last executing test programs: 3.762889982s ago: executing program 2 (id=7729): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x6, 0x7, 0x9, 0x0, 0x1, "100056f200"}) 3.502287987s ago: executing program 2 (id=7731): r0 = socket$can_j1939(0x1d, 0x2, 0x7) getsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, 0x0, &(0x7f0000000140)) 3.323165197s ago: executing program 2 (id=7734): r0 = syz_open_dev$video(&(0x7f0000000580), 0x10001, 0x20400) ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f00000005c0)={0x2, "1898efe12602264e5329ea767c2a971f5a255b196a633fb7b93bae0f92c8aa56", 0x7e3e52ee274e9ef1, 0x2, 0x3, 0x0, 0x410, 0x8}) 3.005024496s ago: executing program 2 (id=7740): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xd8, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="e7000200006b652572499d8b824b", 0x0, 0x3008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 2.680234105s ago: executing program 2 (id=7746): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(r0, &(0x7f0000002080)={0xfc, {"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", 0x1022}}, 0x1006) 2.496570125s ago: executing program 4 (id=7749): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0xc0000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 2.276039868s ago: executing program 4 (id=7751): pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a2401fd6e000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0) 2.087269749s ago: executing program 2 (id=7753): writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000100)="390000fa461aa0fbe8ab80679467df91c09e8a722e34d7e484893ffa5602", 0x1e}], 0x1) syz_usb_connect(0x0, 0x62, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000fb5d7d086d04c308166b0102030109025000010000000009041f0000ff0100000a24010400050201020724070500000508240805040004960d2406010103020001000600060924030505030605810924030601030405050724"], 0x0) 1.133800494s ago: executing program 3 (id=7768): r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, 0x0) 1.0304005s ago: executing program 1 (id=7771): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, 0x0, &(0x7f0000000300)=0xfffffea1) 1.02970645s ago: executing program 0 (id=7772): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c000000200025a727bd7000fddbdf25020000cdff0000010300000008000600000000000500150002"], 0x2c}, 0x1, 0x0, 0x0, 0x40480d0}, 0x40000) 940.602265ms ago: executing program 3 (id=7773): r0 = socket(0xa, 0x3, 0x3a) ioctl$SIOCPNGETOBJECT(r0, 0x89e0, 0x0) 864.33113ms ago: executing program 1 (id=7774): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@can_newroute={0x154, 0x18, 0x1, 0x70bd29, 0x25dfdbfd, {0x1d, 0x1, 0x4}, [@CGW_CS_CRC8={0x11e, 0x6, {0x1, 0xfb, 0x3, 0x0, 0xff, "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", 0x0, "5c8d586b2a88d818b56d2a5e15c8a95d29e5b2ea"}}, @CGW_CS_XOR={0x8, 0x5, {0x82, 0x6, 0xf5, 0x2}}, @CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x1, 0x0, 0x1}, 0x0, 0x5, 0x0, 0x0, '\t\x00'}, 0x1}}]}, 0x154}}, 0x4c0c8) 863.54526ms ago: executing program 0 (id=7775): r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r0, 0x101, 0xc, &(0x7f0000000080)=0x10000, 0x4) 816.100183ms ago: executing program 3 (id=7776): r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0) close_range(r0, r0, 0x0) 715.110388ms ago: executing program 3 (id=7777): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x33c, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x2, 0x1, 0x4, {0x2, @vbi={0x9, 0x1, 0x1, 0xb5315258, [0x5, 0xfffff1dd], [0x6, 0x596], 0x2}}}) 676.256611ms ago: executing program 0 (id=7778): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x42, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0) 673.253961ms ago: executing program 1 (id=7779): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newtaction={0x7c, 0x30, 0x9, 0x0, 0x0, {}, [{0x68, 0x1, [@m_mpls={0x64, 0x1, 0x0, 0x0, {{0x9}, {0x38, 0x2, 0x0, 0x1, [@TCA_MPLS_BOS={0x5}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_TTL={0x5, 0x7, 0x8}, @TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x2}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0) 667.430982ms ago: executing program 4 (id=7780): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) getsockopt$bt_BT_POWER(r0, 0x112, 0x4, 0x0, &(0x7f0000000000)) 433.217285ms ago: executing program 1 (id=7781): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x28, 0xb, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 433.060365ms ago: executing program 4 (id=7782): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x5c, 0x10, 0x639, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe802, 0xe280}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @loopback={0xffffff7f00000000}}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @loopback}]}}}]}, 0x5c}}, 0x24000000) 403.986256ms ago: executing program 0 (id=7783): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)={0x2c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x20}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x9}]}, 0x2c}}, 0x200c0) 389.701327ms ago: executing program 3 (id=7784): r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) 291.225703ms ago: executing program 4 (id=7785): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x50, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x0, 0x21018}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve0\x00'}]}, 0x50}}, 0x80) 245.836266ms ago: executing program 0 (id=7786): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000680)={0x20, 0x12, 0x1, 0x70bd29, 0x25dfdbff, "", [@nested={0x10, 0x0, 0x0, 0x0, [@nested={0xc, 0x9f, 0x0, 0x1, [@typed={0x7, 0x8e, 0x0, 0x0, @str='[/\x00'}]}]}]}, 0x20}], 0x1, 0x0, 0x0, 0x40000}, 0x0) 232.731987ms ago: executing program 1 (id=7787): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000005400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}}], 0x1, 0x11) 204.658948ms ago: executing program 3 (id=7788): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000480)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@quota}]}, 0xd, 0x5ed, &(0x7f0000000600)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x104880, 0x0, 0x1, 0x0, &(0x7f0000000200)) 69.181516ms ago: executing program 4 (id=7789): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000002c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd0}, @printk={@lli}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r0, 0x18000000000002a0, 0x28, 0x0, &(0x7f00000001c0)="d2ff03076003008cb89e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 5.280129ms ago: executing program 0 (id=7790): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) setfsgid(0xffffffffffffffff) 0s ago: executing program 1 (id=7791): r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @private}, 0x4}}, 0x26) kernel console output (not intermixed with test programs): [ 815.364266][T18412] BTRFS: device fsid ed4422de-dbc1-4dc1-8d60-3583f36c24cc devid 1 transid 8 /dev/loop2 scanned by syz.2.6179 (18412) [ 815.369253][ T4276] EXT4-fs (loop4): unmounting filesystem. [ 815.378586][ T2166] ftdi_sio 2-1:214.60: FTDI USB Serial Device converter detected [ 815.444151][ T2166] usb 2-1: Detected SIO [ 815.465136][T18412] BTRFS info (device loop2): first mount of filesystem ed4422de-dbc1-4dc1-8d60-3583f36c24cc [ 815.491201][ T2166] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 11 [ 815.530197][T18412] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 815.550328][T18387] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 815.560287][ T2166] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 815.594336][T18412] BTRFS info (device loop2): using free space tree [ 815.613644][T18387] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 815.647038][ T2166] usb 2-1: USB disconnect, device number 45 [ 815.679782][ T2166] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 815.690577][T18387] BTRFS info (device loop3): using free space tree [ 815.718422][T18428] loop4: detected capacity change from 0 to 1024 [ 815.768953][ T2166] ftdi_sio 2-1:214.60: device disconnected [ 815.804108][T18428] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 815.886286][ T5573] usb 1-1: new high-speed USB device number 48 using dummy_hcd [ 815.960139][T18412] BTRFS info (device loop2): enabling ssd optimizations [ 816.031316][T18387] BTRFS info (device loop3): enabling ssd optimizations [ 816.124140][ T4276] EXT4-fs (loop4): unmounting filesystem. [ 816.143068][ T5573] usb 1-1: Using ep0 maxpacket: 16 [ 816.166110][ T5573] usb 1-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5 [ 816.208167][ T5573] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 816.227763][T18468] loop1: detected capacity change from 0 to 2048 [ 816.234917][ T5573] usb 1-1: Product: syz [ 816.248568][ T5573] usb 1-1: Manufacturer: syz [ 816.265666][ T5573] usb 1-1: SerialNumber: syz [ 816.284596][T18468] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 816.284827][ T5573] usb 1-1: config 0 descriptor?? [ 816.303726][ T5573] visor 1-1:0.0: Sony Clie 3.5 converter detected [ 816.333293][ T4274] BTRFS info (device loop2): last unmount of filesystem ed4422de-dbc1-4dc1-8d60-3583f36c24cc [ 816.344795][ T4267] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 816.523852][T11206] BTRFS: device fsid ed4422de-dbc1-4dc1-8d60-3583f36c24cc devid 1 transid 9 /dev/loop2 scanned by udevd (11206) [ 816.530144][ T5573] usb 1-1: clie_3_5_startup: get config number failed: -71 [ 816.580431][ T5573] visor: probe of 1-1:0.0 failed with error -71 [ 816.631185][ T5573] usb 1-1: USB disconnect, device number 48 [ 817.295842][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 817.563462][ T4403] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 9 /dev/loop3 scanned by udevd (4403) [ 817.632745][T18471] loop4: detected capacity change from 0 to 32768 [ 817.654570][T18471] BTRFS: device fsid c0ead524-1f1c-4ccc-9384-0f6d362fec31 devid 1 transid 8 /dev/loop4 scanned by syz.4.6187 (18471) [ 817.713151][T18493] loop0: detected capacity change from 0 to 4096 [ 817.745694][T18471] BTRFS info (device loop4): first mount of filesystem c0ead524-1f1c-4ccc-9384-0f6d362fec31 [ 817.820934][T18493] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 817.843213][T18489] usb 3-1: new full-speed USB device number 13 using dummy_hcd [ 817.861155][T18471] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 817.936957][T18471] BTRFS info (device loop4): using free space tree [ 818.086882][T18489] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 818.114821][T18489] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 818.134286][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 818.206233][T18489] usb 3-1: config 0 has no interface number 0 [ 818.252056][T18489] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 818.270292][T18489] usb 3-1: New USB device strings: Mfr=1, Product=26, SerialNumber=3 [ 818.293744][T18513] loop0: detected capacity change from 0 to 256 [ 818.293783][T18489] usb 3-1: Product: syz [ 818.348461][T18471] BTRFS info (device loop4): enabling ssd optimizations [ 818.409288][T18489] usb 3-1: Manufacturer: syz [ 818.414406][T18489] usb 3-1: SerialNumber: syz [ 818.487940][T18489] usb 3-1: config 0 descriptor?? [ 818.548949][ T4276] BTRFS info (device loop4): last unmount of filesystem c0ead524-1f1c-4ccc-9384-0f6d362fec31 [ 818.783232][T18489] usb 3-1: USB disconnect, device number 13 [ 818.798681][T18521] loop0: detected capacity change from 0 to 16 [ 818.839377][T18521] erofs: (device loop0): mounted with root inode @ nid 36. [ 819.001839][T18497] loop1: detected capacity change from 0 to 32768 [ 819.251263][T18497] XFS (loop1): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent. [ 819.423306][ T7440] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x3a/0xd0, xfs_inobt block 0xc [ 819.436583][ T7440] XFS (loop1): Unmount and run xfs_repair [ 819.443617][ T7440] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 819.452356][ T7440] 00000000: 49 41 42 33 00 00 00 01 ff ff ff ff ff ff ff ff IAB3............ [ 819.459016][T18535] loop4: detected capacity change from 0 to 512 [ 819.462995][ T7440] 00000010: 00 00 00 00 00 00 00 0c 00 00 00 01 00 00 00 80 ................ [ 819.479101][ T7440] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 819.489670][ T7440] 00000030: 00 00 00 00 72 1a c9 82 00 00 24 40 00 00 40 37 ....r.....$@..@7 [ 819.499009][ T7440] 00000040: ff ff ff ff ff ff fe 00 00 ff 00 00 00 00 00 00 ................ [ 819.512067][ T7440] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 819.570252][ T7440] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 819.588794][ T7440] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 819.591824][T18535] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 819.608255][T18497] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0xc len 4 error 74 [ 819.655911][T18497] XFS (loop1): Failed to read root inode 0x2440, error 117 [ 819.861977][ T4276] EXT4-fs (loop4): unmounting filesystem. [ 820.447905][T18523] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 820.484363][T18523] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 820.520236][T18523] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 820.560855][ T4377] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 820.568572][ T4377] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 820.884363][ T4377] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 295ms [ 820.912040][ T4377] gfs2: fsid=syz:syz.0: jid=0: Done [ 820.921949][T18523] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 821.656004][T18543] set_capacity_and_notify: 1 callbacks suppressed [ 821.656023][T18543] loop1: detected capacity change from 0 to 32768 [ 821.725144][T18543] BTRFS: device fsid a830dcec-d20e-42dc-8160-bf13f3286f97 devid 1 transid 8 /dev/loop1 scanned by syz.1.6200 (18543) [ 821.869387][T18543] BTRFS info (device loop1): first mount of filesystem a830dcec-d20e-42dc-8160-bf13f3286f97 [ 821.891697][T18543] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 821.944183][T18543] BTRFS info (device loop1): using free space tree [ 822.102489][T18543] BTRFS info (device loop1): enabling ssd optimizations [ 822.172917][ T4269] BTRFS info (device loop1): last unmount of filesystem a830dcec-d20e-42dc-8160-bf13f3286f97 [ 822.331841][T11206] BTRFS: device fsid a830dcec-d20e-42dc-8160-bf13f3286f97 devid 1 transid 9 /dev/loop1 scanned by udevd (11206) [ 822.428143][T18571] loop3: detected capacity change from 0 to 1024 [ 823.000040][T18577] loop3: detected capacity change from 0 to 1024 [ 823.486832][T18583] loop3: detected capacity change from 0 to 164 [ 823.502028][T18581] loop2: detected capacity change from 0 to 1756 [ 823.814842][T18585] loop4: detected capacity change from 0 to 16 [ 823.859479][T18585] erofs: (device loop4): mounted with root inode @ nid 36. [ 823.876497][T18589] loop2: detected capacity change from 0 to 128 [ 823.886955][T18588] loop3: detected capacity change from 0 to 760 [ 824.073441][T18585] Process accounting resumed [ 824.382059][T18596] loop4: detected capacity change from 0 to 2364 [ 824.547245][T18579] loop1: detected capacity change from 0 to 32768 [ 824.612659][T18579] JBD2: Ignoring recovery information on journal [ 824.845357][T18601] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 824.900756][ T4403] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 824.931657][T18579] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 825.205268][T18605] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 825.246446][ T4269] ocfs2: Unmounting device (7,1) on (node local) [ 825.806384][T18597] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 825.848183][T18597] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 825.942307][T18597] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 7ms [ 825.990406][ T14] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 825.997873][ T14] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 826.311033][ T14] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 292ms [ 826.350673][ T14] gfs2: fsid=syz:syz.0: jid=0: Done [ 826.363094][T18597] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 827.646190][T18609] set_capacity_and_notify: 3 callbacks suppressed [ 827.646208][T18609] loop1: detected capacity change from 0 to 32768 [ 827.696331][T18609] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 827.726527][T18609] CPU: 1 PID: 18609 Comm: syz.1.6218 Not tainted syzkaller #0 [ 827.734353][T18609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 827.745162][T18609] Call Trace: [ 827.748661][T18609] [ 827.751895][T18609] dump_stack_lvl+0x188/0x24e [ 827.756633][T18609] ? show_regs_print_info+0x12/0x12 [ 827.762416][T18609] ? load_image+0x400/0x400 [ 827.767328][T18609] sysfs_create_dir_ns+0x26a/0x290 [ 827.772666][T18609] ? sysfs_warn_dup+0xa0/0xa0 [ 827.777677][T18609] ? do_raw_spin_unlock+0x11d/0x230 [ 827.788407][T18609] kobject_add_internal+0x61c/0xcc0 [ 827.795412][T18609] kobject_init_and_add+0x128/0x190 [ 827.801207][T18609] ? lockdep_softirqs_off+0x430/0x430 [ 827.807119][T18609] ? kobject_add+0x230/0x230 [ 827.812045][T18609] ? __init_swait_queue_head+0xa5/0x150 [ 827.818145][T18609] gfs2_sys_fs_add+0x24f/0x4b0 [ 827.823502][T18609] ? gfs2_recover_set+0x240/0x240 [ 827.828835][T18609] ? snprintf+0xe5/0x140 [ 827.833273][T18609] ? vscnprintf+0x80/0x80 [ 827.838177][T18609] gfs2_fill_super+0x128c/0x1fb0 [ 827.843350][T18609] ? gfs2_reconfigure+0xd30/0xd30 [ 827.848846][T18609] ? sb_set_blocksize+0xa5/0xe0 [ 827.854108][T18609] get_tree_bdev+0x3f1/0x610 [ 827.859279][T18609] ? gfs2_reconfigure+0xd30/0xd30 [ 827.864619][T18609] gfs2_get_tree+0x4d/0x1e0 [ 827.869401][T18609] vfs_get_tree+0x88/0x270 [ 827.874272][T18609] do_new_mount+0x24a/0xa40 [ 827.879324][T18609] __se_sys_mount+0x2e3/0x3d0 [ 827.884424][T18609] ? __x64_sys_mount+0xc0/0xc0 [ 827.889736][T18609] ? lockdep_hardirqs_on+0x94/0x140 [ 827.900281][T18609] ? __x64_sys_mount+0x1c/0xc0 [ 827.905620][T18609] do_syscall_64+0x4c/0xa0 [ 827.910273][T18609] ? clear_bhb_loop+0x60/0xb0 [ 827.915912][T18609] ? clear_bhb_loop+0x60/0xb0 [ 827.921073][T18609] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 827.927275][T18609] RIP: 0033:0x7f872e39c14a [ 827.932407][T18609] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 827.954612][T18609] RSP: 002b:00007f872f2e3e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 827.965727][T18609] RAX: ffffffffffffffda RBX: 00007f872f2e3ee0 RCX: 00007f872e39c14a [ 827.975135][T18609] RDX: 000020000003b280 RSI: 000020000003b2c0 RDI: 00007f872f2e3ea0 [ 827.985134][T18609] RBP: 000020000003b280 R08: 00007f872f2e3ee0 R09: 0000000000000000 [ 827.993558][T18609] R10: 0000000000000000 R11: 0000000000000246 R12: 000020000003b2c0 [ 828.002252][T18609] R13: 00007f872f2e3ea0 R14: 000000000003b273 R15: 000020000003b300 [ 828.011742][T18609] [ 828.083504][T18609] kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 828.167135][T18609] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 828.485083][T18613] loop0: detected capacity change from 0 to 64 [ 828.547581][T18615] loop3: detected capacity change from 0 to 64 [ 828.910327][T18618] loop3: detected capacity change from 0 to 64 [ 828.932694][T18620] loop0: detected capacity change from 0 to 64 [ 829.236818][T18621] loop1: detected capacity change from 0 to 64 [ 829.248225][T18625] loop4: detected capacity change from 0 to 128 [ 829.516849][ T14] usb 4-1: new high-speed USB device number 50 using dummy_hcd [ 829.658231][T18631] loop4: detected capacity change from 0 to 256 [ 829.714643][T18629] loop1: detected capacity change from 0 to 1764 [ 829.731195][ T14] usb 4-1: Using ep0 maxpacket: 16 [ 829.748271][ T14] usb 4-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5 [ 829.778702][ T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 829.826919][ T14] usb 4-1: Product: syz [ 829.837871][ T14] usb 4-1: Manufacturer: syz [ 829.848483][ T14] usb 4-1: SerialNumber: syz [ 829.864788][ T14] usb 4-1: config 0 descriptor?? [ 829.895284][ T14] visor 4-1:0.0: Sony Clie 3.5 converter detected [ 830.019070][T18635] loop4: detected capacity change from 0 to 512 [ 830.111456][ T14] usb 4-1: clie_3_5_startup: get config number failed: -71 [ 830.144361][ T14] visor: probe of 4-1:0.0 failed with error -71 [ 830.177675][T18638] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 830.196923][ T14] usb 4-1: USB disconnect, device number 50 [ 830.513199][T18627] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz" [ 830.529467][T18643] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 830.553158][T18627] dlm: no local IP address has been set [ 830.568631][T18627] dlm: cannot start dlm midcomms -107 [ 830.587171][T18627] gfs2: fsid=syz:syz: dlm_new_lockspace error -107 [ 830.692466][T18644] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 831.515996][T18657] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 832.083566][T18659] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 833.023940][T18666] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 833.126574][T18652] set_capacity_and_notify: 13 callbacks suppressed [ 833.126594][T18652] loop1: detected capacity change from 0 to 32768 [ 833.217498][T18667] loop4: detected capacity change from 0 to 8192 [ 833.253727][T18652] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 833.259579][T18667] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 833.301268][T18652] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 833.374445][T18652] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 833.421502][ T14] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 833.430488][ T14] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 833.442391][T18670] loop2: detected capacity change from 0 to 4096 [ 833.488299][T18671] loop0: detected capacity change from 0 to 4096 [ 833.608635][T18670] ntfs: volume version 3.1. [ 833.678965][T18671] ntfs: volume version 3.1. [ 833.807074][ T14] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 352ms [ 833.857820][ T14] gfs2: fsid=syz:syz.0: jid=0: Done [ 833.873955][T18652] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 833.907188][T18673] loop3: detected capacity change from 0 to 4096 [ 833.999453][T18673] ntfs: volume version 3.1. [ 834.220117][T18677] loop4: detected capacity change from 0 to 4096 [ 834.444230][T18677] ntfs: volume version 3.1. [ 835.532821][T18685] loop2: detected capacity change from 0 to 32768 [ 835.554209][T18683] loop3: detected capacity change from 0 to 32768 [ 835.570946][T18685] (syz.2.6253,18685,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 835.603830][T18683] (syz.3.6252,18683,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 835.619603][T18685] (syz.2.6253,18685,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 835.648253][T18683] (syz.3.6252,18683,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 835.877392][T18689] loop1: detected capacity change from 0 to 4096 [ 835.974405][T18689] ntfs: volume version 3.1. [ 836.030622][T18687] loop4: detected capacity change from 0 to 32768 [ 836.088469][T18687] (syz.4.6254,18687,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 836.154932][T18687] (syz.4.6254,18687,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 837.182259][T18693] (syz.3.6257,18693,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 837.213357][T18693] (syz.3.6257,18693,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 837.552165][T18695] (syz.2.6258,18695,1):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 837.615198][T18695] (syz.2.6258,18695,1):ocfs2_fill_super:1176 ERROR: status = -22 [ 838.487782][T18711] set_capacity_and_notify: 3 callbacks suppressed [ 838.487810][T18711] loop3: detected capacity change from 0 to 4096 [ 838.965662][T18701] loop4: detected capacity change from 0 to 65536 [ 839.007358][T18701] (syz.4.6261,18701,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 839.042226][T18701] (syz.4.6261,18701,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 839.992310][T18713] loop3: detected capacity change from 0 to 32768 [ 840.045366][T18713] (syz.3.6267,18713,1):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options [ 840.074316][T18713] (syz.3.6267,18713,1):ocfs2_fill_super:1176 ERROR: status = -22 [ 846.804229][T18733] loop2: detected capacity change from 0 to 32768 [ 847.098571][T18734] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 847.260745][T18736] loop4: detected capacity change from 0 to 4096 [ 847.428067][T18737] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 849.280045][T18751] Can't find a SQUASHFS superblock on loop0 [ 849.616388][T18753] loop0: detected capacity change from 0 to 256 [ 849.672072][T18753] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 849.730891][T18753] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 849.768189][T18753] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 849.799152][T18753] UDF-fs: Scanning with blocksize 512 failed [ 849.829409][T18753] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 849.881664][T18753] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 850.174950][T18755] loop0: detected capacity change from 0 to 256 [ 850.221638][T18755] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 850.270212][T18755] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 850.302778][T18755] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 850.331549][T18755] UDF-fs: Scanning with blocksize 512 failed [ 850.354468][T18755] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 850.377397][T18755] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 850.683524][T18757] loop0: detected capacity change from 0 to 2048 [ 850.752452][T18757] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 850.773622][T18757] UDF-fs: Scanning with blocksize 512 failed [ 850.817308][T18757] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 851.104141][T18759] loop0: detected capacity change from 0 to 256 [ 851.132034][T18759] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 851.162177][T18759] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 851.194217][T18759] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 851.215451][T18759] UDF-fs: Scanning with blocksize 512 failed [ 851.248232][T18759] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 851.280212][T18759] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 851.698922][T18761] loop0: detected capacity change from 0 to 2048 [ 851.790663][T18761] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 851.840066][T18761] UDF-fs: Scanning with blocksize 512 failed [ 851.900310][T18761] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 852.153613][T18765] loop2: detected capacity change from 0 to 256 [ 852.205316][T18765] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 852.236571][T18765] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 852.282347][T18765] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 852.299681][T18767] loop0: detected capacity change from 0 to 512 [ 852.318814][T18767] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 852.336119][T18765] UDF-fs: Scanning with blocksize 512 failed [ 852.348948][T18767] UDF-fs: Scanning with blocksize 512 failed [ 852.380862][T18765] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 852.400965][T18767] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 852.421461][T18767] UDF-fs: Scanning with blocksize 1024 failed [ 852.421502][T18765] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 852.476609][T18767] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 852.511011][T18767] UDF-fs: Scanning with blocksize 2048 failed [ 852.537483][T18767] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 852.568975][T18767] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 852.753136][T18769] loop2: detected capacity change from 0 to 512 [ 852.792098][T18769] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 852.810754][T18769] UDF-fs: Scanning with blocksize 512 failed [ 852.880085][T18769] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 852.891309][T18769] UDF-fs: Scanning with blocksize 1024 failed [ 852.957496][T18769] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 852.972301][T18769] UDF-fs: Scanning with blocksize 2048 failed [ 852.984950][T18771] loop0: detected capacity change from 0 to 128 [ 853.004310][T18769] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 853.062035][T18771] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 853.075671][T18769] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 853.106210][T18771] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 853.413092][T18775] loop0: detected capacity change from 0 to 128 [ 853.601502][T18779] loop3: detected capacity change from 0 to 128 [ 853.663995][T18781] loop0: detected capacity change from 0 to 128 [ 853.943403][T18783] loop3: detected capacity change from 0 to 128 [ 853.990726][T18785] loop0: detected capacity change from 0 to 128 [ 854.054685][T18777] loop2: detected capacity change from 0 to 8192 [ 854.131052][T18777] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 854.303394][T18777] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 854.364703][T18777] REISERFS (device loop2): using ordered data mode [ 854.392777][T18777] reiserfs: using flush barriers [ 854.421112][T18777] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 854.424391][T18789] loop3: detected capacity change from 0 to 256 [ 854.500864][T18790] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 854.509838][T18777] REISERFS (device loop2): checking transaction log (loop2) [ 854.530642][T18790] UDF-fs: Scanning with blocksize 512 failed [ 854.551364][T18790] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 854.618857][T18790] UDF-fs: Scanning with blocksize 1024 failed [ 854.627966][T18789] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 854.650070][T18790] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 854.660673][T18789] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 854.679905][T18790] UDF-fs: Scanning with blocksize 2048 failed [ 854.719884][T18790] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 854.723316][T18789] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 854.761592][T18790] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 854.797796][T18789] UDF-fs: Scanning with blocksize 512 failed [ 854.843193][T18777] REISERFS (device loop2): Using r5 hash to sort names [ 854.855850][T18789] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 854.871926][T18777] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 854.901777][T18789] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 855.913997][T18798] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 855.946208][T18798] UDF-fs: Scanning with blocksize 512 failed [ 856.003646][T18798] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 856.042438][T18798] UDF-fs: Scanning with blocksize 1024 failed [ 856.068794][T18798] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 856.099800][T18798] UDF-fs: Scanning with blocksize 2048 failed [ 856.160027][T18798] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 856.337036][T18804] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 856.386988][T18804] UDF-fs: Scanning with blocksize 512 failed [ 856.435554][T18804] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 856.477328][T18804] UDF-fs: Scanning with blocksize 1024 failed [ 856.535716][T18804] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 856.574796][T18804] UDF-fs: Scanning with blocksize 2048 failed [ 856.620291][T18804] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 856.861207][T18804] Process accounting paused [ 856.996453][T18814] loop0: p1 p2 p3 [ 857.457904][T11209] udevd[11209]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 857.458102][ T4428] udevd[4428]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 857.529682][T11206] udevd[11206]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 857.603749][T11206] udevd[11206]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 857.603917][T11209] udevd[11209]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 857.645048][ T4403] udevd[4403]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 858.428827][T18824] set_capacity_and_notify: 12 callbacks suppressed [ 858.428847][T18824] loop0: detected capacity change from 0 to 32768 [ 858.578944][T18824] XFS (loop0): Mounting V5 Filesystem [ 858.783362][T18824] XFS (loop0): Ending clean mount [ 858.943639][ T4268] XFS (loop0): Unmounting Filesystem [ 860.741648][T18838] loop2: detected capacity change from 0 to 128 [ 860.788578][T18838] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 860.865813][T18838] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 861.210471][T18834] loop0: detected capacity change from 0 to 65536 [ 861.379365][T18834] XFS (loop0): Mounting V5 Filesystem [ 861.474042][T18834] XFS (loop0): Ending clean mount [ 861.680976][ T4268] XFS (loop0): Unmounting Filesystem [ 862.857303][T18836] loop1: detected capacity change from 0 to 65536 [ 862.977073][T18836] XFS (loop1): Mounting V5 Filesystem [ 863.149070][T18836] XFS (loop1): Ending clean mount [ 863.266902][ T4269] XFS (loop1): Unmounting Filesystem [ 864.213805][T18842] loop3: detected capacity change from 0 to 131072 [ 865.752063][T18872] loop2: detected capacity change from 0 to 2048 [ 866.661604][T18882] loop0: detected capacity change from 0 to 128 [ 866.710275][T18882] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 866.793754][T18882] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 867.386645][T18895] loop0: detected capacity change from 0 to 1024 [ 868.467582][T18892] loop2: detected capacity change from 0 to 32768 [ 868.631594][T18892] XFS (loop2): Mounting V5 Filesystem [ 868.667260][T18918] team0: Port device team_slave_0 removed [ 868.673596][T18918] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 868.753143][T18892] XFS (loop2): Ending clean mount [ 868.961322][ T4274] XFS (loop2): Unmounting Filesystem [ 869.236390][T18942] bond0: (slave veth0_to_hsr): Error: Device can not be enslaved while up [ 869.517601][T18950] bridge0: port 2(bridge_slave_1) entered disabled state [ 869.526110][T18950] bridge0: port 1(bridge_slave_0) entered disabled state [ 869.593393][T18950] device bridge0 entered promiscuous mode [ 869.705144][T18950] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 869.823496][T18961] loop4: detected capacity change from 0 to 256 [ 869.982586][T18961] FAT-fs (loop4): Directory bread(block 64) failed [ 869.989362][T18961] FAT-fs (loop4): Directory bread(block 65) failed [ 870.063352][T18961] FAT-fs (loop4): Directory bread(block 66) failed [ 870.089085][T18961] FAT-fs (loop4): Directory bread(block 67) failed [ 870.110294][T18961] FAT-fs (loop4): Directory bread(block 68) failed [ 870.144566][T18961] FAT-fs (loop4): Directory bread(block 69) failed [ 870.162305][T18961] FAT-fs (loop4): Directory bread(block 70) failed [ 870.205702][T18961] FAT-fs (loop4): Directory bread(block 71) failed [ 870.234927][T18961] FAT-fs (loop4): Directory bread(block 72) failed [ 870.246115][T18961] FAT-fs (loop4): Directory bread(block 73) failed [ 870.385024][T18979] loop1: detected capacity change from 0 to 64 [ 870.767121][T18989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6387'. [ 870.804586][T18990] netlink: 'syz.1.6388': attribute type 10 has an invalid length. [ 870.876406][T18990] team0: Port device syz_tun added [ 870.917629][T18994] IPv6: NLM_F_CREATE should be specified when creating new route [ 870.931421][T18992] loop3: detected capacity change from 0 to 1024 [ 870.973357][T18992] EXT4-fs: Ignoring removed orlov option [ 871.059367][T18992] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 871.188857][T18992] EXT4-fs warning (device loop3): ext4_empty_dir:3156: inode #12: comm syz.3.6390: directory missing '..' [ 871.412648][ T4267] EXT4-fs (loop3): unmounting filesystem. [ 871.561278][T19011] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6398'. [ 871.624046][T19013] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING [ 871.772076][T18984] loop2: detected capacity change from 0 to 32768 [ 871.867335][T18984] XFS (loop2): Mounting V5 Filesystem [ 872.066395][T18984] XFS (loop2): Ending clean mount [ 872.219490][ T4274] XFS (loop2): Unmounting Filesystem [ 872.503774][ T14] usb 1-1: new high-speed USB device number 49 using dummy_hcd [ 872.636144][T19020] loop4: detected capacity change from 0 to 32768 [ 872.707109][ T14] usb 1-1: Using ep0 maxpacket: 16 [ 872.723797][ T14] usb 1-1: config 0 has an invalid interface number: 115 but max is 0 [ 872.745157][ T14] usb 1-1: config 0 has no interface number 0 [ 872.767302][ T14] usb 1-1: config 0 interface 115 altsetting 0 endpoint 0x3 has invalid maxpacket 1024, setting to 64 [ 872.776496][T19048] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6412'. [ 872.790716][ T14] usb 1-1: New USB device found, idVendor=eb1a, idProduct=2875, bcdDevice=6f.3f [ 872.808482][ T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 872.821253][ T14] usb 1-1: Product: syz [ 872.832473][ T14] usb 1-1: Manufacturer: syz [ 872.838943][ T14] usb 1-1: SerialNumber: syz [ 872.846866][ T14] usb 1-1: config 0 descriptor?? [ 872.877940][ T4318] usb 2-1: new high-speed USB device number 46 using dummy_hcd [ 873.091732][ T4318] usb 2-1: Using ep0 maxpacket: 16 [ 873.114242][ T4318] usb 2-1: config 0 has no interfaces? [ 873.136371][ T4318] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 873.166559][ T4318] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 873.197001][ T4318] usb 2-1: Product: syz [ 873.218500][ T4318] usb 2-1: Manufacturer: syz [ 873.240207][ T4318] usb 2-1: SerialNumber: syz [ 873.253125][ T4318] r8152-cfgselector 2-1: config 0 descriptor?? [ 873.310291][T19060] loop3: detected capacity change from 0 to 2048 [ 873.382617][T19060] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 873.392284][ T14] usb 3-1: new full-speed USB device number 14 using dummy_hcd [ 873.495636][ T4318] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 873.517131][ T4318] usb 1-1: USB disconnect, device number 49 [ 873.642947][ T14] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 873.677329][ T14] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 873.694482][ T14] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 873.708251][ T14] usb 3-1: Product: syz [ 873.736648][ T14] usb 3-1: Manufacturer: syz [ 873.744501][ T14] usb 3-1: SerialNumber: syz [ 873.750870][T18476] usb 2-1: USB disconnect, device number 46 [ 873.769293][ T14] usb 3-1: config 0 descriptor?? [ 873.780344][ T14] hub 3-1:0.0: bad descriptor, ignoring hub [ 873.795980][ T14] hub: probe of 3-1:0.0 failed with error -5 [ 873.805096][ T14] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input51 [ 874.075333][ T4318] usb 5-1: new high-speed USB device number 40 using dummy_hcd [ 874.278583][ T4318] usb 5-1: Using ep0 maxpacket: 8 [ 874.286527][ T4318] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 874.313292][ T4318] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 874.329518][ T4318] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 874.397626][ T4318] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 874.407142][T19084] bridge0: port 2(bridge_slave_1) entered disabled state [ 874.414715][T19084] bridge0: port 1(bridge_slave_0) entered disabled state [ 874.417246][ T4318] usb 5-1: Product: syz [ 874.441206][T19084] device bridge0 entered promiscuous mode [ 874.445941][ T4318] usb 5-1: Manufacturer: syz [ 874.460426][ T4318] usb 5-1: SerialNumber: syz [ 874.481285][ T4318] usb 5-1: config 0 descriptor?? [ 874.502137][T19084] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 874.823065][T19096] loop1: detected capacity change from 0 to 2048 [ 874.839826][T19096] EXT4-fs: Ignoring removed mblk_io_submit option [ 874.863468][T19096] EXT4-fs (loop1): VFS: Found ext4 filesystem with unknown checksum algorithm. [ 874.919116][ T4403] udevd[4403]: incorrect ext4 checksum on /dev/loop1 [ 875.002818][T18474] usb 5-1: USB disconnect, device number 40 [ 875.103590][T19102] team0: Port device team_slave_0 removed [ 875.110089][T19102] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 875.152606][T19106] capability: warning: `syz.1.6440' uses 32-bit capabilities (legacy support in use) [ 875.201393][T19108] netlink: 'syz.2.6441': attribute type 1 has an invalid length. [ 875.865441][T19125] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 875.991887][T19125] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 876.098063][T19136] loop3: detected capacity change from 0 to 1024 [ 876.182358][T19136] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 876.221787][T19136] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #12: block 7: comm syz.3.6453: bad entry in directory: inode out of bounds - offset=0, inode=150994957, rec_len=16, size=56 fake=0 [ 876.372362][T19136] EXT4-fs (loop3): Remounting filesystem read-only [ 876.502979][ T4267] EXT4-fs (loop3): unmounting filesystem. [ 876.638148][T19156] loop0: detected capacity change from 0 to 164 [ 876.840293][T19162] program syz.4.6466 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 877.045992][T19170] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 877.101376][T19170] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 877.155094][T19174] device sit0 entered promiscuous mode [ 877.183003][T19174] netlink: 'syz.1.6471': attribute type 1 has an invalid length. [ 877.234188][T19174] netlink: 'syz.1.6471': attribute type 3 has an invalid length. [ 877.460188][T19184] vivid-000: ================= START STATUS ================= [ 877.497734][T19184] vivid-000: Generate PTS: true [ 877.503405][T19184] vivid-000: Generate SCR: true [ 877.544034][T19189] loop3: detected capacity change from 0 to 1024 [ 877.564348][T19184] tpg source WxH: 640x360 (Y'CbCr) [ 877.577985][T19184] tpg field: 1 [ 877.585664][T19184] tpg crop: 640x360@0x0 [ 877.595412][T19184] tpg compose: 640x360@0x0 [ 877.612226][T19184] tpg colorspace: 8 [ 877.623053][T19184] tpg transfer function: 0/0 [ 877.638738][T19184] tpg Y'CbCr encoding: 0/0 [ 877.643852][T19191] device sit0 entered promiscuous mode [ 877.671264][T19184] tpg quantization: 0/0 [ 877.675878][T19184] tpg RGB range: 0/2 [ 877.695822][T19191] netlink: 'syz.2.6479': attribute type 1 has an invalid length. [ 877.731553][T19184] vivid-000: ================== END STATUS ================== [ 877.758095][T19191] netlink: 1 bytes leftover after parsing attributes in process `syz.2.6479'. [ 877.758611][ T9] hfsplus: b-tree write err: -5, ino 4 [ 878.071492][T19202] loop1: detected capacity change from 0 to 2048 [ 878.089501][T19202] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 878.198235][T19205] loop2: detected capacity change from 0 to 1024 [ 878.556697][T19216] raw_sendmsg: syz.4.6489 forgot to set AF_INET. Fix it! [ 878.847921][ T5574] usb 3-1: USB disconnect, device number 14 [ 880.412195][T19279] Illegal XDP return value 8 on prog (id 432) dev N/A, expect packet loss! [ 880.610771][T19283] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6520'. [ 880.639051][T19283] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6520'. [ 880.676462][T19283] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6520'. [ 880.705855][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 880.712638][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 880.905105][T19298] siw: device registration error -23 [ 880.917494][ T14] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 881.142238][ T14] usb 1-1: Using ep0 maxpacket: 32 [ 881.154726][ T14] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 881.199023][ T14] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 881.250592][ T14] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 881.270102][ T14] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 881.296808][ T14] usb 1-1: Product: syz [ 881.307316][ T14] usb 1-1: Manufacturer: syz [ 881.347900][ T14] hub 1-1:4.0: USB hub found [ 881.575051][ T14] hub 1-1:4.0: 2 ports detected [ 881.794947][ T14] hub 1-1:4.0: hub_hub_status failed (err = -71) [ 881.803554][ T14] hub 1-1:4.0: config failed, can't get hub status (err -71) [ 881.876763][ T14] usb 1-1: USB disconnect, device number 50 [ 882.069945][T19332] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6544'. [ 882.708022][T19315] loop1: detected capacity change from 0 to 32768 [ 882.996041][T19315] XFS (loop1): Mounting V5 Filesystem [ 883.105978][T19366] netlink: 'syz.0.6556': attribute type 24 has an invalid length. [ 883.259204][T19315] XFS (loop1): Ending clean mount [ 883.297705][T19315] XFS (loop1): Quotacheck needed: Please wait. [ 883.395733][T19315] XFS (loop1): Quotacheck: Done. [ 883.411415][T19315] XFS (loop1): Unmounting Filesystem [ 883.905390][T19389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.028177][T19389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.060266][T19389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.145836][T19389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.156109][T19389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.232087][T19389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.252562][T19389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 884.288266][T19389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 884.451234][T19402] loop3: detected capacity change from 0 to 8 [ 884.508693][T19402] SQUASHFS error: zlib decompression failed, data probably corrupt [ 884.552233][T19402] SQUASHFS error: Failed to read block 0x9b: -5 [ 884.558945][T19402] SQUASHFS error: Unable to read metadata cache entry [99] [ 884.593283][T19402] SQUASHFS error: Unable to read inode 0x127 [ 884.851588][T18489] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 885.067929][T18489] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 885.098346][T18489] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 885.103557][T19428] loop1: detected capacity change from 0 to 512 [ 885.124518][T18489] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 885.138786][T18489] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 885.149181][T18489] usb 1-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 885.159435][T18489] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 885.183705][T18489] usb 1-1: config 0 descriptor?? [ 885.257638][ T4318] usb 5-1: new high-speed USB device number 41 using dummy_hcd [ 885.336618][T19435] loop1: detected capacity change from 0 to 128 [ 885.368374][T19432] xt_CT: No such helper "pptp" [ 885.372191][T19435] EXT4-fs (loop1): Test dummy encryption mode enabled [ 885.412419][T18489] hdpvr 1-1:0.0: firmware version 0x1e dated þÀq|RC¾@µ2£¹ö2[Ì7ÔB½ËDŠ^jvi0ì [ 885.412419][T18489] †Ã“‘êpY [ 885.415799][T19435] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 885.444911][ T5574] usb 4-1: new full-speed USB device number 51 using dummy_hcd [ 885.490692][ T4318] usb 5-1: config 0 has an invalid interface number: 199 but max is 1 [ 885.517871][ T4318] usb 5-1: config 0 has no interface number 1 [ 885.528697][ T4318] usb 5-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 885.548862][ T4318] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 885.565105][ T4318] usb 5-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 885.575408][ T4318] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 885.584318][ T4318] usb 5-1: SerialNumber: syz [ 885.610209][ T4318] usb 5-1: config 0 descriptor?? [ 885.644183][T18489] hdpvr 1-1:0.0: device init failed [ 885.649182][ T4318] usb 5-1: Found UVC 0.00 device (0002:0000) [ 885.649842][T18489] hdpvr: probe of 1-1:0.0 failed with error -12 [ 885.666039][ T5574] usb 4-1: config 0 has an invalid interface number: 31 but max is 0 [ 885.686778][ T5574] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 885.695078][T18489] usb 1-1: USB disconnect, device number 51 [ 885.719752][ T4318] usb 5-1: No valid video chain found. [ 885.725750][ T5574] usb 4-1: config 0 has no interface number 0 [ 885.766570][ T5574] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 885.779820][ T5574] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 885.791679][ T5574] usb 4-1: Product: syz [ 885.801221][ T5574] usb 4-1: Manufacturer: syz [ 885.811510][ T5574] usb 4-1: SerialNumber: syz [ 885.822448][ T5574] usb 4-1: config 0 descriptor?? [ 885.834317][ T5574] hub 4-1:0.31: bad descriptor, ignoring hub [ 885.848473][ T5574] hub: probe of 4-1:0.31 failed with error -5 [ 885.876216][ T5574] usb 4-1: Found UVC 0.04 device syz (046d:08c3) [ 885.891494][ T5574] uvcvideo 4-1:0.31: Entity type for entity Output 6 was not initialized! [ 885.903052][ T5574] usb 4-1: Failed to create links for entity 6 [ 885.915501][ T5574] usb 4-1: Failed to register entities (-22). [ 885.926389][ T4318] usb 5-1: USB disconnect, device number 41 [ 885.995727][T19435] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 886.010033][T19435] EXT4-fs error (device loop1): ext4_validate_block_bitmap:420: comm syz.1.6590: bg 0: bad block bitmap checksum [ 886.063363][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 886.091689][ T8643] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 886.173197][T19451] loop1: detected capacity change from 0 to 8192 [ 886.197210][T19451] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 886.215114][ T5574] usb 4-1: USB disconnect, device number 51 [ 886.237822][T19451] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 886.249506][T19451] FAT-fs (loop1): Filesystem has been set read-only [ 886.299940][ T8643] usb 3-1: Using ep0 maxpacket: 8 [ 886.307582][ T8643] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xEE, skipping [ 886.320719][ T8643] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 886.334904][ T8643] usb 3-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad [ 886.351068][ T4269] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 886.367809][ T8643] usb 3-1: New USB device strings: Mfr=55, Product=237, SerialNumber=3 [ 886.407773][ T8643] usb 3-1: Product: syz [ 886.412572][ T8643] usb 3-1: Manufacturer: syz [ 886.417691][ T8643] usb 3-1: SerialNumber: syz [ 886.454324][ T8643] usb 3-1: config 0 descriptor?? [ 886.483860][ T8643] smsusb:smsusb_probe: board id=2, interface number 0 [ 886.503977][ T8643] smsusb:smsusb_probe: Device initialized with return code -19 [ 886.710566][T19460] (unnamed net_device) (uninitialized): option mode: invalid value (254) [ 886.741457][ T8643] usb 3-1: USB disconnect, device number 15 [ 886.749009][T19462] netlink: 196 bytes leftover after parsing attributes in process `syz.1.6598'. [ 886.974696][T19471] loop0: detected capacity change from 0 to 256 [ 887.057997][T19472] loop1: detected capacity change from 0 to 1024 [ 887.070764][T19471] FAT-fs (loop0): Directory bread(block 64) failed [ 887.077970][T19471] FAT-fs (loop0): Directory bread(block 65) failed [ 887.084935][T19471] FAT-fs (loop0): Directory bread(block 66) failed [ 887.114173][T19471] FAT-fs (loop0): Directory bread(block 67) failed [ 887.135906][T19471] FAT-fs (loop0): Directory bread(block 68) failed [ 887.162759][T19472] hfsplus: hfsplus: Invalid key length: 29235 [ 887.187316][T19471] FAT-fs (loop0): Directory bread(block 69) failed [ 887.209715][T19471] FAT-fs (loop0): Directory bread(block 70) failed [ 887.235676][T19471] FAT-fs (loop0): Directory bread(block 71) failed [ 887.243174][T19471] FAT-fs (loop0): Directory bread(block 72) failed [ 887.277374][T19471] FAT-fs (loop0): Directory bread(block 73) failed [ 887.427417][T19471] syz.0.6603: attempt to access beyond end of device [ 887.427417][T19471] loop0: rw=524288, sector=1160, nr_sectors = 4 limit=256 [ 887.486683][T19483] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6609'. [ 887.499944][T19471] syz.0.6603: attempt to access beyond end of device [ 887.499944][T19471] loop0: rw=0, sector=1160, nr_sectors = 4 limit=256 [ 887.555169][ T26] audit: type=1800 audit(45540274.674:27): pid=19471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.6603" name="file0" dev="loop0" ino=1048601 res=0 errno=0 [ 887.979134][T19500] loop3: detected capacity change from 0 to 128 [ 888.020893][T19500] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006) [ 888.054860][T19500] FAT-fs (loop3): Filesystem has been set read-only [ 888.242112][ T4267] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006) [ 888.722797][T19526] program syz.0.6630 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 889.020324][T19533] Process accounting resumed [ 889.472082][T19553] A link change request failed with some changes committed already. Interface veth1_to_hsr may have been left with an inconsistent configuration, please check. [ 889.602592][T19560] device vlan0 entered promiscuous mode [ 890.529681][T19596] loop3: detected capacity change from 0 to 2048 [ 890.566449][T19596] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 890.609031][T19596] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 890.838368][T19606] netlink: 'syz.4.6668': attribute type 2 has an invalid length. [ 890.994093][T19612] loop0: detected capacity change from 0 to 16 [ 891.072263][T19608] loop1: detected capacity change from 0 to 4096 [ 891.082219][T19612] erofs: (device loop0): mounted with root inode @ nid 36. [ 891.129417][T19608] ntfs3: loop1: ino=3, Correct links count -> 2. [ 891.202761][T19612] erofs: (device loop0): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 891.248763][T19618] loop2: detected capacity change from 0 to 512 [ 891.309428][T19612] erofs: (device loop0): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 891.336301][ T8643] usb 4-1: new full-speed USB device number 52 using dummy_hcd [ 891.340329][T19612] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117] [ 891.367640][T19618] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 891.448363][T19618] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.6674: bg 0: block 384: padding at end of block bitmap is not set [ 891.588310][ T8643] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 891.642096][ T8643] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 891.668479][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 891.677346][T19618] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6181: Corrupt filesystem [ 891.700349][ T8643] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 891.724385][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 891.725527][ T8643] usb 4-1: Product: syz [ 891.744460][T19618] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #11: comm syz.2.6674: attempt to clear invalid blocks 983260 len 1 [ 891.806280][ T8643] usb 4-1: Manufacturer: syz [ 891.807435][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 891.815903][ T8643] usb 4-1: SerialNumber: syz [ 891.841009][T19618] EXT4-fs error (device loop2): __ext4_get_inode_loc:4513: comm syz.2.6674: Invalid inode table block 0 in block_group 0 [ 891.866373][ T8643] usb 4-1: config 0 descriptor?? [ 891.870339][T19632] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6681'. [ 891.885092][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 891.893796][ T8643] hub 4-1:0.0: bad descriptor, ignoring hub [ 891.908537][ T8643] hub: probe of 4-1:0.0 failed with error -5 [ 891.915528][T19618] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 891.928175][ T8643] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input53 [ 891.937328][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 891.966574][T19618] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 892.007680][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.028758][T19618] EXT4-fs error (device loop2): __ext4_get_inode_loc:4513: comm syz.2.6674: Invalid inode table block 0 in block_group 0 [ 892.147429][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.166951][T19618] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 892.189653][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.199540][T19618] EXT4-fs error (device loop2): ext4_truncate:4318: inode #11: comm syz.2.6674: mark_inode_dirty error [ 892.217552][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.224743][T19618] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 892.254734][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.269932][T19618] EXT4-fs (loop2): 1 truncate cleaned up [ 892.298561][T19618] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 892.388933][T19618] EXT4-fs error (device loop2): __ext4_get_inode_loc:4513: comm syz.2.6674: Invalid inode table block 0 in block_group 0 [ 892.444888][T19618] EXT4-fs (loop2): Remounting filesystem read-only [ 892.684251][ T4274] EXT4-fs (loop2): unmounting filesystem. [ 892.706493][T19650] loop4: detected capacity change from 0 to 1024 [ 892.817239][T18476] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 892.911916][ T9058] hfsplus: b-tree write err: -5, ino 4 [ 893.044805][T18476] usb 1-1: New USB device found, idVendor=0c72, idProduct=0012, bcdDevice=22.96 [ 893.073611][T18476] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 893.099209][T18476] usb 1-1: Product: syz [ 893.103674][T18476] usb 1-1: Manufacturer: syz [ 893.114453][T18476] usb 1-1: SerialNumber: syz [ 893.128578][T18476] usb 1-1: config 0 descriptor?? [ 893.219417][T19659] loop4: detected capacity change from 0 to 4096 [ 893.357057][T18476] peak_usb 1-1:0.0: PEAK-System PCAN-USB FD v0 fw v0.0.0 (1 channels) [ 893.592387][T18476] peak_usb 1-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 893.618055][T18476] peak_usb 1-1:0.0: unable to tell PCAN-USB FD driver is loaded (err -71) [ 893.729052][T18476] peak_usb: probe of 1-1:0.0 failed with error -71 [ 893.773724][T18476] usb 1-1: USB disconnect, device number 52 [ 893.984842][T18474] usb 5-1: new high-speed USB device number 42 using dummy_hcd [ 894.191260][T18474] usb 5-1: Using ep0 maxpacket: 16 [ 894.205112][T18474] usb 5-1: config 0 has an invalid interface number: 174 but max is 0 [ 894.225336][T18474] usb 5-1: config 0 has no interface number 0 [ 894.242094][T18489] usb 4-1: USB disconnect, device number 52 [ 894.266865][T18474] usb 5-1: New USB device found, idVendor=106c, idProduct=b770, bcdDevice=7b.dd [ 894.288190][T18474] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 894.307477][T18474] usb 5-1: Product: syz [ 894.333764][T18474] usb 5-1: Manufacturer: syz [ 894.338630][T18474] usb 5-1: SerialNumber: syz [ 894.361412][T18474] usb 5-1: config 0 descriptor?? [ 894.377240][T18474] qmi_wwan: probe of 5-1:0.174 failed with error -22 [ 894.437250][T19698] Cannot find del_set index 0 as target [ 894.527471][T18489] usb 4-1: new high-speed USB device number 53 using dummy_hcd [ 894.538964][T19702] xt_TCPMSS: Only works on TCP SYN packets [ 894.640938][T18476] usb 5-1: USB disconnect, device number 42 [ 894.751099][T18489] usb 4-1: Using ep0 maxpacket: 16 [ 894.759748][T18489] usb 4-1: config 254 has an invalid interface number: 235 but max is 0 [ 894.780331][T18489] usb 4-1: config 254 has no interface number 0 [ 894.793830][T18489] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32 [ 894.823610][T18489] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has an invalid bInterval 97, changing to 7 [ 894.852665][T18489] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has invalid maxpacket 24929, setting to 1024 [ 894.867842][T18489] usb 4-1: config 254 interface 235 has no altsetting 0 [ 894.896478][T18489] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1 [ 894.916896][T18489] usb 4-1: New USB device strings: Mfr=1, Product=251, SerialNumber=3 [ 894.932616][T18489] usb 4-1: Product: syz [ 894.943550][T18489] usb 4-1: Manufacturer: syz [ 894.970144][T18489] usb 4-1: SerialNumber: syz [ 894.997226][T19686] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 895.169318][T19722] binder: 19721:19722 ioctl 400c620e 200000000280 returned -22 [ 895.261006][T18489] usbtest 4-1:254.235: couldn't get endpoints, -71 [ 895.275297][T18489] usbtest: probe of 4-1:254.235 failed with error -71 [ 895.292552][T19724] loop1: detected capacity change from 0 to 512 [ 895.320347][T19724] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 895.331874][T18489] usb 4-1: USB disconnect, device number 53 [ 895.354158][T19724] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 895.366259][T19724] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 895.376552][T19724] EXT4-fs error (device loop1): ext4_acquire_dquot:6835: comm syz.1.6725: Failed to acquire dquot type 0 [ 895.463958][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 895.769570][T19736] loop2: detected capacity change from 0 to 4096 [ 895.801152][T19738] loop4: detected capacity change from 0 to 64 [ 895.814418][T19736] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 896.327915][T19744] 9pnet: Could not find request transport: 0xffffffffffffffff [ 896.427507][T19754] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6738'. [ 896.503079][T19754] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6738'. [ 896.656812][T19761] tc_dump_action: action bad kind [ 896.743902][T19765] loop0: detected capacity change from 0 to 512 [ 896.821327][T19765] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 896.872901][T19765] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816e11d, mo2=0002] [ 896.923198][T19767] loop2: detected capacity change from 0 to 4096 [ 896.966900][T19765] System zones: 1-12 [ 896.971758][T19765] EXT4-fs (loop0): orphan cleanup on readonly fs [ 897.001931][T19767] ntfs3: loop2: ino=5, "/" directory corrupted [ 897.033561][T19765] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.6744: bg 0: block 361: padding at end of block bitmap is not set [ 897.109624][T19765] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6181: Corrupt filesystem [ 897.132133][T19765] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #11: comm syz.0.6744: attempt to clear invalid blocks 33619980 len 1 [ 897.165612][T19765] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.6744: invalid indirect mapped block 1811939328 (level 0) [ 897.212285][T19765] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.6744: invalid indirect mapped block 2 (level 2) [ 897.247492][T19765] EXT4-fs (loop0): 1 truncate cleaned up [ 897.258021][T19765] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 897.298038][T19778] loop1: detected capacity change from 0 to 128 [ 897.314379][T19778] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 897.368268][T19780] netlink: 'syz.2.6750': attribute type 27 has an invalid length. [ 897.417822][T19765] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (17031!=33349) [ 897.441461][T19778] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 897.649896][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 897.816267][T19786] Cannot find add_set index 0 as target [ 897.879712][T19788] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6753'. [ 897.944463][T19788] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6753'. [ 898.077044][T19794] x_tables: unsorted underflow at hook 2 [ 898.095826][T19796] IPv6: NLM_F_REPLACE set, but no existing node found! [ 898.297924][T19800] loop0: detected capacity change from 0 to 4096 [ 898.373844][T19807] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 898.428781][ T5574] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 898.637602][ T5574] usb 5-1: config 0 has an invalid interface number: 69 but max is 0 [ 898.658545][ T5574] usb 5-1: config 0 has no interface number 0 [ 898.679324][ T5574] usb 5-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 898.709384][ T5574] usb 5-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 898.752583][ T5574] usb 5-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 898.781279][ T5574] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 898.802672][ T5574] usb 5-1: Product: syz [ 898.813915][ T5574] usb 5-1: Manufacturer: syz [ 898.819212][ T5574] usb 5-1: SerialNumber: syz [ 898.847188][ T5574] usb 5-1: config 0 descriptor?? [ 898.857006][T19798] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 898.874338][ T5574] cyberjack 5-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 898.896366][ T5574] usb 5-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 898.909603][ T4318] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 899.137124][ T4318] usb 2-1: unable to get BOS descriptor or descriptor too short [ 899.157939][ T4318] usb 2-1: config 66 has an invalid descriptor of length 0, skipping remainder of the config [ 899.201668][ T4318] usb 2-1: config 66 has 1 interface, different from the descriptor's value: 2 [ 899.226799][ T4318] usb 2-1: config 66 has no interface number 0 [ 899.249449][ T4318] usb 2-1: New USB device found, idVendor=0471, idProduct=0602, bcdDevice=a4.95 [ 899.270060][ T4318] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 899.280656][ T4318] usb 2-1: Product: syz [ 899.311566][ T4318] usb 2-1: Manufacturer: syz [ 899.322701][ T4318] usb 2-1: SerialNumber: syz [ 899.399275][ T5574] usb 5-1: USB disconnect, device number 43 [ 899.420658][ T5574] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 899.441619][ T5574] cyberjack 5-1:0.69: device disconnected [ 899.547509][T19839] netlink: 17 bytes leftover after parsing attributes in process `syz.3.6780'. [ 899.588350][ T4318] usb 2-1: USB disconnect, device number 47 [ 899.653769][T19841] netlink: 830 bytes leftover after parsing attributes in process `syz.0.6781'. [ 900.948258][T19895] No such timeout policy "syz0" [ 901.653029][T19920] netlink: 'syz.3.6820': attribute type 5 has an invalid length. [ 901.822151][T19926] loop4: detected capacity change from 0 to 256 [ 901.933839][T19923] loop1: detected capacity change from 0 to 4096 [ 901.975376][T19923] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 901.982572][T19926] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 902.156734][ T26] audit: type=1800 audit(45540288.340:28): pid=19926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6823" name="file1" dev="loop4" ino=1048603 res=0 errno=0 [ 902.214059][T19926] exFAT-fs (loop4): invalid start cluster (4278190088) [ 902.239859][T19933] loop2: detected capacity change from 0 to 256 [ 902.295941][T19933] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe65d9f0a, utbl_chksum : 0x7319d30d) [ 902.758186][ T4318] usb 1-1: new high-speed USB device number 53 using dummy_hcd [ 902.900376][T19951] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 902.972129][ T4318] usb 1-1: Using ep0 maxpacket: 8 [ 902.984092][ T4318] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 902.999362][ T4318] usb 1-1: config 179 has no interface number 0 [ 903.034165][ T4318] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 903.056723][ T4318] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 903.078977][ T4318] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 903.138233][ T4318] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 903.181110][ T4318] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 903.202230][ T4318] usb 1-1: config 179 interface 65 has no altsetting 0 [ 903.251495][ T4318] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 903.271361][ T4318] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 903.274527][T19965] netlink: 196 bytes leftover after parsing attributes in process `syz.3.6842'. [ 903.325028][T19965] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 903.366296][ T4318] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input54 [ 903.677553][ T4318] usb 1-1: USB disconnect, device number 53 [ 903.683774][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 903.699847][ T4318] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 904.032300][T19989] hsr0: VLAN not yet supported [ 904.146927][T19993] loop4: detected capacity change from 0 to 64 [ 904.860587][T20017] syz.2.6866 uses old SIOCAX25GETINFO [ 905.195770][T20029] loop0: detected capacity change from 0 to 256 [ 905.242352][T20029] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe65d9f0a, utbl_chksum : 0x7319d30d) [ 905.334639][ T14] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 905.455137][T20037] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6878'. [ 905.487968][T20037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6878'. [ 905.542944][ T14] usb 5-1: Using ep0 maxpacket: 16 [ 905.550418][ T14] usb 5-1: config 0 has an invalid interface number: 132 but max is 0 [ 905.575717][ T14] usb 5-1: config 0 has no interface number 0 [ 905.602583][T20041] loop3: detected capacity change from 0 to 164 [ 905.613612][ T14] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 905.625478][T20043] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6881'. [ 905.672106][ T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 905.672172][T20041] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 905.724066][ T14] usb 5-1: Product: syz [ 905.735801][ T14] usb 5-1: Manufacturer: syz [ 905.754016][ T14] usb 5-1: SerialNumber: syz [ 905.784113][ T14] usb 5-1: config 0 descriptor?? [ 905.801597][ T14] hub 5-1:0.132: bad descriptor, ignoring hub [ 905.809332][ T14] hub: probe of 5-1:0.132 failed with error -5 [ 905.816171][T20047] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6883'. [ 905.829319][ T14] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.132/input/input55 [ 905.974527][T20049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6884'. [ 906.195434][ T14] usb 5-1: USB disconnect, device number 44 [ 906.221184][T20057] ieee802154 phy0 wpan0: encryption failed: -22 [ 906.290731][T20061] xt_hashlimit: size too large, truncated to 1048576 [ 906.329078][T20061] xt_hashlimit: invalid interval [ 906.630618][ T8643] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 906.852664][ T8643] usb 1-1: Using ep0 maxpacket: 8 [ 906.865460][ T8643] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 906.906278][ T8643] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 906.915874][ T8643] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 906.968014][ T8643] usb 1-1: Product: syz [ 906.987589][ T8643] usb 1-1: Manufacturer: syz [ 906.993436][ T8643] usb 1-1: SerialNumber: syz [ 907.239948][ T8643] usb 1-1: Handspring Visor / Palm OS: No valid connect info available [ 907.260725][ T8643] usb 1-1: Handspring Visor / Palm OS: port 109, is for unknown use [ 907.283680][ T8643] usb 1-1: Handspring Visor / Palm OS: port 211, is for unknown use [ 907.324732][ T8643] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2 [ 907.476563][ T8643] usb 1-1: palm_os_3_probe - error -71 getting bytes available request [ 907.505161][ T8643] visor 1-1:1.0: Handspring Visor / Palm OS converter detected [ 907.553450][ T8643] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 907.573880][ T8643] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 907.597404][ T8643] usb 1-1: USB disconnect, device number 54 [ 907.632328][ T8643] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 907.677764][ T8643] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 907.731914][ T8643] visor 1-1:1.0: device disconnected [ 907.787127][T18489] usb 2-1: new high-speed USB device number 48 using dummy_hcd [ 907.818525][T20078] loop2: detected capacity change from 0 to 32768 [ 907.874794][T20078] ERROR: (device loop2): diAllocAG: error reading iag [ 907.874794][T20078] [ 907.912664][T20078] ialloc: diAlloc returned -5! [ 908.029071][T18489] usb 2-1: Using ep0 maxpacket: 8 [ 908.037760][T18489] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 908.082054][T18489] usb 2-1: config 179 has no interface number 0 [ 908.114941][T18489] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 908.165344][T18489] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 908.215184][T18489] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 908.252122][T20114] 9pnet_fd: p9_fd_create_tcp (20114): problem connecting socket to 127.0.0.1 [ 908.253664][T18489] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 908.317253][T18489] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 908.371132][T18489] usb 2-1: config 179 interface 65 has no altsetting 0 [ 908.390635][T18489] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 908.422799][T18489] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 908.496590][T18489] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input56 [ 908.889770][T20130] loop0: detected capacity change from 0 to 2048 [ 908.930274][T20130] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 909.059385][T20131] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 909.161516][T20130] syz.0.6923: attempt to access beyond end of device [ 909.161516][T20130] loop0: rw=0, sector=262216, nr_sectors = 2 limit=2048 [ 909.245270][T20130] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=1) [ 909.511082][T20139] loop3: detected capacity change from 0 to 4096 [ 909.599859][T20146] netlink: 'syz.4.6932': attribute type 1 has an invalid length. [ 909.654631][T20139] ntfs3: loop3: ino=5, "/" directory corrupted [ 909.679185][T20139] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 910.383395][T20165] loop3: detected capacity change from 0 to 8 [ 910.662937][ T4318] usb 2-1: USB disconnect, device number 48 [ 910.662971][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 910.684825][ T4318] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 910.885883][T20178] loop2: detected capacity change from 0 to 256 [ 911.390665][T20184] loop2: detected capacity change from 0 to 4096 [ 911.718305][T18489] usb 2-1: new high-speed USB device number 49 using dummy_hcd [ 911.941632][T18489] usb 2-1: Using ep0 maxpacket: 32 [ 911.950856][T18489] usb 2-1: config 0 interface 0 has no altsetting 0 [ 911.957222][T20210] loop2: detected capacity change from 0 to 256 [ 911.972394][T18489] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 912.000876][T18489] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 912.038392][T18489] usb 2-1: Product: syz [ 912.038555][T20210] FAT-fs (loop2): Directory bread(block 64) failed [ 912.051905][T20210] FAT-fs (loop2): Directory bread(block 65) failed [ 912.074580][T20210] FAT-fs (loop2): Directory bread(block 66) failed [ 912.086433][T18489] usb 2-1: Manufacturer: syz [ 912.098587][T18489] usb 2-1: SerialNumber: syz [ 912.112823][T20210] FAT-fs (loop2): Directory bread(block 67) failed [ 912.119928][T20210] FAT-fs (loop2): Directory bread(block 68) failed [ 912.120631][T18489] usb 2-1: config 0 descriptor?? [ 912.154589][T20210] FAT-fs (loop2): Directory bread(block 69) failed [ 912.161638][T20210] FAT-fs (loop2): Directory bread(block 70) failed [ 912.168741][T20210] FAT-fs (loop2): Directory bread(block 71) failed [ 912.175816][T20210] FAT-fs (loop2): Directory bread(block 72) failed [ 912.183385][T20210] FAT-fs (loop2): Directory bread(block 73) failed [ 912.592024][T18489] gs_usb 2-1:0.0: Couldn't get device config: (err=-71) [ 912.606983][T18489] gs_usb: probe of 2-1:0.0 failed with error -71 [ 912.643467][T18489] usb 2-1: USB disconnect, device number 49 [ 913.100025][T20239] ieee802154 phy0 wpan0: encryption failed: -22 [ 913.277728][T18489] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 913.347163][T20249] loop4: detected capacity change from 0 to 8 [ 913.491643][T18489] usb 4-1: Using ep0 maxpacket: 32 [ 913.498820][T18489] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 913.543710][T18489] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 913.589256][T18489] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 913.610070][T20251] loop1: detected capacity change from 0 to 4096 [ 913.650241][T18489] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 913.681679][T18489] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 913.712246][T18489] usb 4-1: Product: syz [ 913.726761][T18489] usb 4-1: Manufacturer: syz [ 913.744682][T18489] usb 4-1: SerialNumber: syz [ 913.787636][T18489] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input57 [ 913.898662][T20251] ntfs3: loop1: ino=5, "/" directory corrupted [ 913.905146][T20251] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 914.074660][T20263] loop0: detected capacity change from 0 to 4096 [ 914.108879][ T8643] usb 4-1: USB disconnect, device number 54 [ 914.140110][ T8643] appletouch 4-1:1.0: input: appletouch disconnected [ 914.429101][T20271] loop4: detected capacity change from 0 to 2048 [ 914.483612][ T26] audit: type=1326 audit(901.911:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20273 comm="syz.2.6994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 914.538856][T20271] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 914.577679][ T26] audit: type=1326 audit(901.939:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20273 comm="syz.2.6994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 914.731730][ T26] audit: type=1326 audit(901.949:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20273 comm="syz.2.6994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 914.816471][ T26] audit: type=1326 audit(901.949:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20273 comm="syz.2.6994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 914.930210][ T26] audit: type=1326 audit(901.949:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20273 comm="syz.2.6994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 914.952867][ C1] vkms_vblank_simulate: vblank timer overrun [ 915.092246][T20291] loop2: detected capacity change from 0 to 512 [ 915.130575][T20294] netlink: 'syz.1.7004': attribute type 12 has an invalid length. [ 915.167704][T20291] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.7003: bad orphan inode 15 [ 915.212353][T20287] loop4: detected capacity change from 0 to 4096 [ 915.301374][T20291] ext4_test_bit(bit=14, block=5) = 0 [ 915.356814][T20287] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 915.375192][T20291] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 915.486208][T20291] EXT4-fs error (device loop2): __ext4_new_inode:1075: comm syz.2.7003: reserved inode found cleared - inode=1 [ 915.507280][T18489] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 915.631235][ T4276] ntfs3: loop4: ntfs_sync_fs r=9 failed, -22. [ 915.638286][ T4276] ntfs3: loop4: ntfs_evict_inode r=9 failed, -22. [ 915.719493][ T4274] EXT4-fs (loop2): unmounting filesystem. [ 915.728321][T18489] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 915.753571][T18489] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 915.781834][T18489] usb 4-1: config 0 descriptor?? [ 915.818712][T18489] cp210x 4-1:0.0: cp210x converter detected [ 915.884084][T20315] loop0: detected capacity change from 0 to 128 [ 916.227052][T18489] cp210x 4-1:0.0: failed to get vendor val 0x370c size 13: -71 [ 916.243416][T20323] netlink: 'syz.0.7018': attribute type 2 has an invalid length. [ 916.256209][T18489] cp210x 4-1:0.0: GPIO initialisation failed: -71 [ 916.272260][T20323] netlink: 'syz.0.7018': attribute type 1 has an invalid length. [ 916.297726][T18489] usb 4-1: cp210x converter now attached to ttyUSB0 [ 916.340681][T18489] usb 4-1: USB disconnect, device number 55 [ 916.396974][ T4403] udevd[4403]: setting owner of /dev/ttyUSB0 to uid=0, gid=18 failed: No such file or directory [ 916.397174][T18489] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 916.473572][T18489] cp210x 4-1:0.0: device disconnected [ 916.987375][ T5574] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 917.059498][T20354] netlink: 68 bytes leftover after parsing attributes in process `syz.0.7033'. [ 917.179836][ T5574] usb 3-1: Using ep0 maxpacket: 16 [ 917.187480][ T5574] usb 3-1: config 0 has an invalid interface number: 34 but max is 0 [ 917.221518][ T5574] usb 3-1: config 0 has no interface number 0 [ 917.247702][ T5574] usb 3-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023 [ 917.274965][ T5574] usb 3-1: config 0 interface 34 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024 [ 917.300475][ T5574] usb 3-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 917.328377][ T5574] usb 3-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73 [ 917.348591][ T5574] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 917.382438][ T5574] usb 3-1: Product: syz [ 917.395454][ T5574] usb 3-1: Manufacturer: syz [ 917.411390][ T5574] usb 3-1: SerialNumber: syz [ 917.427960][ T5574] usb 3-1: config 0 descriptor?? [ 917.446887][T20341] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 917.461432][T20341] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 917.722212][T20341] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 917.747680][T20341] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 917.755840][T20374] loop3: detected capacity change from 0 to 1024 [ 917.979947][ T9058] hfsplus: b-tree write err: -5, ino 4 [ 918.005509][ T5574] asix 3-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 918.019206][T20382] loop4: detected capacity change from 0 to 1024 [ 918.038892][ T5574] asix: probe of 3-1:0.34 failed with error -71 [ 918.111108][ T5574] usb 3-1: USB disconnect, device number 16 [ 918.211347][ T4370] hfsplus: b-tree write err: -5, ino 4 [ 918.367042][T20392] netlink: 'syz.4.7050': attribute type 16 has an invalid length. [ 918.400031][T20392] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.7050'. [ 919.007971][T18489] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 919.221916][T18489] usb 4-1: Using ep0 maxpacket: 16 [ 919.231440][T18489] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 919.261184][T18489] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 919.314209][T18489] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 919.327151][T18489] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 919.338441][T18489] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 919.350604][T18489] usb 4-1: config 1 interface 0 has no altsetting 0 [ 919.357564][T18489] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 919.374914][T18489] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 919.420936][T18489] ums-sddr09 4-1:1.0: USB Mass Storage device detected [ 919.575396][ T4282] Bluetooth: hci4: unexpected event for opcode 0x080f [ 919.662091][T18489] scsi host1: usb-storage 4-1:1.0 [ 919.807460][ T26] audit: type=1326 audit(906.897:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20440 comm="syz.0.7073" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x0 [ 919.894178][T20443] 8021q: adding VLAN 0 to HW filter on device bond1 [ 919.898072][T18489] usb 4-1: USB disconnect, device number 56 [ 919.998151][T20450] loop4: detected capacity change from 0 to 2048 [ 920.050901][T20450] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 920.131736][T20450] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 920.632873][ T5574] usb 1-1: new high-speed USB device number 55 using dummy_hcd [ 920.700257][T20472] loop4: detected capacity change from 0 to 256 [ 920.828865][T20472] FAT-fs (loop4): Directory bread(block 64) failed [ 920.836200][T20472] FAT-fs (loop4): Directory bread(block 65) failed [ 920.846859][T20472] FAT-fs (loop4): Directory bread(block 66) failed [ 920.846886][ T5574] usb 1-1: Using ep0 maxpacket: 16 [ 920.853578][T20472] FAT-fs (loop4): Directory bread(block 67) failed [ 920.853693][T20472] FAT-fs (loop4): Directory bread(block 68) failed [ 920.853723][T20472] FAT-fs (loop4): Directory bread(block 69) failed [ 920.853804][T20472] FAT-fs (loop4): Directory bread(block 70) failed [ 920.853834][T20472] FAT-fs (loop4): Directory bread(block 71) failed [ 920.853903][T20472] FAT-fs (loop4): Directory bread(block 72) failed [ 920.876782][ T5574] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 920.907131][T20472] FAT-fs (loop4): Directory bread(block 73) failed [ 920.971382][ T5574] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 921.003869][ T5574] usb 1-1: Product: syz [ 921.025503][ T5574] usb 1-1: Manufacturer: syz [ 921.036320][ T5574] usb 1-1: SerialNumber: syz [ 921.051989][ T5574] r8152-cfgselector 1-1: config 0 descriptor?? [ 921.274438][T20472] Process accounting paused [ 921.477188][T20489] ieee802154 phy0 wpan0: encryption failed: -22 [ 921.537758][ T5574] r8152-cfgselector 1-1: Unknown version 0x0000 [ 921.561543][ T5574] r8152-cfgselector 1-1: USB disconnect, device number 55 [ 921.745819][T20496] loop2: detected capacity change from 0 to 512 [ 921.797447][T20496] EXT4-fs warning (device loop2): ext4_xattr_inode_get:506: inode #11: comm syz.2.7099: EA inode hash validation failed [ 921.865624][T20496] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2799: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 921.919291][T20496] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #15: comm syz.2.7099: corrupted inode contents [ 921.960360][T20496] EXT4-fs error (device loop2): ext4_dirty_inode:6137: inode #15: comm syz.2.7099: mark_inode_dirty error [ 921.994643][T20496] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #15: comm syz.2.7099: corrupted inode contents [ 922.043173][T20496] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2944: inode #15: comm syz.2.7099: mark_inode_dirty error [ 922.044090][ T8643] usb 4-1: new low-speed USB device number 57 using dummy_hcd [ 922.082932][T20496] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2947: inode #15: comm syz.2.7099: mark inode dirty (error -117) [ 922.118571][T20496] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117) [ 922.145873][T20496] EXT4-fs (loop2): 1 orphan inode deleted [ 922.153014][T20496] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 922.291757][ T8643] usb 4-1: config index 0 descriptor too short (expected 1307, got 27) [ 922.328258][ T8643] usb 4-1: config 0 has an invalid interface number: 0 but max is -1 [ 922.371613][ T8643] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 922.403597][ T4274] EXT4-fs (loop2): unmounting filesystem. [ 922.422007][ T8643] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 922.477101][ T8643] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 922.531793][ T8643] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 922.609870][ T8643] usb 4-1: string descriptor 0 read error: -22 [ 922.634726][ T8643] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 922.673854][ T8643] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 922.733612][ T8643] usb 4-1: config 0 descriptor?? [ 922.750367][T20499] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 922.759652][ T8643] hub 4-1:0.0: bad descriptor, ignoring hub [ 922.787479][ T8643] hub: probe of 4-1:0.0 failed with error -5 [ 922.812432][ T8643] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input58 [ 922.833577][T20534] loop1: detected capacity change from 0 to 1024 [ 922.890474][ C0] usb_acecad 4-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -1 [ 922.923772][T20534] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 923.089355][T20534] EXT4-fs warning (device loop1): ext4_rmdir:3243: inode #11: comm syz.1.7117: empty directory 'file1' has too many links (111) [ 923.129259][ C0] usb_acecad 4-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -1 [ 923.216611][ C1] usb_acecad 4-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -1 [ 923.255301][ T8643] usb 4-1: USB disconnect, device number 57 [ 923.333428][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 923.549478][T20559] netlink: zone id is out of range [ 923.894620][ T4282] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 923.903770][ T4282] Bluetooth: hci4: Injecting HCI hardware error event [ 923.917952][ T4282] Bluetooth: hci4: hardware error 0x00 [ 924.595582][T20599] vim2m vim2m.0: Fourcc format (0x31384142) invalid. [ 924.616588][T20598] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7146'. [ 924.648028][T20598] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7146'. [ 925.686493][T20639] loop0: detected capacity change from 0 to 256 [ 925.716186][T20642] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7169'. [ 925.755759][T20639] FAT-fs (loop0): Directory bread(block 64) failed [ 925.772757][T20639] FAT-fs (loop0): Directory bread(block 65) failed [ 925.840067][T20639] FAT-fs (loop0): Directory bread(block 66) failed [ 925.846970][T20639] FAT-fs (loop0): Directory bread(block 67) failed [ 925.874176][T20639] FAT-fs (loop0): Directory bread(block 68) failed [ 925.880891][T20639] FAT-fs (loop0): Directory bread(block 69) failed [ 925.942282][T20639] FAT-fs (loop0): Directory bread(block 70) failed [ 925.973711][T20639] FAT-fs (loop0): Directory bread(block 71) failed [ 925.993387][T20639] FAT-fs (loop0): Directory bread(block 72) failed [ 926.031819][T20639] FAT-fs (loop0): Directory bread(block 73) failed [ 926.117377][ T4282] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 926.571409][T20669] loop0: detected capacity change from 0 to 256 [ 926.593571][T20668] IPv6: NLM_F_REPLACE set, but no existing node found! [ 926.615875][T20669] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001207b, chksum : 0x1e8dd1dd, utbl_chksum : 0xe619d30d) [ 926.669194][T20669] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000005) bogus content (0xffffff00) [ 926.705116][T20669] exFAT-fs (loop0): Filesystem has been set read-only [ 926.712244][T20669] exFAT-fs (loop0): failed to initialize root inode [ 927.373027][T20699] libceph: resolve '0' (ret=-3): failed [ 927.412042][ T26] audit: type=1326 audit(914.006:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20700 comm="syz.4.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95eb59aeb9 code=0x7ffc0000 [ 927.481298][ T26] audit: type=1326 audit(914.015:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20700 comm="syz.4.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95eb59aeb9 code=0x7ffc0000 [ 927.580043][ T26] audit: type=1326 audit(914.044:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20700 comm="syz.4.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7f95eb59aeb9 code=0x7ffc0000 [ 927.667808][ T26] audit: type=1326 audit(914.044:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20700 comm="syz.4.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95eb59aeb9 code=0x7ffc0000 [ 927.713400][T20713] netlink: 'syz.3.7204': attribute type 21 has an invalid length. [ 927.737174][T20713] netlink: 'syz.3.7204': attribute type 1 has an invalid length. [ 927.763580][ T26] audit: type=1326 audit(914.044:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20700 comm="syz.4.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95eb59aeb9 code=0x7ffc0000 [ 928.198990][T20725] loop3: detected capacity change from 0 to 8 [ 928.435087][T20725] SQUASHFS error: Failed to read block 0x2fc: -5 [ 928.458872][T20725] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 928.467015][T20725] SQUASHFS error: Unable to read directory block [247:26] [ 928.690238][T20709] loop1: detected capacity change from 0 to 32768 [ 928.734196][T20709] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.7202 (20709) [ 928.788520][T20709] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 928.830596][T20709] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 928.854191][T20709] BTRFS info (device loop1): using free space tree [ 929.126596][T20709] BTRFS info (device loop1): enabling ssd optimizations [ 929.386377][ T4269] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 930.353340][T20802] comedi comedi3: comedi_config --init_data is deprecated [ 930.405993][T20804] loop0: detected capacity change from 0 to 128 [ 930.597349][ T4268] sysv_free_block: flc_count > flc_size [ 930.624012][ T4268] sysv_free_block: flc_count > flc_size [ 930.646781][ T4268] sysv_free_block: flc_count > flc_size [ 930.662099][ T4268] sysv_free_block: flc_count > flc_size [ 930.668190][ T4268] sysv_free_block: flc_count > flc_size [ 930.676088][T20774] loop2: detected capacity change from 0 to 32768 [ 930.710226][ T4268] sysv_free_block: flc_count > flc_size [ 930.732606][ T4268] sysv_free_block: flc_count > flc_size [ 930.757149][ T4268] sysv_free_block: flc_count > flc_size [ 930.762816][ T4268] sysv_free_block: flc_count > flc_size [ 930.799907][ T4268] sysv_free_block: flc_count > flc_size [ 930.806018][T20774] XFS (loop2): Mounting V5 Filesystem [ 930.832723][ T4268] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 930.972193][T20774] XFS (loop2): Ending clean mount [ 931.006894][T20819] device netdevsim0 entered promiscuous mode [ 931.014286][T20774] XFS (loop2): Quotacheck needed: Please wait. [ 931.057161][T20819] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 931.127724][T20774] XFS (loop2): Quotacheck: Done. [ 931.306686][T20828] device wlan0 entered promiscuous mode [ 931.440424][ T4274] XFS (loop2): Unmounting Filesystem [ 931.557934][T20838] openvswitch: netlink: Message has 1 unknown bytes. [ 931.833086][ T26] audit: type=1326 audit(918.141:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.0.7257" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x0 [ 932.017322][T20848] loop4: detected capacity change from 0 to 2048 [ 932.191707][T20848] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 932.368164][ T4276] EXT4-fs (loop4): unmounting filesystem. [ 932.839032][T18489] usb 4-1: new full-speed USB device number 58 using dummy_hcd [ 932.968079][T20844] loop1: detected capacity change from 0 to 32768 [ 933.071772][T20844] XFS (loop1): Mounting V5 Filesystem [ 933.089939][T18489] usb 4-1: unable to get BOS descriptor or descriptor too short [ 933.109920][T18489] usb 4-1: not running at top speed; connect to a high speed hub [ 933.127367][T18489] usb 4-1: config 12 has an invalid interface number: 184 but max is 0 [ 933.142266][T18489] usb 4-1: config 12 has no interface number 0 [ 933.148945][T18489] usb 4-1: config 12 interface 184 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10 [ 933.149324][T20892] loop4: detected capacity change from 0 to 16 [ 933.172970][T18489] usb 4-1: New USB device found, idVendor=0499, idProduct=100d, bcdDevice=84.a2 [ 933.182478][T18489] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 933.198278][T18489] usb 4-1: Product: syz [ 933.204888][T18489] usb 4-1: Manufacturer: syz [ 933.211291][T18489] usb 4-1: SerialNumber: syz [ 933.238170][T20892] erofs: (device loop4): mounted with root inode @ nid 36. [ 933.285092][T20892] erofs: (device loop4): z_erofs_readahead: readahead error at page 2 @ nid 9895604650073 [ 933.289699][T20844] XFS (loop1): Ending clean mount [ 933.367140][ T4282] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -20 in[4096, 0] out[8192] [ 933.387947][T20892] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -20 in[4096, 0] out[4096] [ 933.425899][T20844] XFS: no-recovery mounts must be read-only. [ 933.432485][ T26] audit: type=1800 audit(919.647:41): pid=20892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7273" name="file3" dev="loop4" ino=9895604650073 res=0 errno=0 [ 933.537050][T18489] usb 4-1: USB disconnect, device number 58 [ 933.603702][T20892] syz.4.7273 (20892) used greatest stack depth: 20344 bytes left [ 933.616540][T11208] udevd[11208]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:12.184/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 933.636685][T20894] loop2: detected capacity change from 0 to 2048 [ 933.657270][ T4269] XFS (loop1): Unmounting Filesystem [ 933.741542][T20894] Alternate GPT is invalid, using primary GPT. [ 933.756047][T20894] loop2: p1 p2 p3 [ 933.876055][T20896] netlink: 129384 bytes leftover after parsing attributes in process `syz.4.7275'. [ 934.277545][T11209] udevd[11209]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 934.279856][T11206] udevd[11206]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 934.338068][ T4905] udevd[4905]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 934.363263][T20904] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7279'. [ 934.941742][T20923] sg_write: data in/out 512/1 bytes for SCSI command 0xb7-- guessing data in; [ 934.941742][T20923] program syz.1.7288 not setting count and/or reply_len properly [ 934.959553][T20920] libceph: resolve '4.' (ret=-3): failed [ 935.051551][T20928] netlink: 'syz.2.7290': attribute type 1 has an invalid length. [ 935.247092][T20935] overlayfs: unrecognized mount option "\" or missing value [ 936.294872][ T4325] usb 1-1: new high-speed USB device number 56 using dummy_hcd [ 936.368042][T20977] loop2: detected capacity change from 0 to 4096 [ 936.376484][T20977] ntfs3: loop2: ino=3, Correct links count -> 2. [ 936.387406][T20977] ntfs3: loop2: Failed to load $Volume. [ 936.497741][ T4325] usb 1-1: Using ep0 maxpacket: 8 [ 936.510804][ T4325] usb 1-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 936.541438][ T4325] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 936.581297][ T4325] usb 1-1: Product: syz [ 936.596942][ T4325] usb 1-1: Manufacturer: syz [ 936.612370][ T4325] usb 1-1: SerialNumber: syz [ 936.633855][ T4325] usb 1-1: config 0 descriptor?? [ 936.656577][ T4325] gspca_main: sq930x-2.14.0 probing 2770:930c [ 936.666516][T20989] loop1: detected capacity change from 0 to 8 [ 936.749738][T20989] SQUASHFS error: Failed to read block 0x285: -5 [ 936.769147][T20989] SQUASHFS error: Unable to read metadata cache entry [283] [ 936.790501][T20989] SQUASHFS error: Unable to read symlink [8f:60] [ 937.085510][ T4325] gspca_sq930x: ucbus_write failed -71 [ 937.097047][ T4325] sq930x: probe of 1-1:0.0 failed with error -71 [ 937.145759][ T4325] usb 1-1: USB disconnect, device number 56 [ 937.402720][T21005] loop4: detected capacity change from 0 to 1024 [ 937.778961][T20997] loop1: detected capacity change from 0 to 32768 [ 937.881732][T20997] XFS (loop1): Mounting V5 Filesystem [ 937.947824][T21023] loop0: detected capacity change from 0 to 736 [ 937.979544][T21029] xt_CT: You must specify a L4 protocol and not use inversions on it [ 937.993433][T20997] XFS (loop1): Ending clean mount [ 938.046597][T20997] XFS (loop1): Quotacheck needed: Please wait. [ 938.260510][T20997] XFS (loop1): Quotacheck: Done. [ 938.524259][ T4269] XFS (loop1): Unmounting Filesystem [ 939.281943][T21057] xt_CT: No such helper "snmp_trap" [ 939.872268][T21047] loop2: detected capacity change from 0 to 32768 [ 940.338411][T21098] xt_CT: You must specify a L4 protocol and not use inversions on it [ 940.814361][T21116] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7377'. [ 941.707944][T21146] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 941.859472][T21153] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7394'. [ 941.926442][T21159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7397'. [ 942.014248][T18477] usb 1-1: new high-speed USB device number 57 using dummy_hcd [ 942.219026][T18477] usb 1-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 942.238655][T18477] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 942.298470][T18477] pwc: Logitech/Cisco VT Camera webcam detected. [ 942.317897][T21173] loop1: detected capacity change from 0 to 64 [ 942.330282][T21167] loop2: detected capacity change from 0 to 4096 [ 942.405124][T21167] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 942.476477][T21167] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 942.516690][T18477] pwc: Failed to set LED on/off time (-71) [ 942.536319][T18477] pwc: send_video_command error -71 [ 942.547300][T18477] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 942.560668][T18477] Philips webcam: probe of 1-1:127.0 failed with error -71 [ 942.588455][T18477] usb 1-1: USB disconnect, device number 57 [ 942.824256][T21177] loop4: detected capacity change from 0 to 4096 [ 942.867072][T21177] ntfs3: loop4: ino=3, Correct links count -> 2. [ 942.884363][T21177] ntfs3: loop4: Failed to load $Volume. [ 943.316841][T21196] netlink: 'syz.0.7416': attribute type 30 has an invalid length. [ 943.631990][T21208] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 943.788945][ T5578] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 943.992003][ T5578] usb 3-1: Using ep0 maxpacket: 8 [ 944.001965][ T5578] usb 3-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 944.033754][ T5578] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 944.065571][T21222] loop1: detected capacity change from 0 to 4096 [ 944.072563][ T5578] usb 3-1: Product: syz [ 944.076772][ T5578] usb 3-1: Manufacturer: syz [ 944.082245][ T5578] usb 3-1: SerialNumber: syz [ 944.097271][T21222] ntfs3: loop1: ino=3, Correct links count -> 2. [ 944.105818][ T5578] usb 3-1: config 0 descriptor?? [ 944.113510][T21222] ntfs3: loop1: Failed to load $Volume. [ 944.129282][ T5578] radio-usb-si4713 3-1:0.0: Si4713 development board discovered: (10C4:8244) [ 944.400227][T21234] mmap: syz.0.7434 (21234): VmData 175874048 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data. [ 944.554132][ T5578] radio-usb-si4713: probe of 3-1:0.0 failed with error -71 [ 944.574134][ T5578] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 944.623527][ T5578] usb 3-1: USB disconnect, device number 17 [ 944.737289][T21242] loop0: detected capacity change from 0 to 256 [ 944.789707][T21242] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x9059fefc, utbl_chksum : 0xe619d30d) [ 945.100906][T21254] loop3: detected capacity change from 0 to 1024 [ 945.125167][ T14] usb 2-1: new high-speed USB device number 50 using dummy_hcd [ 945.208528][T21254] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 945.328286][ T14] usb 2-1: Using ep0 maxpacket: 16 [ 945.336689][ T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 945.359007][ T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 945.380634][ T14] usb 2-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00 [ 945.424485][ T14] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 945.447932][ T14] usb 2-1: config 0 descriptor?? [ 945.461297][T21265] bridge0: port 1(bridge_slave_0) entered disabled state [ 945.479276][ T4267] EXT4-fs (loop3): unmounting filesystem. [ 945.502865][ T14] xbox_remote_probe: endpoint_in message size==0? [ 945.674537][ T14] usbhid 2-1:0.0: can't add hid device: -71 [ 945.690198][ T14] usbhid: probe of 2-1:0.0 failed with error -71 [ 945.724688][T21273] loop2: detected capacity change from 0 to 512 [ 945.730614][ T14] usb 2-1: USB disconnect, device number 50 [ 945.782475][T21273] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 945.849843][T21273] EXT4-fs (loop2): Couldn't remount RDWR because of unprocessed orphan inode list. Please umount/remount instead [ 946.101529][ T4274] EXT4-fs (loop2): unmounting filesystem. [ 946.297688][T21288] loop0: detected capacity change from 0 to 4096 [ 946.346501][T21288] ntfs3: loop0: ino=3, Correct links count -> 2. [ 946.367553][T21288] ntfs3: loop0: Failed to load $Volume. [ 946.388253][ T14] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 946.388315][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 946.402935][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 946.434261][ T26] audit: type=1326 audit(931.807:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21293 comm="syz.1.7461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f872e39aeb9 code=0x7ffc0000 [ 946.500530][ T26] audit: type=1326 audit(931.835:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21293 comm="syz.1.7461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f872e39aeb9 code=0x7ffc0000 [ 946.589812][ T14] usb 4-1: Using ep0 maxpacket: 32 [ 946.600975][ T26] audit: type=1326 audit(931.835:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21293 comm="syz.1.7461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f872e39aeb9 code=0x7ffc0000 [ 946.607871][ T14] usb 4-1: config 0 has an invalid interface number: 166 but max is 0 [ 946.676006][ T14] usb 4-1: config 0 has no interface number 0 [ 946.700085][ T26] audit: type=1326 audit(931.835:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21293 comm="syz.1.7461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f872e39aeb9 code=0x7ffc0000 [ 946.717912][ T14] usb 4-1: config 0 interface 166 has no altsetting 0 [ 946.765839][ T14] usb 4-1: New USB device found, idVendor=0781, idProduct=0005, bcdDevice= 0.05 [ 946.786634][ T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 946.793882][ T26] audit: type=1326 audit(931.844:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21293 comm="syz.1.7461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f872e39aeb9 code=0x7ffc0000 [ 946.838114][ T14] usb 4-1: Product: syz [ 946.846516][ T14] usb 4-1: Manufacturer: syz [ 946.879172][ T14] usb 4-1: SerialNumber: syz [ 946.922421][ T14] usb 4-1: config 0 descriptor?? [ 947.152244][ T14] ums-usbat 4-1:0.166: USB Mass Storage device detected [ 947.201106][ T14] ums-usbat 4-1:0.166: Quirks match for vid 0781 pid 0005: 1 [ 947.274671][ T14] ums-usbat: probe of 4-1:0.166 failed with error -5 [ 947.312486][ T14] usb 4-1: USB disconnect, device number 59 [ 947.422039][T21318] netlink: 48 bytes leftover after parsing attributes in process `syz.2.7472'. [ 947.464868][T21318] tc_dump_action: action bad kind [ 947.947516][ T4325] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 947.974722][T21338] loop3: detected capacity change from 0 to 256 [ 948.018041][T21338] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d) [ 948.166033][ T4325] usb 3-1: Using ep0 maxpacket: 8 [ 948.202094][ T4325] usb 3-1: config 0 has an invalid interface number: 33 but max is 1 [ 948.231827][ T4325] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 948.265858][ T4325] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 948.281972][ T4325] usb 3-1: config 0 has no interface number 0 [ 948.288513][ T4325] usb 3-1: config 0 interface 33 altsetting 0 endpoint 0x6 has an invalid bInterval 0, changing to 7 [ 948.351200][ T4325] usb 3-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1 [ 948.391710][ T4325] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 948.432242][ T4325] usb 3-1: Product: syz [ 948.436683][ T4325] usb 3-1: Manufacturer: syz [ 948.452537][ T4325] usb 3-1: SerialNumber: syz [ 948.473726][ T4325] usb 3-1: config 0 descriptor?? [ 948.496198][ T4325] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx [ 948.711528][ T2310] pvrusb2: Invalid write control endpoint [ 948.723286][ T4325] usb 3-1: USB disconnect, device number 18 [ 948.738809][ T2310] usb 3-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2 [ 948.777316][ T2310] usb 3-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw [ 948.909913][T21336] loop1: detected capacity change from 0 to 40427 [ 948.950482][T21336] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 948.957679][T21366] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 948.972804][T21336] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 949.048513][ T14] usb 1-1: new high-speed USB device number 58 using dummy_hcd [ 949.057779][T21336] F2FS-fs (loop1): Found nat_bits in checkpoint [ 949.203738][T21336] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 949.217601][T21336] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 949.273103][ T14] usb 1-1: Using ep0 maxpacket: 32 [ 949.283196][ T14] usb 1-1: config 0 has an invalid interface number: 166 but max is 0 [ 949.307481][ T14] usb 1-1: config 0 has no interface number 0 [ 949.352592][ T14] usb 1-1: config 0 interface 166 has no altsetting 0 [ 949.367369][ T14] usb 1-1: New USB device found, idVendor=0781, idProduct=0005, bcdDevice= 0.05 [ 949.387722][ T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 949.409069][ T14] usb 1-1: Product: syz [ 949.421990][ T14] usb 1-1: Manufacturer: syz [ 949.449163][ T14] usb 1-1: SerialNumber: syz [ 949.471014][ T14] usb 1-1: config 0 descriptor?? [ 949.535242][T21382] 8021q: adding VLAN 0 to HW filter on device bond2 [ 949.706755][ T14] ums-usbat 1-1:0.166: USB Mass Storage device detected [ 949.753313][ T14] ums-usbat 1-1:0.166: Quirks match for vid 0781 pid 0005: 1 [ 949.812927][ T14] ums-usbat: probe of 1-1:0.166 failed with error -5 [ 949.833983][ T14] usb 1-1: USB disconnect, device number 58 [ 950.869716][T21421] tmpfs: Bad value for 'mpol' [ 950.979502][T21395] loop2: detected capacity change from 0 to 40427 [ 951.018607][T21395] F2FS-fs (loop2): invalid crc value [ 951.060427][T21428] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 951.077709][T21395] F2FS-fs (loop2): Found nat_bits in checkpoint [ 951.111995][T18477] usb 5-1: new high-speed USB device number 45 using dummy_hcd [ 951.208486][T21395] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 951.318853][T18477] usb 5-1: config 0 has an invalid interface number: 23 but max is 0 [ 951.337033][T18477] usb 5-1: config 0 has no interface number 0 [ 951.343307][T18477] usb 5-1: config 0 interface 23 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 951.377349][T21395] syz.2.7507: attempt to access beyond end of device [ 951.377349][T21395] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 951.404581][T18477] usb 5-1: config 0 interface 23 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1023 [ 951.436318][T18477] usb 5-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 951.468523][T18477] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 951.510471][T18477] usb 5-1: Product: syz [ 951.527627][T18477] usb 5-1: Manufacturer: syz [ 951.568551][T18477] usb 5-1: SerialNumber: syz [ 951.585467][T18477] usb 5-1: config 0 descriptor?? [ 951.593070][T21417] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 951.667918][T21417] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 951.679945][T18477] ums-usbat 5-1:0.23: USB Mass Storage device detected [ 952.034904][T18477] ums-usbat: probe of 5-1:0.23 failed with error -5 [ 952.074092][T18477] usb 5-1: USB disconnect, device number 45 [ 952.422527][T21465] futex_wake_op: syz.3.7538 tries to shift op by 32; fix this program [ 952.780399][ T26] audit: type=1326 audit(937.747:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21476 comm="syz.3.7542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5fd9aeb9 code=0x7ffc0000 [ 952.823296][ T26] audit: type=1326 audit(937.747:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21476 comm="syz.3.7542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5fd9aeb9 code=0x7ffc0000 [ 952.942328][ T26] audit: type=1326 audit(937.775:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21476 comm="syz.3.7542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7fec5fd9aeb9 code=0x7ffc0000 [ 953.074014][ T26] audit: type=1326 audit(937.775:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21476 comm="syz.3.7542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5fd9aeb9 code=0x7ffc0000 [ 953.182708][ T26] audit: type=1326 audit(937.775:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21476 comm="syz.3.7542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5fd9aeb9 code=0x7ffc0000 [ 953.498777][T21502] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 953.526632][T21501] Process accounting resumed [ 953.748140][T21509] 8021q: adding VLAN 0 to HW filter on device bond1 [ 954.448618][T21540] netlink: 'syz.0.7572': attribute type 1 has an invalid length. [ 954.761645][T21548] 8021q: adding VLAN 0 to HW filter on device bond2 [ 954.867054][T21524] loop2: detected capacity change from 0 to 32768 [ 955.225928][T21565] netlink: 'syz.0.7582': attribute type 1 has an invalid length. [ 955.675978][T21576] loop1: detected capacity change from 0 to 4096 [ 955.741081][T21576] EXT4-fs: Ignoring removed mblk_io_submit option [ 955.770030][T21576] EXT4-fs (loop1): Test dummy encryption mode enabled [ 955.798053][T21583] netlink: 'syz.0.7593': attribute type 5 has an invalid length. [ 955.826857][T21583] netlink: 'syz.0.7593': attribute type 11 has an invalid length. [ 955.850366][T21576] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 956.229492][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 956.926538][T21618] loop2: detected capacity change from 0 to 1024 [ 956.998915][T21621] netlink: 'syz.0.7610': attribute type 10 has an invalid length. [ 957.185905][T20822] hfsplus: b-tree write err: -5, ino 4 [ 957.377988][T21594] loop4: detected capacity change from 0 to 32768 [ 957.411230][T21621] team0 (unregistering): Port device team_slave_1 removed [ 957.493830][T21627] netlink: 'syz.2.7613': attribute type 16 has an invalid length. [ 957.532314][T21594] XFS (loop4): Mounting V5 Filesystem [ 957.558317][T21627] netlink: 'syz.2.7613': attribute type 17 has an invalid length. [ 957.594106][T21627] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 957.601938][T21627] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 957.614383][T21627] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 957.622975][T21627] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 957.668447][T21627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 957.815814][T21594] XFS (loop4): Ending clean mount [ 957.869702][T21594] XFS (loop4): Quotacheck needed: Please wait. [ 957.929068][T21642] block device autoloading is deprecated and will be removed. [ 958.050458][T21594] XFS (loop4): Quotacheck: Done. [ 958.114293][ T4318] usb 2-1: new high-speed USB device number 51 using dummy_hcd [ 958.296522][T21652] netlink: 128 bytes leftover after parsing attributes in process `syz.3.7621'. [ 958.322403][ T4276] XFS (loop4): Unmounting Filesystem [ 958.338919][ T4318] usb 2-1: Using ep0 maxpacket: 32 [ 958.345938][T21652] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 958.367172][ T4318] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 958.425447][ T4318] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 958.468822][ T4318] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 958.496285][ T4318] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 958.520175][ T4318] usb 2-1: Product: syz [ 958.542589][ T4318] usb 2-1: Manufacturer: syz [ 958.577477][ T4318] hub 2-1:4.0: USB hub found [ 958.797349][ T4318] hub 2-1:4.0: config failed, hub doesn't have any ports! (err -19) [ 959.204950][ T4318] usb 2-1: USB disconnect, device number 51 [ 959.970296][T21695] loop1: detected capacity change from 0 to 4096 [ 960.435879][T21714] loop2: detected capacity change from 0 to 8 [ 960.483977][T21714] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 960.527511][T11209] udevd[11209]: incorrect cramfs checksum on /dev/loop2 [ 960.622284][T11209] udevd[11209]: incorrect cramfs checksum on /dev/loop2 [ 960.676696][T21720] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7654'. [ 961.002996][T21688] loop3: detected capacity change from 0 to 40427 [ 961.051494][T21688] F2FS-fs (loop3): invalid crc value [ 961.090750][T21732] loop1: detected capacity change from 0 to 512 [ 961.110731][T21688] F2FS-fs (loop3): Found nat_bits in checkpoint [ 961.119757][T21732] EXT4-fs: Ignoring removed mblk_io_submit option [ 961.232112][T21732] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 961.316553][T21732] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.7660: attempt to clear invalid blocks 2 len 1 [ 961.385856][T21732] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1113: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 961.387811][T21688] F2FS-fs (loop3): Start checkpoint disabled! [ 961.447851][T21732] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.7660: invalid indirect mapped block 1819239214 (level 0) [ 961.540014][T21688] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 961.565703][T21732] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.7660: invalid indirect mapped block 1819239214 (level 1) [ 961.625008][T21747] loop0: detected capacity change from 0 to 256 [ 961.641530][T21732] EXT4-fs (loop1): 1 truncate cleaned up [ 961.700233][T21732] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 961.721288][T21688] F2FS-fs (loop3): inode mapping table is corrupted, run fsck to fix it, ino:3, nid:3, level:3, offset:167 [ 961.974803][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 962.510086][ T26] audit: type=1326 audit(946.848:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21769 comm="syz.0.7676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 962.572285][ T26] audit: type=1326 audit(946.848:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21769 comm="syz.0.7676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 962.609145][T21772] loop4: detected capacity change from 0 to 256 [ 962.642678][T21766] loop2: detected capacity change from 0 to 4096 [ 962.656846][T21772] exfat: Deprecated parameter 'utf8' [ 962.674982][T21772] exfat: Deprecated parameter 'namecase' [ 962.707195][ T26] audit: type=1326 audit(946.857:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21769 comm="syz.0.7676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 962.729727][T21766] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 962.763101][T21772] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 962.810672][T21766] ntfs3: loop2: Failed to load $Extend. [ 962.816903][ T26] audit: type=1326 audit(946.857:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21769 comm="syz.0.7676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 962.888705][ T26] audit: type=1326 audit(946.857:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21769 comm="syz.0.7676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 963.233906][T21783] loop0: detected capacity change from 0 to 1024 [ 963.247875][T21786] dlm: no locking on control device [ 963.584136][T21795] bond0: Error: Cannot enslave bond to itself. [ 963.642821][ T46] hfsplus: b-tree write err: -5, ino 4 [ 963.889825][T21807] loop4: detected capacity change from 0 to 64 [ 964.001173][T21809] loop2: detected capacity change from 0 to 512 [ 964.092434][T21809] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 964.301395][T21822] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7697'. [ 964.318378][T21809] EXT4-fs error (device loop2): ext4_xattr_block_get:543: inode #15: comm syz.2.7694: corrupted xattr block 33 [ 964.467109][ T4274] EXT4-fs (loop2): unmounting filesystem. [ 964.517676][T21824] loop0: detected capacity change from 0 to 256 [ 964.539813][T21824] exfat: Deprecated parameter 'utf8' [ 964.545750][T21824] exfat: Deprecated parameter 'namecase' [ 964.605885][T21824] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 964.721251][T21824] kAFS: unable to lookup cell 's@z0' [ 964.849436][T21837] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7706'. [ 965.301752][T21849] netlink: 'syz.2.7712': attribute type 10 has an invalid length. [ 965.352163][T21849] netlink: 55 bytes leftover after parsing attributes in process `syz.2.7712'. [ 965.818617][T21861] netlink: 'syz.0.7718': attribute type 1 has an invalid length. [ 966.150957][ T26] audit: type=1326 audit(950.244:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21877 comm="syz.2.7736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 966.203752][T21880] netlink: 'syz.4.7726': attribute type 16 has an invalid length. [ 966.235538][T21880] netlink: 'syz.4.7726': attribute type 17 has an invalid length. [ 966.238409][ T26] audit: type=1326 audit(950.281:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21877 comm="syz.2.7736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 966.282567][T21880] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 966.326625][T21880] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 966.329296][ T26] audit: type=1326 audit(950.290:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21877 comm="syz.2.7736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 966.367841][T21880] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 966.394867][T21880] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 966.440637][ T26] audit: type=1326 audit(950.290:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21877 comm="syz.2.7736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f099039aeb9 code=0x7ffc0000 [ 966.755265][ T26] audit: type=1800 audit(950.814:61): pid=21884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.7728" name="/" dev="sockfs" ino=83142 res=0 errno=0 [ 967.205377][T21911] set_capacity_and_notify: 2 callbacks suppressed [ 967.205397][T21911] loop1: detected capacity change from 0 to 256 [ 967.351803][T21911] FAT-fs (loop1): Directory bread(block 64) failed [ 967.426719][T21911] FAT-fs (loop1): Directory bread(block 65) failed [ 967.433520][T21911] FAT-fs (loop1): Directory bread(block 66) failed [ 967.463856][T21911] FAT-fs (loop1): Directory bread(block 67) failed [ 967.512465][T21911] FAT-fs (loop1): Directory bread(block 68) failed [ 967.541973][T21911] FAT-fs (loop1): Directory bread(block 69) failed [ 967.559587][T21911] FAT-fs (loop1): Directory bread(block 70) failed [ 967.567565][T21911] FAT-fs (loop1): Directory bread(block 71) failed [ 967.575092][T21911] FAT-fs (loop1): Directory bread(block 72) failed [ 967.613626][T21911] FAT-fs (loop1): Directory bread(block 73) failed [ 968.163532][ T5569] usb 5-1: new high-speed USB device number 46 using dummy_hcd [ 968.279781][T21944] netlink: 56 bytes leftover after parsing attributes in process `syz.0.7758'. [ 968.280511][T21945] netlink: 5 bytes leftover after parsing attributes in process `syz.3.7757'. [ 968.368894][ T5569] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 968.401383][ T5569] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 968.430271][ T5569] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 968.454560][T21951] loop1: detected capacity change from 0 to 64 [ 968.461143][ T5569] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 968.494046][ T5569] usb 5-1: SerialNumber: syz [ 968.752549][ T5569] usb 5-1: 0:2 : does not exist [ 968.791299][ T5569] usb 5-1: USB disconnect, device number 46 [ 969.057666][T11206] udevd[11206]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 969.495133][T21986] netlink: 6 bytes leftover after parsing attributes in process `syz.0.7778'. [ 970.000584][T22005] loop3: detected capacity change from 0 to 1024 [ 970.023321][T22005] EXT4-fs: Ignoring removed orlov option [ 970.044001][T22005] EXT4-fs (loop3): Test dummy encryption mode enabled [ 970.104515][T22005] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 970.149074][T22005] [ 970.151606][T22005] ====================================================== [ 970.158836][T22005] WARNING: possible circular locking dependency detected [ 970.166103][T22005] syzkaller #0 Not tainted [ 970.170905][T22005] ------------------------------------------------------ [ 970.177956][T22005] syz.3.7788/22005 is trying to acquire lock: [ 970.184405][T22005] ffff888071a7cce8 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_commit+0x5a/0x410 [ 970.193475][T22005] [ 970.193475][T22005] but task is already holding lock: [ 970.201369][T22005] ffff888056a466d8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x910/0x1b70 [ 970.211410][T22005] [ 970.211410][T22005] which lock already depends on the new lock. [ 970.211410][T22005] [ 970.222345][T22005] [ 970.222345][T22005] the existing dependency chain (in reverse order) is: [ 970.231638][T22005] [ 970.231638][T22005] -> #2 (&ei->i_data_sem/2){++++}-{3:3}: [ 970.239668][T22005] down_write+0x36/0x60 [ 970.244372][T22005] ext4_map_blocks+0x910/0x1b70 [ 970.249948][T22005] ext4_getblk+0x1cc/0x6f0 [ 970.255031][T22005] ext4_bread+0x26/0x170 [ 970.260075][T22005] ext4_quota_write+0x236/0x580 [ 970.265578][T22005] find_free_dqentry+0x673/0xc20 [ 970.271227][T22005] do_insert_tree+0x70d/0x1040 [ 970.276523][T22005] do_insert_tree+0x9eb/0x1040 [ 970.282011][T22005] do_insert_tree+0x9eb/0x1040 [ 970.287603][T22005] do_insert_tree+0x9eb/0x1040 [ 970.293201][T22005] qtree_write_dquot+0x49d/0x5d0 [ 970.298920][T22005] v2_write_dquot+0x108/0x190 [ 970.304252][T22005] dquot_acquire+0x2d5/0x520 [ 970.309682][T22005] ext4_acquire_dquot+0x2d9/0x4a0 [ 970.315525][T22005] dqget+0x778/0xeb0 [ 970.320125][T22005] __dquot_initialize+0x3c3/0xcd0 [ 970.325857][T22005] ext4_process_orphan+0x54/0x300 [ 970.331604][T22005] ext4_orphan_cleanup+0xbeb/0x1420 [ 970.337628][T22005] ext4_fill_super+0x7829/0x7dc0 [ 970.343296][T22005] get_tree_bdev+0x3f1/0x610 [ 970.348593][T22005] vfs_get_tree+0x88/0x270 [ 970.353545][T22005] do_new_mount+0x24a/0xa40 [ 970.359141][T22005] __se_sys_mount+0x2e3/0x3d0 [ 970.364523][T22005] do_syscall_64+0x4c/0xa0 [ 970.369590][T22005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 970.376105][T22005] [ 970.376105][T22005] -> #1 (&s->s_dquot.dqio_sem){++++}-{3:3}: [ 970.384422][T22005] down_read+0x42/0x2d0 [ 970.389211][T22005] v2_read_dquot+0x4a/0x110 [ 970.394428][T22005] dquot_acquire+0x152/0x520 [ 970.399643][T22005] ext4_acquire_dquot+0x2d9/0x4a0 [ 970.405543][T22005] dqget+0x778/0xeb0 [ 970.410092][T22005] __dquot_initialize+0x3c3/0xcd0 [ 970.415743][T22005] ext4_process_orphan+0x54/0x300 [ 970.421481][T22005] ext4_orphan_cleanup+0xbeb/0x1420 [ 970.427390][T22005] ext4_fill_super+0x7829/0x7dc0 [ 970.433047][T22005] get_tree_bdev+0x3f1/0x610 [ 970.438516][T22005] vfs_get_tree+0x88/0x270 [ 970.443924][T22005] do_new_mount+0x24a/0xa40 [ 970.449305][T22005] __se_sys_mount+0x2e3/0x3d0 [ 970.455160][T22005] do_syscall_64+0x4c/0xa0 [ 970.460638][T22005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 970.467255][T22005] [ 970.467255][T22005] -> #0 (&dquot->dq_lock){+.+.}-{3:3}: [ 970.474997][T22005] __lock_acquire+0x2d07/0x7d10 [ 970.480494][T22005] lock_acquire+0x1bb/0x4a0 [ 970.485643][T22005] __mutex_lock+0x12d/0xaf0 [ 970.491126][T22005] dquot_commit+0x5a/0x410 [ 970.496189][T22005] ext4_write_dquot+0x1f0/0x360 [ 970.501657][T22005] mark_all_dquot_dirty+0xf9/0x400 [ 970.507461][T22005] __dquot_alloc_space+0x5fc/0xe60 [ 970.513101][T22005] ext4_mb_new_blocks+0xf8d/0x4760 [ 970.518829][T22005] ext4_ext_map_blocks+0x195b/0x6810 [ 970.524824][T22005] ext4_map_blocks+0x9de/0x1b70 [ 970.530386][T22005] ext4_getblk+0x1cc/0x6f0 [ 970.535360][T22005] ext4_bread+0x26/0x170 [ 970.540233][T22005] ext4_append+0x2be/0x560 [ 970.545478][T22005] ext4_init_new_dir+0x2b8/0x570 [ 970.551057][T22005] ext4_mkdir+0x4fb/0xce0 [ 970.556130][T22005] vfs_mkdir+0x387/0x570 [ 970.561015][T22005] do_mkdirat+0x1d8/0x440 [ 970.566144][T22005] __x64_sys_mkdirat+0x85/0x90 [ 970.571717][T22005] do_syscall_64+0x4c/0xa0 [ 970.576771][T22005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 970.583587][T22005] [ 970.583587][T22005] other info that might help us debug this: [ 970.583587][T22005] [ 970.594339][T22005] Chain exists of: [ 970.594339][T22005] &dquot->dq_lock --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2 [ 970.594339][T22005] [ 970.608099][T22005] Possible unsafe locking scenario: [ 970.608099][T22005] [ 970.615645][T22005] CPU0 CPU1 [ 970.621274][T22005] ---- ---- [ 970.626944][T22005] lock(&ei->i_data_sem/2); [ 970.631738][T22005] lock(&s->s_dquot.dqio_sem); [ 970.639203][T22005] lock(&ei->i_data_sem/2); [ 970.646594][T22005] lock(&dquot->dq_lock); [ 970.651100][T22005] [ 970.651100][T22005] *** DEADLOCK *** [ 970.651100][T22005] [ 970.659698][T22005] 4 locks held by syz.3.7788/22005: [ 970.665073][T22005] #0: ffff88807b14e460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 970.674819][T22005] #1: ffff888056a42218 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: filename_create+0x208/0x470 [ 970.685981][T22005] #2: ffff888056a466d8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x910/0x1b70 [ 970.696103][T22005] #3: ffffffff8cc74988 (dquot_srcu){....}-{0:0}, at: __dquot_alloc_space+0x173/0xe60 [ 970.706047][T22005] [ 970.706047][T22005] stack backtrace: [ 970.712127][T22005] CPU: 0 PID: 22005 Comm: syz.3.7788 Not tainted syzkaller #0 [ 970.719764][T22005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 970.730090][T22005] Call Trace: [ 970.733640][T22005] [ 970.736586][T22005] dump_stack_lvl+0x188/0x24e [ 970.741715][T22005] ? load_image+0x400/0x400 [ 970.746480][T22005] ? show_regs_print_info+0x12/0x12 [ 970.752125][T22005] ? print_circular_bug+0x12b/0x1a0 [ 970.757705][T22005] check_noncircular+0x296/0x330 [ 970.762779][T22005] ? add_chain_block+0x940/0x940 [ 970.767825][T22005] ? lockdep_lock+0xf1/0x1f0 [ 970.772874][T22005] ? _find_first_zero_bit+0xcf/0x100 [ 970.778255][T22005] __lock_acquire+0x2d07/0x7d10 [ 970.783206][T22005] ? check_path+0x40/0x40 [ 970.787739][T22005] ? check_noncircular+0x189/0x330 [ 970.793043][T22005] ? add_chain_block+0x940/0x940 [ 970.798085][T22005] ? lockdep_unlock+0x142/0x2e0 [ 970.803041][T22005] ? verify_lock_unused+0x140/0x140 [ 970.808575][T22005] ? mark_lock+0x94/0x320 [ 970.813116][T22005] ? __lock_acquire+0x13cf/0x7d10 [ 970.818366][T22005] lock_acquire+0x1bb/0x4a0 [ 970.822908][T22005] ? dquot_commit+0x5a/0x410 [ 970.827944][T22005] ? __might_sleep+0xd0/0xd0 [ 970.832576][T22005] ? read_lock_is_recursive+0x10/0x10 [ 970.838085][T22005] __mutex_lock+0x12d/0xaf0 [ 970.842714][T22005] ? dquot_commit+0x5a/0x410 [ 970.847417][T22005] ? __might_sleep+0xd0/0xd0 [ 970.852305][T22005] ? dquot_commit+0x5a/0x410 [ 970.857175][T22005] ? mutex_lock_nested+0x10/0x10 [ 970.862478][T22005] ? ext4_journal_check_start+0x17e/0x240 [ 970.868754][T22005] dquot_commit+0x5a/0x410 [ 970.873283][T22005] ext4_write_dquot+0x1f0/0x360 [ 970.878154][T22005] mark_all_dquot_dirty+0xf9/0x400 [ 970.883648][T22005] __dquot_alloc_space+0x5fc/0xe60 [ 970.888960][T22005] ? __dquot_alloc_space+0x173/0xe60 [ 970.894542][T22005] ext4_mb_new_blocks+0xf8d/0x4760 [ 970.899684][T22005] ? ext4_find_extent+0x367/0xe00 [ 970.904732][T22005] ? rcu_is_watching+0x11/0xa0 [ 970.909651][T22005] ? memset+0x1e/0x40 [ 970.913940][T22005] ? ext4_mb_pa_callback+0xd0/0xd0 [ 970.919347][T22005] ? ext4_ext_check_overlap+0x15f/0x560 [ 970.925339][T22005] ? ext4_inode_to_goal_block+0x2be/0x450 [ 970.931441][T22005] ext4_ext_map_blocks+0x195b/0x6810 [ 970.937041][T22005] ? ext4_ext_release+0x10/0x10 [ 970.942498][T22005] ? rwsem_write_trylock+0x135/0x1c0 [ 970.947974][T22005] ? ext4_es_lookup_extent+0x645/0xb10 [ 970.953811][T22005] ext4_map_blocks+0x9de/0x1b70 [ 970.959906][T22005] ? ext4_issue_zeroout+0x250/0x250 [ 970.965932][T22005] ext4_getblk+0x1cc/0x6f0 [ 970.970912][T22005] ? ext4_get_block_unwritten+0x100/0x100 [ 970.977382][T22005] ? __ext4_new_inode+0x31ba/0x3ad0 [ 970.983047][T22005] ext4_bread+0x26/0x170 [ 970.987570][T22005] ext4_append+0x2be/0x560 [ 970.992179][T22005] ? ext4_init_new_dir+0x570/0x570 [ 970.997397][T22005] ? dquot_initialize+0x20/0x20 [ 971.002488][T22005] ext4_init_new_dir+0x2b8/0x570 [ 971.007636][T22005] ext4_mkdir+0x4fb/0xce0 [ 971.012427][T22005] ? ext4_symlink+0x970/0x970 [ 971.017482][T22005] ? inode_permission+0xef/0x480 [ 971.022437][T22005] ? bpf_lsm_inode_mkdir+0x5/0x10 [ 971.027739][T22005] ? security_inode_mkdir+0xb3/0x100 [ 971.033126][T22005] vfs_mkdir+0x387/0x570 [ 971.037560][T22005] do_mkdirat+0x1d8/0x440 [ 971.042338][T22005] ? vfs_mkdir+0x570/0x570 [ 971.046854][T22005] __x64_sys_mkdirat+0x85/0x90 [ 971.051716][T22005] do_syscall_64+0x4c/0xa0 [ 971.056499][T22005] ? clear_bhb_loop+0x60/0xb0 [ 971.061710][T22005] ? clear_bhb_loop+0x60/0xb0 [ 971.066742][T22005] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 971.072815][T22005] RIP: 0033:0x7fec5fd99d97 [ 971.077425][T22005] Code: 00 66 90 48 89 f2 b9 00 01 00 00 48 89 fe bf 9c ff ff ff e9 db f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 971.098021][T22005] RSP: 002b:00007fec60cb2e58 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 971.106964][T22005] RAX: ffffffffffffffda RBX: 00007fec60cb2ee0 RCX: 00007fec5fd99d97 [ 971.114950][T22005] RDX: 00000000000001ff RSI: 0000200000000100 RDI: 00000000ffffff9c [ 971.123101][T22005] RBP: 0000000000000000 R08: 0000200000000200 R09: 0000000000000000 [ 971.131341][T22005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000100 [ 971.139594][T22005] R13: 00007fec60cb2ea0 R14: 0000000000000000 R15: 0000000000000000 [ 971.147760][T22005] [ 971.169300][ T26] audit: type=1326 audit(954.939:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.228222][ T26] audit: type=1326 audit(954.939:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.276538][ T26] audit: type=1326 audit(954.967:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fe7d3b573ac code=0x7ffc0000 [ 971.298677][ T26] audit: type=1326 audit(954.967:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fe7d3b5740e code=0x7ffc0000 [ 971.322467][ T26] audit: type=1326 audit(954.967:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe7d3b9ab4b code=0x7ffc0000 [ 971.348478][ T26] audit: type=1326 audit(954.967:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.372371][ T26] audit: type=1326 audit(954.967:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.396062][ T26] audit: type=1326 audit(954.967:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.414337][ T4267] EXT4-fs (loop3): unmounting filesystem. [ 971.419150][ T26] audit: type=1326 audit(954.977:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000 [ 971.447485][ T26] audit: type=1326 audit(954.977:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22012 comm="syz.0.7790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe7d3b9aeb9 code=0x7ffc0000