last executing test programs: 4.138416396s ago: executing program 0 (id=8969): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup\x00', 0x0, &(0x7f0000000380)='source') 3.791416746s ago: executing program 0 (id=8975): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000500)={'filter\x00', 0x7, 0x4, 0x3e0, 0x100, 0x1e8, 0x0, 0x2f8, 0x2f8, 0x2f8, 0x4, 0x0, {[{{@uncond, 0xc0, 0x100}, @unspec=@ERROR={0x20, 'ERROR\x00', 0x0, "143f1eb01740dab84e99766c534e74b46eb7f8197066c46abc861251a2f9"}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x5}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x39}, @broadcast, 0x0, 0xff000000, 0x9, 0xf, {@mac=@local, {[0xff, 0x0, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0x0, 0xff, 0x0, 0xff]}}, 0xe06, 0x0, 0xe0, 0x8, 0x0, 0xd, 'pim6reg1\x00', 'veth0_to_bond\x00', {0xff}, {}, 0x0, 0x1a1}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @private=0xa010100, @loopback, 0xf}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x430) 3.572657858s ago: executing program 3 (id=8978): syz_mount_image$erofs(&(0x7f0000000100), &(0x7f0000000300)='./file2\x00', 0x0, &(0x7f0000000080)={[{@dax}, {@cache_strategy_readahead}, {@dax_never}, {@nouser_xattr}, {@cache_strategy_readahead}, {@dax_always}, {@acl}]}, 0x1, 0x1a7, &(0x7f0000000340)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x191) 3.441861459s ago: executing program 0 (id=8981): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)={[{@acl}, {@heartbeat_none}, {@dir_resv_level={'dir_resv_level', 0x3d, 0x3}}, {@coherency_full}, {@resv_level}, {@localflocks}, {@coherency_full}, {@inode64}]}, 0x1, 0x4428, &(0x7f000000c300)="$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") syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0x18920b5, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000)) 2.8108159s ago: executing program 5 (id=8987): syz_mount_image$exfat(&(0x7f0000000200), &(0x7f0000000100)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0x2, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==") rename(&(0x7f00000003c0)='./file1\x00', &(0x7f0000000080)='./file2\x00') 2.55220527s ago: executing program 1 (id=8989): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBLED(r0, 0x4b65, 0x8) 2.28633193s ago: executing program 4 (id=8990): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25GDTEFACILITIES(r0, 0x89ea, &(0x7f00000000c0)) 2.284195229s ago: executing program 1 (id=8991): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/mnt\x00') ioctl$NS_GET_USERNS(r0, 0xb701, 0x0) 2.149254116s ago: executing program 3 (id=8993): r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs_stats_percpu\x00') pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) 2.076050215s ago: executing program 5 (id=8994): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000600)={0x0, "3efe72f3bf818ea09f4cf95d73c3ce3e8de711a7f3de0fc1cb8a24626d1d44910f2236bf9bae103e22391ea3cd172c2ac38179be234f63df3e6f5019535184ef5c39d04cc54c7bdd661cc2ff0d793bbc8433dbbb5ced195489d9389a1b55ef1389ec4f5bdceca542cc3fa739f22d94897c6b9abd311357d25e8ef7df7c43556d8f1107b003a9f87ddfc2dd335207b494877e48ec793e0995c184a0b644a16b065b3f6a987cc6bd06b7a618126a30b9e8aaa05814ca622407b092f3636481d7ab77487609081fb930df46404c837ff3e85d0cb475baf73af4f0702d828e5da37668e8d1396493ae1f100aa9c1fad6965352f36c8c09ad29fc695a266e7b0fd95de6688a99f6dea33f7432f2079339a45bb16c89d66fa2d81feebd0c42e53d9d5abfbacc40912bece541ebb43fc5e30e5724a394a841c9bfa09f08d9cd01d614546e650605921d4c55ad74479948dd4be6086d8f5a0f040461eb7633014de028d6492792cb27ad847037ad678f79e83232f138ab2f0ed350b9ab476d9c9ee41b5c4a96b28cc572f454c4c232aab45f1bc6b0c8caa19fc8c98e598c7891c9fb095ec923afd10c6306f0834d9da98892e9fd24186f446c1f87fced883ab43bcfbe54fc37d70459c049d87030494ebad22dc68cfaf694438ebc70e84a28f63c3b8905effdc87d477c1ddbab9ff5beed93a4d17819344148be913f949635156caf1e4b"}) 1.903544995s ago: executing program 2 (id=8995): r0 = socket(0x1e, 0x4, 0x0) getsockname$packet(r0, 0x0, &(0x7f0000000000)) 1.898689507s ago: executing program 1 (id=8996): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xffff0000, 0x10, 0x0, &(0x7f0000000300)="93af7d8fb9a1ef9cdf31e183f53694ed", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.892375982s ago: executing program 4 (id=8997): r0 = fsopen(&(0x7f0000000000)='f2fs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000000c0)='test_dummy_encryption', &(0x7f0000000180)='v2to_da_alloc', 0x0) 1.709822361s ago: executing program 5 (id=8998): r0 = socket$kcm(0x29, 0x5, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, 0xffffffffffffffff, 0xfffffffffffffe84) 1.615419496s ago: executing program 2 (id=8999): r0 = syz_clone(0x80800000, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.442030593s ago: executing program 4 (id=9000): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0xfffffffffffffffe, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 1.376391584s ago: executing program 5 (id=9001): keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65771264656661756c7420747275737465643a73797a20"], 0x2d, 0xfffffffffffffff9) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) 1.308804739s ago: executing program 3 (id=9002): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]}) uname(&(0x7f0000000640)=""/4096) 1.220563563s ago: executing program 0 (id=9003): r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='statm\x00') preadv(r0, &(0x7f0000000000)=[{&(0x7f0000001200)=""/4112, 0x1010}], 0x1, 0x800, 0x0) 1.102706569s ago: executing program 1 (id=9004): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb90402", 0x11}], 0x1}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"], 0x50) 1.102378552s ago: executing program 2 (id=9005): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r0, &(0x7f0000000040)={0x24, @none={0x0, 0x3}}, 0x14) 988.578585ms ago: executing program 5 (id=9006): syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x10000, &(0x7f0000000580)={[{@dmask}, {@dmask={'dmask', 0x3d, 0x6}}, {@uid={'uid', 0x3d, 0xee00}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@fmask={'fmask', 0x3d, 0x1}}, {@namecase}, {@keep_last_dots}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@errors_continue}]}, 0x1, 0x1533, &(0x7f0000006800)="$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") chown(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xffffffffffffffff, 0x0) 784.925501ms ago: executing program 3 (id=9007): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680)) stat(0x0, 0x0) 729.658695ms ago: executing program 1 (id=9008): r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r0, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {&(0x7f0000000340)="2009f5", 0x3}], 0x2) 729.44092ms ago: executing program 2 (id=9009): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/mnt\x00') ioctl$NS_GET_USERNS(r0, 0xb701, 0x0) 728.307831ms ago: executing program 4 (id=9010): r0 = syz_open_dev$sndctrl(&(0x7f0000004e80), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000140)={0x3, 0xb5, 0x0, 0x8009, &(0x7f0000001600)}) 487.76118ms ago: executing program 0 (id=9011): r0 = socket$inet6(0xa, 0x805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) 423.836202ms ago: executing program 3 (id=9012): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x6, 0x4, 0x4, 0x5, 0x0, 0x1, 0xfffffffc}, 0x50) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r0, &(0x7f00000003c0), &(0x7f0000000080)=@udp, 0x1}, 0x20) 372.327934ms ago: executing program 2 (id=9013): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="3400000040000100fcff0700040000000100000004004880140001801000108004000f800800020010000000080002"], 0x34}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094) 370.752691ms ago: executing program 4 (id=9014): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000980)={'veth1_to_bridge\x00', &(0x7f0000000940)=@ethtool_rxfh_indir={0x39}}) 358.185032ms ago: executing program 5 (id=9015): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) 151.4834ms ago: executing program 0 (id=9016): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xc, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3ffd}, [@call={0x85, 0x0, 0x0, 0x75}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 149.727341ms ago: executing program 1 (id=9017): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r0, 0x84, 0x76, &(0x7f0000000280)="3a00000002000000", 0x8) 122.186111ms ago: executing program 3 (id=9018): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x200) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000240)={0xe7, 0x9, 0x1, 0x1}) 37.620347ms ago: executing program 2 (id=9019): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x2, &(0x7f0000006680)) io_getevents(0x0, 0x400, 0x0, 0x0, 0xffffffffffffffff) 0s ago: executing program 4 (id=9020): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f006, 0x1}) kernel console output (not intermixed with test programs): riptor?? [ 1064.535484][ T5770] as10x_usb: device has been detected [ 1064.571946][ T5770] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle) [ 1064.668457][ T5770] usb 3-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)... [ 1064.776351][ T5770] as10x_usb: error during firmware upload part1 [ 1064.802016][ T5770] Registered device nBox DVB-T Dongle [ 1064.815285][ T5770] usb 3-1: USB disconnect, device number 39 [ 1064.909758][T23627] loop4: detected capacity change from 0 to 2048 [ 1065.010349][T23627] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1065.065986][ T5770] Unregistered device nBox DVB-T Dongle [ 1065.075262][ T5770] as10x_usb: device has been disconnected [ 1065.169298][T23627] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 1376) has entry at pos 232 with incorrect tag 100 [ 1065.959814][T23648] netlink: 'syz.3.7433': attribute type 39 has an invalid length. [ 1066.061687][T23623] loop0: detected capacity change from 0 to 40427 [ 1066.088285][T23623] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1066.107629][T23623] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1066.123771][T23648] hsr_slave_0 (unregistering): left promiscuous mode [ 1066.138939][T23623] F2FS-fs (loop0): invalid crc value [ 1066.250937][T23658] xt_socket: unknown flags 0x8 [ 1066.478023][T23623] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1066.493718][T23637] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 1066.558370][T23623] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1066.596071][T23623] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1066.708970][T23665] loop1: detected capacity change from 0 to 1764 [ 1066.743273][T23667] pim6reg: entered allmulticast mode [ 1066.868791][T23623] fscrypt (loop0, inode 3): Error -61 getting encryption context [ 1067.009345][T23675] netlink: 'syz.2.7446': attribute type 9 has an invalid length. [ 1067.775868][ T4942] Bluetooth: hci0: command 0x0406 tx timeout [ 1067.977027][T23702] usb usb8: usbfs: process 23702 (syz.1.7460) did not claim interface 0 before use [ 1067.989867][ T1731] usb 6-1: new high-speed USB device number 35 using dummy_hcd [ 1068.203548][ T1731] usb 6-1: Using ep0 maxpacket: 32 [ 1068.234486][ T1731] usb 6-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice= 0.40 [ 1068.266459][ T1731] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1068.299108][ T1731] usb 6-1: Product: syz [ 1068.305603][T23708] loop4: detected capacity change from 0 to 512 [ 1068.310464][ T1731] usb 6-1: Manufacturer: syz [ 1068.334445][T23708] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1068.355475][ T1731] usb 6-1: SerialNumber: syz [ 1068.425036][T23714] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1068.479087][T23708] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4221: comm syz.4.7462: Allocating blocks 41-42 which overlap fs metadata [ 1068.516504][T23708] loop4: lost filesystem error report for type 5 error -117 [ 1068.518396][T23708] EXT4-fs (loop4): Remounting filesystem read-only [ 1068.525799][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1068.525832][ C0] EXT4-fs (loop4): initial error at time 2000000261: ext4_mb_mark_diskspace_used:4221 [ 1068.525878][ C0] EXT4-fs (loop4): last error at time 2000000261: ext4_mb_mark_diskspace_used:4221 [ 1068.575471][T23708] Quota error (device loop4): write_blk: dquota write failed [ 1068.583238][T23708] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5 [ 1068.592613][T23708] Quota error (device loop4): write_blk: dquota write failed [ 1068.602064][T23708] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1068.612484][T23708] EXT4-fs (loop4): 1 truncate cleaned up [ 1068.640318][T23708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1068.727036][ T1731] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 1068.745703][ T1731] snd-usb-audio 6-1:1.1: probe with driver snd-usb-audio failed with error -2 [ 1068.789733][T23708] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 1068.797834][T23725] netlink: 'syz.3.7469': attribute type 9 has an invalid length. [ 1068.834522][ T1731] usb 6-1: USB disconnect, device number 35 [ 1068.904573][T23727] netlink: 'syz.0.7470': attribute type 5 has an invalid length. [ 1068.996629][ T5630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1069.066118][T23727] ip6erspan0: entered promiscuous mode [ 1069.371999][T23737] loop4: detected capacity change from 0 to 64 [ 1069.490954][T23741] netlink: 92 bytes leftover after parsing attributes in process `syz.0.7477'. [ 1069.522767][ T30] audit: type=1326 audit(2000000262.753:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1069.641597][ T30] audit: type=1326 audit(2000000262.753:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1069.761686][ T30] audit: type=1326 audit(2000000262.762:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1069.865089][ T30] audit: type=1326 audit(2000000262.762:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1070.016450][ T30] audit: type=1326 audit(2000000262.762:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1070.090445][ T30] audit: type=1326 audit(2000000262.762:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23743 comm="syz.3.7479" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1070.119558][T23761] loop5: detected capacity change from 0 to 2048 [ 1070.187304][T23761] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1070.252238][T23761] UDF-fs: error (device loop5): udf_verify_fi: directory (ino 1376) has entry at pos 232 with incorrect tag 100 [ 1070.267962][T23758] bond2: Unable to set down delay as MII monitoring is disabled [ 1070.292652][T23758] bond2 (unregistering): Released all slaves [ 1071.272792][T23792] netlink: 'syz.3.7501': attribute type 1 has an invalid length. [ 1071.325992][T23797] openvswitch: netlink: IP tunnel TTL not specified. [ 1071.662975][T23810] sctp: [Deprecated]: syz.0.7510 (pid 23810) Use of int in max_burst socket option. [ 1071.662975][T23810] Use struct sctp_assoc_value instead [ 1071.761643][T23801] loop5: detected capacity change from 0 to 4096 [ 1071.868326][ T5762] usb 4-1: new full-speed USB device number 22 using dummy_hcd [ 1071.929970][T23801] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1072.028324][T23816] comedi comedi1: 8255: I/O port conflict (0x18000,4) [ 1072.077547][ T5762] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1072.170040][ T5762] usb 4-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 1072.195731][T23815] bond3: option primary: mode dependency failed, not supported in mode broadcast(3) [ 1072.216741][ T5762] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1072.243989][ T5762] usb 4-1: Product: syz [ 1072.258558][T23815] bond3 (unregistering): Released all slaves [ 1072.271276][ T5762] usb 4-1: Manufacturer: syz [ 1072.275713][T23820] loop2: detected capacity change from 0 to 256 [ 1072.283313][ T5762] usb 4-1: SerialNumber: syz [ 1072.306187][T23820] exfat: Deprecated parameter 'namecase' [ 1072.328798][ T5762] usb 4-1: config 0 descriptor?? [ 1072.360913][T23820] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1072.363771][ T5762] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 1072.430321][T23821] netlink: 5 bytes leftover after parsing attributes in process `syz.4.7514'. [ 1072.500929][T23823] netlink: 'syz.5.7516': attribute type 9 has an invalid length. [ 1072.810895][ T5762] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 1072.840237][ T5762] gspca_pac7302 4-1:0.0: probe with driver gspca_pac7302 failed with error -71 [ 1072.942337][ T5762] usb 4-1: USB disconnect, device number 22 [ 1073.417778][T11489] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 1073.614325][T11489] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 959 [ 1073.614391][T11489] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1073.614445][T11489] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 1073.620031][T11489] usb 2-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=e5.38 [ 1073.620083][T11489] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1073.620131][T11489] usb 2-1: Product: syz [ 1073.620165][T11489] usb 2-1: Manufacturer: syz [ 1073.620196][T11489] usb 2-1: SerialNumber: syz [ 1073.642070][T11489] usb 2-1: config 0 descriptor?? [ 1073.645446][T23837] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1073.968463][T11489] usb 2-1: USB disconnect, device number 26 [ 1074.402906][T23870] tmpfs: Bad value for 'mpol' [ 1074.490184][T23876] loop3: detected capacity change from 0 to 256 [ 1074.539158][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 1074.539187][ T30] audit: type=1326 audit(2000000267.441:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23878 comm="syz.2.7543" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f342a79ce59 code=0x7ffc0000 [ 1074.571645][ T30] audit: type=1326 audit(2000000267.441:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23878 comm="syz.2.7543" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f342a79ce59 code=0x7ffc0000 [ 1074.597636][ T30] audit: type=1326 audit(2000000267.460:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23878 comm="syz.2.7543" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f342a79ce59 code=0x7ffc0000 [ 1074.672308][ T30] audit: type=1326 audit(2000000267.460:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23878 comm="syz.2.7543" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f342a79ce59 code=0x7ffc0000 [ 1074.798777][ T30] audit: type=1326 audit(2000000267.460:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23878 comm="syz.2.7543" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f342a79ce59 code=0x7ffc0000 [ 1075.019230][T23889] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.7548'. [ 1075.074804][T23889] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 1075.308094][T23897] loop1: detected capacity change from 0 to 1024 [ 1075.344567][T23897] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1075.395965][T23897] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c841e018, mo2=0000] [ 1075.402192][T23905] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7556'. [ 1075.461450][T23897] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm syz.1.7552: lblock 2 mapped to illegal pblock 2 (length 1) [ 1075.493460][T23906] loop4: detected capacity change from 0 to 1764 [ 1075.558372][T23897] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 1075.558861][T23897] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 1075.568038][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 1075.568071][ C0] EXT4-fs (loop1): initial error at time 2000000268: ext4_map_blocks:791: inode 3: block 2 [ 1075.568146][ C0] EXT4-fs (loop1): last error at time 2000000268: ext4_map_blocks:791: inode 3: block 2 [ 1075.672326][T23897] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 48: comm syz.1.7552: lblock 0 mapped to illegal pblock 48 (length 1) [ 1075.727586][T23897] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 1075.729957][T23897] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 1075.816779][T23897] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.7552: Failed to acquire dquot type 0 [ 1075.885598][T23897] loop1: lost filesystem error report for type 5 error -117 [ 1075.909268][T23897] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 1075.919123][T23897] loop1: lost filesystem error report for type 5 error -117 [ 1075.919587][T23897] EXT4-fs error (device loop1): ext4_evict_inode:267: inode #11: comm syz.1.7552: mark_inode_dirty error [ 1076.027632][T23897] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1076.027976][T23897] EXT4-fs warning (device loop1): ext4_evict_inode:269: couldn't mark inode dirty (err -117) [ 1076.107100][T23897] EXT4-fs (loop1): 1 orphan inode deleted [ 1076.122713][ T3288] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1) [ 1076.151831][T23897] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1076.206856][ T3288] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 1076.212326][ T3288] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 1076.269805][ T3288] EXT4-fs error (device loop1): ext4_release_dquot:7068: comm kworker/u8:9: Failed to release dquot type 0 [ 1076.390252][ T30] audit: type=1326 audit(2000000269.182:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23933 comm="syz.3.7570" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1076.443356][T23935] loop3: detected capacity change from 0 to 8 [ 1076.492704][T23935] squashfs image failed sanity check [ 1076.493779][ T30] audit: type=1326 audit(2000000269.182:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23933 comm="syz.3.7570" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1076.554851][T18976] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm kworker/u8:14: lblock 2 mapped to illegal pblock 2 (length 1) [ 1076.655348][T18976] EXT4-fs error (device loop1): ext4_write_dquot:7012: comm kworker/u8:14: Failed to commit dquot type 0 [ 1076.738369][ T5629] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1076.790292][ T5629] EXT4-fs error (device loop1): __ext4_get_inode_loc:4884: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 1076.836259][ T5629] loop1: lost filesystem error report for type 5 error -117 [ 1076.882514][ T5629] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 1076.940615][ T5629] loop1: lost filesystem error report for type 5 error -117 [ 1076.940966][ T5629] EXT4-fs error (device loop1): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error [ 1077.032955][ T5629] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 1077.215482][T23956] xt_l2tp: invalid flags combination: 4 [ 1077.324991][T23959] loop3: detected capacity change from 0 to 2048 [ 1077.383735][T23959] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1077.393196][T23953] loop0: detected capacity change from 0 to 4096 [ 1077.474687][T23964] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1077.597569][T23959] NILFS error (device loop3): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12 [ 1077.668354][T23953] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1077.698554][T23970] loop2: detected capacity change from 0 to 64 [ 1077.717872][T23953] ntfs3(loop0): Failed to load $Extend (-22). [ 1077.738257][T23972] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7587'. [ 1077.757063][T23953] ntfs3(loop0): Failed to initialize $Extend. [ 1077.856640][T23959] Remounting filesystem read-only [ 1077.943640][T23953] ntfs3(loop0): ino=5, "/" indx_read_ra [ 1077.954904][T23974] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 1078.138892][ T5628] ntfs3(loop0): ino=9, ntfs_sync_fs failed, -22. [ 1078.563599][T23985] loop0: detected capacity change from 0 to 2048 [ 1078.570426][T23985] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1078.608339][T23991] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1078.997206][T24004] netlink: 'syz.4.7601': attribute type 1 has an invalid length. [ 1079.226547][T24009] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1079.613112][T24026] loop2: detected capacity change from 0 to 16 [ 1079.640074][T24026] erofs (device loop2): mounted with root inode @ nid 36. [ 1079.775964][ T1731] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 1079.850802][T24032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7615'. [ 1079.869102][T24034] ip6t_srh: unknown srh invflags 7F00 [ 1079.871013][T24031] loop1: detected capacity change from 0 to 64 [ 1079.934442][T24031] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. Mounting read-only. [ 1079.971652][T24031] hfs: filesystem is marked locked, mounting read-only. [ 1080.016581][T24036] fuse: blksize only supported for fuseblk [ 1080.036516][ T1731] usb 4-1: too many configurations: 25, using maximum allowed: 8 [ 1080.089960][ T1731] usb 4-1: New USB device found, idVendor=041e, idProduct=4011, bcdDevice=af.98 [ 1080.118573][ T1731] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1080.130248][T24038] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7618'. [ 1080.216620][ T1731] usb 4-1: config 0 descriptor?? [ 1080.283294][ T1731] pwc: Creative Labs Webcam Pro Ex detected. [ 1080.305257][ T1731] pwc: Warning: more than 1 configuration available. [ 1080.474317][ T1731] pwc: Failed to set LED on/off time (-71) [ 1080.509885][ T1731] pwc: send_video_command error -71 [ 1080.542884][ T1731] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 1080.596261][ T1731] Philips webcam 4-1:0.0: probe with driver Philips webcam failed with error -71 [ 1080.663034][ T1731] usb 4-1: USB disconnect, device number 23 [ 1080.995865][T24058] netlink: 'syz.2.7630': attribute type 21 has an invalid length. [ 1081.530238][ T5743] usb 3-1: new full-speed USB device number 40 using dummy_hcd [ 1081.543268][T24067] bond2: Removing last ns target with arp_interval on [ 1081.568714][T24046] loop1: detected capacity change from 0 to 32768 [ 1081.624297][T24046] blkno = 8ed2c, nblocks = 1 [ 1081.641448][T24046] ERROR: (device loop1): dbFree: block to be freed is outside the map [ 1081.641448][T24046] [ 1081.675997][T24046] ERROR: (device loop1): remounting filesystem as read-only [ 1081.700883][T24046] ialloc: diAlloc returned -17! [ 1081.706561][ T5743] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10 [ 1081.747383][ T5743] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1081.790791][ T5743] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10 [ 1081.856809][ T5743] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1081.908895][ T5743] usb 3-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 1081.949611][ T5743] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1081.982181][T24078] netlink: 'syz.4.7638': attribute type 11 has an invalid length. [ 1081.993614][ T5743] usb 3-1: Product: syz [ 1082.008052][ T5743] usb 3-1: Manufacturer: syz [ 1082.028587][ T5743] usb 3-1: SerialNumber: syz [ 1082.074427][ T5743] usb 3-1: config 0 descriptor?? [ 1082.452875][ T5743] adutux 3-1:0.0: Could not retrieve serial number [ 1082.474707][ T5743] adutux 3-1:0.0: probe with driver adutux failed with error -5 [ 1082.544667][T24088] netlink: 'syz.1.7643': attribute type 2 has an invalid length. [ 1082.566010][T24054] loop5: detected capacity change from 0 to 32768 [ 1082.697462][T24054] JBD2: Ignoring recovery information on journal [ 1082.805870][T24054] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1082.849940][ T30] kauditd_printk_skb: 27 callbacks suppressed [ 1082.849974][ T30] audit: type=1107 audit(2000000275.209:218): pid=24095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 1082.863374][ T1731] usb 3-1: USB disconnect, device number 40 [ 1082.972425][ T5743] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 1083.158889][ T5743] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1083.168488][ T5743] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1083.193722][ T5743] usb 4-1: Product: syz [ 1083.231690][ T5743] usb 4-1: Manufacturer: syz [ 1083.242954][ T5644] ocfs2: Unmounting device (7,5) on (node local) [ 1083.304686][ T5743] usb 4-1: SerialNumber: syz [ 1083.342183][ T5743] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1083.384084][ T1731] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1083.605864][T24104] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7651'. [ 1083.621314][T24104] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7651'. [ 1083.969435][ T802] usb 4-1: USB disconnect, device number 24 [ 1084.126268][T24116] loop0: detected capacity change from 0 to 1764 [ 1084.236905][T24120] overlayfs: missing 'lowerdir' [ 1084.541934][ T1731] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 1084.560966][ T1731] ath9k_htc: Failed to initialize the device [ 1084.574948][ T802] usb 4-1: ath9k_htc: USB layer deinitialized [ 1084.836795][T24136] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1085.071842][T24146] loop4: detected capacity change from 0 to 128 [ 1085.173989][T24146] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1085.211141][T24146] ext4 filesystem being mounted at /1256/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1085.230525][T24146] EXT4-fs warning (device loop4): verify_group_input:136: Cannot add at group 54285 (only 1 groups) [ 1085.333890][ T5630] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1085.617029][T24164] netlink: 'syz.1.7676': attribute type 2 has an invalid length. [ 1085.656131][T24164] netlink: 'syz.1.7676': attribute type 1 has an invalid length. [ 1085.709006][T24164] netlink: 'syz.1.7676': attribute type 1 has an invalid length. [ 1085.975306][T24178] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7683'. [ 1086.003702][T24178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7683'. [ 1086.135320][ T802] usb 5-1: new full-speed USB device number 43 using dummy_hcd [ 1086.297000][ T802] usb 5-1: config 36 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1086.299068][ T802] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29 [ 1086.299142][ T802] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16 [ 1086.299196][ T802] usb 5-1: Manufacturer: syz [ 1086.299239][ T802] usb 5-1: SerialNumber: syz [ 1086.595238][ T802] usbhid 5-1:36.0: couldn't find an input interrupt endpoint [ 1086.612434][ T802] usb 5-1: USB disconnect, device number 43 [ 1086.959291][T24204] netlink: 'syz.1.7696': attribute type 32 has an invalid length. [ 1087.333924][T24209] loop0: detected capacity change from 0 to 2048 [ 1087.372589][T24209] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1087.456729][T24220] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1087.645020][T24209] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 3044605952 [ 1087.682233][T24209] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=15) [ 1087.783959][T24209] Remounting filesystem read-only [ 1087.807494][T24209] NILFS (loop0): error -5 truncating bmap (ino=15) [ 1087.918181][T24231] loop1: detected capacity change from 0 to 736 [ 1088.045250][ T5628] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 1088.282084][T24243] loop4: detected capacity change from 0 to 512 [ 1088.357979][T24243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1088.377794][T24243] ext4 filesystem being mounted at /1262/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1088.502674][T24243] EXT4-fs error (device loop4): ext4_xattr_block_find:1881: inode #12: comm syz.4.7715: corrupted xattr block 6: invalid header [ 1088.710520][ T5630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1088.786158][T24255] netlink: 'syz.0.7719': attribute type 10 has an invalid length. [ 1089.071676][T24255] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1089.120726][T24255] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 1089.313651][T24237] loop3: detected capacity change from 0 to 32768 [ 1089.378356][T24265] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 1089.391318][T24237] blkno = 8ed2c, nblocks = 1 [ 1089.416365][T24237] ERROR: (device loop3): dbFree: block to be freed is outside the map [ 1089.416365][T24237] [ 1089.470332][T24237] ERROR: (device loop3): remounting filesystem as read-only [ 1089.507434][T24269] loop2: detected capacity change from 0 to 256 [ 1089.533449][T24237] ialloc: diAlloc returned -17! [ 1089.549412][T24269] exfat: Deprecated parameter 'utf8' [ 1089.563401][T24271] nftables ruleset with unbound chain [ 1089.667092][T24267] loop1: detected capacity change from 0 to 4096 [ 1089.801782][T24276] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1089.899619][T24267] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 1090.020560][T24267] Remounting filesystem read-only [ 1090.262554][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 1090.403459][T24290] netlink: 'syz.1.7737': attribute type 12 has an invalid length. [ 1090.442571][T24290] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7737'. [ 1090.456840][T24293] ieee802154 phy0 wpan0: encryption failed: -22 [ 1091.602159][T24289] loop0: detected capacity change from 0 to 32768 [ 1091.679047][T24289] JBD2: Ignoring recovery information on journal [ 1091.757860][T24322] program syz.1.7752 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1091.843822][T24289] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1091.853538][T24324] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7753'. [ 1091.894189][T24324] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7753'. [ 1092.151214][T24307] loop4: detected capacity change from 0 to 32768 [ 1092.219333][T24307] blkno = 8ed2c, nblocks = 1 [ 1092.235409][T24307] ERROR: (device loop4): dbFree: block to be freed is outside the map [ 1092.235409][T24307] [ 1092.264148][T24303] loop2: detected capacity change from 0 to 32768 [ 1092.276636][T24307] ERROR: (device loop4): remounting filesystem as read-only [ 1092.287752][T24307] ialloc: diAlloc returned -17! [ 1092.297020][ T5628] ocfs2: Unmounting device (7,0) on (node local) [ 1092.371549][T24303] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1092.418971][ T5770] usb 2-1: new high-speed USB device number 27 using dummy_hcd [ 