211] [ 399.358755][T15211] [ 399.358755][T15211] the existing dependency chain (in reverse order) is: [ 399.358761][T15211] [ 399.358761][T15211] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}: [ 399.358790][T15211] down_read+0x46/0x2e0 [ 399.358810][T15211] ocfs2_init_acl+0x2fa/0x720 [ 399.358831][T15211] ocfs2_mknod+0x12e5/0x20f0 [ 399.358846][T15211] ocfs2_create+0x196/0x410 [ 399.358862][T15211] path_openat+0x1277/0x3190 [ 399.358882][T15211] do_filp_open+0x1c5/0x3d0 [ 399.358900][T15211] do_sys_openat2+0x12c/0x1c0 [ 399.358917][T15211] __x64_sys_openat+0x139/0x160 [ 399.358932][T15211] do_syscall_64+0x55/0xb0 [ 399.358947][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 399.358968][T15211] [ 399.358968][T15211] -> #3 (jbd2_handle){++++}-{0:0}: [ 399.358992][T15211] start_this_handle+0x1e9d/0x20c0 [ 399.359007][T15211] jbd2__journal_start+0x2bb/0x5b0 [ 399.359021][T15211] jbd2_journal_start+0x2a/0x40 [ 399.359035][T15211] ocfs2_start_trans+0x376/0x6c0 [ 399.359053][T15211] ocfs2_shutdown_local_alloc+0x201/0xa10 [ 399.359067][T15211] ocfs2_dismount_volume+0x1e2/0x890 [ 399.366148][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 399.378817][T15211] generic_shutdown_super+0x134/0x2b0 [ 399.378851][T15211] kill_block_super+0x44/0x90 [ 399.378863][T15211] deactivate_locked_super+0x97/0x100 [ 399.378880][T15211] cleanup_mnt+0x429/0x4c0 [ 399.378894][T15211] task_work_run+0x1ce/0x250 [ 399.378913][T15211] exit_to_user_mode_loop+0xe6/0x110 [ 399.378932][T15211] exit_to_user_mode_prepare+0xb1/0x140 [ 399.378949][T15211] syscall_exit_to_user_mode+0x1a/0x50 [ 399.378969][T15211] do_syscall_64+0x61/0xb0 [ 399.378983][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 399.379005][T15211] [ 399.379005][T15211] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 399.379034][T15211] down_read+0x46/0x2e0 [ 399.379051][T15211] ocfs2_start_trans+0x36a/0x6c0 [ 399.379071][T15211] ocfs2_shutdown_local_alloc+0x201/0xa10 [ 399.379093][T15211] ocfs2_dismount_volume+0x1e2/0x890 [ 399.379109][T15211] generic_shutdown_super+0x134/0x2b0 [ 399.379129][T15211] kill_block_super+0x44/0x90 [ 399.379143][T15211] deactivate_locked_super+0x97/0x100 [ 399.379163][T15211] cleanup_mnt+0x429/0x4c0 [ 399.379177][T15211] task_work_run+0x1ce/0x250 [ 399.379194][T15211] exit_to_user_mode_loop+0xe6/0x110 [ 399.379212][T15211] exit_to_user_mode_prepare+0xb1/0x140 [ 399.379230][T15211] syscall_exit_to_user_mode+0x1a/0x50 [ 399.379249][T15211] do_syscall_64+0x61/0xb0 [ 399.379264][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 399.379284][T15211] [ 399.379284][T15211] -> #1 (sb_internal#3){.+.+}-{0:0}: [ 399.379308][T15211] ocfs2_start_trans+0x26b/0x6c0 [ 399.379325][T15211] ocfs2_zero_extend+0x8c2/0x2620 [ 399.379339][T15211] ocfs2_extend_no_holes+0x268/0x490 [ 399.379356][T15211] ocfs2_extend_file+0x1e5/0x500 [ 399.379372][T15211] ocfs2_setattr+0xa0b/0x1b20 [ 399.379389][T15211] notify_change+0xb0d/0xe10 [ 399.379404][T15211] do_truncate+0x19b/0x220 [ 399.379418][T15211] do_sys_ftruncate+0x325/0x3d0 [ 399.379432][T15211] do_syscall_64+0x55/0xb0 [ 399.379446][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 399.379466][T15211] [ 399.379466][T15211] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}: [ 399.379490][T15211] __lock_acquire+0x2ddb/0x7c80 [ 399.379506][T15211] lock_acquire+0x197/0x410 [ 399.379520][T15211] down_write+0x97/0x1f0 [ 399.379537][T15211] ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 399.379554][T15211] ocfs2_xattr_set+0x596/0x11f0 [ 399.379570][T15211] ocfs2_set_acl+0x4e1/0x590 [ 399.388158][ T5824] usb 2-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 399.391764][T15211] ocfs2_iop_set_acl+0x1ab/0x2a0 [ 399.391794][T15211] vfs_remove_acl+0x4e3/0x740 [ 399.391811][T15211] path_removexattr+0x23b/0x3f0 [ 399.391828][T15211] __x64_sys_removexattr+0x60/0x70 [ 399.391844][T15211] do_syscall_64+0x55/0xb0 [ 399.391859][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 399.391878][T15211] [ 399.391878][T15211] other info that might help us debug this: [ 399.391878][T15211] [ 399.391884][T15211] Chain exists of: [ 399.391884][T15211] &ocfs2_file_ip_alloc_sem_key --> jbd2_handle --> &oi->ip_xattr_sem [ 399.391884][T15211] [ 399.391910][T15211] Possible unsafe locking scenario: [ 399.391910][T15211] [ 399.391914][T15211] CPU0 CPU1 [ 399.391918][T15211] ---- ---- [ 399.391921][T15211] lock(&oi->ip_xattr_sem); [ 399.391930][T15211] lock(jbd2_handle); [ 399.391940][T15211] lock(&oi->ip_xattr_sem); [ 399.391951][T15211] lock(&ocfs2_file_ip_alloc_sem_key); [ 399.391961][T15211] [ 399.391961][T15211] *** DEADLOCK *** [ 399.391961][T15211] [ 399.391965][T15211] 3 locks held by syz.0.3969/15211: [ 399.400112][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 399.409531][T15211] #0: ffff888024f76418 (sb_writers#17){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 399.409593][T15211] #1: ffff88805c4aa658 (&sb->s_type->i_mutex_key#27){+.+.}-{3:3}, at: vfs_remove_acl+0xf4/0x740 [ 399.409642][T15211] #2: ffff88805c4aa378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x320 [ 399.409686][T15211] [ 399.409686][T15211] stack backtrace: [ 399.409693][T15211] CPU: 0 PID: 15211 Comm: syz.0.3969 Not tainted 6.6.100-syzkaller #0 [ 399.409709][T15211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 399.409720][T15211] Call Trace: [ 399.409728][T15211] [ 399.409737][T15211] dump_stack_lvl+0x16c/0x230 [ 399.409758][T15211] ? load_image+0x3b0/0x3b0 [ 399.409779][T15211] ? show_regs_print_info+0x20/0x20 [ 399.409800][T15211] ? print_circular_bug+0x12b/0x1a0 [ 399.409821][T15211] check_noncircular+0x2bd/0x3c0 [ 399.409842][T15211] ? print_deadlock_bug+0x5d0/0x5d0 [ 399.409859][T15211] ? lockdep_lock+0xe0/0x220 [ 399.409878][T15211] ? _find_first_zero_bit+0xd3/0x100 [ 399.409902][T15211] __lock_acquire+0x2ddb/0x7c80 [ 399.409927][T15211] ? asan.module_dtor+0x20/0x20 [ 399.409954][T15211] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 399.409975][T15211] ? verify_lock_unused+0x140/0x140 [ 399.409994][T15211] ? mark_lock+0x94/0x320 [ 399.410011][T15211] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 399.410025][T15211] ? trace_irq_disable+0x37/0xe0 [ 399.410044][T15211] ? lock_chain_count+0x20/0x20 [ 399.410061][T15211] lock_acquire+0x197/0x410 [ 399.410083][T15211] ? ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 399.410104][T15211] ? __might_sleep+0xe0/0xe0 [ 399.410120][T15211] ? read_lock_is_recursive+0x20/0x20 [ 399.410136][T15211] ? lock_acquire+0x1f2/0x410 [ 399.420514][ T5824] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.428147][T15211] down_write+0x97/0x1f0 [ 399.428179][T15211] ? ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 399.428197][T15211] ? down_read_killable+0x340/0x340 [ 399.428216][T15211] ? ocfs2_xattr_set+0x56f/0x11f0 [ 399.428236][T15211] ? __lock_acquire+0x7c80/0x7c80 [ 399.428253][T15211] ? ocfs2_xattr_block_find+0x154/0x4c0 [ 399.428273][T15211] ocfs2_try_remove_refcount_tree+0xb7/0x320 [ 399.428293][T15211] ? ocfs2_remove_refcount_tree+0xd50/0xd50 [ 399.428312][T15211] ? up_write+0x1c3/0x410 [ 399.428328][T15211] ocfs2_xattr_set+0x596/0x11f0 [ 399.428356][T15211] ? __ocfs2_xattr_set_handle+0xf10/0xf10 [ 399.428374][T15211] ? mark_lock+0x94/0x320 [ 399.428392][T15211] ? __lock_acquire+0x1334/0x7c80 [ 399.428415][T15211] ? ocfs2_inode_lock_tracker+0x3ec/0x660 [ 399.428434][T15211] ? do_raw_spin_lock+0x121/0x2c0 [ 399.428454][T15211] ? __rwlock_init+0x150/0x150 [ 399.428474][T15211] ? do_raw_spin_unlock+0x121/0x230 [ 399.428494][T15211] ? _raw_spin_unlock+0x28/0x40 [ 399.428514][T15211] ? ocfs2_inode_lock_tracker+0x3ec/0x660 [ 399.428531][T15211] ? verify_lock_unused+0x140/0x140 [ 399.428552][T15211] ? ocfs2_inode_lock_atime+0x4e0/0x4e0 [ 399.428581][T15211] ocfs2_set_acl+0x4e1/0x590 [ 399.428609][T15211] ocfs2_iop_set_acl+0x1ab/0x2a0 [ 399.428628][T15211] ? read_lock_is_recursive+0x20/0x20 [ 400.230738][T15211] ? ocfs2_xattr_get+0x220/0x220 [ 400.235677][T15211] ? evm_inode_set_acl+0xbb/0x410 [ 400.240695][T15211] ? __mnt_want_write+0x68/0x2a0 [ 400.245624][T15211] ? down_write+0x162/0x1f0 [ 400.250118][T15211] ? down_read_killable+0x340/0x340 [ 400.255303][T15211] ? evm_revalidate_status+0x4f/0xb0 [ 400.260580][T15211] ? make_vfsuid+0x51/0xb0 [ 400.264982][T15211] ? inode_owner_or_capable+0xf0/0x1c0 [ 400.270956][T15211] vfs_remove_acl+0x4e3/0x740 [ 400.275629][T15211] path_removexattr+0x23b/0x3f0 [ 400.280479][T15211] ? listxattr+0x280/0x280 [ 400.284969][T15211] ? do_futex+0x2ff/0x3e0 [ 400.289306][T15211] ? lock_chain_count+0x20/0x20 [ 400.294231][T15211] ? syscall_enter_from_user_mode+0x25/0x80 [ 400.300116][T15211] __x64_sys_removexattr+0x60/0x70 [ 400.305225][T15211] do_syscall_64+0x55/0xb0 [ 400.309747][T15211] ? clear_bhb_loop+0x40/0x90 [ 400.314430][T15211] ? clear_bhb_loop+0x40/0x90 [ 400.319101][T15211] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 400.324994][T15211] RIP: 0033:0x7f665998e9a9 [ 400.329403][T15211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 400.349092][T15211] RSP: 002b:00007f665a809038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5 [ 400.357500][T15211] RAX: ffffffffffffffda RBX: 00007f6659bb5fa0 RCX: 00007f665998e9a9 [ 400.365457][T15211] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200 [ 400.373497][T15211] RBP: 00007f6659a10d69 R08: 0000000000000000 R09: 0000000000000000 [ 400.381467][T15211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 400.389438][T15211] R13: 0000000000000000 R14: 00007f6659bb5fa0 R15: 00007fff87e4f118 [ 400.397410][T15211] [ 400.423710][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc1c00 [ 400.439317][ T5824] usb 2-1: config 0 descriptor?? [ 400.442170][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc2c00 [ 400.474378][ T5779] ocfs2: Unmounting device (7,0) on (node local) [ 400.503807][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc4c00 [ 400.515990][ T8410] udevd[8410]: symlink '../../loop0' '/dev/disk/by-diskseq/976.tmp-b7:0' failed: Read-only file system [ 400.533965][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-diskseq/977.tmp-b7:2' failed: Read-only file system [ 400.535532][T14880] usb 4-1: USB disconnect, device number 31 [ 400.545932][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffc8c00 [ 400.545979][T15223] ntfs3: loop2: try to read out of volume at offset 0x3fffffd0c00 [ 400.556975][ T8410] udevd[8410]: symlink '../../loop0' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:0' failed: Read-only file system [ 400.588575][ T8409] udevd[8409]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 400.855516][ T5824] kye 0003:0458:5011.0026: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 400.877636][ T5824] kye 0003:0458:5011.0026: hidraw0: USB HID vff.fe Device [HID 0458:5011] on usb-dummy_hcd.1-1/input0 [ 400.893148][ T5824] kye 0003:0458:5011.0026: tablet-enabling feature report not found [ 400.902554][ T5824] kye 0003:0458:5011.0026: tablet enabling failed [ 401.064865][ T5862] usb 2-1: USB disconnect, device number 22 [ 402.527954][ T76] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 408.277846][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration