last executing test programs: 7m5.724080117s ago: executing program 4 (id=12628): r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000003c0)={0x3, 0x6, 0x3, {0x9, @pix={0x2, 0xffffffff, 0x4c314356, 0x8, 0xfffffffa, 0x81, 0xd, 0x9, 0x1, 0x0, 0x1, 0x4}}, 0x7}) 7m5.446670411s ago: executing program 4 (id=12632): r0 = fanotify_init(0x0, 0x80000) fanotify_mark(r0, 0x60e, 0x48000030, 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00') 7m5.105250142s ago: executing program 4 (id=12636): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000018010000756d6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000400000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 7m4.775831228s ago: executing program 4 (id=12642): syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f00000004c0)={[{@uid={'uid', 0x3d, 0xee00}}, {@part={'part', 0x3d, 0x9}}, {@nobarrier}, {@force}, {@nls={'nls', 0x3d, 'iso8859-13'}}, {@gid={'gid', 0x3d, 0xee00}}, {@nobarrier}, {@uid}, {}]}, 0xfe, 0x5ee, &(0x7f0000000680)="$eJzs3c1vHGcdB/DvbGLHm0rpJk2agpCwygHUiMQvkQkSElAKslCFKnHp1Uo2tZVNGtlb5PYAAXFu/4VyMGcOnFCQcuDMv+CqRwR334xmdvYlseuu87ab9PORZp/n2eeZZ37z0+yjmbWsDfCNtfp+Zh40k9VL726X7d2d5c7uzvLtfj3JqSSNZC5JUb799yRfJvfS2/KtfsdIeUDx2er19fufXuy15uqtGl8ctd94BrG0erFW5dOab+nx5iservaa80nO1SVM3H7fF4d2P+HnEgCYZkVy4rD3W8np+ma9fA7o3RX37rFfaPcmHQAAAAA8B6/uZS/bOTPpOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBFUv/+f1FvjX59PkX/9/9n6/dS119oDyYdAAAAAAAAAAAc9MVxd/juXvaynTP99n5R/c3/zapxvnp9JR9lK+1s5nK2s5ZuutnMYpLWyESz22vd7ubiGHsuHbrn0mOfMwAAAAAAAAC8xE6MO/BPWR3+/R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKZBkZzoFdV2vl9vpXEyyVyS2XLcveR+v/4iezDpAAAAAOA5eHUve9nOmX57v6ie+V+vnvvn8lHupJuNdNNJOzeq7wJ6T/2N3Z3lzu7O8u1yOzjvz/93rDCqGdP77uHwIy9UIy4M9ljNr/LbXMp83stmNvK7rKWbdubzTlVbS5FW/e1Fqx/n4fH+7KHWe18X6xtVJM3czEYV2+Vcz4fp5EYa1TlUY44+4h/L7BQ/rY2Zoxt1WZ7Rr+tyOrSqjMwMMrJQ577MxtmjM3HM6+TRIy2mMfgO6vwzyPnpuixz/c5U53xp5Op7/ehMJAtL/7273rlza/3m1qXpOaXH9GgmlkcycfHYmdjf3//DwWOcfPan8RTM1tnoraLHWy3frPY9k438Jh/mRtq5loVcy0quZjkr+XFWRvJ6YYzPWuN4n7Xv/aCuzCT5ZV1OhzKvZ0fyOrrStaq+0XeGWTr39Fekk9+uK+XF+vbUrUhnH1mb+5l47ehM/GW/fN3q3Lm1ub52d8zjfb8uywz8YqoyUV4v5warxsNXR9n32qF9i1Xf+UFf40DfhUHf131SZ+t7uIMzLVV9Fw/tW6763hj0vZLmIKnDuxwApt7pt07PNv/T/Hfz8+afm+vNd+fePnXt1HdmM/Ovk/848bfGXxs/Kd7K5/n98PkfAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4fFsff3JrrdNpb6qoTL4yl2Tcwf2fKJp0zC9pZcILE/DMXenevntl6+NPfrhxe+2D9gftO1cXV5auXl1Y+dG1Kzc3Ou2F3uukwwQAnqLhTf+kIwEAAAAAAAAAAAAAAL7K8/h34kmfIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HJbfT8zD1JkceHyQtne3VnulFu/Phw5l6QoK/9M8mVyL70trZHpiq86TvHZ6vX1+59eHM411x9fHLXfeB6KpfFITE8639ITzzc8w/kk5+oSJu7/AQAA//9jygD6") mount$9p_unix(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1018, 0x0) 7m4.13424867s ago: executing program 4 (id=12650): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f00000001c0)={[{@noinit_itable}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}, {@noauto_da_alloc}]}, 0x1, 0x515, &(0x7f0000000240)="$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") quotactl$Q_GETFMT(0xffffffff80000401, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 7m3.582920964s ago: executing program 4 (id=12657): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2400000071000100000000000000000007"], 0x24}, 0x1, 0x0, 0x0, 0x4000010}, 0x20008000) 7m2.852572438s ago: executing program 32 (id=12657): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2400000071000100000000000000000007"], 0x24}, 0x1, 0x0, 0x0, 0x4000010}, 0x20008000) 6m38.256032394s ago: executing program 2 (id=12906): openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) openat$ttynull(0xffffff9c, &(0x7f00000000c0), 0x24303, 0x0) 6m37.457950192s ago: executing program 2 (id=12914): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000200)={0x0, 0x1002000, 0x1000, 0x80000000, 0x2}, 0x20) 6m37.182487092s ago: executing program 2 (id=12918): syz_mount_image$iso9660(&(0x7f0000000100), &(0x7f0000000040)='./file2\x00', 0x200600, &(0x7f0000000140)=ANY=[@ANYRES64=0x0], 0x1, 0x423, &(0x7f0000000980)="$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") syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126f4b1, &(0x7f0000004140)=ANY=[@ANYRES16, @ANYRES64, @ANYRES16, @ANYRES16, @ANYRESDEC, @ANYRES16, @ANYRES16, @ANYRES8=0x0, @ANYRESHEX=0x0, @ANYRES32], 0x5, 0x0, &(0x7f0000000000)) 6m36.770775246s ago: executing program 2 (id=12923): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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") mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 6m35.969024511s ago: executing program 2 (id=12933): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0x4, 0x0, &(0x7f0000000000)) 6m35.142791885s ago: executing program 2 (id=12943): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x10000000, 0x0, 0x32315559, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}) 6m34.63612018s ago: executing program 33 (id=12943): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x10000000, 0x0, 0x32315559, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}) 6.702997801s ago: executing program 0 (id=17836): r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000001c0)={0x980000, 0x1, 0x7, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x980913, 0x0, '\x00', @p_u8=0x0}}) 6.357629655s ago: executing program 0 (id=17840): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0x401, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x60808, 0x120a8}}}}}}, @IFLA_LINK_NETNSID={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004004}, 0x8080) 6.014495221s ago: executing program 0 (id=17844): syz_usb_connect(0x5, 0x34, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000094ba78084e080110aeed010203010902220001000000000904000001437b6a00090500000000000000070594ef"], 0x0) syz_open_dev$evdev(&(0x7f0000005bc0), 0x4, 0x100) 3.484852993s ago: executing program 0 (id=17865): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119, @ANYRES8], 0xfd, 0x443c, &(0x7f0000008940)="$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") symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 2.954255694s ago: executing program 6 (id=17871): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18020000fb7fffff000000005c6300008500000036000000850000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 2.658071557s ago: executing program 5 (id=17873): r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r0, 0x107, 0x12, 0x0, &(0x7f0000000040)) 2.369996613s ago: executing program 1 (id=17874): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0) write$P9_RSTATu(r0, &(0x7f00000004c0)={0x2fd, 0x7d, 0x2, {{0x500, 0x1bc, 0x0, 0x0, {}, 0x0, 0x0, 0x952d, 0x0, 0x1b, '\x04nodev{\xff\x0f\x00\x00\x94\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x00\x00\x00', 0x32, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\v+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x1d, '\xcf\xc2m\x00\x00\x00\x00\x80\x00\x00\x00pS\xfc', 0x11f, '\xf8\xf6i\xfbqm\x03\x00\x00\x00\x00\x00\x00\x00[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4RC\x01n\xef C_\xdad\x9a7\x00\x00\xc6P\xb5o\xec\xc7\x12\xb2\x8c\xcb\xac\x99vb\x8c\x84\xc7\xf9*\xc9\x90\xde+\x00\xca=\xae}YOF\v,ev\x90\xa0\xcc\\\xb3\xff\xc7\xae\x9c\xf1\xffn\xc1\xd2\xdfY\xaf\r\x8a\xffi\xa0\x00W\'\xd6Gi0\xee\xb0{|S\'\xac\xf7l\xf7\xff\\\xfd\x05g\xa5\x14\x9aBC\x05\x9c\x95\x00\x88m(:=\xe4\xa4\xfa\x01\xa5\xe7\x02\xcd\xd5\xff\x13l\xea\xc5\xd8\x94s8\x7f\xa2\xe7\x97;\f\r~\x8c\xd8\xe8\xd3q\xb6q\xf0\xcf3\xe6_\x94\x97s\xd2\x91\x0e\x1d\xd4\x8cb\xe5\xefe\xa8\x9e\xfb]\xd5rpa\xfe\x1e\xd4\x96_-(v\x97\x17\xf0\x8d\xf0\xcb\x01_\x8f\xd0w\v\xb0\xc3]\xdfl\x0f\x81\x88\xad\xf6V\xff\xfd\xe9\xcb\xad\xa3\x053\x8az\xd8lXl\n\xf8\x052\x06'}, 0x172, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x01r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12\\lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$N\n\xbaW\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x057>\xa6\xa7\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x2fd) 2.337408046s ago: executing program 3 (id=17875): set_mempolicy(0x4005, &(0x7f0000000080)=0x4, 0x8) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 2.202354462s ago: executing program 5 (id=17876): write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xa, {"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", 0x1000}}, 0xe5) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 2.04558903s ago: executing program 7 (id=17877): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05604, &(0x7f0000000cc0)={0x1}) 1.914235069s ago: executing program 1 (id=17878): prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000256000/0x2000)=nil, 0x2000, &(0x7f0000000000)='\x00') mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000) 1.820055935s ago: executing program 5 (id=17879): syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf11, &(0x7f0000001e80)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 1.742282918s ago: executing program 6 (id=17880): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000001c0)={0x0, 0x6, 0x9}, 0x8) 1.672571997s ago: executing program 3 (id=17881): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) 1.54086266s ago: executing program 1 (id=17882): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000180)={0x0, 0x1, 0x15, 0x1b, 0x200, &(0x7f0000000880)="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"}) 1.540708843s ago: executing program 7 (id=17883): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x13, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4}, [@printk={@i, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 1.441839878s ago: executing program 6 (id=17884): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x0) 1.310425271s ago: executing program 3 (id=17885): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0) 1.241918142s ago: executing program 1 (id=17886): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x304, 0x10, &(0x7f0000000000), 0xfffffea2}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="63eced8ec6dc3f0adf33c9f7b986", 0x0, 0xe5e7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.15769569s ago: executing program 7 (id=17887): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1f, 0xc, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x2a}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xa8}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffd}, 0x39) 1.156904489s ago: executing program 6 (id=17888): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$cgroup2(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080), 0x1004000, &(0x7f00000002c0)={[{@memory_localevents}]}) 943.909666ms ago: executing program 3 (id=17889): fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0x4}, 0x56) 924.770538ms ago: executing program 6 (id=17890): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000300)={0xf0f029, 0x6}) 871.012393ms ago: executing program 5 (id=17891): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) fallocate(r0, 0x8, 0x4, 0x7) 845.462058ms ago: executing program 7 (id=17892): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xfe, 0x0, 0x0) 680.761687ms ago: executing program 0 (id=17893): r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@gettaction={0x24, 0x32, 0x201, 0x70bd28, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x50) 634.87121ms ago: executing program 3 (id=17894): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x60, &(0x7f0000000000)=[{&(0x7f0000000140)="d80000001c0081044e81f782db44b9040a1d08020a000000401296a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 622.80632ms ago: executing program 7 (id=17895): syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000180)='./file2\x00', 0x4000, &(0x7f00000000c0)=ANY=[@ANYRES64=0x0, @ANYBLOB="8cfb8bce6002746ae68e5d649d1536e95c052e93c4194b7a3c56bd2c280d3685cdc3f824719f02b03cd79b9877ca554d1089845d076a19197f81291bf3ce720a2af6539e92807b9ebb5dc636e56545d5f42bb10d2f7fe8514f606937313917924ab3d56797428efce9f8273bbcf6b37cf68c54c059036a24850cc312c453068415c11e9b81b6bf003a0659a2e34706870bb1a095f0fb36f8", @ANYRESDEC, @ANYRES32], 0x1, 0x210, &(0x7f0000000700)="$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") truncate(&(0x7f0000000180)='./file3\x00', 0x148452) 597.450975ms ago: executing program 1 (id=17896): r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1) 564.59937ms ago: executing program 6 (id=17897): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) 375.008495ms ago: executing program 0 (id=17898): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2}]}}}]}, 0x5c}}, 0x0) 341.796058ms ago: executing program 5 (id=17899): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/ip_mr_cache\x00') preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/20, 0x14}], 0x1, 0x0, 0x0) 319.430024ms ago: executing program 3 (id=17900): r0 = openat$vimc0(0xffffff9c, &(0x7f0000001900), 0x2, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f00000019c0)={0x5, 0x2}) 234.540762ms ago: executing program 1 (id=17901): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f0000000140), 0xa00}, 0x20) 180.682714ms ago: executing program 7 (id=17902): r0 = io_uring_setup(0x77bb, &(0x7f00000000c0)={0x0, 0xab40, 0x2, 0xf7fffffe, 0x209}) io_uring_enter(r0, 0x800000, 0x2, 0xf, &(0x7f0000000000)={[0x2000000]}, 0x18) 0s ago: executing program 5 (id=17903): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)={0x28, 0x2e, 0x503, 0x0, 0x0, "", [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64=0xd}, @typed={0x8, 0x110, 0x0, 0x0, @ipv4=@loopback}]}]}, 0x28}], 0x1}, 0x14008010) kernel console output (not intermixed with test programs): butes in process `syz.3.15854'. [ 1709.353943][T10682] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1709.379665][T10682] ext4 filesystem being mounted at /442/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1709.662040][ T3771] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1711.029462][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 1711.056696][T10743] netlink: 'syz.5.15884': attribute type 21 has an invalid length. [ 1711.099659][T10743] IPv6: NLM_F_CREATE should be specified when creating new route [ 1711.694952][T10764] loop3: detected capacity change from 0 to 256 [ 1711.739868][T10763] veth2: entered allmulticast mode [ 1711.766980][T10764] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1711.783588][T19324] usb 2-1: new high-speed USB device number 70 using dummy_hcd [ 1711.961439][T19324] usb 2-1: Using ep0 maxpacket: 8 [ 1711.970823][T19324] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 1711.996604][T19324] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1712.048783][T19324] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 1712.100251][T19324] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1712.158358][T19324] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40 [ 1712.176261][T19324] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1712.195421][T19324] usb 2-1: Product: syz [ 1712.209597][T19324] usb 2-1: Manufacturer: syz [ 1712.216973][T19324] usb 2-1: SerialNumber: syz [ 1712.267123][T10758] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1712.296457][T19324] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22 [ 1712.316125][T19324] usbtest 2-1:1.0: Linux user mode ISO test driver [ 1712.322811][T19324] usbtest 2-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt) [ 1712.614831][ T5850] usb 2-1: USB disconnect, device number 70 [ 1713.127866][T10807] netdevsim netdevsim5 : renamed from netdevsim0 [ 1713.294006][T10813] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15917'. [ 1713.314656][T10815] openvswitch: netlink: VLAN attribute unexpected. [ 1713.859003][T10833] loop5: detected capacity change from 0 to 256 [ 1713.920018][T10833] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x9059ffb0, utbl_chksum : 0xe619d30d) [ 1713.958989][T10841] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15928'. [ 1714.334654][T10851] loop0: detected capacity change from 0 to 64 [ 1714.434121][T10851] syz.0.15934: attempt to access beyond end of device [ 1714.434121][T10851] loop0: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 1714.504127][T10851] Buffer I/O error on dev loop0, logical block 134217734, async page read [ 1714.914558][T10866] netlink: 'syz.6.15942': attribute type 9 has an invalid length. [ 1714.947076][T10866] netlink: 24 bytes leftover after parsing attributes in process `syz.6.15942'. [ 1716.166343][T10899] loop6: detected capacity change from 0 to 8192 [ 1716.304637][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.326366][T10916] IPv6: NLM_F_CREATE should be specified when creating new route [ 1716.351659][T10899] FAT-fs (loop6): Filesystem has been set read-only [ 1716.427552][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.472229][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.507685][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.561523][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.609826][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.644956][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.705876][T10899] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 1716.822564][ T30] kauditd_printk_skb: 57 callbacks suppressed [ 1716.822593][ T30] audit: type=1800 audit(2000001449.360:353): pid=10899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.15956" name="file2" dev="loop6" ino=1048781 res=0 errno=0 [ 1717.073100][T10936] ip6erspan0: entered promiscuous mode [ 1717.299042][T10944] ip6t_srh: unknown srh match flags 5F28 [ 1718.393558][T10986] netlink: 'syz.5.15997': attribute type 1 has an invalid length. [ 1718.429146][T10985] loop3: detected capacity change from 0 to 256 [ 1718.482245][T10986] netlink: 'syz.5.15997': attribute type 2 has an invalid length. [ 1719.083754][T10997] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1719.131546][T10997] 8021q: adding VLAN 0 to HW filter on device team0 [ 1719.174409][T10997] bridge0: port 3(ªªªªªª) entered blocking state [ 1719.182862][T10997] bridge0: port 3(ªªªªªª) entered forwarding state [ 1719.259385][T11010] netlink: 'syz.3.16010': attribute type 21 has an invalid length. [ 1719.356304][T10997] bond_slave_0: entered promiscuous mode [ 1719.381923][T10997] bond_slave_1: entered promiscuous mode [ 1719.447926][T10997] xfrm0: left promiscuous mode [ 1719.465836][T10997] xfrm0: left allmulticast mode [ 1719.515188][T10997] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1719.543036][T11019] loop0: detected capacity change from 0 to 256 [ 1719.623102][T10997] veth1_macvtap: left promiscuous mode [ 1719.649398][T11019] FAT-fs (loop0): Directory bread(block 64) failed [ 1719.663857][T10997] veth0_macvtap: left promiscuous mode [ 1719.677439][T11019] FAT-fs (loop0): Directory bread(block 65) failed [ 1719.698844][T10997] veth0_macvtap: left allmulticast mode [ 1719.707092][T11019] FAT-fs (loop0): Directory bread(block 66) failed [ 1719.727859][T11019] FAT-fs (loop0): Directory bread(block 67) failed [ 1719.738687][T10997] veth0_macvtap: entered promiscuous mode [ 1719.745758][T11019] FAT-fs (loop0): Directory bread(block 68) failed [ 1719.759496][T11019] FAT-fs (loop0): Directory bread(block 69) failed [ 1719.777995][T11019] FAT-fs (loop0): Directory bread(block 70) failed [ 1719.788510][T10997] veth1_macvtap: entered promiscuous mode [ 1719.796730][T11019] FAT-fs (loop0): Directory bread(block 71) failed [ 1719.812362][T11019] FAT-fs (loop0): Directory bread(block 72) failed [ 1719.829969][T11019] FAT-fs (loop0): Directory bread(block 73) failed [ 1719.837776][T10997] netdevsim netdevsim5 : left allmulticast mode [ 1719.849058][T10997] 8021q: adding VLAN 0 to HW filter on device  [ 1719.867383][T10997] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1719.887260][T10997] netdevsim netdevsim5 netdevsim1: entered promiscuous mode [ 1719.904388][T10997] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1719.920067][T10997] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1719.946421][T10997] geneve2: left promiscuous mode [ 1719.956484][T10997] geneve2: left allmulticast mode [ 1719.972724][T10997] A link change request failed with some changes committed already. Interface geneve2 may have been left with an inconsistent configuration, please check. [ 1720.022739][T31463] bridge0: port 1(bridge_slave_0) entered blocking state [ 1720.029982][T31463] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1720.103587][T31463] bridge0: port 2(bridge_slave_1) entered blocking state [ 1720.110843][T31463] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1720.273732][T11010] netlink: 132 bytes leftover after parsing attributes in process `syz.3.16010'. [ 1721.340723][T11063] loop1: detected capacity change from 0 to 4096 [ 1721.397215][T11063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1721.440814][T11063] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 18176 out of range 0-8 [ 1721.452290][T11063] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1721.462374][T11063] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.16034: Failed to acquire dquot type 0 [ 1721.544721][T29228] usb 4-1: new high-speed USB device number 46 using dummy_hcd [ 1721.596790][ T5627] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1721.780914][T29228] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 1721.811714][T29228] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1721.852654][T29228] usb 4-1: config 0 has no interface number 0 [ 1721.881728][T29228] usb 4-1: config 0 interface 2 has no altsetting 0 [ 1721.910704][T29228] usb 4-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce [ 1721.941845][T29228] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1721.981280][T29228] usb 4-1: Product: syz [ 1722.003551][T11034] loop0: detected capacity change from 0 to 32768 [ 1722.023811][T29228] usb 4-1: Manufacturer: syz [ 1722.032738][T29228] usb 4-1: SerialNumber: syz [ 1722.095336][T29228] usb 4-1: config 0 descriptor?? [ 1722.116450][T11034] blkno = 8ed2c, nblocks = 1 [ 1722.139543][T11034] ERROR: (device loop0): dbFree: block to be freed is outside the map [ 1722.139543][T11034] [ 1722.172023][T11034] ERROR: (device loop0): remounting filesystem as read-only [ 1722.194824][T11034] ialloc: diAlloc returned -17! [ 1722.363606][T11091] loop6: detected capacity change from 0 to 2048 [ 1722.467205][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1722.488501][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1722.488603][T11091] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1722.680531][T19312] usb 4-1: USB disconnect, device number 46 [ 1722.709963][T19312] dvb-usb: generic DVB-USB module successfully deinitialized and disconnected. [ 1722.722652][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1722.779103][T11096] smbdirect: ib_dev[syz0]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000 [ 1722.850144][T11096] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6 [ 1722.853637][ T3029] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1722.927720][T11096] smbdirect: ib_dev[syz0]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008 [ 1723.003590][T11096] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1723.188422][T11096] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 1723.643232][T11122] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 1723.667754][T11122] gretap2: entered allmulticast mode [ 1723.701495][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1723.817654][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1723.853847][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1723.899619][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1723.942701][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1723.968757][T11096] wlan1 speed is unknown, defaulting to 1000 [ 1724.255918][T11140] loop3: detected capacity change from 0 to 256 [ 1724.264266][T11141] netlink: 132 bytes leftover after parsing attributes in process `syz.0.16065'. [ 1724.288091][T11140] exfat: Deprecated parameter 'utf8' [ 1724.322883][T11140] exfat: Deprecated parameter 'namecase' [ 1724.330438][T11142] loop1: detected capacity change from 0 to 2048 [ 1724.346566][T11140] exfat: Deprecated parameter 'namecase' [ 1724.359619][T11142] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1724.381254][T11140] exfat: Deprecated parameter 'utf8' [ 1724.442650][T11140] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 1724.513076][T11142] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1724.552417][T11140] exFAT-fs (loop3): failed to test first cluster bit of root dir(5) [ 1724.667160][T11142] EXT4-fs error (device loop1): empty_inline_dir:1776: inode #12: block 5: comm syz.1.16067: bad entry in directory: directory entry overrun - offset=4, inode=13, rec_len=7952, size=60 fake=0 [ 1724.752907][T11129] loop6: detected capacity change from 0 to 32768 [ 1724.761287][T11142] EXT4-fs (loop1): Remounting filesystem read-only [ 1724.793018][T11142] EXT4-fs warning (device loop1): empty_inline_dir:1779: bad inline directory (dir #12) - inode 13, rec_len 7952, name_len 0inline size 60 [ 1724.885734][T11129] JBD2: Ignoring recovery information on journal [ 1725.038718][ T5627] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1725.116457][T11129] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1725.740501][T19312] usb 4-1: new high-speed USB device number 47 using dummy_hcd [ 1725.759295][ T3029] ocfs2: Unmounting device (7,6) on (node local) [ 1725.839216][T11174] netlink: 180 bytes leftover after parsing attributes in process `syz.7.16081'. [ 1725.910720][T19312] usb 4-1: Using ep0 maxpacket: 32 [ 1725.929357][T19312] usb 4-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1725.982074][T19312] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1726.048377][T19312] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1726.106052][T11150] loop0: detected capacity change from 0 to 32768 [ 1726.161248][T11150] Bad index:0 in slot in dtroot [ 1726.161248][T11150] [ 1726.201368][T11150] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot [ 1726.201368][T11150] [ 1726.247916][T11150] ERROR: (device loop0): remounting filesystem as read-only [ 1726.264232][T19312] gspca_nw80x: reg_w err -71 [ 1726.299082][T19312] nw80x 4-1:3.0: probe with driver nw80x failed with error -71 [ 1726.346075][T19312] usb 4-1: USB disconnect, device number 47 [ 1726.511750][T11186] openvswitch: netlink: Unknown key attributes 2 [ 1726.518516][T11185] netlink: 'syz.5.16087': attribute type 1 has an invalid length. [ 1727.587746][T11224] gre1: entered promiscuous mode [ 1728.124069][T11228] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1728.205714][T11228] 8021q: adding VLAN 0 to HW filter on device team0 [ 1728.260429][T11228] bridge0: port 3(dummy0) entered blocking state [ 1728.267784][T11228] bridge0: port 3(dummy0) entered forwarding state [ 1728.341893][T11228] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1728.570569][T19307] usb 2-1: new high-speed USB device number 71 using dummy_hcd [ 1728.667795][T11228] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1728.717093][T11228] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1728.756949][T19307] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00 [ 1728.805461][T19307] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 1728.835638][T11228] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1728.848575][T19307] usb 2-1: Product: syz [ 1728.870384][T19307] usb 2-1: SerialNumber: syz [ 1728.887868][T11228] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1728.908659][T19307] usb 2-1: config 0 descriptor?? [ 1728.982470][T11228] veth1_vlan: left promiscuous mode [ 1729.023003][T11228] veth0_vlan: left promiscuous mode [ 1729.044904][T11228] veth0_vlan: entered promiscuous mode [ 1729.048719][T11258] loop0: detected capacity change from 0 to 4096 [ 1729.086112][T11228] veth1_vlan: entered promiscuous mode [ 1729.143629][T11228] veth1_macvtap: left promiscuous mode [ 1729.162707][T11228] veth0_macvtap: left promiscuous mode [ 1729.168539][T19307] hso 2-1:0.0: Can't find BULK endpoints [ 1729.171499][T11258] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1729.239825][T11228] veth0_macvtap: entered promiscuous mode [ 1729.250593][T11267] dlm: plock device version mismatch: kernel (1.2.0), user (1952804395.1769107551.1915428975) [ 1729.286465][T11228] veth1_macvtap: entered promiscuous mode [ 1729.314671][T11258] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 18176 out of range 0-8 [ 1729.327139][T11269] loop6: detected capacity change from 0 to 4096 [ 1729.347939][T11258] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1729.378359][T11228] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1729.412227][T11228] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1729.418789][T19307] usb 2-1: USB disconnect, device number 71 [ 1729.428553][T11258] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.16122: Failed to acquire dquot type 0 [ 1729.443596][T11272] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1729.475726][T11228] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1729.536758][T11228] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1729.584177][T11271] loop3: detected capacity change from 0 to 2048 [ 1729.597328][ T5626] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1729.625918][T11271] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1729.731001][T11275] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1730.132642][T11282] kAFS: unparsable volume name [ 1730.148276][T31463] bridge0: port 1(bridge_slave_0) entered blocking state [ 1730.155525][T31463] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1730.206414][T31463] bridge0: port 2(bridge_slave_1) entered blocking state [ 1730.213668][T31463] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1730.380510][T11287] openvswitch: netlink: VXLAN extension 1 has unexpected len 8 expected 4 [ 1730.427543][ T3654] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 1730.456269][T31444] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1730.468929][T11291] overlay: Bad value for 'workdir' [ 1730.489951][T31444] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1730.547596][T11274] ip6gre1: entered promiscuous mode [ 1730.566564][T11274] ip6gre1: entered allmulticast mode [ 1730.602859][T31444] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1730.629204][T31444] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1730.644652][ T3654] usb 7-1: config 0 has an invalid interface number: 120 but max is 0 [ 1730.670036][ T3654] usb 7-1: config 0 has no interface number 0 [ 1730.695646][T11297] xt_hashlimit: size too large, truncated to 1048576 [ 1730.699004][ T3654] usb 7-1: config 0 interface 120 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1730.728166][T11297] xt_hashlimit: max too large, truncated to 1048576 [ 1730.730770][T11293] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 1730.771869][ T3654] usb 7-1: config 0 interface 120 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1730.786353][T11293] gretap1: entered allmulticast mode [ 1730.793156][ T3654] usb 7-1: config 0 interface 120 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 1730.823521][ T3654] usb 7-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 1730.880748][ T3654] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1730.960772][ T3654] usb 7-1: config 0 descriptor?? [ 1730.984562][T11283] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1731.043665][ T3654] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.120/input/input103 [ 1731.505403][ T3654] usb 7-1: USB disconnect, device number 15 [ 1731.918680][T11329] netlink: 'syz.5.16156': attribute type 21 has an invalid length. [ 1731.961029][T11329] netlink: 128 bytes leftover after parsing attributes in process `syz.5.16156'. [ 1731.978864][T11329] netlink: 3 bytes leftover after parsing attributes in process `syz.5.16156'. [ 1732.275937][T11340] loop3: detected capacity change from 0 to 512 [ 1732.300737][T11340] EXT4-fs: Ignoring removed nobh option [ 1732.330191][T11340] EXT4-fs: Ignoring removed bh option [ 1732.358209][T11340] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1732.410428][T11340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0007-000000000000 r/w without journal. Quota mode: writeback. [ 1732.446591][T11340] ext4 filesystem being mounted at /2695/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1732.464290][T11349] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 1732.487146][T11340] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 1732.499214][T11340] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1732.509226][T11340] EXT4-fs error (device loop3): ext4_acquire_dquot:7032: comm syz.3.16161: Failed to acquire dquot type 0 [ 1732.585170][ T5850] usb 2-1: new high-speed USB device number 72 using dummy_hcd [ 1732.620962][ T5636] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0007-000000000000. [ 1732.788586][ T5850] usb 2-1: Using ep0 maxpacket: 32 [ 1732.816788][ T5850] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1732.846949][ T5850] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 1732.880438][ T5850] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1732.915255][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1732.946995][ T5850] usb 2-1: Product: syz [ 1732.953841][ T5850] usb 2-1: Manufacturer: syz [ 1732.958490][ T5850] usb 2-1: SerialNumber: syz [ 1733.236858][ T5850] usb 2-1: Invalid number of CPorts: 0 [ 1733.256495][ T5850] es2_ap_driver 2-1:7.0: probe with driver es2_ap_driver failed with error -22 [ 1733.351675][T11374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16177'. [ 1733.400809][T11374] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 1733.438456][T11374] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16177'. [ 1733.514733][ T5850] usb 2-1: USB disconnect, device number 72 [ 1733.623140][T11383] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1734.488555][T11403] loop6: detected capacity change from 0 to 4096 [ 1734.571620][ T3654] usb 2-1: new high-speed USB device number 73 using dummy_hcd [ 1734.755245][ T3654] usb 2-1: Using ep0 maxpacket: 8 [ 1734.764632][T19331] IPVS: starting estimator thread 0... [ 1734.791749][ T3654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1734.835122][ T3654] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 1734.880673][ T3654] usb 2-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 1734.890074][T11420] IPVS: using max 24 ests per chain, 57600 per kthread [ 1734.926677][ T3654] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1734.961146][ T3654] usb 2-1: Product: syz [ 1734.984491][ T3654] usb 2-1: Manufacturer: syz [ 1735.013213][ T3654] usb 2-1: SerialNumber: syz [ 1735.060848][ T3654] usb 2-1: config 0 descriptor?? [ 1735.625218][T19307] usb 2-1: USB disconnect, device number 73 [ 1735.707816][T11446] loop3: detected capacity change from 0 to 2048 [ 1735.763355][T11452] siw: device registration error -23 [ 1735.777507][T11446] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1736.282218][T11458] loop5: detected capacity change from 0 to 4096 [ 1736.321039][T11458] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1736.479259][T11458] ntfs3(loop5): ino=19, mi_enum_attr [ 1736.538678][T11474] SET target dimension over the limit! [ 1736.578632][T11458] ntfs3(loop5): failed to convert "c46c" to cp1250 [ 1736.624827][T11458] ntfs3(loop5): ino=20, mi_enum_attr [ 1736.837538][T11480] loop0: detected capacity change from 0 to 2048 [ 1736.914237][T11480] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1737.032685][T11486] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1737.370075][T11495] siw: device registration error -23 [ 1737.441337][T11501] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1738.202816][T19307] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 1738.234563][T11525] loop0: detected capacity change from 0 to 4096 [ 1738.260656][T11525] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1738.388804][T19307] usb 7-1: Using ep0 maxpacket: 32 [ 1738.414853][T19307] usb 7-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1738.461806][T19307] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1738.569131][T19307] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1738.594488][T11537] loop3: detected capacity change from 0 to 64 [ 1738.618995][T11538] siw: device registration error -23 [ 1738.689675][T11537] hfs: cannot create new inode: file count exceeds limit [ 1738.787721][T19307] gspca_nw80x: reg_w err -71 [ 1738.813234][T19307] nw80x 7-1:3.0: probe with driver nw80x failed with error -71 [ 1738.858666][T19307] usb 7-1: USB disconnect, device number 16 [ 1739.148405][T11545] loop7: detected capacity change from 0 to 4096 [ 1739.445066][T11520] loop1: detected capacity change from 0 to 32768 [ 1739.507107][T11554] loop3: detected capacity change from 0 to 512 [ 1739.544410][T11554] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1739.681643][T11554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1739.703037][T11520] lbmIODone: I/O error in JFS log [ 1739.762280][T11554] ext4 filesystem being mounted at /2716/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1739.772828][T11520] *** Log Format Error ! *** [ 1739.793613][T11520] lmLogInit: exit(-22) [ 1739.820175][T11520] lmLogOpen: exit(-22) [ 1739.839421][T11561] loop6: detected capacity change from 0 to 8 [ 1739.878752][T11561] MTD: Attempt to mount non-MTD device "/dev/loop6" [ 1739.944154][T10653] udevd[10653]: incorrect cramfs checksum on /dev/loop6 [ 1739.960753][T11542] loop5: detected capacity change from 0 to 32768 [ 1740.083734][T11561] cramfs: Error -3 while decompressing! [ 1740.096209][T11542] JBD2: Ignoring recovery information on journal [ 1740.129787][T10653] udevd[10653]: incorrect cramfs checksum on /dev/loop6 [ 1740.168017][T11561] cramfs: ffffffff9b2798a8(26)->ffff888013361000(4096) [ 1740.182704][T11561] cramfs: Error -3 while decompressing! [ 1740.230613][T11561] cramfs: ffffffff9b2798c2(26)->ffff8880bfe3f000(4096) [ 1740.258827][T11566] bridge5: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms) [ 1740.306242][T11561] cramfs: Error -3 while decompressing! [ 1740.339623][T11561] cramfs: ffffffff9b2798dc(16)->ffff88806c33a000(4096) [ 1740.369663][T11542] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1740.396665][T11561] cramfs: Error -3 while decompressing! [ 1740.416714][T11561] cramfs: ffffffff9b2798a8(26)->ffff888013361000(4096) [ 1740.457849][ T30] audit: type=1800 audit(2000001471.485:354): pid=11561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.16268" name="file2" dev="loop6" ino=348 res=0 errno=0 [ 1741.173877][ T5640] ocfs2: Unmounting device (7,5) on (node local) [ 1741.303234][T11589] loop6: detected capacity change from 0 to 256 [ 1741.336271][T11589] exfat: Deprecated parameter 'utf8' [ 1741.351365][T11589] exfat: Deprecated parameter 'utf8' [ 1741.373039][T11589] exfat: Deprecated parameter 'utf8' [ 1741.425622][T11589] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x0afbdf60, utbl_chksum : 0xe619d30d) [ 1741.442863][T11592] xt_bpf: check failed: parse error [ 1741.660807][ T5636] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1742.024806][T11610] loop3: detected capacity change from 0 to 164 [ 1742.061886][T11610] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1742.204123][T11615] netlink: 'syz.3.16294': attribute type 33 has an invalid length. [ 1742.240054][T11615] netlink: 152 bytes leftover after parsing attributes in process `syz.3.16294'. [ 1742.685671][T11622] loop0: detected capacity change from 0 to 4096 [ 1742.849538][T11633] loop6: detected capacity change from 0 to 256 [ 1742.891125][T11633] exfat: Deprecated parameter 'namecase' [ 1742.971193][T11633] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d) [ 1743.653838][T11656] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16314'. [ 1744.251522][T11680] loop3: detected capacity change from 0 to 24 [ 1745.065664][T11702] loop0: detected capacity change from 0 to 2048 [ 1745.116585][T11707] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1745.182629][T11702] syz.0.16335: attempt to access beyond end of device [ 1745.182629][T11702] loop0: rw=0, sector=2198922592328, nr_sectors = 2 limit=2048 [ 1745.209916][T11702] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=1) [ 1745.394544][T11711] kAFS: Can only specify source 'none' with -o dyn [ 1745.615270][T11717] loop3: detected capacity change from 0 to 1764 [ 1745.703587][T11717] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1746.379443][T11740] loop1: detected capacity change from 0 to 1024 [ 1746.654503][T11749] loop7: detected capacity change from 0 to 128 [ 1746.693127][T11749] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1746.743140][T11749] hpfs: filesystem error: improperly stopped [ 1746.752651][T11753] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1746.759054][T11751] loop0: detected capacity change from 0 to 1024 [ 1746.770466][T11749] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1746.791821][T11749] hpfs: You really don't want any checks? You are crazy... [ 1746.807473][T11751] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 1746.817467][T11749] hpfs: hpfs_map_sector(): read error [ 1746.845389][T11749] hpfs: code page support is disabled [ 1746.886181][T11749] hpfs: hpfs_map_4sectors(): unaligned read [ 1746.920879][T11749] hpfs: hpfs_map_4sectors(): unaligned read [ 1746.937850][T11749] hpfs: filesystem error: unable to find root dir [ 1747.182089][T11761] loop5: detected capacity change from 0 to 1764 [ 1747.366596][T19324] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 1747.518444][ T5850] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 1747.560553][T19324] usb 7-1: Using ep0 maxpacket: 8 [ 1747.580413][T19324] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 1747.610249][T19324] usb 7-1: config 0 has no interface number 0 [ 1747.631288][T19324] usb 7-1: config 0 interface 1 has no altsetting 0 [ 1747.654412][T19324] usb 7-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 1747.674569][T19324] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1747.696725][T19324] usb 7-1: Product: syz [ 1747.704834][T19324] usb 7-1: Manufacturer: syz [ 1747.719800][ T5850] usb 1-1: Using ep0 maxpacket: 32 [ 1747.722201][T19324] usb 7-1: SerialNumber: syz [ 1747.747477][ T5850] usb 1-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15 [ 1747.774476][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1747.800510][T19324] usb 7-1: config 0 descriptor?? [ 1747.810828][ T5850] usb 1-1: Product: syz [ 1747.831949][ T5850] usb 1-1: Manufacturer: syz [ 1747.851991][ T5850] usb 1-1: SerialNumber: syz [ 1747.899546][ T5850] usb 1-1: config 0 descriptor?? [ 1748.055909][T19324] i2c-cp2615 7-1:0.1: probe with driver i2c-cp2615 failed with error -22 [ 1748.114629][T11783] loop1: detected capacity change from 0 to 2048 [ 1748.173767][ T5850] RobotFuzz Open Source InterFace, OSIF 1-1:0.0: failure sending bit rate [ 1748.184941][T11783] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1748.215394][ T5850] RobotFuzz Open Source InterFace, OSIF 1-1:0.0: probe with driver RobotFuzz Open Source InterFace, OSIF failed with error -71 [ 1748.266415][ T5850] usb 1-1: USB disconnect, device number 54 [ 1748.285126][T19307] usb 4-1: new high-speed USB device number 48 using dummy_hcd [ 1748.318264][ T3918] usb 7-1: USB disconnect, device number 17 [ 1748.376169][T11792] netlink: 'syz.7.16378': attribute type 4 has an invalid length. [ 1748.489592][T19307] usb 4-1: Using ep0 maxpacket: 16 [ 1748.508289][T19307] usb 4-1: config index 0 descriptor too short (expected 65, got 36) [ 1748.537252][T19307] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 1748.563559][T19307] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 1748.575283][T19307] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1748.589224][T19307] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 1748.598780][T19307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1748.657060][T19307] usb 4-1: config 0 descriptor?? [ 1748.875498][T11800] Unknown options in mask b7f2 [ 1748.931664][T19307] usb 4-1: string descriptor 0 read error: -71 [ 1748.975990][T19307] pxrc 4-1:0.0: Could not find endpoint [ 1749.010802][T19307] usb 4-1: USB disconnect, device number 48 [ 1750.007035][T11837] loop6: detected capacity change from 0 to 64 [ 1750.021273][T11830] loop3: detected capacity change from 0 to 4096 [ 1750.100004][T11841] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1750.113711][T11840] loop5: detected capacity change from 0 to 256 [ 1750.157555][T11840] exfat: Deprecated parameter 'utf8' [ 1750.197572][T11840] exfat: Deprecated parameter 'utf8' [ 1750.252171][T11840] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 1750.416568][T11846] loop6: detected capacity change from 0 to 64 [ 1750.789250][T11856] tmpfs: Bad value for 'mpol' [ 1751.108517][T11866] loop5: detected capacity change from 0 to 256 [ 1751.137330][T11866] exfat: Deprecated parameter 'utf8' [ 1751.170035][T11866] exfat: Deprecated parameter 'namecase' [ 1751.176004][T11866] exfat: Deprecated parameter 'namecase' [ 1751.270747][T11866] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 1751.540915][T11877] loop0: detected capacity change from 0 to 2048 [ 1751.586685][T11882] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 1751.596715][T11877] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1751.687292][T11885] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1751.727763][T11877] NILFS error (device loop0): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12 [ 1751.873214][T11877] Remounting filesystem read-only [ 1752.282291][T11904] loop0: detected capacity change from 0 to 512 [ 1752.373254][T11904] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1752.476409][T11904] ext4 filesystem being mounted at /2761/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1752.727293][T11915] loop3: detected capacity change from 0 to 256 [ 1752.818535][T11919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16436'. [ 1752.836269][T11915] FAT-fs (loop3): Directory bread(block 64) failed [ 1752.871071][T11915] FAT-fs (loop3): Directory bread(block 65) failed [ 1752.883631][ T5626] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1752.898266][T11915] FAT-fs (loop3): Directory bread(block 66) failed [ 1752.924199][T11915] FAT-fs (loop3): Directory bread(block 67) failed [ 1752.951594][T11915] FAT-fs (loop3): Directory bread(block 68) failed [ 1753.008890][T11915] FAT-fs (loop3): Directory bread(block 69) failed [ 1753.033599][T11915] FAT-fs (loop3): Directory bread(block 70) failed [ 1753.070592][T11915] FAT-fs (loop3): Directory bread(block 71) failed [ 1753.088635][T11915] FAT-fs (loop3): Directory bread(block 72) failed [ 1753.116773][T11915] FAT-fs (loop3): Directory bread(block 73) failed [ 1753.469155][T11936] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16445'. [ 1753.520108][T11942] loop5: detected capacity change from 0 to 256 [ 1753.521628][T11936] netlink: 44 bytes leftover after parsing attributes in process `syz.0.16445'. [ 1753.573389][T11942] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1754.124474][T11955] loop3: detected capacity change from 0 to 4096 [ 1754.160843][T11955] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 1754.235365][T11955] ntfs3(loop3): Failed to initialize $Extend/$ObjId. [ 1754.416580][T11972] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3) [ 1754.423165][T11972] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1754.433426][T11971] netlink: 'syz.1.16462': attribute type 12 has an invalid length. [ 1754.491192][T11972] vhci_hcd vhci_hcd.0: Device attached [ 1754.641724][T11981] netlink: 2056 bytes leftover after parsing attributes in process `syz.3.16466'. [ 1754.758214][ T3918] usb 47-1: new low-speed USB device number 2 using vhci_hcd [ 1755.105143][T11987] loop5: detected capacity change from 0 to 4096 [ 1755.230687][T11991] loop0: detected capacity change from 0 to 2048 [ 1755.278425][T11991] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1755.355869][ T30] audit: type=1800 audit(2000001485.445:355): pid=11991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16472" name="file1" dev="loop0" ino=1367 res=0 errno=0 [ 1755.417822][T11987] ntfs3(loop5): ino=21, The size of extended attributes must not exceed 64KiB [ 1755.464128][T11993] loop1: detected capacity change from 0 to 4096 [ 1755.490249][T11993] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1755.623886][T11993] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1755.684992][T11993] ntfs3(loop1): ino=19, mi_enum_attr [ 1755.909870][T12001] netlink: 2160 bytes leftover after parsing attributes in process `syz.5.16475'. [ 1755.948100][T12001] netlink: 2160 bytes leftover after parsing attributes in process `syz.5.16475'. [ 1756.267487][T12013] loop0: detected capacity change from 0 to 256 [ 1756.299253][T12013] exfat: Deprecated parameter 'utf8' [ 1756.378842][T12013] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x47dfe6af, utbl_chksum : 0xe619d30d) [ 1756.536819][T12019] netlink: 'syz.1.16479': attribute type 1 has an invalid length. [ 1756.909446][T12027] loop5: detected capacity change from 0 to 4096 [ 1756.933158][T12031] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1756.957841][T12027] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1757.054283][T12027] ntfs3(loop5): ino=19, mi_enum_attr [ 1757.078859][T12027] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1757.474888][T12047] netlink: 820 bytes leftover after parsing attributes in process `syz.5.16498'. [ 1757.520828][T12047] netlink: 820 bytes leftover after parsing attributes in process `syz.5.16498'. [ 1757.674399][T11973] vhci_hcd: connection reset by peer [ 1757.702288][T31444] vhci_hcd vhci_hcd.7: stop threads [ 1757.723004][T31444] vhci_hcd vhci_hcd.7: release socket [ 1757.744278][T31444] vhci_hcd vhci_hcd.7: disconnect device [ 1757.812038][T19324] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 1757.993498][T19324] usb 7-1: Using ep0 maxpacket: 8 [ 1758.016880][T19324] usb 7-1: config 0 has an invalid interface number: 31 but max is 0 [ 1758.056357][T19324] usb 7-1: config 0 has no interface number 0 [ 1758.085617][T19324] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 1758.088204][T12071] netlink: zone id is out of range [ 1758.125184][T19324] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1758.152011][T19324] usb 7-1: Product: syz [ 1758.167957][T19324] usb 7-1: Manufacturer: syz [ 1758.185205][T19324] usb 7-1: SerialNumber: syz [ 1758.227264][T19324] usb 7-1: config 0 descriptor?? [ 1758.232598][T12071] netlink: set zone limit has 4 unknown bytes [ 1758.489226][T19324] uvcvideo 7-1:0.31: Found UVC 0.04 device syz (046d:08c3) [ 1758.514995][T19324] uvcvideo 7-1:0.31: Failed to initialize entity for entity 32774 [ 1758.543618][T19324] uvcvideo 7-1:0.31: Failed to register entities (-22). [ 1758.677012][T19307] usb 4-1: new high-speed USB device number 49 using dummy_hcd [ 1758.789842][T19324] usb 7-1: USB disconnect, device number 18 [ 1758.842973][T12091] netlink: 'syz.7.16519': attribute type 4 has an invalid length. [ 1758.869622][T19307] usb 4-1: Using ep0 maxpacket: 8 [ 1758.886023][T12091] netlink: 'syz.7.16519': attribute type 30 has an invalid length. [ 1758.908826][T19307] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77 [ 1758.928875][T19307] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239 [ 1758.945254][T19307] usb 4-1: Product: syz [ 1758.949593][T19307] usb 4-1: Manufacturer: syz [ 1758.961823][T19307] usb 4-1: SerialNumber: syz [ 1758.981020][T19307] usb 4-1: config 0 descriptor?? [ 1759.011793][T19307] gspca_main: sq905-2.14.0 probing 2770:9120 [ 1759.241336][T12104] loop5: detected capacity change from 0 to 256 [ 1759.449060][T19307] gspca_sq905: sq905_command: usb_control_msg failed 2 (-71) [ 1759.484446][T19307] sq905 4-1:0.0: probe with driver sq905 failed with error -71 [ 1759.526804][T19307] usb 4-1: USB disconnect, device number 49 [ 1759.582974][T12109] loop7: detected capacity change from 0 to 2048 [ 1759.626791][T12109] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1759.688660][ T30] audit: type=1800 audit(2000001489.500:356): pid=12109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.16529" name="file1" dev="loop7" ino=1367 res=0 errno=0 [ 1760.087149][T19307] usb 6-1: new high-speed USB device number 73 using dummy_hcd [ 1760.165943][T12124] netlink: 'syz.1.16535': attribute type 2 has an invalid length. [ 1760.191631][T12124] netlink: 132 bytes leftover after parsing attributes in process `syz.1.16535'. [ 1760.241652][ T3918] vhci_hcd vhci_hcd.7: vhci_device speed not set [ 1760.307422][T19307] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1760.333031][T19307] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 1760.359229][T19307] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1760.383798][T19307] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 1760.420456][T19307] usb 6-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 1760.440532][T19307] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1760.461116][T19307] usb 6-1: Product: syz [ 1760.472136][T19307] usb 6-1: Manufacturer: syz [ 1760.487056][T19307] usb 6-1: SerialNumber: syz [ 1760.514171][ T5850] usb 4-1: new high-speed USB device number 50 using dummy_hcd [ 1760.523812][T19307] usb 6-1: config 0 descriptor?? [ 1760.575094][T19307] ums-isd200 6-1:0.0: USB Mass Storage device detected [ 1760.702568][ T5850] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1760.727769][T12120] loop7: detected capacity change from 0 to 32768 [ 1760.762040][ T5850] usb 4-1: New USB device found, idVendor=1235, idProduct=8201, bcdDevice= 0.40 [ 1760.778615][T12120] JBD2: Ignoring recovery information on journal [ 1760.828684][T12120] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode. [ 1760.843756][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1760.903628][ T5850] usb 4-1: Product: syz [ 1760.946256][ T5850] usb 4-1: Manufacturer: ᜕ꆴ蒣㤲åœî¶©ïŒªîª¿å‘›æ²îº¥ë’¿Û›è°²à©¬ãˆƒé줔ï€â™èž½â£³é˜ƒê´³ã¥”〶斸嫢㖡퀲᥀﯄祄溒ë²ä€ŽìˆŠç†ƒì³¼âµ³ê¢‘⃴䀾韠彈쮥ꌥ㜜䫨è°î¦éœŽì¬…㥪ò¯¨« [ 1760.975207][T12142] loop0: detected capacity change from 0 to 256 [ 1761.012437][T19307] ums-isd200 6-1:0.0: probe with driver ums-isd200 failed with error -22 [ 1761.047259][ T5850] usb 4-1: SerialNumber: syz [ 1761.079663][T19307] usb 6-1: USB disconnect, device number 73 [ 1761.349582][ T5850] usb 4-1: BAAD HEADSET c_chmask mismatch [ 1761.532454][ T5850] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 1761.570501][ T3771] ocfs2: Unmounting device (7,7) on (node local) [ 1761.595394][ T5850] usb 4-1: USB disconnect, device number 50 [ 1761.742778][T12156] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 1761.774658][ T5610] udevd[5610]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1762.150066][T12170] program syz.7.16556 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1762.227007][T12172] netlink: 132 bytes leftover after parsing attributes in process `syz.3.16557'. [ 1762.560897][T12180] netlink: 'syz.7.16561': attribute type 1 has an invalid length. [ 1762.743095][T12184] loop3: detected capacity change from 0 to 1024 [ 1762.890420][T12190] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1762.898022][T12186] loop0: detected capacity change from 0 to 4096 [ 1762.971981][T12186] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1763.024990][T12192] AppArmor: change_hat: Invalid input, NULL hat and NULL magic [ 1763.150902][T12186] ntfs3(loop0): ino=19, mi_enum_attr [ 1763.159840][T12194] loop6: detected capacity change from 0 to 512 [ 1763.226067][T12186] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1763.247259][T12194] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 1763.297704][T12194] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 1763.317623][T12194] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 1763.368107][T12194] System zones: 0-2, 18-18, 34-35 [ 1763.395241][T12197] loop3: detected capacity change from 0 to 256 [ 1763.428050][T12186] ntfs3(loop0): failed to convert "c46c" to iso8859-9 [ 1763.448773][T12194] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1763.474010][T12197] exfat: Deprecated parameter 'utf8' [ 1763.483785][T12186] ntfs3(loop0): ino=20, mi_enum_attr [ 1763.517619][T12197] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d) [ 1763.832843][ T3029] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1764.661024][T12233] kAFS: unable to lookup cell 'syz1' [ 1765.141575][T12253] loop3: detected capacity change from 0 to 512 [ 1765.191101][T12253] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1765.242831][T12253] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1765.273519][T12253] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.16597: inode #15: comm syz.3.16597: iget: illegal inode # [ 1765.300759][T12253] loop3: lost filesystem error report for type 5 error -117 [ 1765.303963][T12253] EXT4-fs (loop3): Remounting filesystem read-only [ 1765.311363][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 1765.311399][ C1] EXT4-fs (loop3): initial error at time 2000001494: ext4_orphan_get:1397 [ 1765.311478][ C1] EXT4-fs (loop3): last error at time 2000001494: ext4_orphan_get:1397 [ 1765.347856][T12253] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1765.589589][ T5636] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1765.805693][T12268] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1766.180895][T12277] netlink: 212912 bytes leftover after parsing attributes in process `syz.7.16608'. [ 1766.389530][ T3654] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 1766.437265][T12291] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 1766.443849][T12291] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1766.507129][T12291] vhci_hcd vhci_hcd.0: Device attached [ 1766.585173][ T3654] usb 7-1: unable to get BOS descriptor or descriptor too short [ 1766.602229][ T3654] usb 7-1: config 114 has an invalid interface number: 240 but max is 0 [ 1766.620852][ T3654] usb 7-1: config 114 has no interface number 0 [ 1766.641312][ T3654] usb 7-1: config 114 interface 240 altsetting 232 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1766.684560][ T3654] usb 7-1: config 114 interface 240 altsetting 232 has an endpoint descriptor with address 0xCA, changing to 0x8A [ 1766.721285][ T3654] usb 7-1: config 114 interface 240 altsetting 232 bulk endpoint 0x8A has invalid maxpacket 16 [ 1766.752534][ T3654] usb 7-1: config 114 interface 240 has no altsetting 0 [ 1766.773592][T19324] usb 35-1: new high-speed USB device number 3 using vhci_hcd [ 1766.781876][ T3654] usb 7-1: string descriptor 0 read error: -22 [ 1766.796050][ T3654] usb 7-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice= 6.38 [ 1766.805671][T19331] usb 2-1: new high-speed USB device number 74 using dummy_hcd [ 1766.827955][ T3654] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1766.862658][T12283] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1766.871970][T12283] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1766.885919][ T3654] ir_usb 7-1:114.240: IR Dongle converter detected [ 1767.003133][T19331] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 1767.015501][T19331] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1767.029814][T19331] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1767.033007][ T5850] usb 1-1: new high-speed USB device number 55 using dummy_hcd [ 1767.041063][T19331] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 1767.065972][T19331] usb 2-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 1767.112363][ T3654] usb 7-1: IRDA class descriptor not found, device not bound [ 1767.125145][T19331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1767.165996][T19331] usb 2-1: config 0 descriptor?? [ 1767.236337][ T5850] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1767.270818][ T5850] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1767.292997][ T5850] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1767.315208][ T5850] usb 1-1: config 1 has no interface number 0 [ 1767.331809][ T5850] usb 1-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30 [ 1767.352196][T19307] usb 7-1: USB disconnect, device number 19 [ 1767.369708][ T5850] usb 1-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32 [ 1767.396852][ T5850] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1767.422751][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1767.448336][T19331] usbhid 2-1:0.0: can't add hid device: -71 [ 1767.454692][ T5850] usb 1-1: Product: syz [ 1767.459743][T12292] vhci_hcd: connection reset by peer [ 1767.468337][ T5850] usb 1-1: Manufacturer: syz [ 1767.473274][T31444] vhci_hcd vhci_hcd.1: stop threads [ 1767.477707][T19331] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1767.487397][T12319] loop5: detected capacity change from 0 to 256 [ 1767.496634][T31444] vhci_hcd vhci_hcd.1: release socket [ 1767.506441][T19331] usb 2-1: USB disconnect, device number 74 [ 1767.506785][ T5850] usb 1-1: SerialNumber: syz [ 1767.526940][T31444] vhci_hcd vhci_hcd.1: disconnect device [ 1767.645461][T12319] FAT-fs (loop5): Directory bread(block 64) failed [ 1767.673505][T12319] FAT-fs (loop5): Directory bread(block 65) failed [ 1767.702071][T12319] FAT-fs (loop5): Directory bread(block 66) failed [ 1767.723493][T12319] FAT-fs (loop5): Directory bread(block 67) failed [ 1767.732149][T12319] FAT-fs (loop5): Directory bread(block 68) failed [ 1767.755667][T12319] FAT-fs (loop5): Directory bread(block 69) failed [ 1767.779050][T12319] FAT-fs (loop5): Directory bread(block 70) failed [ 1767.796631][T12319] FAT-fs (loop5): Directory bread(block 71) failed [ 1767.813692][T12319] FAT-fs (loop5): Directory bread(block 72) failed [ 1767.833663][T12319] FAT-fs (loop5): Directory bread(block 73) failed [ 1768.124294][ T5850] usb 1-1: USB disconnect, device number 55 [ 1768.269116][T12334] bridge1: left promiscuous mode [ 1769.120018][T12365] loop7: detected capacity change from 0 to 128 [ 1769.131480][T12364] netlink: 'syz.6.16650': attribute type 1 has an invalid length. [ 1769.801470][T12394] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16663'. [ 1770.019096][T12400] loop5: detected capacity change from 0 to 24 [ 1770.032451][T12403] netlink: 4456 bytes leftover after parsing attributes in process `syz.6.16666'. [ 1770.471593][T12419] No source specified [ 1770.661915][T12422] loop3: detected capacity change from 0 to 1024 [ 1771.129727][T12436] Invalid ELF header magic: != ELF [ 1771.443064][T12448] loop5: detected capacity change from 0 to 164 [ 1771.884664][T12456] loop7: detected capacity change from 0 to 2048 [ 1771.946003][T12456] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1772.269400][T12468] netlink: 'syz.0.16701': attribute type 2 has an invalid length. [ 1772.273520][T19324] vhci_hcd vhci_hcd.1: vhci_device speed not set [ 1772.536617][T12470] loop5: detected capacity change from 0 to 4096 [ 1772.584916][T12470] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1772.667718][T12483] openvswitch: netlink: IP tunnel dst address not specified [ 1772.674817][T12470] ntfs3(loop5): ino=19, mi_enum_attr [ 1772.767058][T12470] ntfs3(loop5): failed to convert "c46c" to iso8859-2 [ 1772.825924][T12470] ntfs3(loop5): ino=20, mi_enum_attr [ 1773.136910][T12490] loop7: detected capacity change from 0 to 4096 [ 1773.221118][T12500] netlink: 12 bytes leftover after parsing attributes in process `syz.5.16715'. [ 1773.261074][T12501] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1774.556855][T12499] loop3: detected capacity change from 0 to 32768 [ 1774.998860][T12545] loop7: detected capacity change from 0 to 1024 [ 1776.644321][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 1777.095111][T12566] loop5: detected capacity change from 0 to 32768 [ 1777.141341][T12566] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.16747 (12566) [ 1777.218104][ T3654] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 1777.227451][T12566] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1777.276038][T12566] BTRFS info (device loop5): using sha256 checksum algorithm [ 1777.362492][T12615] cgroup: Name too long [ 1777.421572][T12566] BTRFS info (device loop5): enabling ssd optimizations [ 1777.428657][ T3654] usb 4-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc [ 1777.428707][ T3654] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1777.447989][T12566] BTRFS info (device loop5): turning on async discard [ 1777.494633][T12566] BTRFS info (device loop5): enabling free space tree [ 1777.533717][ T3654] usb 4-1: Product: syz [ 1777.538047][ T3654] usb 4-1: Manufacturer: syz [ 1777.554004][ T3654] usb 4-1: SerialNumber: syz [ 1777.573510][ T3654] usb 4-1: config 0 descriptor?? [ 1777.598739][ T3654] i2c-tiny-usb 4-1:0.0: version 6d.cc found at bus 004 address 051 [ 1777.822023][ T3654] (null): failure setting delay to 10us [ 1777.849504][ T3654] i2c-tiny-usb 4-1:0.0: probe with driver i2c-tiny-usb failed with error -5 [ 1777.865622][ T5640] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1777.897194][ T3654] usb 4-1: USB disconnect, device number 51 [ 1778.019058][T19331] usb 2-1: new high-speed USB device number 75 using dummy_hcd [ 1778.195913][T19331] usb 2-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 1778.233470][T19331] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1778.270660][T19331] usb 2-1: Product: syz [ 1778.293187][T19331] usb 2-1: Manufacturer: syz [ 1778.313740][T19331] usb 2-1: SerialNumber: syz [ 1778.354000][T19331] usb 2-1: config 0 descriptor?? [ 1778.842124][T19331] usb 2-1: f81604_write: reg: 105 data: 0 failed: -EPROTO [ 1778.872874][T19331] f81604 2-1:0.0: Setting termination of CH#0 failed: -EPROTO [ 1778.901719][T19331] f81604 2-1:0.0: probe with driver f81604 failed with error -71 [ 1778.964338][T19331] usb 2-1: USB disconnect, device number 75 [ 1779.707080][T12683] loop1: detected capacity change from 0 to 1024 [ 1780.202408][T12693] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16803'. [ 1780.619378][T12669] loop5: detected capacity change from 0 to 32768 [ 1780.709927][T12669] jfs_strtoUCS: char2uni returned -22. [ 1780.749060][T12669] charset = cp1250, char = 0x81 [ 1781.038525][T12716] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 1781.453669][T12731] loop3: detected capacity change from 0 to 1764 [ 1782.217322][ T5850] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 1782.298616][T12765] netlink: 'syz.7.16838': attribute type 1 has an invalid length. [ 1782.414193][ T5850] usb 4-1: Using ep0 maxpacket: 16 [ 1782.436433][ T5850] usb 4-1: config 5 has an invalid interface number: 168 but max is 0 [ 1782.460360][ T5850] usb 4-1: config 5 has no interface number 0 [ 1782.478314][ T5850] usb 4-1: config 5 interface 168 altsetting 7 has an endpoint descriptor with address 0xEB, changing to 0x8B [ 1782.506316][ T5850] usb 4-1: config 5 interface 168 altsetting 7 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1782.531333][ T5850] usb 4-1: config 5 interface 168 altsetting 7 has an endpoint descriptor with address 0x23, changing to 0x3 [ 1782.568114][T12771] loop6: detected capacity change from 0 to 1024 [ 1782.585003][ T5850] usb 4-1: config 5 interface 168 altsetting 7 endpoint 0x3 has invalid maxpacket 1280, setting to 1024 [ 1782.635714][ T5850] usb 4-1: config 5 interface 168 altsetting 7 bulk endpoint 0x3 has invalid maxpacket 1024 [ 1782.674221][ T5850] usb 4-1: config 5 interface 168 has no altsetting 0 [ 1782.716968][ T5850] usb 4-1: New USB device found, idVendor=04cc, idProduct=2533, bcdDevice=fc.58 [ 1782.763381][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1782.807285][ T5850] usb 4-1: Product: syz [ 1782.818003][ T5850] usb 4-1: Manufacturer: syz [ 1782.825826][ T5850] usb 4-1: SerialNumber: syz [ 1782.840273][T12750] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1782.848819][T12750] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1783.087428][T12789] loop6: detected capacity change from 0 to 512 [ 1783.124229][ C1] usb 4-1: NFC: Urb failure (status -71) [ 1783.151685][ C1] usb 4-1: NFC: Urb failure (status -71) [ 1783.164329][ T5850] usb 4-1: NFC: Unable to get FW version [ 1783.172755][T12789] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 1783.218872][ T5850] pn533_usb 4-1:5.168: probe with driver pn533_usb failed with error -71 [ 1783.261739][T12797] netlink: 'syz.7.16853': attribute type 2 has an invalid length. [ 1783.273956][T12797] netlink: 'syz.7.16853': attribute type 1 has an invalid length. [ 1783.293899][T12789] EXT4-fs error (device loop6): ext4_validate_block_bitmap:431: comm syz.6.16849: bg 0: block 104: invalid block bitmap [ 1783.329101][ T5850] usb 4-1: USB disconnect, device number 52 [ 1783.373546][T12789] loop6: lost filesystem error report for type 5 error -117 [ 1783.380512][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 1783.394364][ C0] EXT4-fs (loop6): initial error at time 2000001511: ext4_validate_block_bitmap:431 [ 1783.403821][ C0] EXT4-fs (loop6): last error at time 2000001511: ext4_validate_block_bitmap:431 [ 1783.446814][T12789] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 1783.493266][T12789] loop6: lost filesystem error report for type 5 error -117 [ 1783.494590][T12789] EXT4-fs error (device loop6): ext4_free_branches:1020: inode #11: comm syz.6.16849: invalid indirect mapped block 1 (level 1) [ 1783.519944][T12789] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1783.538108][T12789] EXT4-fs (loop6): 1 truncate cleaned up [ 1783.660744][T12789] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1784.042232][ T3029] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1784.512673][T19331] usb 7-1: new full-speed USB device number 20 using dummy_hcd [ 1784.649088][T12839] netlink: 'syz.3.16873': attribute type 7 has an invalid length. [ 1784.676803][T12837] loop5: detected capacity change from 0 to 1024 [ 1784.714559][T19331] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1784.750947][T19331] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1784.786079][T19331] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1784.819850][T19331] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1784.880708][T19331] hub 7-1:4.0: USB hub found [ 1784.989425][T12845] loop1: detected capacity change from 0 to 512 [ 1785.044767][T12845] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 1785.090335][T12845] EXT4-fs error (device loop1): ext4_validate_block_bitmap:431: comm syz.1.16877: bg 0: block 104: invalid block bitmap [ 1785.111331][T12845] loop1: lost filesystem error report for type 5 error -117 [ 1785.114325][T12845] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 1785.121708][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 1785.121741][ C1] EXT4-fs (loop1): initial error at time 2000001513: ext4_validate_block_bitmap:431 [ 1785.121784][ C1] EXT4-fs (loop1): last error at time 2000001513: ext4_validate_block_bitmap:431 [ 1785.169931][T19331] hub 7-1:4.0: 4 ports detected [ 1785.185524][T19331] usb 7-1: selecting invalid altsetting 1 [ 1785.191470][T19331] hub 7-1:4.0: Using single TT (err -22) [ 1785.200045][T12845] loop1: lost filesystem error report for type 5 error -117 [ 1785.200718][T19331] hub 7-1:4.0: insufficient power available to use all downstream ports [ 1785.250105][T12845] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #11: comm syz.1.16877: invalid indirect mapped block 1 (level 1) [ 1785.274156][T12845] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1785.274972][T12845] EXT4-fs (loop1): 1 truncate cleaned up [ 1785.321083][T12845] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1785.404560][T19331] hub 7-1:4.0: hub_hub_status failed (err = -71) [ 1785.448742][T19331] hub 7-1:4.0: config failed, can't get hub status (err -71) [ 1785.532300][T19331] usb 7-1: USB disconnect, device number 20 [ 1785.590727][ T5627] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1785.830016][T12866] tmpfs: Bad value for 'mpol' [ 1785.977395][T12874] netlink: 'syz.3.16889': attribute type 1 has an invalid length. [ 1786.040886][T12874] netlink: 228 bytes leftover after parsing attributes in process `syz.3.16889'. [ 1786.117887][T12877] loop1: detected capacity change from 0 to 64 [ 1786.606875][T12895] loop5: detected capacity change from 0 to 1024 [ 1786.650880][T12895] hfsplus: invalid length 50929 has been corrected to 255 [ 1786.678382][T12895] hfsplus: invalid length 50929 has been corrected to 255 [ 1786.730566][T12895] hfsplus: invalid length 50929 has been corrected to 255 [ 1786.829132][T12895] hfsplus: invalid length 50929 has been corrected to 255 [ 1786.875187][T12904] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16904'. [ 1788.034545][T12943] openvswitch: netlink: EtherType 50a is less than min 600 [ 1788.455540][T12954] loop5: detected capacity change from 0 to 64 [ 1788.527754][T12950] loop7: detected capacity change from 0 to 4096 [ 1788.568936][T12950] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 1788.739366][T12957] loop1: detected capacity change from 0 to 4096 [ 1788.745597][T12950] ntfs3(loop7): ino=19, mi_enum_attr [ 1788.877232][T12950] ntfs3(loop7): failed to convert "c46c" to iso8859-2 [ 1788.937525][T12950] ntfs3(loop7): ino=20, mi_enum_attr [ 1788.975023][T12957] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1789.522237][T19312] usb 1-1: new high-speed USB device number 56 using dummy_hcd [ 1789.727880][T19312] usb 1-1: config 0 has an invalid interface number: 69 but max is 0 [ 1789.753505][T19312] usb 1-1: config 0 has no interface number 0 [ 1789.773135][T19312] usb 1-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 1789.818930][T19312] usb 1-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1789.856439][T19312] usb 1-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 1789.879840][T19312] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1789.903317][T19312] usb 1-1: Product: syz [ 1789.919955][T19312] usb 1-1: Manufacturer: syz [ 1789.936814][T19312] usb 1-1: SerialNumber: syz [ 1789.970943][T19312] usb 1-1: config 0 descriptor?? [ 1789.991094][T12973] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1790.038158][T19312] cyberjack 1-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 1790.085045][T19312] usb 1-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 1790.190491][T13003] netlink: 16 bytes leftover after parsing attributes in process `syz.5.16952'. [ 1790.529105][T13015] misc userio: No port type given on /dev/userio [ 1790.595608][T19312] usb 1-1: USB disconnect, device number 56 [ 1790.708198][T19312] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 1790.766874][T19312] cyberjack 1-1:0.69: device disconnected [ 1790.823311][T13021] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1791.320974][T13039] netlink: 'syz.7.16971': attribute type 1 has an invalid length. [ 1792.503286][T13037] loop3: detected capacity change from 0 to 32768 [ 1792.536499][T13037] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.16970 (13037) [ 1792.561691][T13080] loop1: detected capacity change from 0 to 128 [ 1792.589674][T13037] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1792.625604][T13037] BTRFS info (device loop3): using sha256 checksum algorithm [ 1792.671822][T13080] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1792.773677][T13080] ext4 filesystem being mounted at /2771/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1792.944182][T13037] BTRFS info (device loop3): enabling ssd optimizations [ 1792.968805][T13037] BTRFS info (device loop3): turning on async discard [ 1792.982323][T13037] BTRFS info (device loop3): enabling free space tree [ 1793.034839][ T5627] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1793.202991][T13115] loop1: detected capacity change from 0 to 64 [ 1793.254389][ T5636] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1793.498006][T19307] usb 1-1: new high-speed USB device number 57 using dummy_hcd [ 1793.709287][T19307] usb 1-1: Using ep0 maxpacket: 32 [ 1793.743145][T19307] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1793.808617][T19307] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1793.860494][T19307] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1793.896097][T19307] usb 1-1: Product: syz [ 1793.928643][T19307] usb 1-1: Manufacturer: syz [ 1793.957921][T19307] usb 1-1: SerialNumber: syz [ 1794.005258][T19307] usb 1-1: config 0 descriptor?? [ 1794.033298][T13129] loop7: detected capacity change from 0 to 256 [ 1794.052699][T19307] cdc_ether 1-1:0.0: missing cdc header descriptor [ 1794.086515][T19307] usb 1-1: unsupported MDLM descriptors [ 1794.397033][ T3654] usb 1-1: USB disconnect, device number 57 [ 1794.412504][T13131] loop1: detected capacity change from 0 to 4096 [ 1794.471185][T13131] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1794.635507][T13091] loop6: detected capacity change from 0 to 32768 [ 1794.679846][T13131] ntfs3(loop1): ino=19, mi_enum_attr [ 1794.765282][T13139] openvswitch: netlink: IPv4 tun info is not correct [ 1794.806500][T13131] ntfs3(loop1): failed to convert "c46c" to iso8859-2 [ 1794.828838][T13131] ntfs3(loop1): ino=20, mi_enum_attr [ 1795.368904][T13154] openvswitch: netlink: ct_state flags 010000e0 unsupported [ 1796.428269][T13191] loop1: detected capacity change from 0 to 764 [ 1796.458490][T13193] netlink: 1108 bytes leftover after parsing attributes in process `syz.3.17038'. [ 1796.497503][T13191] rock: directory entry would overflow storage [ 1796.540566][T13191] rock: sig=0x5245, size=8, remaining=5 [ 1796.804080][T13206] netlink: 'syz.5.17044': attribute type 11 has an invalid length. [ 1796.841200][T13206] netlink: 20 bytes leftover after parsing attributes in process `syz.5.17044'. [ 1796.880885][T19307] usb 1-1: new high-speed USB device number 58 using dummy_hcd [ 1796.904394][T13209] 9p: Unknown Cache mode or invalid value fscach [ 1797.083542][T19307] usb 1-1: Using ep0 maxpacket: 8 [ 1797.110457][T19307] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1797.145341][T19307] usb 1-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b [ 1797.175763][T19307] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1797.209785][T19307] usb 1-1: Product: syz [ 1797.229790][T19307] usb 1-1: Manufacturer: syz [ 1797.258415][T19307] usb 1-1: SerialNumber: syz [ 1797.267175][T13219] bridge_slave_1: left allmulticast mode [ 1797.300497][T19307] usb 1-1: config 0 descriptor?? [ 1797.333125][T13219] bridge_slave_1: left promiscuous mode [ 1797.357199][T19307] gspca_main: stk014-2.14.0 probing 05e1:0893 [ 1797.368226][T13219] bridge0: port 2(bridge_slave_1) entered disabled state [ 1797.384255][T19307] usb 1-1: selecting invalid altsetting 1 [ 1797.452520][T13219] .`: (slave bond_slave_0): Releasing backup interface [ 1797.484432][T13219] .`: (slave bond_slave_1): Releasing backup interface [ 1797.511995][T13219] team0: Port device team_slave_0 removed [ 1797.541152][T13219] team0: Port device team_slave_1 removed [ 1797.560160][T13219] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1797.570443][T19307] gspca_stk014: init reg: 0x00 [ 1797.583446][T19307] stk014 1-1:0.0: probe with driver stk014 failed with error -5 [ 1797.597087][T13219] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1797.621166][T13219] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 1797.792468][ T3654] usb 1-1: USB disconnect, device number 58 [ 1797.888006][T13234] loop1: detected capacity change from 0 to 4096 [ 1797.924301][T13234] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1797.933362][T13238] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17060'. [ 1797.948690][T13238] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17060'. [ 1798.035137][T13234] ntfs3(loop1): ino=1a, mi_enum_attr [ 1798.057110][T13234] ntfs3(loop1): ino=1a, mi_enum_attr [ 1798.077942][T13234] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1798.220447][T13234] ntfs3(loop1): ino=1a, mi_enum_attr [ 1798.443715][T13250] xt_cgroup: xt_cgroup: no path or classid specified [ 1798.487542][T13252] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1798.732673][T13261] netlink: 'syz.1.17071': attribute type 2 has an invalid length. [ 1798.786020][T13261] netlink: 'syz.1.17071': attribute type 1 has an invalid length. [ 1798.813740][T13261] netlink: 'syz.1.17071': attribute type 1 has an invalid length. [ 1798.884280][T13269] loop3: detected capacity change from 0 to 64 [ 1798.892322][T13268] i2c i2c-0: Invalid block write size 58 [ 1798.949576][T13269] syz.3.17074: attempt to access beyond end of device [ 1798.949576][T13269] loop3: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 1799.006246][T13269] Buffer I/O error on dev loop3, logical block 512, async page read [ 1799.046105][T13269] syz.3.17074: attempt to access beyond end of device [ 1799.046105][T13269] loop3: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 1799.094504][T13269] Buffer I/O error on dev loop3, logical block 56576, async page read [ 1799.213733][T13279] nft_compat: unsupported protocol 5 [ 1799.494430][T13282] loop1: detected capacity change from 0 to 2048 [ 1799.541131][T13282] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1799.574349][ T30] audit: type=1326 audit(2000001526.839:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1799.659771][T13288] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1799.683584][ T30] audit: type=1326 audit(2000001526.839:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1799.771645][T13282] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1799.783356][ T30] audit: type=1326 audit(2000001526.849:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1799.828999][T13282] NILFS error (device loop1): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1799.857506][ T30] audit: type=1326 audit(2000001526.858:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1799.972132][ T30] audit: type=1326 audit(2000001526.858:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1799.980185][T13294] loop3: detected capacity change from 0 to 512 [ 1800.028379][T13282] Remounting filesystem read-only [ 1800.048992][T13282] NILFS (loop1): error -5 truncating bmap (ino=16) [ 1800.068641][T13294] EXT4-fs: Ignoring removed orlov option [ 1800.083386][ T30] audit: type=1326 audit(2000001526.858:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1800.178100][ T30] audit: type=1326 audit(2000001526.858:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1800.213619][T13294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1800.214556][T13273] loop5: detected capacity change from 0 to 32768 [ 1800.243502][ T30] audit: type=1326 audit(2000001526.858:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1800.283332][ T30] audit: type=1326 audit(2000001526.858:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.3.17083" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5b7f79cdd9 code=0x7ffc0000 [ 1800.304977][T13294] ext4 filesystem being mounted at /2844/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1800.311618][ T5627] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1800.434234][T13294] EXT4-fs error (device loop3): ext4_get_verity_descriptor_location:337: inode #15: comm syz.3.17087: verity file corrupted; can't find descriptor [ 1800.507798][T13294] EXT4-fs (loop3): Remounting filesystem read-only [ 1800.531555][T13294] fs-verity (loop3, inode 15): Error -117 getting verity descriptor size [ 1800.547357][T13273] ERROR: (device loop5): dbAllocNext: Corrupt dmap page [ 1800.547357][T13273] [ 1800.579950][T13273] ERROR: (device loop5): remounting filesystem as read-only [ 1800.678655][ T5636] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1801.078809][T13312] bond6: Unable to set peer notification delay as MII monitoring is disabled [ 1801.140890][T13312] bond6 (unregistering): Released all slaves [ 1801.410157][T13334] ipt_ECN: cannot use operation on non-tcp rule [ 1802.007263][T19331] usb 6-1: new full-speed USB device number 74 using dummy_hcd [ 1802.196297][T19331] usb 6-1: config index 0 descriptor too short (expected 86, got 68) [ 1802.231888][T19331] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1802.279939][T19331] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1802.311669][T19331] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 1802.320345][T13363] dlm: no locking on control device [ 1802.347464][T19331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1802.374677][T19331] usb 6-1: SerialNumber: syz [ 1802.423375][T19331] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22 [ 1802.478996][T19331] usb-storage 6-1:1.0: USB Mass Storage device detected [ 1802.520954][T19331] usb-storage 6-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 1802.571997][T19331] scsi host1: usb-storage 6-1:1.0 [ 1802.629269][T13379] binder: 13377:13379 ioctl c0306201 200000000540 returned -22 [ 1802.836489][T13378] loop3: detected capacity change from 0 to 4096 [ 1802.932445][T13378] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1802.978701][T13385] hmac(sha224): entered promiscuous mode [ 1803.057149][T13378] ntfs3(loop3): ino=1a, mi_enum_attr [ 1803.086093][T13378] ntfs3(loop3): ino=1a, mi_enum_attr [ 1803.111840][T13378] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 1803.243976][T13378] ntfs3(loop3): ino=1a, mi_enum_attr [ 1804.172263][T19324] usb 6-1: USB disconnect, device number 74 [ 1804.255523][T13411] cgroup: name respecified [ 1804.805785][T13430] loop6: detected capacity change from 0 to 512 [ 1804.894145][T13430] Quota error (device loop6): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1804.912630][T13430] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.17152: Failed to acquire dquot type 1 [ 1804.952394][T13430] loop6: lost filesystem error report for type 5 error -117 [ 1804.954645][T13430] __quota_error: 1 callbacks suppressed [ 1804.954670][T13430] Quota error (device loop6): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1804.954777][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1804.954808][ C1] EXT4-fs (loop6): last error at time 2000001531: ext4_acquire_dquot:7032 [ 1804.993299][T13430] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1805.003286][T13430] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.17152: Failed to acquire dquot type 1 [ 1805.018867][T13430] loop6: lost filesystem error report for type 5 error -117 [ 1805.021063][T13430] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.17152: bg 0: block 248: padding at end of block bitmap is not set [ 1805.033263][T13428] loop7: detected capacity change from 0 to 4096 [ 1805.111421][T13430] loop6: lost filesystem error report for type 5 error -117 [ 1805.112424][T13430] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 1805.168270][T13428] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 1805.170784][T13430] loop6: lost filesystem error report for type 5 error -117 [ 1805.195139][T13430] Quota error (device loop6): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1805.299103][T13430] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1805.301224][T13428] ntfs3(loop7): ino=1a, mi_enum_attr [ 1805.340903][T13430] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.17152: Failed to acquire dquot type 1 [ 1805.365449][T13428] ntfs3(loop7): ino=1a, mi_enum_attr [ 1805.399136][T13428] ntfs3(loop7): Failed to initialize $Extend/$Reparse. [ 1805.401623][T13430] loop6: lost filesystem error report for type 5 error -117 [ 1805.420471][T19307] wlan1 speed is unknown, defaulting to 1000 [ 1805.450434][T13430] EXT4-fs (loop6): 1 orphan inode deleted [ 1805.474567][T13430] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1805.530590][T13430] ext4 filesystem being mounted at /716/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1805.581505][T13428] ntfs3(loop7): ino=1a, mi_enum_attr [ 1805.829607][ T3029] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1806.323691][T13467] loop7: detected capacity change from 0 to 256 [ 1806.760973][T13483] hmac(sha224): entered promiscuous mode [ 1807.898653][T13527] openvswitch: netlink: nsh attribute has 4 unknown bytes. [ 1807.941234][T13527] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1808.271412][T13491] loop5: detected capacity change from 0 to 32768 [ 1808.304671][T13491] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.17180 (13491) [ 1808.349783][T13539] kAFS: unable to lookup cell 'Þ({FúA' [ 1808.354425][T13544] IPv6: NLM_F_CREATE should be specified when creating new route [ 1808.379759][T13491] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1808.427400][T13491] BTRFS info (device loop5): using crc32c checksum algorithm [ 1808.634955][T13491] BTRFS info (device loop5): enabling ssd optimizations [ 1808.686401][T13491] BTRFS info (device loop5): turning on flush-on-commit [ 1808.725388][T13491] BTRFS info (device loop5): enabling free space tree [ 1808.756290][T13491] BTRFS info (device loop5): enabling auto defrag [ 1808.790299][T13491] BTRFS info (device loop5): use lzo compression, level 1 [ 1808.816294][T13491] BTRFS info (device loop5): max_inline set to 4096 [ 1809.024976][T13491] BTRFS info (device loop5 state M): max_inline set to 4096 [ 1809.192387][ T5640] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1810.296695][T13607] netlink: 'syz.0.17241': attribute type 3 has an invalid length. [ 1810.333804][T13607] netlink: 'syz.0.17241': attribute type 3 has an invalid length. [ 1810.634113][T13579] loop7: detected capacity change from 0 to 32768 [ 1810.718675][T13579] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1810.815999][T13594] loop6: detected capacity change from 0 to 32768 [ 1810.836807][T13594] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.17223 (13594) [ 1810.865507][T13594] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1810.875801][T13594] BTRFS info (device loop6): using sha256 checksum algorithm [ 1811.054749][T13594] BTRFS info (device loop6): enabling ssd optimizations [ 1811.078588][T13594] BTRFS info (device loop6): turning on async discard [ 1811.096004][T13594] BTRFS info (device loop6): enabling free space tree [ 1811.160555][T19324] usb 2-1: new high-speed USB device number 76 using dummy_hcd [ 1811.207821][ T3029] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1811.310952][T13579] XFS (loop7): Starting recovery (logdev: internal) [ 1811.364188][T13651] loop3: detected capacity change from 0 to 2048 [ 1811.383070][T19324] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1811.406142][T13579] XFS (loop7): Ending recovery (logdev: internal) [ 1811.414708][T13651] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1811.434925][T19324] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1811.469700][T19324] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 50, changing to 7 [ 1811.498856][T19324] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1811.507876][T13651] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1811.522369][T13656] bond0: (slave bond_slave_0): Releasing backup interface [ 1811.554223][T19324] usb 2-1: New USB device found, idVendor=2b53, idProduct=0024, bcdDevice= 0.40 [ 1811.570847][T19324] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1811.591442][T19324] usb 2-1: Product: syz [ 1811.597357][T19324] usb 2-1: Manufacturer: syz [ 1811.618322][T13656] bond0: (slave bond_slave_1): Releasing backup interface [ 1811.626991][T19324] usb 2-1: SerialNumber: syz [ 1811.633389][ T3771] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1811.703124][T13656] team0: Port device team_slave_0 removed [ 1811.785162][T13656] team0: Port device team_slave_1 removed [ 1811.826707][T13656] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1811.855458][T13660] autofs4:pid:13660:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(768.1), cmd(0xc0189375) [ 1811.855826][T13656] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1811.935575][T13660] autofs4:pid:13660:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 1811.992433][T13656] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1812.031243][T13656] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1812.124680][T13656] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 1812.448035][T19324] usb 2-1: USB disconnect, device number 76 [ 1812.699053][ T5653] udevd[5653]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1813.339212][T13685] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 1813.688400][T13690] loop5: detected capacity change from 0 to 4096 [ 1813.728956][T13690] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1813.849715][T13690] ntfs3(loop5): ino=19, mi_enum_attr [ 1813.875001][T13690] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1814.879184][T13691] loop3: detected capacity change from 0 to 32768 [ 1814.970817][T13691] ERROR: (device loop3): dbAllocNext: Corrupt dmap page [ 1814.970817][T13691] [ 1815.012752][T13691] ERROR: (device loop3): remounting filesystem as read-only [ 1815.240047][ T30] audit: type=1326 audit(2000001541.511:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.369209][ T30] audit: type=1326 audit(2000001541.511:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.472665][T13738] loop5: detected capacity change from 0 to 4096 [ 1815.473431][ T30] audit: type=1326 audit(2000001541.520:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.571094][ T5850] usb 1-1: new high-speed USB device number 59 using dummy_hcd [ 1815.598716][T13738] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1815.626478][ T30] audit: type=1326 audit(2000001541.539:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.701007][T13752] loop6: detected capacity change from 0 to 136 [ 1815.755928][ T30] audit: type=1326 audit(2000001541.539:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.784926][ T5850] usb 1-1: Using ep0 maxpacket: 32 [ 1815.810789][T13738] ntfs3(loop5): ino=1a, mi_enum_attr [ 1815.844690][T13756] netlink: 'syz.7.17290': attribute type 3 has an invalid length. [ 1815.844742][T13738] ntfs3(loop5): ino=1a, mi_enum_attr [ 1815.853194][ T5850] usb 1-1: New USB device found, idVendor=0458, idProduct=7005, bcdDevice=1a.51 [ 1815.853243][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1815.853282][ T5850] usb 1-1: Product: syz [ 1815.853311][ T5850] usb 1-1: Manufacturer: syz [ 1815.853341][ T5850] usb 1-1: SerialNumber: syz [ 1815.877752][T13738] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1815.909709][ T30] audit: type=1326 audit(2000001541.539:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1815.911721][ T5850] usb 1-1: config 0 descriptor?? [ 1815.974211][ T30] audit: type=1326 audit(2000001541.539:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1816.053497][ T5850] gspca_main: sn9c2028-2.14.0 probing 0458:7005 [ 1816.072720][ T30] audit: type=1326 audit(2000001541.539:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13740 comm="syz.1.17285" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1816.171752][T13738] ntfs3(loop5): ino=1a, mi_enum_attr [ 1816.208521][ T30] audit: type=1326 audit(2000001542.419:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.7.17296" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f936f59cdd9 code=0x7ffc0000 [ 1816.264174][ T5850] gspca_sn9c2028: read1 error -71 [ 1816.295068][ T5850] gspca_sn9c2028: read1 error -71 [ 1816.332252][ T5850] gspca_sn9c2028: read1 error -71 [ 1816.350473][ T5850] sn9c2028 1-1:0.0: probe with driver sn9c2028 failed with error -71 [ 1816.365675][ T30] audit: type=1326 audit(2000001542.419:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13759 comm="syz.7.17296" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f936f59cdd9 code=0x7ffc0000 [ 1816.421049][ T5850] usb 1-1: USB disconnect, device number 59 [ 1816.903238][T13774] netlink: 'syz.3.17301': attribute type 11 has an invalid length. [ 1816.953636][T13774] netlink: 224 bytes leftover after parsing attributes in process `syz.3.17301'. [ 1817.856695][ T5850] usb 2-1: new high-speed USB device number 77 using dummy_hcd [ 1818.053079][ T5850] usb 2-1: Using ep0 maxpacket: 16 [ 1818.077965][ T5850] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 1818.118453][ T5850] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 1818.158225][ T5850] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 1818.198414][ T5850] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1818.236979][ T5850] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 1818.270800][ T5850] usb 2-1: config 1 interface 0 has no altsetting 0 [ 1818.283206][ T5850] usb 2-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 1818.303461][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1818.354633][ T5850] ums-sddr09 2-1:1.0: USB Mass Storage device detected [ 1818.592910][ T5850] scsi host1: usb-storage 2-1:1.0 [ 1818.889377][ T3918] usb 2-1: USB disconnect, device number 77 [ 1819.426715][ T3654] usb 1-1: new high-speed USB device number 60 using dummy_hcd [ 1819.501525][ T5850] usb 6-1: new high-speed USB device number 75 using dummy_hcd [ 1819.529019][T13875] loop3: detected capacity change from 0 to 64 [ 1819.624700][ T3654] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1819.668428][ T3654] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 1819.683226][ T5850] usb 6-1: Using ep0 maxpacket: 16 [ 1819.712710][ T3654] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1819.715805][ T5850] usb 6-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 1819.747564][ T5850] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1819.759810][ T3654] usb 1-1: config 0 descriptor?? [ 1819.778315][ T5850] usb 6-1: config 0 descriptor?? [ 1819.800877][ T5850] gspca_main: sonixj-2.14.0 probing 0471:0327 [ 1819.960802][ T3918] usb 2-1: new full-speed USB device number 78 using dummy_hcd [ 1819.986077][T13884] loop3: detected capacity change from 0 to 4096 [ 1820.075652][T13889] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1820.134104][ T3918] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 64 [ 1820.176426][ T3918] usb 2-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87 [ 1820.212652][ T3918] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1820.248176][ T5850] gspca_sonixj: reg_r err -71 [ 1820.254763][ T3654] ath6kl: Failed to read usb control message: -71 [ 1820.259534][ T3918] usb 2-1: Product: syz [ 1820.273757][ T5850] sonixj 6-1:0.0: probe with driver sonixj failed with error -71 [ 1820.290189][ T3654] ath6kl: Unable to read the bmi data from the device: -71 [ 1820.292624][ T3918] usb 2-1: Manufacturer: syz [ 1820.331886][ T3654] ath6kl: Unable to recv target info: -71 [ 1820.333082][ T5850] usb 6-1: USB disconnect, device number 75 [ 1820.356075][ T3918] usb 2-1: SerialNumber: syz [ 1820.377451][ T3654] ath6kl: Failed to init ath6kl core: -71 [ 1820.431635][ T3654] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 1820.436202][ T3918] usb 2-1: config 0 descriptor?? [ 1820.465199][T13879] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 1820.499257][ T3654] usb 1-1: USB disconnect, device number 60 [ 1820.529359][T13879] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 1820.564954][ C1] port100 2-1:0.0: NFC: Urb failure (status -71) [ 1820.571501][ C1] port100 2-1:0.0: NFC: Urb failure (status -71) [ 1820.585937][ T3918] port100 2-1:0.0: NFC: Could not get supported command types [ 1820.870075][ T3918] usb 2-1: USB disconnect, device number 78 [ 1820.901284][T13903] netlink: 'syz.7.17361': attribute type 2 has an invalid length. [ 1821.042064][T13902] loop3: detected capacity change from 0 to 4096 [ 1821.068753][T13902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1821.273525][ T5636] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1821.377101][T13917] netlink: 256 bytes leftover after parsing attributes in process `syz.7.17367'. [ 1821.467194][ T3654] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 1821.643609][ T3654] usb 7-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 1821.693948][ T3654] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1821.735490][T13925] IPv6: NLM_F_CREATE should be specified when creating new route [ 1821.773972][ T3654] pwc: Logitech/Cisco VT Camera webcam detected. [ 1821.836258][T13929] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17374'. [ 1821.878923][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1821.926570][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1821.953731][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1821.994782][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1822.026298][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1822.058494][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1822.142645][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17375'. [ 1822.208594][T13941] openvswitch: netlink: IP tunnel TTL not specified. [ 1822.232490][ T3654] pwc: send_video_command error -71 [ 1822.256277][ T3654] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 1822.294515][ T3654] Philips webcam 7-1:127.0: probe with driver Philips webcam failed with error -71 [ 1822.373811][ T3654] usb 7-1: USB disconnect, device number 21 [ 1822.442954][T13948] netlink: 'syz.3.17383': attribute type 4 has an invalid length. [ 1822.978756][T13964] loop3: detected capacity change from 0 to 64 [ 1823.291954][T13974] __nla_validate_parse: 13 callbacks suppressed [ 1823.291984][T13974] netlink: 60 bytes leftover after parsing attributes in process `syz.1.17396'. [ 1823.570112][T13946] loop5: detected capacity change from 0 to 32768 [ 1823.622591][T13946] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.17382 (13946) [ 1823.683054][T13946] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1823.725308][T13946] BTRFS info (device loop5): using crc32c checksum algorithm [ 1823.985028][T13946] BTRFS info (device loop5): enabling ssd optimizations [ 1824.019400][T13946] BTRFS info (device loop5): turning on async discard [ 1824.058435][T13946] BTRFS info (device loop5): enabling free space tree [ 1824.098002][T13946] BTRFS info (device loop5): use zlib compression, level 3 [ 1824.145579][T14012] netlink: 276 bytes leftover after parsing attributes in process `syz.6.17409'. [ 1824.254239][T19331] usb 2-1: new high-speed USB device number 79 using dummy_hcd [ 1824.416950][ T5640] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1824.460030][T19331] usb 2-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 1824.495851][T19331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1824.536497][T14025] netlink: 40 bytes leftover after parsing attributes in process `syz.6.17415'. [ 1824.669887][T19331] pwc: Logitech/Cisco VT Camera webcam detected. [ 1824.761202][T14027] bridge0: port 3(dummy0) entered disabled state [ 1824.878292][T14027] bridge_slave_1: left allmulticast mode [ 1824.919759][T14027] bridge_slave_1: left promiscuous mode [ 1824.944576][T14027] bridge0: port 2(bridge_slave_1) entered disabled state [ 1825.069130][T19331] pwc: send_video_command error -71 [ 1825.075719][T19331] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 1825.099257][T19331] Philips webcam 2-1:127.0: probe with driver Philips webcam failed with error -71 [ 1825.188746][T19331] usb 2-1: USB disconnect, device number 79 [ 1825.214469][T14027] bond0: (slave bond_slave_0): Releasing backup interface [ 1825.511694][T14027] bond0: (slave bond_slave_1): Releasing backup interface [ 1825.617681][T14027] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1825.649849][T14027] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1825.679277][T14027] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1825.704359][T14027] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1825.730547][T14027] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 1825.780916][T14023] loop7: detected capacity change from 0 to 32768 [ 1825.825603][T14023] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.17412 (14023) [ 1825.926854][T14023] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1825.975194][T14023] BTRFS info (device loop7): using sha256 checksum algorithm [ 1826.162415][T14023] BTRFS info (device loop7): enabling ssd optimizations [ 1826.228858][T14023] BTRFS info (device loop7): turning on async discard [ 1826.282446][T14023] BTRFS info (device loop7): enabling free space tree [ 1826.600619][ T3771] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1826.696313][ T30] kauditd_printk_skb: 111 callbacks suppressed [ 1826.696343][ T30] audit: type=1326 audit(2000001552.241:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.1.17431" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1826.730606][T14072] loop5: detected capacity change from 0 to 4096 [ 1826.746745][T14072] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 1826.813133][T14037] loop6: detected capacity change from 0 to 32768 [ 1826.826519][ T30] audit: type=1326 audit(2000001552.269:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.1.17431" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1826.868246][T14037] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.17419 (14037) [ 1826.950868][T14072] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 1826.969506][ T30] audit: type=1326 audit(2000001552.278:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.1.17431" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1827.016655][T14037] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1827.091204][T14037] BTRFS info (device loop6): using crc32c checksum algorithm [ 1827.138353][ T30] audit: type=1326 audit(2000001552.278:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.1.17431" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1827.322929][ T30] audit: type=1326 audit(2000001552.278:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.1.17431" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c199cdd9 code=0x7ffc0000 [ 1827.419720][T14037] BTRFS info (device loop6): enabling ssd optimizations [ 1827.468475][T14037] BTRFS info (device loop6): turning on flush-on-commit [ 1827.511081][T14037] BTRFS info (device loop6): enabling free space tree [ 1827.535296][T14037] BTRFS info (device loop6): enabling auto defrag [ 1827.579884][T14037] BTRFS info (device loop6): use lzo compression, level 1 [ 1827.618556][T14037] BTRFS info (device loop6): max_inline set to 4096 [ 1827.869596][T14037] BTRFS info (device loop6 state M): max_inline set to 4096 [ 1828.077425][ T3029] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1828.093841][T14103] loop7: detected capacity change from 0 to 4096 [ 1828.160321][T14057] loop3: detected capacity change from 0 to 32768 [ 1828.228297][T14112] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1828.256952][T14057] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1828.388875][T14103] NILFS error (device loop7): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0 [ 1828.491551][T14103] Remounting filesystem read-only [ 1828.597449][T14057] XFS (loop3): Ending clean mount [ 1828.710125][T14057] XFS (loop3): Quotacheck needed: Please wait. [ 1829.487008][T14057] XFS (loop3): Quotacheck: Done. [ 1829.553394][ T5636] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1829.807162][T14155] netlink: 'syz.1.17457': attribute type 3 has an invalid length. [ 1829.837625][T14155] netlink: 'syz.1.17457': attribute type 1 has an invalid length. [ 1829.911857][T14155] netlink: 224 bytes leftover after parsing attributes in process `syz.1.17457'. [ 1830.244878][T14163] netlink: 'syz.5.17464': attribute type 7 has an invalid length. [ 1830.904345][T14185] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17473'. [ 1831.223744][T14193] netlink: 40 bytes leftover after parsing attributes in process `syz.7.17478'. [ 1831.530512][T14203] netlink: 32 bytes leftover after parsing attributes in process `syz.7.17483'. [ 1832.186437][T14231] netlink: 76 bytes leftover after parsing attributes in process `syz.3.17497'. [ 1832.678379][T14240] loop7: detected capacity change from 0 to 4096 [ 1832.729311][T14240] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512). [ 1832.751702][T14249] openvswitch: netlink: Duplicate or invalid key (type 0). [ 1832.783223][T14249] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1832.853686][T14240] ntfs3(loop7): Failed to initialize $Extend/$ObjId. [ 1832.933682][T14254] loop1: detected capacity change from 0 to 2048 [ 1832.980558][T14254] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1833.301884][T14265] netlink: 'syz.3.17514': attribute type 1 has an invalid length. [ 1833.540527][T14274] netlink: 'syz.1.17516': attribute type 12 has an invalid length. [ 1833.552966][T14275] netlink: 'syz.0.17519': attribute type 61 has an invalid length. [ 1833.580055][T14275] netlink: 'syz.0.17519': attribute type 62 has an invalid length. [ 1833.675036][T14280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17521'. [ 1833.710825][T14280] netlink: 224 bytes leftover after parsing attributes in process `syz.3.17521'. [ 1833.732808][T14280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17521'. [ 1833.760191][T19312] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 1833.911343][T14289] loop7: detected capacity change from 0 to 8 [ 1833.953852][T14289] MTD: Attempt to mount non-MTD device "/dev/loop7" [ 1833.963942][T19312] usb 7-1: Using ep0 maxpacket: 32 [ 1833.985660][T19312] usb 7-1: config 0 has an invalid interface number: 119 but max is 0 [ 1833.999456][ T5610] udevd[5610]: incorrect cramfs checksum on /dev/loop7 [ 1834.007809][T19312] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1834.066790][T19312] usb 7-1: config 0 has no interface number 0 [ 1834.083674][T14289] cramfs: Error -3 while decompressing! [ 1834.092879][T19312] usb 7-1: config 0 interface 119 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1834.118439][T14289] cramfs: ffffffff9b2758a8(26)->ffff888096c67000(4096) [ 1834.129096][T14289] cramfs: Error -5 while decompressing! [ 1834.135280][T14289] cramfs: ffffffff9b2758c2(26)->ffff88804d854000(4096) [ 1834.143428][T14289] cramfs: Error 2 while decompressing! [ 1834.152790][T19312] usb 7-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 1834.174324][T19312] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1834.182778][T14289] cramfs: ffffffff9b2758dc(16)->ffff888097435000(4096) [ 1834.190658][T14289] cramfs: Error -3 while decompressing! [ 1834.196378][T19312] usb 7-1: Product: syz [ 1834.202204][T19312] usb 7-1: Manufacturer: syz [ 1834.206932][T14289] cramfs: ffffffff9b2758a8(26)->ffff888096c67000(4096) [ 1834.219601][T19312] usb 7-1: SerialNumber: syz [ 1834.227201][ T30] audit: type=1800 audit(2000001559.291:492): pid=14289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.17525" name="file2" dev="loop7" ino=348 res=0 errno=0 [ 1834.262267][T19312] usb 7-1: config 0 descriptor?? [ 1834.301924][T19312] input: bcm5974 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.119/input/input107 [ 1834.621951][T19312] usb 7-1: USB disconnect, device number 22 [ 1835.786605][T14347] loop5: detected capacity change from 0 to 512 [ 1835.848757][T14349] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1835.901555][T14347] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1835.940639][T14347] ext4 filesystem being mounted at /2956/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1835.955717][T14354] netlink: 'syz.3.17555': attribute type 9 has an invalid length. [ 1836.302830][ T5640] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1836.376491][T14364] netlink: 260 bytes leftover after parsing attributes in process `syz.3.17559'. [ 1836.675764][T14374] loop1: detected capacity change from 0 to 1024 [ 1836.686884][ T3918] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 1836.752163][T14345] loop7: detected capacity change from 0 to 32768 [ 1836.762931][T14374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1836.870619][T14345] ERROR: (device loop7): diAllocAG: numfree > numinos [ 1836.870619][T14345] [ 1836.887528][ T3918] usb 7-1: Using ep0 maxpacket: 16 [ 1836.922527][ T3918] usb 7-1: config 0 has an invalid interface number: 41 but max is 0 [ 1836.934878][T14374] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #11: comm syz.1.17565: missing EA_INODE flag [ 1836.956451][ T3918] usb 7-1: config 0 has no interface number 0 [ 1836.976789][ T3918] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 1837.010970][T14345] ERROR: (device loop7): remounting filesystem as read-only [ 1837.020566][ T3918] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 1837.041778][T14374] EXT4-fs (loop1): Remounting filesystem read-only [ 1837.050683][ T3918] usb 7-1: config 0 interface 41 has no altsetting 0 [ 1837.059428][T14345] ialloc: diAlloc returned -5! [ 1837.072006][ T3918] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a [ 1837.089291][T14386] xt_l2tp: wrong L2TP version: 0 [ 1837.091468][ T3918] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1837.133994][ T3918] usb 7-1: Product: syz [ 1837.158809][ T3918] usb 7-1: Manufacturer: syz [ 1837.190556][ T3918] usb 7-1: SerialNumber: syz [ 1837.219773][ T3918] usb 7-1: config 0 descriptor?? [ 1837.238327][T14366] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1837.286154][ T5627] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1837.298590][T14366] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1837.559810][T14366] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1837.609442][T14366] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1837.883695][ T3918] sr9700 7-1:0.41 (unnamed net_device) (uninitialized): Error reading MAC address [ 1837.950920][ T3918] usb 7-1: USB disconnect, device number 23 [ 1838.271610][T14414] loop5: detected capacity change from 0 to 1024 [ 1838.288729][T14417] veth0_macvtap: left promiscuous mode [ 1838.992094][T14429] netlink: 48 bytes leftover after parsing attributes in process `syz.7.17590'. [ 1839.038187][T14431] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17592'. [ 1839.288099][T14406] loop1: detected capacity change from 0 to 32768 [ 1839.377834][T14406] JBD2: Ignoring recovery information on journal [ 1839.644353][T14406] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1840.307585][ T5627] ocfs2: Unmounting device (7,1) on (node local) [ 1841.951256][ T5283] veth0_macvtap: entered promiscuous mode [ 1842.103011][T14474] loop6: detected capacity change from 0 to 32768 [ 1842.164947][T14474] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.17608 (14474) [ 1842.240548][T14474] BTRFS info (device loop6): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1842.255974][T14530] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17632'. [ 1842.278494][T14474] BTRFS info (device loop6): using sha256 checksum algorithm [ 1842.279353][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 1842.517359][T14474] BTRFS info (device loop6): turning off barriers [ 1842.518855][T19331] usb 1-1: new high-speed USB device number 61 using dummy_hcd [ 1842.539826][T14474] BTRFS info (device loop6): enabling free space tree [ 1842.754700][T19331] usb 1-1: Using ep0 maxpacket: 32 [ 1842.783631][T19331] usb 1-1: config 0 has an invalid interface number: 119 but max is 0 [ 1842.817156][ T3029] BTRFS info (device loop6): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1842.842296][T19331] usb 1-1: config 0 has no interface number 0 [ 1842.859987][T19331] usb 1-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1842.877150][T14557] xt_ecn: cannot match TCP bits for non-tcp packets [ 1842.896466][T19331] usb 1-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 1842.919270][T14511] loop7: detected capacity change from 0 to 32768 [ 1842.939501][T19331] usb 1-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 27 [ 1842.984031][T19331] usb 1-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 1843.016925][T19331] usb 1-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 1843.037657][T14511] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1843.040999][T19331] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1843.064554][T19331] usb 1-1: Product: syz [ 1843.079038][T19331] usb 1-1: Manufacturer: syz [ 1843.092658][T19331] usb 1-1: SerialNumber: syz [ 1843.129654][T19331] usb 1-1: config 0 descriptor?? [ 1843.150110][T14528] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1843.247824][T14511] XFS (loop7): invalid iclog size (4096 bytes), using lsunit (32768 bytes) [ 1843.265516][T19331] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.119/input/input108 [ 1843.365262][T14511] XFS (loop7): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 1843.395071][ C1] bcm5974 1-1:0.119: trackpad urb failed: -1 [ 1843.562947][T14511] XFS (loop7): Starting recovery (logdev: internal) [ 1843.780377][T19324] usb 1-1: USB disconnect, device number 61 [ 1843.902887][T14511] XFS (loop7): Ending recovery (logdev: internal) [ 1843.973472][T14511] XFS (loop7): Quotacheck needed: Please wait. [ 1844.101589][T14592] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1844.508291][T14511] XFS (loop7): Quotacheck: Done. [ 1844.855872][ T3771] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1844.901300][T14615] trusted_key: encrypted_key: hex blob is missing [ 1845.399251][T14628] loop5: detected capacity change from 0 to 256 [ 1845.492118][T14628] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1845.647107][T19312] usb 4-1: new full-speed USB device number 53 using dummy_hcd [ 1845.855935][T19312] usb 4-1: not running at top speed; connect to a high speed hub [ 1845.899520][T19312] usb 4-1: config 2 has an invalid interface number: 195 but max is 0 [ 1845.932268][T19312] usb 4-1: config 2 has no interface number 0 [ 1845.961903][T19312] usb 4-1: config 2 interface 195 has no altsetting 0 [ 1845.986331][T19312] usb 4-1: string descriptor 0 read error: -22 [ 1846.003170][T19312] usb 4-1: New USB device found, idVendor=041e, idProduct=401d, bcdDevice=c8.6b [ 1846.030941][T19312] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1846.088454][T19312] gspca_main: spca505-2.14.0 probing 041e:401d [ 1846.256474][T14654] sctp: [Deprecated]: syz.7.17675 (pid 14654) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1846.256474][T14654] Use struct sctp_sack_info instead [ 1846.510205][T19312] gspca_spca505: reg write: error -71 [ 1846.537278][T19312] spca505 4-1:2.195: probe with driver spca505 failed with error -5 [ 1846.586929][T19312] usb 4-1: USB disconnect, device number 53 [ 1846.913160][T14672] netlink: 'syz.0.17683': attribute type 16 has an invalid length. [ 1846.931322][T14672] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.17683'. [ 1847.261434][T14646] loop6: detected capacity change from 0 to 32768 [ 1847.268486][T14682] vti0: entered promiscuous mode [ 1847.300519][T14682] vti0: entered allmulticast mode [ 1847.387548][T14646] JBD2: Ignoring recovery information on journal [ 1847.489651][T14646] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1847.720394][T14646] (syz.6.17671,14646,0):ocfs2_find_entry:1111 ERROR: status = -117 [ 1847.776844][T14646] (syz.6.17671,14646,0):ocfs2_find_entry:1111 ERROR: status = -117 [ 1847.809232][T14646] (syz.6.17671,14646,0):ocfs2_symlink:2078 ERROR: status = -117 [ 1848.171200][ T3029] ocfs2: Unmounting device (7,6) on (node local) [ 1848.610617][T14721] netlink: 'syz.5.17707': attribute type 1 has an invalid length. [ 1848.636934][T14721] netlink: 476 bytes leftover after parsing attributes in process `syz.5.17707'. [ 1848.670044][T14721] netlink: 1041 bytes leftover after parsing attributes in process `syz.5.17707'. [ 1848.802069][T14727] tmpfs: Bad value for 'mpol' [ 1849.025864][T14733] netlink: 'syz.0.17712': attribute type 1 has an invalid length. [ 1849.053074][T14733] netlink: 'syz.0.17712': attribute type 1 has an invalid length. [ 1849.150986][T14703] loop3: detected capacity change from 0 to 32768 [ 1849.187157][T14703] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.17697 (14703) [ 1849.290988][T14703] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1849.362755][T14703] BTRFS info (device loop3): using xxhash64 checksum algorithm [ 1849.670092][T14703] BTRFS info (device loop3): enabling ssd optimizations [ 1849.705565][T14703] BTRFS info (device loop3): turning on flush-on-commit [ 1849.733782][T14703] BTRFS info (device loop3): turning on async discard [ 1849.747436][T14768] netlink: 'syz.0.17722': attribute type 21 has an invalid length. [ 1849.763425][T14703] BTRFS info (device loop3): enabling free space tree [ 1849.782230][T14768] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17722'. [ 1849.800557][T14703] BTRFS info (device loop3): force zlib compression, level 3 [ 1849.830173][T14703] BTRFS info (device loop3): max_inline set to 4096 [ 1850.345550][ T5636] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1850.446769][T14791] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 1851.595481][T14826] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1851.955473][T14841] netlink: 'syz.5.17757': attribute type 1 has an invalid length. [ 1851.994274][T14841] netlink: 224 bytes leftover after parsing attributes in process `syz.5.17757'. [ 1852.017416][T14840] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 1852.364024][T14854] ip6t_REJECT: ECHOREPLY is not supported [ 1853.615272][T14850] loop6: detected capacity change from 0 to 32768 [ 1853.676557][T14850] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1853.739867][T14891] loop7: detected capacity change from 0 to 4096 [ 1853.770218][T14891] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512). [ 1853.887370][T14891] ntfs3(loop7): Failed to initialize $Extend/$ObjId. [ 1854.315447][T14850] XFS (loop6): Starting recovery (logdev: internal) [ 1854.431857][T14850] XFS (loop6): Ending recovery (logdev: internal) [ 1854.787710][ T3029] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1855.006096][T14930] loop7: detected capacity change from 0 to 1024 [ 1855.135280][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.174280][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.270028][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.288890][T14936] bridge6: entered promiscuous mode [ 1855.333190][T14936] bridge6: entered allmulticast mode [ 1855.350802][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.435080][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.516724][T14930] hfsplus: xattr search failed [ 1855.540565][T14930] hfsplus: invalid length 256 has been corrected to 255 [ 1855.755842][T31452] hfsplus: invalid length 256 has been corrected to 255 [ 1855.936435][T14948] loop6: detected capacity change from 0 to 2048 [ 1856.008028][T14956] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1856.376260][T14969] loop5: detected capacity change from 0 to 16 [ 1856.411295][T14969] erofs (device loop5): mounted with root inode @ nid 36. [ 1856.435014][T14971] netlink: 'syz.1.17814': attribute type 62 has an invalid length. [ 1856.488260][T14969] syz.5.17813: attempt to access beyond end of device [ 1856.488260][T14969] loop5: rw=524288, sector=8, nr_sectors = 24 limit=16 [ 1856.576671][T14969] erofs (device loop5): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096 [ 1856.652902][T14969] erofs (device loop5): read error -117 @ 0 of nid 89 [ 1856.699616][ T30] audit: type=1800 audit(2000001580.330:493): pid=14969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.17813" name="file2" dev="loop5" ino=89 res=0 errno=0 [ 1858.007356][T15026] loop6: detected capacity change from 0 to 1024 [ 1858.251875][T15035] loop1: detected capacity change from 0 to 8 [ 1858.360514][T15035] SQUASHFS error: Unable to read inode 0xe3 [ 1858.596712][T14991] loop5: detected capacity change from 0 to 32768 [ 1858.663601][T14991] JBD2: Ignoring recovery information on journal [ 1858.773252][ T3918] usb 1-1: new high-speed USB device number 62 using dummy_hcd [ 1858.783243][T14991] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1858.909793][T14991] (syz.5.17823,14991,1):ocfs2_find_entry:1111 ERROR: status = -117 [ 1858.955930][ T3918] usb 1-1: Using ep0 maxpacket: 8 [ 1858.963387][T14991] (syz.5.17823,14991,1):ocfs2_find_entry:1111 ERROR: status = -117 [ 1858.993936][ T3918] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1859.028387][T14991] (syz.5.17823,14991,1):ocfs2_symlink:2078 ERROR: status = -117 [ 1859.062719][ T3918] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 1859.135560][ T3918] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 1859.206198][ T3918] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1859.253281][ T3918] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 1859.310859][ T3918] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 1859.353421][ T3918] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1859.402236][ T3918] usb 1-1: Product: syz [ 1859.428165][ T5640] ocfs2: Unmounting device (7,5) on (node local) [ 1859.440343][ T3918] usb 1-1: Manufacturer: syz [ 1859.472130][ T3918] usb 1-1: SerialNumber: syz [ 1859.537208][ T3918] usb 1-1: config 0 descriptor?? [ 1859.610310][ T3918] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input110 [ 1859.967616][ T3918] usb 1-1: USB disconnect, device number 62 [ 1860.083466][T15070] loop3: detected capacity change from 0 to 1764 [ 1860.444303][T15079] loop7: detected capacity change from 0 to 512 [ 1860.474437][T15044] loop6: detected capacity change from 0 to 32768 [ 1860.573848][T15079] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1860.576158][T15044] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1860.634323][T15079] ext4 filesystem being mounted at /770/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 1861.026127][T15044] XFS (loop6): Ending clean mount [ 1861.132977][ T3771] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1861.390199][ T3029] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1861.563648][T15119] loop3: detected capacity change from 0 to 16 [ 1861.637758][T15119] erofs (device loop3): mounted with root inode @ nid 36. [ 1862.938102][T15145] loop5: detected capacity change from 0 to 4096 [ 1863.026954][T15155] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1863.121222][T15145] NILFS error (device loop5): nilfs_find_entry: dir 2 size 2147487744 exceeds block count 1 [ 1863.211692][T15145] Remounting filesystem read-only [ 1863.511599][ T5640] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 1863.847480][T15174] netlink: 132 bytes leftover after parsing attributes in process `syz.3.17894'. [ 1863.912584][T15178] loop7: detected capacity change from 0 to 64 [ 1863.958795][T15181] loop6: detected capacity change from 0 to 64 [ 1864.048891][T15181] hfs: unable to locate alternate MDB [ 1864.082380][T15181] hfs: continuing without an alternate MDB [ 1864.187302][ T30] audit: type=1800 audit(2000001587.334:494): pid=15181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.17897" name="file1" dev="loop6" ino=22 res=0 errno=0 [ 1864.355871][T31465] [ 1864.358248][T31465] ====================================================== [ 1864.365283][T31465] WARNING: possible circular locking dependency detected [ 1864.373107][T31465] syzkaller #0 Tainted: G L [ 1864.379093][T31465] ------------------------------------------------------ [ 1864.386130][T31465] kworker/u8:15/31465 is trying to acquire lock: [ 1864.392473][T31465] ffff888027a0b2f0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0 [ 1864.404942][T31465] [ 1864.404942][T31465] but task is already holding lock: [ 1864.416696][T31465] ffff88807e4760a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1864.427267][T31465] [ 1864.427267][T31465] which lock already depends on the new lock. [ 1864.427267][T31465] [ 1864.441140][T31465] [ 1864.441140][T31465] the existing dependency chain (in reverse order) is: [ 1864.450975][T31465] [ 1864.450975][T31465] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}: [ 1864.459744][T31465] __mutex_lock+0x1a4/0x1b10 [ 1864.465349][T31465] hfs_find_init+0x273/0x330 [ 1864.471781][T31465] hfs_ext_read_extent+0x19d/0x9d0 [ 1864.479044][T31465] hfs_get_block+0x576/0x830 [ 1864.484216][T31465] block_read_full_folio+0x36c/0x8e0 [ 1864.490067][T31465] filemap_read_folio+0xfc/0x3b0 [ 1864.495549][T31465] do_read_cache_folio+0x2d7/0x6b0 [ 1864.501206][T31465] read_cache_page+0x5b/0x1b0 [ 1864.506425][T31465] __hfs_bnode_create+0x718/0x9a0 [ 1864.511986][T31465] hfs_bnode_find+0x2d5/0xd30 [ 1864.517207][T31465] hfs_brec_find+0x39d/0x620 [ 1864.522855][T31465] hfs_brec_read+0x26/0x120 [ 1864.527900][T31465] hfs_cat_find_brec+0xdc/0x2a0 [ 1864.533298][T31465] hfs_fill_super+0x58d/0x7e0 [ 1864.538509][T31465] get_tree_bdev_flags+0x38c/0x620 [ 1864.544173][T31465] vfs_get_tree+0x92/0x320 [ 1864.549134][T31465] path_mount+0x7d0/0x23d0 [ 1864.554176][T31465] __x64_sys_mount+0x293/0x310 [ 1864.559481][T31465] do_syscall_64+0x10b/0xf80 [ 1864.564620][T31465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1864.571048][T31465] [ 1864.571048][T31465] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 1864.580298][T31465] __lock_acquire+0x14b8/0x2630 [ 1864.585704][T31465] lock_acquire+0x1b1/0x370 [ 1864.590751][T31465] __mutex_lock+0x1a4/0x1b10 [ 1864.595889][T31465] hfs_extend_file+0xa6/0xcf0 [ 1864.601118][T31465] hfs_bmap_reserve+0x2ab/0x3a0 [ 1864.606514][T31465] __hfs_ext_write_extent+0x3c4/0x510 [ 1864.612441][T31465] hfs_ext_write_extent+0x1b7/0x200 [ 1864.618193][T31465] hfs_write_inode+0xce/0xab0 [ 1864.623423][T31465] __writeback_single_inode+0xcd4/0x1350 [ 1864.629615][T31465] writeback_sb_inodes+0x766/0x1c60 [ 1864.635367][T31465] wb_writeback+0x1bf/0xb90 [ 1864.640422][T31465] wb_workfn+0x14f/0xc00 [ 1864.645215][T31465] process_one_work+0xa0e/0x1980 [ 1864.650692][T31465] worker_thread+0x5ef/0xe50 [ 1864.655819][T31465] kthread+0x370/0x450 [ 1864.660424][T31465] ret_from_fork+0x72b/0xd50 [ 1864.665557][T31465] ret_from_fork_asm+0x1a/0x30 [ 1864.670868][T31465] [ 1864.670868][T31465] other info that might help us debug this: [ 1864.670868][T31465] [ 1864.681115][T31465] Possible unsafe locking scenario: [ 1864.681115][T31465] [ 1864.688583][T31465] CPU0 CPU1 [ 1864.694302][T31465] ---- ---- [ 1864.700274][T31465] lock(&tree->tree_lock/1); [ 1864.705080][T31465] lock(&HFS_I(tree->inode)->extents_lock); [ 1864.714337][T31465] lock(&tree->tree_lock/1); [ 1864.722541][T31465] lock(&HFS_I(tree->inode)->extents_lock); [ 1864.729121][T31465] [ 1864.729121][T31465] *** DEADLOCK *** [ 1864.729121][T31465] [ 1864.737399][T31465] 3 locks held by kworker/u8:15/31465: [ 1864.743391][T31465] #0: ffff888020ac1940 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980 [ 1864.754159][T31465] #1: ffffc9000409fd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980 [ 1864.766073][T31465] #2: ffff88807e4760a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1864.775886][T31465] [ 1864.775886][T31465] stack backtrace: [ 1864.781779][T31465] CPU: 0 UID: 0 PID: 31465 Comm: kworker/u8:15 Tainted: G L syzkaller #0 PREEMPT(full) [ 1864.781831][T31465] Tainted: [L]=SOFTLOCKUP [ 1864.781845][T31465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1864.781873][T31465] Workqueue: writeback wb_workfn (flush-7:6) [ 1864.781942][T31465] Call Trace: [ 1864.781958][T31465] [ 1864.781975][T31465] dump_stack_lvl+0x100/0x190 [ 1864.782015][T31465] print_circular_bug.cold+0x178/0x1c7 [ 1864.782080][T31465] check_noncircular+0x146/0x160 [ 1864.782120][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.782174][T31465] __lock_acquire+0x14b8/0x2630 [ 1864.782220][T31465] ? __pfx_stack_trace_save+0x10/0x10 [ 1864.782286][T31465] lock_acquire+0x1b1/0x370 [ 1864.782326][T31465] ? hfs_extend_file+0xa6/0xcf0 [ 1864.782392][T31465] ? __pfx___might_resched+0x10/0x10 [ 1864.782444][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.782488][T31465] ? add_lock_to_list+0x99/0x110 [ 1864.782523][T31465] __mutex_lock+0x1a4/0x1b10 [ 1864.782576][T31465] ? hfs_extend_file+0xa6/0xcf0 [ 1864.782632][T31465] ? hfs_extend_file+0xa6/0xcf0 [ 1864.782689][T31465] ? hfs_write_inode+0xce/0xab0 [ 1864.782722][T31465] ? __writeback_single_inode+0xcd4/0x1350 [ 1864.782781][T31465] ? __pfx___mutex_lock+0x10/0x10 [ 1864.782831][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.782875][T31465] ? lock_acquire+0x1b1/0x370 [ 1864.782921][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.782964][T31465] ? trace_contention_end+0x122/0x170 [ 1864.783012][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.783060][T31465] ? hfs_extend_file+0xa6/0xcf0 [ 1864.783113][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.783156][T31465] hfs_extend_file+0xa6/0xcf0 [ 1864.783214][T31465] ? __pfx_hfs_extend_file+0x10/0x10 [ 1864.783268][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.783320][T31465] hfs_bmap_reserve+0x2ab/0x3a0 [ 1864.783381][T31465] __hfs_ext_write_extent+0x3c4/0x510 [ 1864.783436][T31465] ? hfs_find_init+0x273/0x330 [ 1864.783475][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.783522][T31465] hfs_ext_write_extent+0x1b7/0x200 [ 1864.783579][T31465] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1864.783640][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.783684][T31465] ? __mpage_writepages+0x1a8/0x210 [ 1864.783719][T31465] ? __pfx___mpage_writepages+0x10/0x10 [ 1864.783781][T31465] hfs_write_inode+0xce/0xab0 [ 1864.783815][T31465] ? __pfx_hfs_write_inode+0x10/0x10 [ 1864.783848][T31465] ? __lock_acquire+0x4a5/0x2630 [ 1864.783903][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1864.783960][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1864.784015][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784064][T31465] __writeback_single_inode+0xcd4/0x1350 [ 1864.784126][T31465] ? __pfx___writeback_single_inode+0x10/0x10 [ 1864.784182][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784226][T31465] ? do_raw_spin_unlock+0x145/0x1e0 [ 1864.784278][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784325][T31465] writeback_sb_inodes+0x766/0x1c60 [ 1864.784397][T31465] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1864.784485][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784528][T31465] ? rcu_is_watching+0x12/0xc0 [ 1864.784580][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784624][T31465] ? queue_io+0x287/0x540 [ 1864.784672][T31465] wb_writeback+0x1bf/0xb90 [ 1864.784732][T31465] ? __pfx_wb_writeback+0x10/0x10 [ 1864.784793][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.784836][T31465] ? mark_held_locks+0x40/0x70 [ 1864.784877][T31465] ? _raw_spin_unlock_irq+0x23/0x50 [ 1864.784922][T31465] wb_workfn+0x14f/0xc00 [ 1864.784979][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785022][T31465] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1864.785067][T31465] ? __pfx_wb_workfn+0x10/0x10 [ 1864.785124][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785170][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785216][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785259][T31465] ? rcu_is_watching+0x12/0xc0 [ 1864.785310][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785358][T31465] process_one_work+0xa0e/0x1980 [ 1864.785425][T31465] ? __pfx_process_one_work+0x10/0x10 [ 1864.785468][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785520][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785567][T31465] worker_thread+0x5ef/0xe50 [ 1864.785620][T31465] ? kthread+0x13a/0x450 [ 1864.785658][T31465] ? __pfx_worker_thread+0x10/0x10 [ 1864.785700][T31465] kthread+0x370/0x450 [ 1864.785737][T31465] ? __pfx_kthread+0x10/0x10 [ 1864.785778][T31465] ret_from_fork+0x72b/0xd50 [ 1864.785823][T31465] ? __pfx_ret_from_fork+0x10/0x10 [ 1864.785867][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1864.785910][T31465] ? __switch_to+0x800/0x1100 [ 1864.785965][T31465] ? __switch_to_asm+0x39/0x70 [ 1864.786016][T31465] ? __pfx_kthread+0x10/0x10 [ 1864.786056][T31465] ret_from_fork_asm+0x1a/0x30 [ 1864.786118][T31465] [ 1865.291221][T31465] hfs: new node 0 already hashed? [ 1865.297191][T31465] ------------[ cut here ]------------ [ 1865.302955][T31465] 1 [ 1865.302970][T31465] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:15/31465 [ 1865.315839][T31465] Modules linked in: [ 1865.320044][T31465] CPU: 0 UID: 0 PID: 31465 Comm: kworker/u8:15 Tainted: G L syzkaller #0 PREEMPT(full) [ 1865.331560][T31465] Tainted: [L]=SOFTLOCKUP [ 1865.336155][T31465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1865.346599][T31465] Workqueue: writeback wb_workfn (flush-7:6) [ 1865.353698][T31465] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1865.359737][T31465] Code: f5 20 64 0a e9 17 1a d1 01 e8 bb 0b e1 00 4c 89 f7 e8 e3 20 64 0a e8 ae 0b e1 00 89 ee 48 c7 c7 00 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 19 1d d1 01 e8 92 0b e1 00 e8 4d 55 4d 00 e9 75 1f d1 [ 1865.379651][T31465] RSP: 0018:ffffc9000409f020 EFLAGS: 00010282 [ 1865.386148][T31465] RAX: 000000000000001f RBX: ffff888036e47200 RCX: 0000000000000000 [ 1865.394152][T31465] RDX: 000000000000001f RSI: ffffffff81e721a9 RDI: fffff52000813df5 [ 1865.401769][T15195] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17903'. [ 1865.402207][T31465] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1865.419351][T31465] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1865.427384][T31465] R13: ffff88807e476000 R14: ffff88807e4760d8 R15: 0000000000000000 [ 1865.435395][T31465] FS: 0000000000000000(0000) GS:ffff888124376000(0000) knlGS:0000000000000000 [ 1865.444394][T31465] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1865.451047][T31465] CR2: 00007fd3f5217dac CR3: 000000005b5d3000 CR4: 0000000000350ef0 [ 1865.459083][T31465] Call Trace: [ 1865.462378][T31465] [ 1865.465312][T31465] ? _raw_spin_unlock+0x28/0x50 [ 1865.470263][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.475960][T31465] ? hfs_bnode_put+0x208/0x480 [ 1865.480924][T31465] hfs_bmap_alloc+0x5a7/0x6b0 [ 1865.485665][T31465] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1865.490997][T31465] ? __asan_memcpy+0x3c/0x60 [ 1865.495731][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.501432][T31465] ? hfs_bnode_read.part.0+0x298/0x330 [ 1865.507225][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.512951][T31465] ? folio_mark_accessed+0xf3/0x1040 [ 1865.518296][T31465] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1865.524126][T31465] ? rcu_is_watching+0x12/0xc0 [ 1865.528950][T31465] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1865.535444][T31465] ? do_raw_spin_unlock+0x145/0x1e0 [ 1865.540697][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.546461][T31465] ? _raw_spin_unlock+0x28/0x50 [ 1865.551460][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.557233][T31465] ? hfs_bnode_put+0x208/0x480 [ 1865.562047][T31465] hfs_brec_insert+0x8ba/0xc20 [ 1865.566925][T31465] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1865.572254][T31465] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1865.578195][T31465] __hfs_ext_write_extent+0x3ef/0x510 [ 1865.583620][T31465] ? hfs_find_init+0x273/0x330 [ 1865.588436][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.594112][T31465] hfs_ext_write_extent+0x1b7/0x200 [ 1865.599473][T31465] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1865.605246][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.610973][T31465] ? __mpage_writepages+0x1a8/0x210 [ 1865.616197][T31465] ? __pfx___mpage_writepages+0x10/0x10 [ 1865.621826][T31465] hfs_write_inode+0xce/0xab0 [ 1865.626538][T31465] ? __pfx_hfs_write_inode+0x10/0x10 [ 1865.631875][T31465] ? __lock_acquire+0x4a5/0x2630 [ 1865.636868][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1865.642767][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1865.648614][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.654327][T31465] __writeback_single_inode+0xcd4/0x1350 [ 1865.660048][T31465] ? __pfx___writeback_single_inode+0x10/0x10 [ 1865.666168][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.671857][T31465] ? do_raw_spin_unlock+0x145/0x1e0 [ 1865.677265][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.682978][T31465] writeback_sb_inodes+0x766/0x1c60 [ 1865.688315][T31465] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1865.694077][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.699753][T31465] ? rcu_is_watching+0x12/0xc0 [ 1865.704594][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.710260][T31465] ? queue_io+0x287/0x540 [ 1865.714616][T31465] wb_writeback+0x1bf/0xb90 [ 1865.719197][T31465] ? __pfx_wb_writeback+0x10/0x10 [ 1865.724269][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.729984][T31465] ? mark_held_locks+0x40/0x70 [ 1865.734778][T31465] ? _raw_spin_unlock_irq+0x23/0x50 [ 1865.740057][T31465] wb_workfn+0x14f/0xc00 [ 1865.744375][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.750060][T31465] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1865.757495][T31465] ? __pfx_wb_workfn+0x10/0x10 [ 1865.762575][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.769111][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.776292][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.783403][T31465] ? rcu_is_watching+0x12/0xc0 [ 1865.788621][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.795225][T31465] process_one_work+0xa0e/0x1980 [ 1865.800673][T31465] ? __pfx_process_one_work+0x10/0x10 [ 1865.807361][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.814918][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.822774][T31465] worker_thread+0x5ef/0xe50 [ 1865.827783][T31465] ? kthread+0x13a/0x450 [ 1865.832595][T31465] ? __pfx_worker_thread+0x10/0x10 [ 1865.838113][T31465] kthread+0x370/0x450 [ 1865.842516][T31465] ? __pfx_kthread+0x10/0x10 [ 1865.847737][T31465] ret_from_fork+0x72b/0xd50 [ 1865.852458][T31465] ? __pfx_ret_from_fork+0x10/0x10 [ 1865.858135][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.863807][T31465] ? __switch_to+0x800/0x1100 [ 1865.868599][T31465] ? __switch_to_asm+0x39/0x70 [ 1865.873411][T31465] ? __pfx_kthread+0x10/0x10 [ 1865.878092][T31465] ret_from_fork_asm+0x1a/0x30 [ 1865.882927][T31465] [ 1865.885953][T31465] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1865.893245][T31465] CPU: 0 UID: 0 PID: 31465 Comm: kworker/u8:15 Tainted: G L syzkaller #0 PREEMPT(full) [ 1865.904463][T31465] Tainted: [L]=SOFTLOCKUP [ 1865.908802][T31465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1865.918914][T31465] Workqueue: writeback wb_workfn (flush-7:6) [ 1865.925060][T31465] Call Trace: [ 1865.928444][T31465] [ 1865.931385][T31465] dump_stack_lvl+0x100/0x190 [ 1865.936082][T31465] vpanic+0x552/0x970 [ 1865.940251][T31465] ? __pfx_vpanic+0x10/0x10 [ 1865.944775][T31465] ? lock_release+0x245/0x310 [ 1865.949568][T31465] panic+0xd1/0xe0 [ 1865.953306][T31465] ? __pfx_panic+0x10/0x10 [ 1865.957751][T31465] ? check_panic_on_warn+0x1f/0x90 [ 1865.962974][T31465] check_panic_on_warn.cold+0x19/0x34 [ 1865.968400][T31465] ? hfs_bnode_create.cold+0x41/0x49 [ 1865.973728][T31465] __warn.cold+0x191/0x328 [ 1865.978173][T31465] __report_bug+0x296/0x3d0 [ 1865.982701][T31465] ? hfs_bnode_create.cold+0x41/0x49 [ 1865.988010][T31465] ? __pfx___report_bug+0x10/0x10 [ 1865.993081][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1865.998895][T31465] ? preempt_schedule_thunk+0x16/0x30 [ 1866.004583][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.010332][T31465] ? preempt_count_add+0x76/0x150 [ 1866.015398][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.021151][T31465] ? __wake_up_klogd+0xe2/0x140 [ 1866.026036][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.031696][T31465] ? vprintk_emit+0x1c9/0x6b0 [ 1866.036410][T31465] ? __pfx_vprintk_emit+0x10/0x10 [ 1866.041471][T31465] ? hfs_bnode_create.cold+0x41/0x49 [ 1866.046779][T31465] report_bug+0xb2/0x220 [ 1866.051050][T31465] ? hfs_bnode_create.cold+0x41/0x49 [ 1866.056359][T31465] handle_bug+0x16a/0x2a0 [ 1866.060921][T31465] exc_invalid_op+0x17/0x50 [ 1866.065552][T31465] asm_exc_invalid_op+0x1a/0x20 [ 1866.070419][T31465] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1866.076347][T31465] Code: f5 20 64 0a e9 17 1a d1 01 e8 bb 0b e1 00 4c 89 f7 e8 e3 20 64 0a e8 ae 0b e1 00 89 ee 48 c7 c7 00 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 19 1d d1 01 e8 92 0b e1 00 e8 4d 55 4d 00 e9 75 1f d1 [ 1866.095976][T31465] RSP: 0018:ffffc9000409f020 EFLAGS: 00010282 [ 1866.102068][T31465] RAX: 000000000000001f RBX: ffff888036e47200 RCX: 0000000000000000 [ 1866.110437][T31465] RDX: 000000000000001f RSI: ffffffff81e721a9 RDI: fffff52000813df5 [ 1866.118419][T31465] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1866.126399][T31465] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1866.134386][T31465] R13: ffff88807e476000 R14: ffff88807e4760d8 R15: 0000000000000000 [ 1866.142393][T31465] ? vprintk_emit+0x1c9/0x6b0 [ 1866.147138][T31465] ? _raw_spin_unlock+0x28/0x50 [ 1866.152017][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.157674][T31465] ? hfs_bnode_put+0x208/0x480 [ 1866.162646][T31465] hfs_bmap_alloc+0x5a7/0x6b0 [ 1866.167449][T31465] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1866.172669][T31465] ? __asan_memcpy+0x3c/0x60 [ 1866.177275][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.182928][T31465] ? hfs_bnode_read.part.0+0x298/0x330 [ 1866.188409][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.194242][T31465] ? folio_mark_accessed+0xf3/0x1040 [ 1866.199558][T31465] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1866.205308][T31465] ? rcu_is_watching+0x12/0xc0 [ 1866.210198][T31465] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1866.216560][T31465] ? do_raw_spin_unlock+0x145/0x1e0 [ 1866.221788][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.227438][T31465] ? _raw_spin_unlock+0x28/0x50 [ 1866.232313][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.237962][T31465] ? hfs_bnode_put+0x208/0x480 [ 1866.242748][T31465] hfs_brec_insert+0x8ba/0xc20 [ 1866.247745][T31465] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1866.253076][T31465] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1866.258147][T31465] __hfs_ext_write_extent+0x3ef/0x510 [ 1866.263550][T31465] ? hfs_find_init+0x273/0x330 [ 1866.268331][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.273989][T31465] hfs_ext_write_extent+0x1b7/0x200 [ 1866.279308][T31465] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1866.285078][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.290732][T31465] ? __mpage_writepages+0x1a8/0x210 [ 1866.295937][T31465] ? __pfx___mpage_writepages+0x10/0x10 [ 1866.301523][T31465] hfs_write_inode+0xce/0xab0 [ 1866.306295][T31465] ? __pfx_hfs_write_inode+0x10/0x10 [ 1866.311675][T31465] ? __lock_acquire+0x4a5/0x2630 [ 1866.316643][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1866.322482][T31465] ? __writeback_single_inode+0x454/0x1350 [ 1866.328316][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.333979][T31465] __writeback_single_inode+0xcd4/0x1350 [ 1866.339651][T31465] ? __pfx___writeback_single_inode+0x10/0x10 [ 1866.345751][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.352077][T31465] ? do_raw_spin_unlock+0x145/0x1e0 [ 1866.357399][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.363077][T31465] writeback_sb_inodes+0x766/0x1c60 [ 1866.368330][T31465] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1866.374034][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.379692][T31465] ? rcu_is_watching+0x12/0xc0 [ 1866.384483][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.390139][T31465] ? queue_io+0x287/0x540 [ 1866.394493][T31465] wb_writeback+0x1bf/0xb90 [ 1866.399039][T31465] ? __pfx_wb_writeback+0x10/0x10 [ 1866.404099][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.409755][T31465] ? mark_held_locks+0x40/0x70 [ 1866.414536][T31465] ? _raw_spin_unlock_irq+0x23/0x50 [ 1866.419842][T31465] wb_workfn+0x14f/0xc00 [ 1866.424211][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.430047][T31465] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1866.435898][T31465] ? __pfx_wb_workfn+0x10/0x10 [ 1866.440693][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.446619][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.452992][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.458699][T31465] ? rcu_is_watching+0x12/0xc0 [ 1866.463897][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.469666][T31465] process_one_work+0xa0e/0x1980 [ 1866.474731][T31465] ? __pfx_process_one_work+0x10/0x10 [ 1866.480583][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.486795][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.492719][T31465] worker_thread+0x5ef/0xe50 [ 1866.498069][T31465] ? kthread+0x13a/0x450 [ 1866.502502][T31465] ? __pfx_worker_thread+0x10/0x10 [ 1866.507635][T31465] kthread+0x370/0x450 [ 1866.511721][T31465] ? __pfx_kthread+0x10/0x10 [ 1866.516334][T31465] ret_from_fork+0x72b/0xd50 [ 1866.520944][T31465] ? __pfx_ret_from_fork+0x10/0x10 [ 1866.526073][T31465] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1866.531724][T31465] ? __switch_to+0x800/0x1100 [ 1866.536431][T31465] ? __switch_to_asm+0x39/0x70 [ 1866.541224][T31465] ? __pfx_kthread+0x10/0x10 [ 1866.545831][T31465] ret_from_fork_asm+0x1a/0x30 [ 1866.550647][T31465] [ 1866.554020][T31465] Kernel Offset: disabled [ 1866.558345][T31465] Rebooting in 86400 seconds..