1092.608752][T24303] XFS (loop2): Ending clean mount [ 1092.622314][ T5770] usb 2-1: Using ep0 maxpacket: 8 [ 1092.661809][ T5770] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 1092.702956][ T5770] usb 2-1: config 0 has no interface number 0 [ 1092.732487][ T5770] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 1092.768154][ T5770] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1092.804840][T24348] loop3: detected capacity change from 0 to 512 [ 1092.815628][ T5770] usb 2-1: Product: syz [ 1092.834890][ T5770] usb 2-1: Manufacturer: syz [ 1092.851138][ T5770] usb 2-1: SerialNumber: syz [ 1092.894511][T24348] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1092.924065][ T5770] usb 2-1: config 0 descriptor?? [ 1092.969121][T24348] ext4 filesystem being mounted at /1290/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1093.063846][ T5632] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1093.075281][T24352] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1314: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 1093.230009][ T5770] uvcvideo 2-1:0.31: Found UVC 0.04 device syz (046d:08c3) [ 1093.236815][ T5631] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1093.266195][ T5770] uvcvideo 2-1:0.31: Failed to initialize entity for entity 32774 [ 1093.338676][ T5770] uvcvideo 2-1:0.31: Failed to register entities (-22). [ 1093.478705][ T5770] usb 2-1: USB disconnect, device number 27 [ 1093.479417][T24358] loop5: detected capacity change from 0 to 4096 [ 1093.543094][T24358] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1093.657762][T24358] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1093.723515][T24358] ntfs3(loop5): ino=19, mi_enum_attr [ 1093.837679][T24358] ntfs3(loop5): failed to convert "c46c" to macgaelic [ 1093.864703][T24358] ntfs3(loop5): ino=20, mi_enum_attr [ 1094.030674][T24368] netlink: 1004 bytes leftover after parsing attributes in process `syz.3.7782'. [ 1094.084054][T24372] ieee802154 phy0 wpan0: encryption failed: -22 [ 1094.343439][T24378] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7773'. [ 1094.383084][T24371] m>e5nè‹Ò: entered promiscuous mode [ 1094.782126][T24390] loop4: detected capacity change from 0 to 512 [ 1094.815829][T24390] EXT4-fs: Ignoring removed bh option [ 1094.836633][T24390] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1094.904202][T24390] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1095.071543][T24390] EXT4-fs (loop4): 1 truncate cleaned up [ 1095.115917][T24390] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1095.475504][ T5630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1095.507242][T24410] netlink: 1004 bytes leftover after parsing attributes in process `syz.1.7788'. [ 1095.558041][T24408] loop5: detected capacity change from 0 to 4096 [ 1095.604072][T24408] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1095.786040][T24408] ntfs3(loop5): ino=19, mi_enum_attr [ 1095.808545][T24408] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1095.983961][T24408] ntfs3(loop5): failed to convert "c46c" to koi8-r [ 1096.031821][T24422] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1096.058388][T24408] ntfs3(loop5): ino=20, mi_enum_attr [ 1096.638232][T24440] netlink: 'syz.1.7803': attribute type 10 has an invalid length. [ 1096.705277][T24442] loop2: detected capacity change from 0 to 256 [ 1096.773518][T24442] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011ded, chksum : 0xa21f83b3, utbl_chksum : 0xe619d30d) [ 1096.797375][T24440] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1096.873905][T24440] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 1097.009988][T24448] fjî: entered promiscuous mode [ 1097.553068][T24459] loop1: detected capacity change from 0 to 4096 [ 1097.581370][T24459] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1097.669289][T24459] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1097.682694][T24470] netlink: 276 bytes leftover after parsing attributes in process `syz.2.7817'. [ 1097.704605][T24459] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1097.950654][T24474] CIFS mount error: No usable UNC path provided in device string! [ 1097.950654][T24474] [ 1097.980170][T18968] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 1098.003790][ T5629] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1098.011193][T24474] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1098.022507][ T5629] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1098.039203][ T5629] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1098.067684][T18973] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 1098.303468][T24476] loop2: detected capacity change from 0 to 4096 [ 1098.344433][T24476] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1098.510040][T24476] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1098.566988][T24476] ntfs3(loop2): ino=19, mi_enum_attr [ 1098.615375][T24490] loop3: detected capacity change from 0 to 512 [ 1098.735931][T24490] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1098.794497][T24476] ntfs3(loop2): failed to convert "c46c" to macgaelic [ 1098.830536][T24490] ext4 filesystem being mounted at /1305/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1098.863594][T24476] ntfs3(loop2): ino=20, mi_enum_attr [ 1098.872431][T24490] EXT4-fs error (device loop3): ext4_xattr_block_find:1881: inode #12: comm syz.3.7826: corrupted xattr block 6: invalid header [ 1098.910719][T24499] loop4: detected capacity change from 0 to 256 [ 1098.972064][T24499] vfat: Deprecated parameter 'posix' [ 1098.990681][T24499] FAT-fs: "posix" option is obsolete, not supported now [ 1099.164023][ T5631] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1099.414755][T24505] loop1: detected capacity change from 0 to 4096 [ 1099.515542][T24505] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1099.559722][T24505] ntfs3(loop1): Failed to load $Extend (-22). [ 1099.592490][T24505] ntfs3(loop1): Failed to initialize $Extend. [ 1099.747861][T24515] loop3: detected capacity change from 0 to 4096 [ 1099.794080][T24515] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1099.908441][T24515] ntfs3(loop3): ino=19, mi_enum_attr [ 1099.942154][T24515] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1100.085613][T24515] ntfs3(loop3): failed to convert "c46c" to koi8-r [ 1100.125657][T24515] ntfs3(loop3): ino=20, mi_enum_attr [ 1100.555559][T24539] ptrace attach of "ci-upstream-kasan-badwrites-root/syz-executor exec"[5631] was attempted by "ci-upstream-kasan-badwrites-root/syz-executor exec"[24539] [ 1100.578559][T24537] loop1: detected capacity change from 0 to 512 [ 1100.671316][T24537] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1100.701484][T24537] ext4 filesystem being mounted at /1351/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1100.844928][T24533] loop0: detected capacity change from 0 to 4096 [ 1100.882940][T24537] EXT4-fs error (device loop1): ext4_xattr_block_find:1881: inode #12: comm syz.1.7847: corrupted xattr block 6: invalid header [ 1100.892429][T24533] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1101.073529][T24533] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1101.113417][T24533] ntfs3(loop0): ino=19, mi_enum_attr [ 1101.306465][T24533] ntfs3(loop0): failed to convert "c46c" to macgaelic [ 1101.316384][ T5629] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1101.362004][T24533] ntfs3(loop0): ino=20, mi_enum_attr [ 1101.575158][T24562] __vm_enough_memory: pid: 24562, comm: syz.1.7855, bytes: 4503599627366400 not enough memory for the allocation [ 1102.036729][ T30] audit: type=1326 audit(2000000293.185:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24572 comm="syz.3.7865" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1102.172483][ T30] audit: type=1326 audit(2000000293.185:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24572 comm="syz.3.7865" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1102.246578][T24578] No source specified [ 1102.299019][ T30] audit: type=1326 audit(2000000293.232:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24572 comm="syz.3.7865" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1102.421442][ T30] audit: type=1326 audit(2000000293.232:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24572 comm="syz.3.7865" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1102.518591][ T30] audit: type=1326 audit(2000000293.232:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24572 comm="syz.3.7865" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1102.818922][T24591] loop0: detected capacity change from 0 to 4096 [ 1102.833776][T24597] loop2: detected capacity change from 0 to 16 [ 1102.872183][T24591] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1102.968670][T24597] erofs (device loop2): mounted with root inode @ nid 36. [ 1103.012306][T24591] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 1103.044312][T24591] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 1103.062361][T24595] loop3: detected capacity change from 0 to 4096 [ 1103.094358][ T4942] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 9000 [ 1103.157600][T24595] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1103.269619][T24601] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1103.311904][T24595] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1103.322909][T24601] ntfs3(loop4): Failed to load $Extend (-22). [ 1103.340820][ T735] ntfs3(loop0): ino=3, ntfs3_write_inode failed, -22. [ 1103.357170][T24601] ntfs3(loop4): Failed to initialize $Extend. [ 1103.359460][ T5628] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 1103.371616][T24595] ntfs3(loop3): ino=19, mi_enum_attr [ 1103.377918][T24597] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 9000 [ 1103.393186][ T5628] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1103.412860][T24597] erofs (device loop2): read error -117 @ 2 of nid 89 [ 1103.422874][ T5628] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 1103.441368][ T1120] ntfs3(loop0): ino=3, ntfs3_write_inode failed, -22. [ 1103.455069][ T30] audit: type=1800 audit(2000000294.505:224): pid=24597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7876" name="file2" dev="loop2" ino=89 res=0 errno=0 [ 1103.558980][T24595] ntfs3(loop3): failed to convert "c46c" to macgaelic [ 1103.587620][T24595] ntfs3(loop3): ino=20, mi_enum_attr [ 1104.628363][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1104.659525][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1104.766439][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1104.838214][T24633] smbdirect: ib_dev[syz0]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000 [ 1104.857755][T24633] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6 [ 1104.920998][T24633] smbdirect: ib_dev[syz0]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008 [ 1105.049855][T24644] 9p: Unknown access argument o: -22 [ 1105.077975][T24633] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1105.270292][T24633] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 1105.414945][T24648] set_capacity_and_notify: 1 callbacks suppressed [ 1105.415482][T24648] loop4: detected capacity change from 0 to 4096 [ 1105.442405][T24648] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1105.498860][T24652] loop0: detected capacity change from 0 to 4096 [ 1105.556652][T24652] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1105.607346][T24648] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1105.659438][T24648] ntfs3(loop4): ino=19, mi_enum_attr [ 1105.726295][T24652] ntfs3(loop0): ino=19, mi_enum_attr [ 1105.753091][T24652] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1105.821996][T24648] ntfs3(loop4): failed to convert "c46c" to macgaelic [ 1105.836632][T24660] loop3: detected capacity change from 0 to 1024 [ 1105.856873][T24648] ntfs3(loop4): ino=20, mi_enum_attr [ 1105.968275][T24652] ntfs3(loop0): failed to convert "c46c" to koi8-r [ 1106.002716][T24652] ntfs3(loop0): ino=20, mi_enum_attr [ 1106.013921][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.014134][T24660] hfsplus: catalog record size mismatch (type 1, got 62, expected 88) [ 1106.083449][T24664] loop1: detected capacity change from 0 to 256 [ 1106.101641][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.121230][T24664] vfat: Deprecated parameter 'posix' [ 1106.143616][T24664] FAT-fs: "posix" option is obsolete, not supported now [ 1106.174834][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.292210][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.358592][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.396867][T24633] wlan1 speed is unknown, defaulting to 1000 [ 1106.580643][T24673] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1106.611549][T24671] loop0: detected capacity change from 0 to 1024 [ 1106.897360][T24679] loop5: detected capacity change from 0 to 512 [ 1107.005641][T24679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1107.115634][T24679] ext4 filesystem being mounted at /1297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1107.253320][ T5762] usb 3-1: new full-speed USB device number 41 using dummy_hcd [ 1107.425407][ T5644] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1107.445919][ T5762] usb 3-1: config 8 has an invalid interface number: 177 but max is 0 [ 1107.497803][ T5762] usb 3-1: config 8 has no interface number 0 [ 1107.523133][ T5762] usb 3-1: config 8 interface 177 altsetting 9 endpoint 0x9 has invalid maxpacket 1023, setting to 64 [ 1107.575169][ T5762] usb 3-1: config 8 interface 177 has no altsetting 0 [ 1107.605236][ T5762] usb 3-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1 [ 1107.643768][ T5762] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1107.677305][ T24] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 1107.691873][T24702] loop1: detected capacity change from 0 to 8 [ 1107.713953][T24686] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1107.790272][T24702] unable to read xattr id index table [ 1107.890991][ T24] usb 1-1: Using ep0 maxpacket: 8 [ 1107.911536][ T24] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1107.958656][ T24] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 1107.998518][ T5762] usb 3-1: string descriptor 0 read error: -71 [ 1108.008203][ T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 1108.034917][ C1] ir_toy 3-1:8.177: out urb status: -71 [ 1108.072141][ T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1108.089370][T24707] loop5: detected capacity change from 0 to 1764 [ 1108.093866][ T24] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 1108.141326][ T24] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 1108.162340][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1108.170819][ T5770] usb 2-1: new high-speed USB device number 28 using dummy_hcd [ 1108.187081][ T24] usb 1-1: Product: syz [ 1108.199590][ T24] usb 1-1: Manufacturer: syz [ 1108.199633][T24709] loop3: detected capacity change from 0 to 4096 [ 1108.216564][ T24] usb 1-1: SerialNumber: syz [ 1108.238104][ T24] usb 1-1: config 0 descriptor?? [ 1108.274282][ T24] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input67 [ 1108.350384][ T5770] usb 2-1: Using ep0 maxpacket: 32 [ 1108.359131][ T5770] usb 2-1: config 0 has an invalid interface number: 130 but max is 0 [ 1108.378595][ T5770] usb 2-1: config 0 has no interface number 0 [ 1108.402555][ T5770] usb 2-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30 [ 1108.440611][ T5770] usb 2-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167 [ 1108.461364][ T5770] usb 2-1: config 0 interface 130 has no altsetting 0 [ 1108.514640][ T5770] usb 2-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01 [ 1108.541723][ T5770] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1108.595030][ T5770] usb 2-1: config 0 descriptor?? [ 1108.633112][ T5762] ir_toy 3-1:8.177: could not write reset command: -110 [ 1108.674596][ T5762] ir_toy 3-1:8.177: probe with driver ir_toy failed with error -110 [ 1108.718499][ T1731] usb 1-1: USB disconnect, device number 37 [ 1108.769307][ T5762] usb 3-1: USB disconnect, device number 41 [ 1108.848144][ T5770] usb 2-1: string descriptor 0 read error: -71 [ 1108.914699][ T5770] usb 2-1: USB disconnect, device number 28 [ 1109.010276][T24721] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7934'. [ 1109.066925][T24721] netlink: 224 bytes leftover after parsing attributes in process `syz.3.7934'. [ 1109.463847][T24732] netlink: 132 bytes leftover after parsing attributes in process `syz.5.7939'. [ 1109.570936][T24735] loop4: detected capacity change from 0 to 2048 [ 1109.607663][T24735] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=301129, location=301129 [ 1109.659535][T24739] EXT4-fs error (device loop0): ext4_validate_block_bitmap:431: comm syz.0.7942: bg 0: block 4: invalid block bitmap [ 1109.722969][T24735] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1109.806222][T24739] loop0: lost filesystem error report for type 5 error -117 [ 1109.808352][T24739] EXT4-fs (loop0): Remounting filesystem read-only [ 1109.815774][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 1109.815809][ C0] EXT4-fs (loop0): initial error at time 2000000300: ext4_validate_block_bitmap:431 [ 1109.815855][ C0] EXT4-fs (loop0): last error at time 2000000300: ext4_validate_block_bitmap:431 [ 1109.882591][T24739] EXT4-fs (loop0): 1 truncate cleaned up [ 1109.926401][T24739] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1110.001549][T24747] xt_hashlimit: Unknown mode mask C4, kernel too old? [ 1110.152424][T24751] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1110.264060][T24751] exFAT-fs (loop1): start_clu is invalid cluster(0xffffffff) [ 1110.299797][ T5628] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1110.516286][T24753] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 1110.718515][T24765] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7955'. [ 1110.885568][T24761] set_capacity_and_notify: 3 callbacks suppressed [ 1110.885597][T24761] loop0: detected capacity change from 0 to 4096 [ 1111.030755][T24761] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1111.192878][T24761] ntfs3(loop0): ino=1a, mi_enum_attr [ 1111.214443][T24761] ntfs3(loop0): ino=1a, mi_enum_attr [ 1111.237478][T24761] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 1111.392151][ T30] audit: type=1800 audit(2000000301.935:225): pid=24761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7953" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 1111.433752][T24760] ntfs3(loop0): ino=1e, "file1" attr_set_size_ex [ 1111.679292][T24787] loop2: detected capacity change from 0 to 1024 [ 1111.731578][T24791] siw: device registration error -23 [ 1112.058281][T24799] loop4: detected capacity change from 0 to 8 [ 1112.092522][T24799] SQUASHFS error: Unable to read inode 0xa7 [ 1112.106166][T24793] loop0: detected capacity change from 0 to 4096 [ 1112.177752][T24793] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1112.203195][T24793] ntfs3(loop0): Failed to load $Extend (-22). [ 1112.224113][T24793] ntfs3(loop0): Failed to initialize $Extend. [ 1112.273214][ T5770] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 1112.467064][ T5770] usb 4-1: Using ep0 maxpacket: 32 [ 1112.497299][T24811] loop5: detected capacity change from 0 to 16 [ 1112.513913][ T5770] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 1112.534592][T24811] erofs (device loop5): mounted with root inode @ nid 36. [ 1112.547078][ T5770] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1112.579224][ T5770] usb 4-1: Product: syz [ 1112.598942][ T5770] usb 4-1: Manufacturer: syz [ 1112.620219][ T5770] usb 4-1: SerialNumber: syz [ 1112.649000][ T5770] usb 4-1: config 0 descriptor?? [ 1112.702610][T11489] usb 3-1: new high-speed USB device number 42 using dummy_hcd [ 1112.711179][ T5770] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 1112.882148][T11489] usb 3-1: Using ep0 maxpacket: 16 [ 1112.921336][T11489] usb 3-1: config 249 has an invalid interface number: 183 but max is 1 [ 1112.943005][T11489] usb 3-1: config 249 has an invalid interface number: 125 but max is 1 [ 1112.963878][T11489] usb 3-1: config 249 has no interface number 0 [ 1112.983088][T11489] usb 3-1: config 249 has no interface number 1 [ 1113.008199][T11489] usb 3-1: config 249 interface 183 has no altsetting 0 [ 1113.039175][T11489] usb 3-1: config 249 interface 125 has no altsetting 0 [ 1113.068388][T11489] usb 3-1: New USB device found, idVendor=07d1, idProduct=3c17, bcdDevice=81.c9 [ 1113.096805][T11489] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1113.111814][T24825] siw: device registration error -23 [ 1113.127655][T11489] usb 3-1: Product: syz [ 1113.143348][T11489] usb 3-1: Manufacturer: syz [ 1113.150109][ T5770] gspca_topro: reg_w err -71 [ 1113.163317][T11489] usb 3-1: SerialNumber: syz [ 1113.184196][T24827] loop5: detected capacity change from 0 to 1024 [ 1113.193370][T11489] usb 3-1: Interface #183 referenced by multiple IADs [ 1113.203230][ T5770] gspca_topro: Sensor soi763a [ 1113.239690][ T5770] usb 4-1: USB disconnect, device number 25 [ 1113.540752][T11489] usb 3-1: USB disconnect, device number 42 [ 1113.838300][ T30] audit: type=1326 audit(2000000304.218:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.4.7993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1113.914605][ T30] audit: type=1326 audit(2000000304.218:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.4.7993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1113.918859][ T5770] usb 6-1: new high-speed USB device number 36 using dummy_hcd [ 1113.979465][ T30] audit: type=1326 audit(2000000304.237:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.4.7993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1114.069803][ T30] audit: type=1326 audit(2000000304.237:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.4.7993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1114.174082][ T30] audit: type=1326 audit(2000000304.237:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.4.7993" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1114.195780][ T5770] usb 6-1: Using ep0 maxpacket: 8 [ 1114.267782][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1114.317558][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1114.366076][ T5770] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1114.409781][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1114.457667][ T5770] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1114.491270][ T5770] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1114.502402][T24858] siw: device registration error -23 [ 1114.513061][ T5770] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1114.543116][ T5770] usb 6-1: config 0 descriptor?? [ 1114.576711][T24838] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1114.712866][T24861] netlink: 9 bytes leftover after parsing attributes in process `syz.1.8001'. [ 1114.820973][T24861] netlink: 9 bytes leftover after parsing attributes in process `syz.1.8001'. [ 1115.196028][T24852] loop3: detected capacity change from 0 to 32768 [ 1115.244063][T24852] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.8011 (24852) [ 1115.316436][T24852] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1115.359471][T24844] loop0: detected capacity change from 0 to 32768 [ 1115.371149][T24852] BTRFS info (device loop3): using sha256 checksum algorithm [ 1115.428697][T24844] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1115.610601][ T1731] usb 6-1: USB disconnect, device number 36 [ 1115.621692][ T4942] Bluetooth: hci6: Opcode 0x0c03 failed: -19 [ 1115.635944][T24852] BTRFS info (device loop3): enabling ssd optimizations [ 1115.672294][T24852] BTRFS info (device loop3): turning on async discard [ 1115.687826][T24852] BTRFS info (device loop3): enabling free space tree [ 1115.771662][T24844] XFS (loop0): Ending clean mount [ 1115.979527][ T5631] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1115.990029][T24904] netlink: 'syz.2.8012': attribute type 11 has an invalid length. [ 1116.019597][T24906] netlink: 10 bytes leftover after parsing attributes in process `syz.1.8013'. [ 1116.033505][ T5628] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1116.411456][T24913] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8017'. [ 1116.675004][ T24] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 1116.882335][ T24] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 1116.932927][T24927] loop0: detected capacity change from 0 to 64 [ 1116.935147][ T24] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 1117.012875][ T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1117.045898][ T24] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0 [ 1117.098976][ T24] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 1117.135213][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1117.173993][ T24] usb 4-1: Product: syz [ 1117.194877][ T24] usb 4-1: Manufacturer: syz [ 1117.216116][ T24] usb 4-1: SerialNumber: syz [ 1117.242057][T24933] loop2: detected capacity change from 0 to 256 [ 1117.300992][ T24] usb 4-1: config 0 descriptor?? [ 1117.317032][T24933] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1117.344317][T24914] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1117.382733][ T24] usb 4-1: ucan: probing device on interface #0 [ 1117.412630][ T24] usb 4-1: ucan: invalid in_ep MaxPacketSize [ 1117.441887][ T24] usb 4-1: ucan: probe failed; try to update the device firmware [ 1117.468105][T24933] exFAT-fs (loop2): start_clu is invalid cluster(0xffffffff) [ 1117.679472][ T5762] usb 2-1: new high-speed USB device number 29 using dummy_hcd [ 1117.932074][ T5762] usb 2-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64 [ 1117.981892][T24946] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8031'. [ 1117.994209][ T5762] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1118.023124][ T5762] usb 2-1: Product: syz [ 1118.045289][ T5762] usb 2-1: Manufacturer: syz [ 1118.067694][ T5762] usb 2-1: SerialNumber: syz [ 1118.131052][ T5762] usb 2-1: config 0 descriptor?? [ 1118.159741][ T5762] hub 2-1:0.0: bad descriptor, ignoring hub [ 1118.179066][ T5762] hub 2-1:0.0: probe with driver hub failed with error -5 [ 1118.213751][ T5762] f81232 2-1:0.0: f81534a converter detected [ 1118.388712][T24953] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8034'. [ 1118.417119][ T5762] usb 2-1: f81534a converter now attached to ttyUSB0 [ 1118.418752][T24953] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8034'. [ 1118.470161][T24953] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8034'. [ 1118.479454][ T24] usb 1-1: new high-speed USB device number 38 using dummy_hcd [ 1118.496418][T24951] loop2: detected capacity change from 0 to 4096 [ 1118.560144][T24951] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1118.589597][T24939] loop5: detected capacity change from 0 to 32768 [ 1118.621282][T24939] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1118.663562][ T24] usb 1-1: Using ep0 maxpacket: 16 [ 1118.705317][ T24] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 1118.764607][ T24] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 1118.817797][ T5632] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1118.843498][ T24] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 1118.873254][T24939] XFS (loop5): Ending clean mount [ 1118.920798][ T24] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1118.932490][ T5762] usb 2-1: USB disconnect, device number 29 [ 1118.959086][ T24] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 1118.961466][ T5644] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1118.990246][ T24] usb 1-1: config 1 interface 0 has no altsetting 0 [ 1118.999965][ T5762] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0 [ 1119.015187][ T24] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 1119.037204][ T5762] f81232 2-1:0.0: device disconnected [ 1119.045842][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1119.136140][ T24] ums-sddr09 1-1:1.0: USB Mass Storage device detected [ 1119.409127][ T24] scsi host1: usb-storage 1-1:1.0 [ 1119.633082][ T5359] usb 1-1: USB disconnect, device number 38 [ 1119.710703][ T5762] usb 4-1: USB disconnect, device number 26 [ 1119.961004][T24990] loop4: detected capacity change from 0 to 256 [ 1120.389112][T25003] dummy0: entered promiscuous mode [ 1120.414017][T25003] dummy0: entered allmulticast mode [ 1121.147768][ T5359] IPVS: starting estimator thread 0... [ 1121.280932][T25029] IPVS: using max 24 ests per chain, 57600 per kthread [ 1121.459082][T25037] netlink: 'syz.1.8067': attribute type 1 has an invalid length. [ 1121.494417][T25037] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8067'. [ 1121.539573][ T5359] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 1121.730418][ T5359] usb 5-1: Using ep0 maxpacket: 32 [ 1121.760311][ T5359] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 1121.799541][ T5359] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1121.830986][ T5359] usb 5-1: Product: syz [ 1121.847474][ T5359] usb 5-1: Manufacturer: syz [ 1121.865882][ T5359] usb 5-1: SerialNumber: syz [ 1121.898135][ T5359] usb 5-1: config 0 descriptor?? [ 1121.933100][ T5359] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 1122.085505][T25054] loop1: detected capacity change from 0 to 2048 [ 1122.152443][T25058] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1122.186876][T25054] NILFS error (device loop1): nilfs_check_folio: bad entry in directory #2: unaligned directory entry - offset=104, inode=18446744073709551376, rec_len=255, name_len=5 [ 1122.283431][T25054] Remounting filesystem read-only [ 1122.418647][ T5359] gspca_topro: reg_w err -71 [ 1122.478533][ T5359] gspca_topro: Sensor soi763a [ 1122.534879][ T5359] usb 5-1: USB disconnect, device number 44 [ 1122.897838][T25075] loop0: detected capacity change from 0 to 256 [ 1122.978441][T25075] FAT-fs (loop0): Directory bread(block 64) failed [ 1123.008108][T25075] FAT-fs (loop0): Directory bread(block 65) failed [ 1123.037530][T25075] FAT-fs (loop0): Directory bread(block 66) failed [ 1123.058063][T25075] FAT-fs (loop0): Directory bread(block 67) failed [ 1123.079263][T25075] FAT-fs (loop0): Directory bread(block 68) failed [ 1123.103927][T25075] FAT-fs (loop0): Directory bread(block 69) failed [ 1123.125774][T25075] FAT-fs (loop0): Directory bread(block 70) failed [ 1123.166358][T25075] FAT-fs (loop0): Directory bread(block 71) failed [ 1123.183184][T25075] FAT-fs (loop0): Directory bread(block 72) failed [ 1123.234328][T25075] FAT-fs (loop0): Directory bread(block 73) failed [ 1123.248599][T25079] loop3: detected capacity change from 0 to 64 [ 1123.252293][T25046] loop5: detected capacity change from 0 to 32768 [ 1123.303668][T25046] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8071 (25046) [ 1123.395387][T25046] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1123.444935][T25046] BTRFS info (device loop5): using sha256 checksum algorithm [ 1123.691745][T25046] BTRFS info (device loop5): enabling ssd optimizations [ 1123.742536][ T30] audit: type=1800 audit(2000000313.483:231): pid=25075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.8085" name="bus" dev="loop0" ino=1048653 res=0 errno=0 [ 1123.778320][T25046] BTRFS info (device loop5): turning on async discard [ 1123.806060][T25046] BTRFS info (device loop5): enabling free space tree [ 1123.997781][T25046] BTRFS warning (device loop5): get dev_stats failed, device not found [ 1124.190876][ T5644] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1124.284927][T25111] loop3: detected capacity change from 0 to 4096 [ 1124.359217][T25111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1124.498474][T25125] netlink: 'syz.1.8104': attribute type 11 has an invalid length. [ 1124.506671][T25125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8104'. [ 1124.786203][ T5631] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1125.073209][T25138] CIFS mount error: No usable UNC path provided in device string! [ 1125.073209][T25138] [ 1125.115733][T25138] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1125.213978][T25145] usb usb5: usbfs: process 25145 (syz.1.8111) did not claim interface 0 before use [ 1125.587275][T25157] openvswitch: netlink: IPv6 tunnel dst address is zero [ 1126.424336][T25175] loop1: detected capacity change from 0 to 1764 [ 1126.610520][T25183] loop3: detected capacity change from 0 to 1024 [ 1126.640767][T25183] EXT4-fs: Ignoring removed bh option [ 1126.692112][T25183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1126.836676][ T5631] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1127.241180][T25194] loop2: detected capacity change from 0 to 4096 [ 1127.282730][T25194] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1127.366734][T25194] ntfs3(loop2): ino=19, mi_enum_attr [ 1127.387629][T25194] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1127.552235][T25209] loop5: detected capacity change from 0 to 512 [ 1127.587048][T25209] EXT4-fs: inline encryption not supported [ 1127.618230][T25194] ntfs3(loop2): failed to convert "c46c" to koi8-r [ 1127.635969][T25209] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1127.653296][T25194] ntfs3(loop2): ino=20, mi_enum_attr [ 1127.702647][T25209] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 1127.784768][T25209] Quota error (device loop5): do_insert_tree: Free block already used in tree: block 1 [ 1127.804590][T25209] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota [ 1127.814784][T25209] EXT4-fs error (device loop5): ext4_acquire_dquot:7032: comm syz.5.8140: Failed to acquire dquot type 1 [ 1127.826570][T25209] loop5: lost filesystem error report for type 5 error -5 [ 1127.830975][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 1127.838498][T25209] EXT4-fs (loop5): Remounting filesystem read-only [ 1127.844579][ C0] EXT4-fs (loop5): initial error at time 2000000317: ext4_acquire_dquot:7032 [ 1127.844624][ C0] EXT4-fs (loop5): last error at time 2000000317: ext4_acquire_dquot:7032 [ 1127.949090][T25209] EXT4-fs (loop5): 1 truncate cleaned up [ 1127.961268][T25209] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1128.177582][T25223] loop1: detected capacity change from 0 to 4096 [ 1128.207026][ T5644] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1128.435214][T25223] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1128.540265][T25223] ntfs3(loop1): ino=9, ntfs_sync_fs failed, -22. [ 1128.554007][T25228] --map-set only usable from mangle table [ 1129.267898][T25251] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1129.307460][T25245] bond3: up delay (2) is not a multiple of miimon (80), value rounded to 0 ms [ 1129.353807][T25245] bond3: entered promiscuous mode [ 1129.382825][T25245] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1129.533374][T25261] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8164'. [ 1129.889126][T25270] netlink: 59 bytes leftover after parsing attributes in process `syz.0.8168'. [ 1129.930524][T25270] netlink: 59 bytes leftover after parsing attributes in process `syz.0.8168'. [ 1130.015706][T25272] loop5: detected capacity change from 0 to 1024 [ 1130.090841][T25276] CIFS mount error: No usable UNC path provided in device string! [ 1130.090841][T25276] [ 1130.130938][T25272] hfsplus: cannot replace xattr [ 1130.142843][T25276] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1130.513868][T25287] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1130.925691][T25259] loop4: detected capacity change from 0 to 32768 [ 1131.008855][T25259] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1131.051763][T25308] loop5: detected capacity change from 0 to 256 [ 1131.062624][T25308] exfat: Deprecated parameter 'utf8' [ 1131.145860][T25308] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe1018169, utbl_chksum : 0xe619d30d) [ 1131.338319][T25259] XFS (loop4): Ending clean mount [ 1131.658980][ T5630] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1131.993369][T25332] loop1: detected capacity change from 0 to 4096 [ 1132.066020][T25338] netlink: 'syz.3.8198': attribute type 49 has an invalid length. [ 1132.087940][T25332] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1132.182330][T25338] bond0: (slave bond_slave_0): Releasing backup interface [ 1132.217243][T25332] ntfs3(loop1): ino=1a, mi_enum_attr [ 1132.233495][T25340] loop2: detected capacity change from 0 to 512 [ 1132.237643][T25332] ntfs3(loop1): ino=1a, mi_enum_attr [ 1132.255837][T25332] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1132.300809][T25340] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1132.346911][T25340] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1132.381810][T25340] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 1132.443944][T25329] ntfs3(loop1): ino=1e, "file1" attr_set_size_ex [ 1132.444475][ T30] audit: type=1800 audit(2000000321.634:232): pid=25332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.8193" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 1132.469467][T25338] bond_slave_0: entered promiscuous mode [ 1132.482389][T25338] bond_slave_0: entered allmulticast mode [ 1132.490229][ T5770] usb 6-1: new high-speed USB device number 37 using dummy_hcd [ 1132.532053][T25340] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4221: comm syz.2.8199: Allocating blocks 41-42 which overlap fs metadata [ 1132.629153][T25340] loop2: lost filesystem error report for type 5 error -117 [ 1132.639886][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 1132.641106][T25340] EXT4-fs (loop2): Remounting filesystem read-only [ 1132.647294][ C1] EXT4-fs (loop2): initial error at time 2000000321: ext4_mb_mark_diskspace_used:4221 [ 1132.669829][ C1] EXT4-fs (loop2): last error at time 2000000321: ext4_mb_mark_diskspace_used:4221 [ 1132.717277][ T5770] usb 6-1: Using ep0 maxpacket: 16 [ 1132.736142][T25340] Quota error (device loop2): write_blk: dquota write failed [ 1132.742221][ T5770] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1132.743861][T25340] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5 [ 1132.790661][ T5770] usb 6-1: config 255 has an invalid interface number: 45 but max is 0 [ 1132.791430][T25340] Quota error (device loop2): write_blk: dquota write failed [ 1132.831472][ T5770] usb 6-1: config 255 has no interface number 0 [ 1132.846274][T25340] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 1132.867120][ T5770] usb 6-1: config 255 interface 45 has no altsetting 0 [ 1132.875873][T25340] EXT4-fs (loop2): 1 truncate cleaned up [ 1132.902543][ T5770] usb 6-1: New USB device found, idVendor=07c4, idProduct=a004, bcdDevice= b.6c [ 1132.929467][T25340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1132.948991][ T5770] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1132.976786][ T5770] usb 6-1: Product: syz [ 1132.993165][ T5770] usb 6-1: Manufacturer: syz [ 1133.012456][ T5770] usb 6-1: SerialNumber: syz [ 1133.301813][ T5770] ums-datafab 6-1:255.45: USB Mass Storage device detected [ 1133.429121][ T5770] usb 6-1: USB disconnect, device number 37 [ 1133.463809][ T5632] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1133.802410][T25374] xt_l2tp: v2 doesn't support IP mode [ 1134.073260][T25381] loop0: detected capacity change from 0 to 128 [ 1134.118695][T25381] FAT-fs (loop0): Directory bread(block 414) failed [ 1134.156745][T25381] FAT-fs (loop0): Directory bread(block 415) failed [ 1134.199553][T25381] FAT-fs (loop0): Directory bread(block 416) failed [ 1134.233299][T25381] FAT-fs (loop0): Directory bread(block 417) failed [ 1134.267212][T25381] FAT-fs (loop0): Directory bread(block 418) failed [ 1134.305986][T25381] FAT-fs (loop0): Directory bread(block 419) failed [ 1134.342307][T25381] FAT-fs (loop0): Directory bread(block 420) failed [ 1134.365607][T25381] FAT-fs (loop0): Directory bread(block 421) failed [ 1134.495144][T25357] loop4: detected capacity change from 0 to 32768 [ 1134.540590][T25357] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8204 (25357) [ 1134.621156][T25357] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1134.692982][T25357] BTRFS info (device loop4): using sha256 checksum algorithm [ 1134.892962][T25413] loop3: detected capacity change from 0 to 256 [ 1134.932197][T25357] BTRFS info (device loop4): enabling ssd optimizations [ 1134.947958][T25357] BTRFS info (device loop4): turning on async discard [ 1134.965839][T25357] BTRFS info (device loop4): enabling free space tree [ 1134.999417][T25419] ieee802154 phy0 wpan0: encryption failed: -22 [ 1135.135955][T25413] FAT-fs (loop3): Directory bread(block 64) failed [ 1135.179031][T25413] FAT-fs (loop3): Directory bread(block 65) failed [ 1135.222200][T25413] FAT-fs (loop3): Directory bread(block 66) failed [ 1135.254140][T25413] FAT-fs (loop3): Directory bread(block 67) failed [ 1135.299623][T25413] FAT-fs (loop3): Directory bread(block 68) failed [ 1135.332157][T25413] FAT-fs (loop3): Directory bread(block 69) failed [ 1135.370338][T25413] FAT-fs (loop3): Directory bread(block 70) failed [ 1135.409934][T25413] FAT-fs (loop3): Directory bread(block 71) failed [ 1135.439189][T25428] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1135.452715][T25413] FAT-fs (loop3): Directory bread(block 72) failed [ 1135.474846][T25369] loop1: detected capacity change from 0 to 32768 [ 1135.479855][T25413] FAT-fs (loop3): Directory bread(block 73) failed [ 1135.548483][T25369] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1135.573597][ T5630] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1135.914632][T25369] XFS (loop1): Ending clean mount [ 1136.656317][ T5629] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1136.715359][ T1731] usb 1-1: new high-speed USB device number 39 using dummy_hcd [ 1136.949297][ T1731] usb 1-1: Using ep0 maxpacket: 16 [ 1137.004266][ T1731] usb 1-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4 [ 1137.056310][ T1731] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1137.093587][ T1731] usb 1-1: Product: syz [ 1137.114810][ T1731] usb 1-1: Manufacturer: syz [ 1137.135798][ T1731] usb 1-1: SerialNumber: syz [ 1137.174634][ T1731] usb 1-1: config 0 descriptor?? [ 1137.233405][ T1731] gspca_main: spca508-2.14.0 probing 041e:4018 [ 1137.698661][ T1731] gspca_spca508: reg_read err -71 [ 1137.733311][ T1731] gspca_spca508: reg_read err -71 [ 1137.743355][T25470] loop5: detected capacity change from 0 to 1024 [ 1137.753055][ T1731] gspca_spca508: reg_read err -71 [ 1137.771261][ T1731] gspca_spca508: reg_read err -71 [ 1137.790589][ T1731] gspca_spca508: reg write: error -71 [ 1137.834016][ T1731] spca508 1-1:0.0: probe with driver spca508 failed with error -71 [ 1137.890335][ T1731] usb 1-1: USB disconnect, device number 39 [ 1137.949435][T25475] SET target dimension over the limit! [ 1138.148864][T25480] loop1: detected capacity change from 0 to 256 [ 1138.525724][T25488] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1139.141891][T25507] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8254'. [ 1139.959892][ T5770] usb 6-1: new high-speed USB device number 38 using dummy_hcd [ 1140.054482][T25536] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8270'. [ 1140.152999][ T5770] usb 6-1: Using ep0 maxpacket: 32 [ 1140.167414][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1140.201648][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1140.202904][T25533] loop4: detected capacity change from 0 to 4096 [ 1140.233657][ T5770] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1140.272307][ T5770] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1140.329535][ T5770] usb 6-1: config 0 descriptor?? [ 1140.343686][T25533] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1140.368735][ T5770] hub 6-1:0.0: USB hub found [ 1140.425841][T25544] loop1: detected capacity change from 0 to 164 [ 1140.469689][T25544] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 1140.516796][T25533] ntfs3(loop4): ino=9, ntfs_sync_fs failed, -22. [ 1140.614389][ T5770] hub 6-1:0.0: config failed, can't read hub descriptor (err -90) [ 1140.843558][ T5770] usbhid 6-1:0.0: can't add hid device: -71 [ 1140.869234][ T5770] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 1140.949744][ T5770] usb 6-1: USB disconnect, device number 38 [ 1141.055301][T25556] loop4: detected capacity change from 0 to 128 [ 1141.464717][T25565] netlink: 256 bytes leftover after parsing attributes in process `syz.2.8283'. [ 1141.482537][T25567] xt_hashlimit: size too large, truncated to 1048576 [ 1141.495026][T25567] xt_hashlimit: max too large, truncated to 1048576 [ 1141.890704][T25579] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8288'. [ 1141.913563][T25581] loop0: detected capacity change from 0 to 128 [ 1141.968756][T11489] usb 2-1: new high-speed USB device number 30 using dummy_hcd [ 1142.163281][T11489] usb 2-1: Using ep0 maxpacket: 16 [ 1142.171257][T25585] netlink: 'syz.2.8292': attribute type 10 has an invalid length. [ 1142.196421][T11489] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 1142.225216][T25585] netlink: 40 bytes leftover after parsing attributes in process `syz.2.8292'. [ 1142.239785][T11489] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 1142.277456][T11489] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 1142.277684][T25585] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 1142.288799][T25589] netlink: 'syz.5.8295': attribute type 49 has an invalid length. [ 1142.332075][T11489] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1142.367906][T11489] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 1142.418275][T11489] usb 2-1: config 1 interface 0 has no altsetting 0 [ 1142.444983][T11489] usb 2-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 1142.477055][T11489] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1142.531002][T11489] ums-sddr09 2-1:1.0: USB Mass Storage device detected [ 1142.560136][T25593] netlink: zone id is out of range [ 1142.588502][T25593] netlink: zone id is out of range [ 1142.620815][T25593] netlink: zone id is out of range [ 1142.641139][T25593] netlink: zone id is out of range [ 1142.678176][T25561] loop3: detected capacity change from 0 to 32768 [ 1142.680884][T25593] netlink: zone id is out of range [ 1142.733938][T25561] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1142.739350][T25593] netlink: zone id is out of range [ 1142.776188][T11489] scsi host1: usb-storage 2-1:1.0 [ 1142.778670][T25593] netlink: zone id is out of range [ 1142.844528][T25593] netlink: zone id is out of range [ 1142.877138][T25593] netlink: zone id is out of range [ 1143.081827][T25561] XFS (loop3): Ending clean mount [ 1143.143394][T11489] usb 2-1: USB disconnect, device number 30 [ 1143.391134][ T5631] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1143.572543][T25622] loop4: detected capacity change from 0 to 4096 [ 1143.616729][T25622] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1143.729006][T25630] netlink: 'syz.2.8312': attribute type 49 has an invalid length. [ 1143.751713][T25622] ntfs3(loop4): ino=19, mi_enum_attr [ 1143.784535][T25622] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1143.884450][T25633] netlink: 'syz.0.8311': attribute type 10 has an invalid length. [ 1143.959747][T25633] netlink: 40 bytes leftover after parsing attributes in process `syz.0.8311'. [ 1144.009829][T25633] dummy0: entered promiscuous mode [ 1144.068812][T25633] dummy0: entered allmulticast mode [ 1144.433675][T25639] loop2: detected capacity change from 0 to 4096 [ 1144.531741][T25639] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1144.613669][T25639] ntfs3(loop2): ino=1a, mi_enum_attr [ 1144.652374][T25639] ntfs3(loop2): ino=1a, mi_enum_attr [ 1144.685936][T25639] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 1144.919683][ T30] audit: type=1800 audit(2000000333.303:233): pid=25639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.8314" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 1144.948669][T25638] ntfs3(loop2): ino=1e, "file1" attr_set_size_ex [ 1145.124281][T25665] loop1: detected capacity change from 0 to 256 [ 1145.263260][T25665] FAT-fs (loop1): Directory bread(block 64) failed [ 1145.290683][T25665] FAT-fs (loop1): Directory bread(block 65) failed [ 1145.306386][T25671] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8330'. [ 1145.319477][T25665] FAT-fs (loop1): Directory bread(block 66) failed [ 1145.348115][T25665] FAT-fs (loop1): Directory bread(block 67) failed [ 1145.381666][T25665] FAT-fs (loop1): Directory bread(block 68) failed [ 1145.396796][T25665] FAT-fs (loop1): Directory bread(block 69) failed [ 1145.423277][T25665] FAT-fs (loop1): Directory bread(block 70) failed [ 1145.462340][T25665] FAT-fs (loop1): Directory bread(block 71) failed [ 1145.487381][T25665] FAT-fs (loop1): Directory bread(block 72) failed [ 1145.531108][T25665] FAT-fs (loop1): Directory bread(block 73) failed [ 1145.727467][T25681] bridge0: port 1(netdevsim1) entered blocking state [ 1145.767284][T25681] bridge0: port 1(netdevsim1) entered disabled state [ 1145.801465][T25686] loop2: detected capacity change from 0 to 512 [ 1145.809710][T25681] netdevsim netdevsim5 netdevsim1: entered allmulticast mode [ 1145.848534][T25686] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1145.900717][T25686] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1145.959718][T25686] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 1146.022330][T25686] System zones: 0-1, 15-15, 18-18, 34-34 [ 1146.079318][T25686] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1146.080711][T25681] netdevsim netdevsim5 netdevsim1: entered promiscuous mode [ 1146.113949][T25686] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 1146.122777][T25681] bridge0: port 1(netdevsim1) entered blocking state [ 1146.130955][T25681] bridge0: port 1(netdevsim1) entered forwarding state [ 1146.154279][T25686] EXT4-fs warning (device loop2): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1146.260900][T25686] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 1146.299379][T25686] EXT4-fs (loop2): 1 truncate cleaned up [ 1146.316391][T25700] loop1: detected capacity change from 0 to 128 [ 1146.344676][T25686] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1146.435095][T25704] loop4: detected capacity change from 0 to 8 [ 1146.592203][T25708] netlink: 'syz.5.8348': attribute type 15 has an invalid length. [ 1146.645253][T25708] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8348'. [ 1146.719871][ T5632] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1146.815279][T25713] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8350'. [ 1147.434111][T25734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8359'. [ 1147.471130][T25728] loop1: detected capacity change from 0 to 4096 [ 1147.510657][T25728] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 1147.805768][T25746] loop2: detected capacity change from 0 to 64 [ 1147.898287][T25751] PKCS8: Unsupported PKCS#8 version [ 1149.976344][T25815] netlink: 'syz.4.8393': attribute type 1 has an invalid length. [ 1150.036199][T25814] loop0: detected capacity change from 0 to 1024 [ 1150.093972][T25814] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8055c01c, mo2=0002] [ 1150.195442][T25814] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1150.351024][T25826] program syz.3.8399 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1150.451482][ T5628] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1150.460851][T25787] loop2: detected capacity change from 0 to 32768 [ 1150.499084][T25787] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8380 (25787) [ 1150.676434][T25787] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1150.709331][T25836] loop1: detected capacity change from 0 to 22 [ 1150.725949][T25787] BTRFS info (device loop2): using sha256 checksum algorithm [ 1150.759757][T25836] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1150.803680][T25836] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1150.832029][T25838] xt_connbytes: Forcing CT accounting to be enabled [ 1150.984801][T25787] BTRFS info (device loop2): enabling ssd optimizations [ 1151.047336][T25787] BTRFS info (device loop2): turning on async discard [ 1151.073399][T25787] BTRFS info (device loop2): enabling free space tree [ 1151.279590][ T5632] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1152.257933][ T5762] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 1152.452714][ T5762] usb 4-1: Using ep0 maxpacket: 8 [ 1152.480436][ T5762] usb 4-1: config 0 has an invalid interface number: 31 but max is 0 [ 1152.517288][ T5762] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1152.589186][ T5762] usb 4-1: config 0 has no interface number 0 [ 1152.657427][ T5762] usb 4-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 1152.714047][T25910] ip6t_srh: unknown srh invflags 4000 [ 1152.733346][ T5762] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1152.799966][ T5762] usb 4-1: Product: syz [ 1152.828774][ T5762] usb 4-1: Manufacturer: syz [ 1152.859677][ T5762] usb 4-1: SerialNumber: syz [ 1152.904698][ T5762] usb 4-1: config 0 descriptor?? [ 1153.198774][ T5762] uvcvideo 4-1:0.31: Found UVC 0.04 device syz (046d:08c3) [ 1153.236992][ T5762] uvcvideo 4-1:0.31: No valid video chain found. [ 1153.524802][T22834] usb 4-1: USB disconnect, device number 27 [ 1154.173612][T25953] netlink: 'syz.2.8444': attribute type 15 has an invalid length. [ 1154.200618][T25953] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8444'. [ 1154.216818][T25956] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8446'. [ 1154.869316][T25928] loop4: detected capacity change from 0 to 32768 [ 1154.907605][T25928] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8434 (25928) [ 1154.984323][T25928] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1155.032974][T25928] BTRFS info (device loop4): using sha256 checksum algorithm [ 1155.333047][T25928] BTRFS info (device loop4): enabling ssd optimizations [ 1155.348347][T25928] BTRFS info (device loop4): turning on async discard [ 1155.358440][T25928] BTRFS info (device loop4): enabling free space tree [ 1155.437589][T26001] wlan1 speed is unknown, defaulting to 1000 [ 1155.693951][ T5630] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1155.833460][T26014] netlink: 140 bytes leftover after parsing attributes in process `syz.0.8464'. [ 1155.917514][ T1310] ieee802154 phy0 wpan0: encryption failed: -22 [ 1156.247554][ T5359] usb 4-1: new full-speed USB device number 28 using dummy_hcd [ 1156.391393][T26024] loop5: detected capacity change from 0 to 2048 [ 1156.467036][ T5359] usb 4-1: config 0 has an invalid interface number: 70 but max is 0 [ 1156.517753][ T5359] usb 4-1: config 0 has no interface number 0 [ 1156.530456][T26024] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1156.561373][ T5359] usb 4-1: config 0 interface 70 altsetting 5 has a duplicate endpoint with address 0x6, skipping [ 1156.602851][T26032] kAFS: unable to lookup cell '' [ 1156.614008][ T5359] usb 4-1: config 0 interface 70 altsetting 5 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 1156.678061][ T5359] usb 4-1: config 0 interface 70 altsetting 5 endpoint 0x83 has invalid maxpacket 42809, setting to 64 [ 1156.730704][ T5359] usb 4-1: config 0 interface 70 altsetting 5 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 1156.805268][ T5359] usb 4-1: config 0 interface 70 has no altsetting 0 [ 1156.893850][ T5359] usb 4-1: New USB device found, idVendor=110a, idProduct=1150, bcdDevice=55.9e [ 1156.947631][ T5359] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1156.989745][ T5359] usb 4-1: Product: syz [ 1157.016815][ T5359] usb 4-1: Manufacturer: syz [ 1157.045027][ T5359] usb 4-1: SerialNumber: syz [ 1157.107090][ T5359] usb 4-1: config 0 descriptor?? [ 1157.133585][T26018] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1157.530226][ T5359] ti_usb_3410_5052 4-1:0.70: TI USB 3410 1 port adapter converter detected [ 1157.607693][ T5359] usb 4-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0 [ 1157.622769][T26049] loop2: detected capacity change from 0 to 2048 [ 1157.671634][ T5359] usb 4-1: USB disconnect, device number 28 [ 1157.711109][T26049] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1157.798131][ T5359] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0 [ 1157.862667][ T5359] ti_usb_3410_5052 4-1:0.70: device disconnected [ 1158.477287][T26065] xt_hashlimit: size too large, truncated to 1048576 [ 1158.905482][T26082] loop3: detected capacity change from 0 to 22 [ 1158.907453][T26084] loop2: detected capacity change from 0 to 8 [ 1158.993946][T26082] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1159.035910][T26082] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1159.293109][T26090] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8501'. [ 1159.377430][T26094] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8503'. [ 1159.396099][T26092] net_ratelimit: 391 callbacks suppressed [ 1159.396137][T26092] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1160.685528][T26142] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8527'. [ 1160.721506][T26142] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8527'. [ 1160.769935][T26144] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 1160.906954][T26150] loop4: detected capacity change from 0 to 256 [ 1161.016868][T26150] FAT-fs (loop4): Directory bread(block 64) failed [ 1161.047808][T26150] FAT-fs (loop4): Directory bread(block 65) failed [ 1161.077694][T26150] FAT-fs (loop4): Directory bread(block 66) failed [ 1161.104521][T26150] FAT-fs (loop4): Directory bread(block 67) failed [ 1161.128139][T26150] FAT-fs (loop4): Directory bread(block 68) failed [ 1161.153229][T26150] FAT-fs (loop4): Directory bread(block 69) failed [ 1161.187010][T26150] FAT-fs (loop4): Directory bread(block 70) failed [ 1161.217369][T26150] FAT-fs (loop4): Directory bread(block 71) failed [ 1161.263854][T26150] FAT-fs (loop4): Directory bread(block 72) failed [ 1161.285948][T26150] FAT-fs (loop4): Directory bread(block 73) failed [ 1161.946541][T26135] loop1: detected capacity change from 0 to 32768 [ 1161.960868][T26178] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 1162.052948][T26135] ea_get: invalid extended attribute [ 1162.121447][ T30] audit: type=1800 audit(2000000349.399:234): pid=26135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8524" name="file1" dev="loop1" ino=4 res=0 errno=0 [ 1162.740077][T26202] loop3: detected capacity change from 0 to 128 [ 1162.911789][T26209] loop0: detected capacity change from 0 to 1024 [ 1163.328619][T26220] loop0: detected capacity change from 0 to 8 [ 1163.725677][ T5762] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 1163.920395][ T5762] usb 4-1: config 0 has an invalid interface number: 69 but max is 0 [ 1163.960169][ T5762] usb 4-1: config 0 has no interface number 0 [ 1163.979657][ T5762] usb 4-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 1164.012911][ T5762] usb 4-1: config 0 interface 69 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1164.046273][ T5762] usb 4-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 1164.074585][ T5762] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1164.107611][ T5762] usb 4-1: Product: syz [ 1164.129755][ T5762] usb 4-1: Manufacturer: syz [ 1164.148428][ T5762] usb 4-1: SerialNumber: syz [ 1164.176082][ T5762] usb 4-1: config 0 descriptor?? [ 1164.199166][T26222] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1164.234106][ T5762] cyberjack 4-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 1164.266543][ T5762] cyberjack ttyUSB0: usb_submit_urb(read int) failed [ 1164.285657][ T5762] usb 4-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 1164.543177][ T1731] usb 4-1: USB disconnect, device number 29 [ 1164.585622][ T1731] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 1164.604629][T26247] loop1: detected capacity change from 0 to 4096 [ 1164.611870][ T1731] cyberjack 4-1:0.69: device disconnected [ 1164.629156][T26247] EXT4-fs (loop1): fragment/cluster size (1024) != block size (4096) [ 1164.944033][ T5762] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 1165.071674][T26231] loop0: detected capacity change from 0 to 32768 [ 1165.138952][ T5762] usb 2-1: config index 0 descriptor too short (expected 7768, got 18) [ 1165.173815][ T5762] usb 2-1: config 0 has an invalid interface number: 39 but max is 0 [ 1165.183853][ T5762] usb 2-1: config 0 has no interface number 0 [ 1165.190906][ T5762] usb 2-1: too many endpoints for config 0 interface 39 altsetting 147: 48, using maximum allowed: 30 [ 1165.236428][ T5762] usb 2-1: config 0 interface 39 altsetting 147 has 0 endpoint descriptors, different from the interface descriptor's value: 48 [ 1165.291642][ T5762] usb 2-1: config 0 interface 39 has no altsetting 0 [ 1165.330465][ T5762] usb 2-1: New USB device found, idVendor=0483, idProduct=3747, bcdDevice=52.4d [ 1165.369356][ T5762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1165.407765][ T5762] usb 2-1: config 0 descriptor?? [ 1165.480300][T26259] loop2: detected capacity change from 0 to 1024 [ 1165.496525][T26261] loop3: detected capacity change from 0 to 2048 [ 1165.536859][T26261] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1165.635947][T26264] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1165.667771][ T5762] usb 2-1: string descriptor 0 read error: -71 [ 1165.706126][ T5762] ftdi_sio 2-1:0.39: FTDI USB Serial Device converter detected [ 1165.753040][ T5762] ftdi_sio ttyUSB0: unknown device type: 0x524d [ 1165.809420][ T5762] usb 2-1: USB disconnect, device number 31 [ 1165.846593][T26261] NILFS (loop3): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1165.856357][ T5762] ftdi_sio 2-1:0.39: device disconnected [ 1165.939507][T26261] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1165.978062][T26261] Remounting filesystem read-only [ 1166.009519][T26261] NILFS (loop3): error -5 truncating bmap (ino=16) [ 1166.235185][ T5631] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 1166.284200][T26274] loop0: detected capacity change from 0 to 2048 [ 1166.335736][T26274] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1166.720826][T26280] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 1166.772163][T26280] overlayfs: overlapping lowerdir path [ 1166.811884][T26239] loop4: detected capacity change from 0 to 32768 [ 1166.896719][T26239] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8570 (26239) [ 1167.072463][T26239] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1167.184588][T26239] BTRFS info (device loop4): using sha256 checksum algorithm [ 1167.278119][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR [ 1167.316328][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR [ 1167.448872][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR [ 1167.560825][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR [ 1167.596189][T26306] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8600'. [ 1167.646509][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR [ 1167.651536][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR [ 1167.727917][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR [ 1167.829134][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 1167.879906][T26314] loop3: detected capacity change from 0 to 256 [ 1167.922052][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 1167.924055][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 1168.006454][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 1168.099926][T26239] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 1168.235407][T26239] BTRFS error (device loop4): open_ctree failed: -12 [ 1168.326447][T26278] loop1: detected capacity change from 0 to 40427 [ 1168.335613][T26324] netlink: 'syz.0.8606': attribute type 1 has an invalid length. [ 1168.421059][T26324] netlink: 220 bytes leftover after parsing attributes in process `syz.0.8606'. [ 1168.454574][T26278] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1168.490673][T26278] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1168.546209][T26278] F2FS-fs (loop1): invalid crc_offset: 33558524 [ 1168.555717][T26329] geneve2: entered promiscuous mode [ 1168.573287][T26329] geneve2: entered allmulticast mode [ 1169.029200][T26278] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1169.163438][T26278] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1169.211622][T26278] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1169.741878][T26360] loop5: detected capacity change from 0 to 256 [ 1169.776455][T26360] exfat: Deprecated parameter 'utf8' [ 1169.808928][T26360] exfat: Deprecated parameter 'namecase' [ 1169.860309][T26360] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x01dc4376, utbl_chksum : 0xe619d30d) [ 1170.345755][T26371] loop5: detected capacity change from 0 to 128 [ 1170.522262][T26375] netlink: 104 bytes leftover after parsing attributes in process `syz.4.8629'. [ 1171.212311][T26391] loop0: detected capacity change from 0 to 64 [ 1171.696206][T26409] loop2: detected capacity change from 0 to 128 [ 1171.755803][T26406] loop1: detected capacity change from 0 to 2048 [ 1171.806855][T26406] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1171.884913][T26412] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1172.459091][T26403] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1173.180698][T26433] loop2: detected capacity change from 0 to 4096 [ 1173.276951][T26433] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 1173.648378][T26433] ntfs3(loop2): ino=1a, mi_enum_attr [ 1173.717505][T26433] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1173.781317][ T4942] Bluetooth: hci0: command 0x0406 tx timeout [ 1173.909602][ T5762] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 1173.964535][T26462] bridge2: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 1174.114289][ T5762] usb 4-1: Using ep0 maxpacket: 32 [ 1174.144775][ T5762] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 255, changing to 7 [ 1174.177307][ T5762] usb 4-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 1174.214078][ T5762] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1174.246861][ T5762] usb 4-1: Product: syz [ 1174.261899][ T5762] usb 4-1: Manufacturer: syz [ 1174.277830][ T5762] usb 4-1: SerialNumber: syz [ 1174.328271][ T5762] usb 4-1: Audio class v2/v3 interfaces need an interface association [ 1174.329214][T26466] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ £~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed [ 1174.559831][ T5762] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 1174.584404][T26471] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8677'. [ 1174.842941][ T5762] usb 4-1: us122l: couldn't allocate write buffer [ 1174.880488][ T5762] snd-usb-us122l 4-1:1.1: probe with driver snd-usb-us122l failed with error -22 [ 1174.955194][ T5762] usb 4-1: USB disconnect, device number 30 [ 1175.047830][ T5652] udevd[5652]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1175.159715][ T5359] usb 2-1: new low-speed USB device number 32 using dummy_hcd [ 1175.365168][ T5359] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 1024, setting to 0 [ 1175.409462][ T5359] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 64, setting to 0 [ 1175.470492][ T5359] usb 2-1: string descriptor 0 read error: -22 [ 1175.484326][ T5359] usb 2-1: New USB device found, idVendor=1235, idProduct=8002, bcdDevice= 0.40 [ 1175.513595][ T5359] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1175.569529][ T5359] usb 2-1: low speed audio streaming not supported [ 1175.597283][ T5359] usb 2-1: low speed audio streaming not supported [ 1175.611229][T26491] loop4: detected capacity change from 0 to 2048 [ 1175.725316][T26491] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1175.734947][ T5770] usb 6-1: new high-speed USB device number 39 using dummy_hcd [ 1175.924298][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1175.970824][ T5770] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 1176.001757][ T5359] usb 2-1: USB disconnect, device number 32 [ 1176.026823][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1176.085236][ T5770] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 1176.138383][ T5770] usb 6-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 1176.162354][ T5770] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1176.189132][ T5770] usb 6-1: Product: syz [ 1176.204270][ T5770] usb 6-1: Manufacturer: syz [ 1176.225787][ T5770] usb 6-1: SerialNumber: syz [ 1176.264662][ T5770] usb 6-1: config 0 descriptor?? [ 1176.298037][ T5770] ums-isd200 6-1:0.0: USB Mass Storage device detected [ 1176.615597][ T5770] ums-isd200 6-1:0.0: probe with driver ums-isd200 failed with error -22 [ 1176.838959][ T5770] usb 6-1: USB disconnect, device number 39 [ 1176.919083][T26519] loop1: detected capacity change from 0 to 1024 [ 1176.963194][T26519] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5 [ 1176.984055][T26519] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1176.997191][T26519] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.8699: Failed to acquire dquot type 0 [ 1177.009599][T26519] loop1: lost filesystem error report for type 5 error -117 [ 1177.018889][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 1177.032690][ C1] EXT4-fs (loop1): initial error at time 2000000363: ext4_acquire_dquot:7032 [ 1177.041521][ C1] EXT4-fs (loop1): last error at time 2000000363: ext4_acquire_dquot:7032 [ 1177.063192][T26519] EXT4-fs error (device loop1): mb_free_blocks:2046: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 1177.121851][T26525] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 1177.155392][T26519] EXT4-fs (loop1): 1 truncate cleaned up [ 1177.165426][T26519] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1177.268807][T26519] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5 [ 1177.305921][T26519] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1177.344254][T26519] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.8699: Failed to acquire dquot type 0 [ 1177.549670][T26533] kAFS: Can only specify source 'none' with -o dyn [ 1177.579198][ T5629] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1178.243027][T26547] loop3: detected capacity change from 0 to 4096 [ 1178.858240][T26545] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 1179.075330][T26570] netlink: 'syz.0.8723': attribute type 1 has an invalid length. [ 1179.456459][T26582] netlink: 'syz.0.8730': attribute type 1 has an invalid length. [ 1179.973993][T26595] loop0: detected capacity change from 0 to 2048 [ 1180.046766][T26595] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1180.910293][T26624] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8749'. [ 1180.949741][T26624] openvswitch: netlink: Missing key (keys=c0, expected=200000) [ 1181.044992][T26626] openvswitch: netlink: ufid size 24 bytes exceeds the range (1, 16) [ 1181.706049][T26647] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 1182.614104][T26673] loop5: detected capacity change from 0 to 128 [ 1182.649305][T26674] netdevsim netdevsim4: Firmware load for '..' refused, path contains '..' component [ 1182.702788][T26673] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1182.821504][T26673] ext4 filesystem being mounted at /1447/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1183.087302][ T5644] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1183.105244][T26688] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1183.323761][ T24] usb 5-1: new high-speed USB device number 45 using dummy_hcd [ 1183.331823][T26699] netlink: zone id is out of range [ 1183.348503][T26699] netlink: zone id is out of range [ 1183.378095][T26699] netlink: zone id is out of range [ 1183.412853][T26699] netlink: zone id is out of range [ 1183.443761][T26699] netlink: get zone limit has 8 unknown bytes [ 1183.525096][ T24] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 1183.566099][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1183.603149][ T24] usb 5-1: Product: syz [ 1183.612240][ T24] usb 5-1: Manufacturer: syz [ 1183.618761][ T24] usb 5-1: SerialNumber: syz [ 1183.811527][T26709] netlink: 48 bytes leftover after parsing attributes in process `syz.5.8790'. [ 1183.893100][ T24] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO [ 1183.931617][ T24] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71 [ 1183.967515][ T24] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 1184.003598][ T24] lan78xx 5-1:1.0: probe with driver lan78xx failed with error -71 [ 1184.064527][ T24] usb 5-1: USB disconnect, device number 45 [ 1184.518061][T26727] loop0: detected capacity change from 0 to 256 [ 1184.545593][T26727] exfat: Deprecated parameter 'namecase' [ 1184.562919][T26727] exfat: Deprecated parameter 'namecase' [ 1184.607601][T26727] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1184.731455][T26730] netlink: 'syz.5.8801': attribute type 12 has an invalid length. [ 1184.755417][T26733] Invalid source name [ 1184.781278][T26733] UBIFS error (pid: 26733): cannot open "./file0", error -22 [ 1184.807919][T26731] loop3: detected capacity change from 0 to 1024 [ 1184.994787][T26731] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 1185.012772][T26731] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1185.140413][T26731] EXT4-fs error (device loop3): ext4_acquire_dquot:7032: comm syz.3.8800: Failed to acquire dquot type 0 [ 1185.151922][T26731] loop3: lost filesystem error report for type 5 error -117 [ 1185.156693][T26731] EXT4-fs error (device loop3): mb_free_blocks:2046: group 0, [ 1185.164100][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 1185.164148][ C1] EXT4-fs (loop3): initial error at time 2000000370: ext4_acquire_dquot:7032 [ 1185.164192][ C1] EXT4-fs (loop3): last error at time 2000000370: ext4_acquire_dquot:7032 [ 1185.200992][T26731] inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 1185.222591][T26731] EXT4-fs (loop3): 1 truncate cleaned up [ 1185.249536][T26731] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1185.478654][T26731] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 1185.555493][T26731] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1185.613663][T26731] EXT4-fs error (device loop3): ext4_acquire_dquot:7032: comm syz.3.8800: Failed to acquire dquot type 0 [ 1185.751436][T26715] loop2: detected capacity change from 0 to 40427 [ 1185.802760][T26715] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1185.831287][T26715] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1185.867407][T26715] F2FS-fs (loop2): invalid crc_offset: 33558524 [ 1186.079320][ T5631] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1186.397971][T26715] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1186.642200][T26715] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1186.670272][T26715] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1186.860556][T26779] loop0: detected capacity change from 0 to 4096 [ 1186.922295][T26779] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 1186.951077][T26779] UDF-fs: Scanning with blocksize 512 failed [ 1187.004714][T26783] loop3: detected capacity change from 0 to 128 [ 1187.109624][T26779] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1187.199936][T26779] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328) [ 1187.947213][T26801] loop3: detected capacity change from 0 to 128 [ 1187.995619][T26797] loop4: detected capacity change from 0 to 1024 [ 1187.998371][T26774] loop5: detected capacity change from 0 to 32768 [ 1188.047568][T26797] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 1188.096370][T26801] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1188.110325][T26774] JBD2: Ignoring recovery information on journal [ 1188.254629][T26801] FAT-fs (loop3): Filesystem has been set read-only [ 1188.311505][T26774] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1188.663433][T26807] loop0: detected capacity change from 0 to 4096 [ 1188.796374][T26807] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1188.939383][T26807] ntfs3(loop0): Failed to load $Extend (-22). [ 1188.965368][T26807] ntfs3(loop0): Failed to initialize $Extend. [ 1188.986034][ T5644] ocfs2: Unmounting device (7,5) on (node local) [ 1190.045759][T26845] ip6t_srh: unknown srh match flags 5F28 [ 1190.107756][T26848] ptrace attach of "ci-upstream-kasan-badwrites-root/syz-executor exec"[5644] was attempted by ""[26848] [ 1190.246150][T26850] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8855'. [ 1190.266396][T26850] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 1190.291131][ T5762] usb 2-1: new high-speed USB device number 33 using dummy_hcd [ 1190.482080][ T5762] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1190.517408][T26856] loop2: detected capacity change from 0 to 64 [ 1190.523796][ T5762] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1190.552313][ T5762] usb 2-1: Product: syz [ 1190.569378][ T5762] usb 2-1: Manufacturer: syz [ 1190.589657][ T5762] usb 2-1: SerialNumber: syz [ 1190.650728][ T5762] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1190.687493][ T24] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1191.143206][T26870] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8865'. [ 1191.187127][T26870] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8865'. [ 1191.364519][ T5770] usb 2-1: USB disconnect, device number 33 [ 1191.483143][T26876] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 1191.582581][T26846] loop3: detected capacity change from 0 to 32768 [ 1191.646817][T26846] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1191.790389][T26896] loop0: detected capacity change from 0 to 256 [ 1191.857088][T26846] XFS (loop3): Ending clean mount [ 1191.955180][T26896] FAT-fs (loop0): Directory bread(block 64) failed [ 1191.999346][ T24] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1192.019622][T26896] FAT-fs (loop0): Directory bread(block 65) failed [ 1192.048146][ T24] ath9k_htc: Failed to initialize the device [ 1192.063039][T26896] FAT-fs (loop0): Directory bread(block 66) failed [ 1192.083690][ T5770] usb 2-1: ath9k_htc: USB layer deinitialized [ 1192.084703][T26896] FAT-fs (loop0): Directory bread(block 67) failed [ 1192.134976][T26896] FAT-fs (loop0): Directory bread(block 68) failed [ 1192.176397][T26896] FAT-fs (loop0): Directory bread(block 69) failed [ 1192.209646][T26896] FAT-fs (loop0): Directory bread(block 70) failed [ 1192.250491][T26896] FAT-fs (loop0): Directory bread(block 71) failed [ 1192.285993][T26896] FAT-fs (loop0): Directory bread(block 72) failed [ 1192.328033][T26896] FAT-fs (loop0): Directory bread(block 73) failed [ 1192.436813][ T5631] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1193.139898][T26914] loop3: detected capacity change from 0 to 4096 [ 1193.295989][T26914] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1193.325218][T26917] loop1: detected capacity change from 0 to 4096 [ 1193.402793][T26914] ntfs3(loop3): Failed to load $Extend (-22). [ 1193.431304][T26914] ntfs3(loop3): Failed to initialize $Extend. [ 1193.479213][T26917] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1193.548759][T26917] ntfs3(loop1): ino=1a, mi_enum_attr [ 1193.578954][T26917] ntfs3(loop1): ino=1a, mi_enum_attr [ 1193.600953][T26917] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1193.765412][ T30] audit: type=1800 audit(2000000379.026:235): pid=26917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8884" name="bus" dev="loop1" ino=33 res=0 errno=0 [ 1193.790715][T26899] loop2: detected capacity change from 0 to 32768 [ 1194.183179][T26932] loop4: detected capacity change from 0 to 4096 [ 1194.285252][T26932] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1194.367937][T26932] ntfs3(loop4): Failed to load $Extend (-22). [ 1194.401460][T26932] ntfs3(loop4): Failed to initialize $Extend. [ 1194.769642][T26953] openvswitch: netlink: IP tunnel dst address not specified [ 1195.025842][T26957] loop1: detected capacity change from 0 to 1764 [ 1195.948142][ T30] audit: type=1326 audit(2000000381.066:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1196.026131][ T30] audit: type=1326 audit(2000000381.066:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1196.162722][ T30] audit: type=1326 audit(2000000381.094:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1196.173995][T26993] netlink: 'syz.3.8921': attribute type 1 has an invalid length. [ 1196.229933][T26996] loop0: detected capacity change from 0 to 16 [ 1196.242849][T26993] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8921'. [ 1196.258212][ T30] audit: type=1326 audit(2000000381.104:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1196.306825][ T30] audit: type=1326 audit(2000000381.104:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed9fb9ce59 code=0x7ffc0000 [ 1196.324445][T26996] erofs (device loop0): DAX unsupported by block device. Turning off DAX. [ 1196.337475][ T30] audit: type=1326 audit(2000000381.160:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fed9fb5d68e code=0x7ffc0000 [ 1196.490707][ T30] audit: type=1326 audit(2000000381.160:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fed9fb5d68e code=0x7ffc0000 [ 1196.526265][T26963] loop5: detected capacity change from 0 to 32768 [ 1196.566735][T26963] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8907 (26963) [ 1196.608209][T27000] loop2: detected capacity change from 0 to 1764 [ 1196.625797][ T30] audit: type=1326 audit(2000000381.160:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fed9fb5d68e code=0x7ffc0000 [ 1196.710570][T26963] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1196.738939][ T30] audit: type=1326 audit(2000000381.160:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26987 comm="syz.4.8919" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fed9fb5d68e code=0x7ffc0000 [ 1196.754356][T26963] BTRFS info (device loop5): using sha256 checksum algorithm [ 1196.930969][T26996] erofs (device loop0): mounted with root inode @ nid 36. [ 1196.964544][T26963] BTRFS info (device loop5): enabling ssd optimizations [ 1196.980557][T26963] BTRFS info (device loop5): turning on async discard [ 1196.993208][T26963] BTRFS info (device loop5): enabling free space tree [ 1197.068754][T27022] loop2: detected capacity change from 0 to 64 [ 1197.099224][ T4942] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 9000 [ 1197.114047][T26996] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096 [ 1197.193463][T26996] erofs (device loop0): read error -117 @ 0 of nid 89 [ 1197.316095][ T5644] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1197.364793][T27027] loop4: detected capacity change from 0 to 16 [ 1197.397892][T27027] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1197.778752][T27033] loop1: detected capacity change from 0 to 512 [ 1197.858627][T27033] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1197.950039][T27033] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1197.981190][T27033] ext4 filesystem being mounted at /1529/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1198.397495][ T5629] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1198.706719][T27059] loop5: detected capacity change from 0 to 256 [ 1198.753427][T27059] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1200.075037][T27094] bond3: entered promiscuous mode [ 1200.176543][T27109] tmpfs: Bad value for 'mpol' [ 1200.227807][T27113] Non-string source [ 1200.778933][T27129] loop3: detected capacity change from 0 to 16 [ 1200.812403][T27129] erofs (device loop3): DAX unsupported by block device. Turning off DAX. [ 1201.160896][T27103] loop4: detected capacity change from 0 to 32768 [ 1201.563895][T27148] loop5: detected capacity change from 0 to 256 [ 1201.605912][T27129] erofs (device loop3): mounted with root inode @ nid 36. [ 1201.674701][T27148] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1201.781706][T27148] exFAT-fs (loop5): valid_size(150994954) is greater than size(10) [ 1201.819674][ T4942] erofs (device loop3): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 9000 [ 1201.843350][T27129] erofs (device loop3): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096 [ 1201.879385][T27129] erofs (device loop3): read error -117 @ 0 of nid 89 [ 1201.952854][ T30] kauditd_printk_skb: 63 callbacks suppressed [ 1201.952887][ T30] audit: type=1800 audit(2000000386.672:308): pid=27129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8978" name="file2" dev="loop3" ino=89 res=0 errno=0 [ 1202.325492][T27135] loop0: detected capacity change from 0 to 32768 [ 1202.439710][T27135] JBD2: Ignoring recovery information on journal [ 1202.495311][T27166] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized [ 1202.626246][T27135] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1202.998042][T27180] trusted_key: encrypted_key: keyword 'newdefault' not recognized [ 1203.085313][ T30] audit: type=1326 audit(2000000387.738:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27181 comm="syz.3.9002" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1203.136664][ T30] audit: type=1326 audit(2000000387.767:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27181 comm="syz.3.9002" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1203.209231][ T30] audit: type=1326 audit(2000000387.851:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27181 comm="syz.3.9002" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1203.276932][T27185] Unsupported ieee802154 address type: 0 [ 1203.285097][ T5628] ocfs2: Unmounting device (7,0) on (node local) [ 1203.290853][T27188] loop5: detected capacity change from 0 to 256 [ 1203.317844][ T30] audit: type=1326 audit(2000000387.851:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27181 comm="syz.3.9002" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299239ce59 code=0x7ffc0000 [ 1203.397147][T27188] exfat: Deprecated parameter 'namecase' [ 1203.456889][T27188] exfat: Deprecated parameter 'namecase' [ 1203.529523][T27188] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1203.975482][T27205] openvswitch: netlink: IP tunnel TTL not specified. [ 1204.057945][T27208] loop5: detected capacity change from 0 to 64 [ 1204.105066][T27208] hfs: unable to locate alternate MDB [ 1204.129044][T27208] hfs: continuing without an alternate MDB [ 1204.225856][ T30] audit: type=1800 audit(2000000388.787:313): pid=27208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.9015" name="file1" dev="loop5" ino=22 res=0 errno=0 [ 1204.369526][T18976] [ 1204.371917][T18976] ====================================================== [ 1204.378938][T18976] WARNING: possible circular locking dependency detected [ 1204.385969][T18976] syzkaller #0 Tainted: G L [ 1204.391955][T18976] ------------------------------------------------------ [ 1204.398972][T18976] kworker/u8:14/18976 is trying to acquire lock: [ 1204.405298][T18976] ffff88807ccc19f0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0 [ 1204.416065][T18976] [ 1204.416065][T18976] but task is already holding lock: [ 1204.423416][T18976] ffff8880341f80a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1204.432970][T18976] [ 1204.432970][T18976] which lock already depends on the new lock. [ 1204.432970][T18976] [ 1204.443362][T18976] [ 1204.443362][T18976] the existing dependency chain (in reverse order) is: [ 1204.452369][T18976] [ 1204.452369][T18976] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}: [ 1204.460493][T18976] __mutex_lock+0x1a4/0x1b10 [ 1204.465634][T18976] hfs_find_init+0x273/0x330 [ 1204.470761][T18976] hfs_ext_read_extent+0x19d/0x9d0 [ 1204.476424][T18976] hfs_get_block+0x576/0x830 [ 1204.481563][T18976] block_read_full_folio+0x36c/0x8e0 [ 1204.487397][T18976] filemap_read_folio+0xfc/0x3b0 [ 1204.492872][T18976] do_read_cache_folio+0x2d7/0x6b0 [ 1204.498526][T18976] read_cache_page+0x5b/0x1b0 [ 1204.503741][T18976] __hfs_bnode_create+0x718/0x9a0 [ 1204.509308][T18976] hfs_bnode_find+0x2d5/0xd30 [ 1204.514523][T18976] hfs_brec_find+0x39d/0x620 [ 1204.519646][T18976] hfs_brec_read+0x26/0x120 [ 1204.524683][T18976] hfs_cat_find_brec+0xdc/0x2a0 [ 1204.530097][T18976] hfs_fill_super+0x58d/0x7e0 [ 1204.535306][T18976] get_tree_bdev_flags+0x38c/0x620 [ 1204.540964][T18976] vfs_get_tree+0x92/0x320 [ 1204.545929][T18976] path_mount+0x7d0/0x23d0 [ 1204.550884][T18976] __x64_sys_mount+0x293/0x310 [ 1204.556184][T18976] do_syscall_64+0x115/0x870 [ 1204.561324][T18976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1204.567750][T18976] [ 1204.567750][T18976] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 1204.576986][T18976] __lock_acquire+0x14b8/0x2630 [ 1204.582370][T18976] lock_acquire+0x1b1/0x370 [ 1204.587399][T18976] __mutex_lock+0x1a4/0x1b10 [ 1204.592538][T18976] hfs_extend_file+0xa6/0xcf0 [ 1204.597770][T18976] hfs_bmap_reserve+0x2ab/0x3a0 [ 1204.603162][T18976] __hfs_ext_write_extent+0x3c4/0x510 [ 1204.609080][T18976] hfs_ext_write_extent+0x1b7/0x200 [ 1204.614828][T18976] hfs_write_inode+0xce/0xab0 [ 1204.620030][T18976] __writeback_single_inode+0xcd4/0x1350 [ 1204.626217][T18976] writeback_sb_inodes+0x766/0x1c60 [ 1204.631968][T18976] wb_writeback+0x1bf/0xb90 [ 1204.637014][T18976] wb_workfn+0x14f/0xc00 [ 1204.641801][T18976] process_one_work+0xa0e/0x1980 [ 1204.647269][T18976] worker_thread+0x5ef/0xe50 [ 1204.652394][T18976] kthread+0x370/0x450 [ 1204.656989][T18976] ret_from_fork+0x72b/0xd50 [ 1204.662109][T18976] ret_from_fork_asm+0x1a/0x30 [ 1204.667412][T18976] [ 1204.667412][T18976] other info that might help us debug this: [ 1204.667412][T18976] [ 1204.677628][T18976] Possible unsafe locking scenario: [ 1204.677628][T18976] [ 1204.685065][T18976] CPU0 CPU1 [ 1204.690421][T18976] ---- ---- [ 1204.695780][T18976] lock(&tree->tree_lock#2/1); [ 1204.700662][T18976] lock(&HFS_I(tree->inode)->extents_lock); [ 1204.709167][T18976] lock(&tree->tree_lock#2/1); [ 1204.716564][T18976] lock(&HFS_I(tree->inode)->extents_lock); [ 1204.722550][T18976] [ 1204.722550][T18976] *** DEADLOCK *** [ 1204.722550][T18976] [ 1204.730682][T18976] 3 locks held by kworker/u8:14/18976: [ 1204.736135][T18976] #0: ffff8880206cf140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980 [ 1204.746891][T18976] #1: ffffc9000b23fd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980 [ 1204.758775][T18976] #2: ffff8880341f80a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1204.768776][T18976] [ 1204.768776][T18976] stack backtrace: [ 1204.774665][T18976] CPU: 0 UID: 0 PID: 18976 Comm: kworker/u8:14 Tainted: G L syzkaller #0 PREEMPT(full) [ 1204.774716][T18976] Tainted: [L]=SOFTLOCKUP [ 1204.774729][T18976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1204.774755][T18976] Workqueue: writeback wb_workfn (flush-7:5) [ 1204.774825][T18976] Call Trace: [ 1204.774838][T18976] [ 1204.774853][T18976] dump_stack_lvl+0x100/0x190 [ 1204.774889][T18976] print_circular_bug.cold+0x178/0x1c7 [ 1204.774951][T18976] check_noncircular+0x146/0x160 [ 1204.774986][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.775039][T18976] __lock_acquire+0x14b8/0x2630 [ 1204.775083][T18976] ? __pfx_stack_trace_save+0x10/0x10 [ 1204.775146][T18976] lock_acquire+0x1b1/0x370 [ 1204.775184][T18976] ? hfs_extend_file+0xa6/0xcf0 [ 1204.775243][T18976] ? __pfx___might_resched+0x10/0x10 [ 1204.775290][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.775333][T18976] ? add_lock_to_list+0x99/0x110 [ 1204.775393][T18976] __mutex_lock+0x1a4/0x1b10 [ 1204.775450][T18976] ? hfs_extend_file+0xa6/0xcf0 [ 1204.775505][T18976] ? hfs_extend_file+0xa6/0xcf0 [ 1204.775562][T18976] ? hfs_write_inode+0xce/0xab0 [ 1204.775594][T18976] ? __writeback_single_inode+0xcd4/0x1350 [ 1204.775652][T18976] ? __pfx___mutex_lock+0x10/0x10 [ 1204.775707][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.775751][T18976] ? lock_acquire+0x1b1/0x370 [ 1204.775799][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.775842][T18976] ? trace_contention_end+0x122/0x170 [ 1204.775887][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.775935][T18976] ? hfs_extend_file+0xa6/0xcf0 [ 1204.775989][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.776032][T18976] hfs_extend_file+0xa6/0xcf0 [ 1204.776090][T18976] ? __pfx_hfs_extend_file+0x10/0x10 [ 1204.776146][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.776197][T18976] hfs_bmap_reserve+0x2ab/0x3a0 [ 1204.776253][T18976] __hfs_ext_write_extent+0x3c4/0x510 [ 1204.776309][T18976] ? hfs_find_init+0x273/0x330 [ 1204.776349][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.776395][T18976] hfs_ext_write_extent+0x1b7/0x200 [ 1204.776452][T18976] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1204.776514][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.776558][T18976] ? __mpage_writepages+0x1a8/0x210 [ 1204.776594][T18976] ? __pfx___mpage_writepages+0x10/0x10 [ 1204.776631][T18976] hfs_write_inode+0xce/0xab0 [ 1204.776666][T18976] ? __pfx_hfs_write_inode+0x10/0x10 [ 1204.776699][T18976] ? __lock_acquire+0x4a5/0x2630 [ 1204.776752][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1204.776812][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1204.776869][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.776919][T18976] __writeback_single_inode+0xcd4/0x1350 [ 1204.776980][T18976] ? __pfx___writeback_single_inode+0x10/0x10 [ 1204.777038][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777081][T18976] ? do_raw_spin_unlock+0x145/0x1e0 [ 1204.777130][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777177][T18976] writeback_sb_inodes+0x766/0x1c60 [ 1204.777245][T18976] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1204.777301][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1204.777349][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777424][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777467][T18976] ? rcu_is_watching+0x12/0xc0 [ 1204.777518][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777561][T18976] ? queue_io+0x287/0x540 [ 1204.777610][T18976] wb_writeback+0x1bf/0xb90 [ 1204.777671][T18976] ? __pfx_wb_writeback+0x10/0x10 [ 1204.777733][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777782][T18976] ? mark_held_locks+0x40/0x70 [ 1204.777820][T18976] ? _raw_spin_unlock_irq+0x23/0x50 [ 1204.777869][T18976] wb_workfn+0x14f/0xc00 [ 1204.777927][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.777970][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1204.778020][T18976] ? __pfx_wb_workfn+0x10/0x10 [ 1204.778078][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778124][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778169][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778213][T18976] ? rcu_is_watching+0x12/0xc0 [ 1204.778261][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778310][T18976] process_one_work+0xa0e/0x1980 [ 1204.778363][T18976] ? __pfx_process_one_work+0x10/0x10 [ 1204.778403][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778455][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778502][T18976] worker_thread+0x5ef/0xe50 [ 1204.778552][T18976] ? kthread+0x13a/0x450 [ 1204.778587][T18976] ? __pfx_worker_thread+0x10/0x10 [ 1204.778627][T18976] kthread+0x370/0x450 [ 1204.778662][T18976] ? __pfx_kthread+0x10/0x10 [ 1204.778700][T18976] ret_from_fork+0x72b/0xd50 [ 1204.778742][T18976] ? __pfx_ret_from_fork+0x10/0x10 [ 1204.778785][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778829][T18976] ? rcu_is_watching+0x12/0xc0 [ 1204.778878][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1204.778921][T18976] ? __switch_to+0x800/0x1100 [ 1204.778971][T18976] ? __switch_to_asm+0x39/0x70 [ 1204.779017][T18976] ? __pfx_kthread+0x10/0x10 [ 1204.779055][T18976] ret_from_fork_asm+0x1a/0x30 [ 1204.779114][T18976] [ 1205.311787][T27220] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9021'. [ 1205.379974][T18976] hfs: new node 0 already hashed? [ 1205.385846][T18976] ------------[ cut here ]------------ [ 1205.391641][T18976] 1 [ 1205.391657][T18976] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:14/18976 [ 1205.405444][T18976] Modules linked in: [ 1205.409363][T18976] CPU: 0 UID: 0 PID: 18976 Comm: kworker/u8:14 Tainted: G L syzkaller #0 PREEMPT(full) [ 1205.420804][T18976] Tainted: [L]=SOFTLOCKUP [ 1205.425178][T18976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1205.435317][T18976] Workqueue: writeback wb_workfn (flush-7:5) [ 1205.441353][T18976] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1205.447299][T18976] Code: f5 34 63 0a e9 27 3e d1 01 e8 3b 13 e1 00 4c 89 f7 e8 e3 34 63 0a e8 2e 13 e1 00 89 ee 48 c7 c7 c0 e7 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 29 41 d1 01 e8 12 13 e1 00 e8 fd 49 4d 00 e9 85 43 d1 [ 1205.466981][T18976] RSP: 0018:ffffc9000b23f020 EFLAGS: 00010282 [ 1205.473076][T18976] RAX: 000000000000001f RBX: ffff888034d20d00 RCX: 0000000000000000 [ 1205.481087][T18976] RDX: 000000000000001f RSI: ffffffff81e71b29 RDI: fffff52001647df5 [ 1205.489581][T18976] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1205.498159][T18976] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1205.506163][T18976] R13: ffff8880341f8000 R14: ffff8880341f80d8 R15: 0000000000000000 [ 1205.514167][T18976] FS: 0000000000000000(0000) GS:ffff888124386000(0000) knlGS:0000000000000000 [ 1205.523160][T18976] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1205.529792][T18976] CR2: 000000110c2e02cd CR3: 000000007c31f000 CR4: 0000000000350ef0 [ 1205.537798][T18976] Call Trace: [ 1205.541110][T18976] [ 1205.544053][T18976] ? _raw_spin_unlock+0x28/0x50 [ 1205.548950][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.554648][T18976] ? hfs_bnode_put+0x208/0x480 [ 1205.559474][T18976] hfs_bmap_alloc+0x5a7/0x6b0 [ 1205.564208][T18976] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1205.569452][T18976] ? __asan_memcpy+0x3c/0x60 [ 1205.574088][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.579774][T18976] ? hfs_bnode_read.part.0+0x298/0x330 [ 1205.585303][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.590975][T18976] ? folio_mark_accessed+0xf3/0x1040 [ 1205.596891][T18976] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1205.602625][T18976] ? rcu_is_watching+0x12/0xc0 [ 1205.607944][T18976] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1205.614348][T18976] ? do_raw_spin_unlock+0x145/0x1e0 [ 1205.619598][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.625282][T18976] ? _raw_spin_unlock+0x28/0x50 [ 1205.630180][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.635864][T18976] ? hfs_bnode_put+0x208/0x480 [ 1205.640681][T18976] hfs_brec_insert+0x8ba/0xc20 [ 1205.645501][T18976] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1205.650841][T18976] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1205.655916][T18976] __hfs_ext_write_extent+0x3ef/0x510 [ 1205.661351][T18976] ? hfs_find_init+0x273/0x330 [ 1205.666135][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.671819][T18976] hfs_ext_write_extent+0x1b7/0x200 [ 1205.677081][T18976] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1205.682891][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.688564][T18976] ? __mpage_writepages+0x1a8/0x210 [ 1205.693825][T18976] ? __pfx___mpage_writepages+0x10/0x10 [ 1205.699398][T18976] hfs_write_inode+0xce/0xab0 [ 1205.704115][T18976] ? __pfx_hfs_write_inode+0x10/0x10 [ 1205.709884][T18976] ? __lock_acquire+0x4a5/0x2630 [ 1205.715363][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1205.721271][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1205.727143][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.732854][T18976] __writeback_single_inode+0xcd4/0x1350 [ 1205.738519][T18976] ? __pfx___writeback_single_inode+0x10/0x10 [ 1205.744645][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.750331][T18976] ? do_raw_spin_unlock+0x145/0x1e0 [ 1205.755598][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.761262][T18976] writeback_sb_inodes+0x766/0x1c60 [ 1205.766527][T18976] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1205.772229][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1205.778087][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.783773][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.789455][T18976] ? rcu_is_watching+0x12/0xc0 [ 1205.794280][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.799978][T18976] ? queue_io+0x287/0x540 [ 1205.804362][T18976] wb_writeback+0x1bf/0xb90 [ 1205.808932][T18976] ? __pfx_wb_writeback+0x10/0x10 [ 1205.814680][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.820876][T18976] ? mark_held_locks+0x40/0x70 [ 1205.825699][T18976] ? _raw_spin_unlock_irq+0x23/0x50 [ 1205.830991][T18976] wb_workfn+0x14f/0xc00 [ 1205.835298][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.841014][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1205.846863][T18976] ? __pfx_wb_workfn+0x10/0x10 [ 1205.851690][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.857358][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.863031][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.868696][T18976] ? rcu_is_watching+0x12/0xc0 [ 1205.873552][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.879235][T18976] process_one_work+0xa0e/0x1980 [ 1205.884382][T18976] ? __pfx_process_one_work+0x10/0x10 [ 1205.889795][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.895515][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.901181][T18976] worker_thread+0x5ef/0xe50 [ 1205.905842][T18976] ? kthread+0x13a/0x450 [ 1205.910110][T18976] ? __pfx_worker_thread+0x10/0x10 [ 1205.915281][T18976] kthread+0x370/0x450 [ 1205.919387][T18976] ? __pfx_kthread+0x10/0x10 [ 1205.924719][T18976] ret_from_fork+0x72b/0xd50 [ 1205.929345][T18976] ? __pfx_ret_from_fork+0x10/0x10 [ 1205.934467][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.940666][T18976] ? rcu_is_watching+0x12/0xc0 [ 1205.945491][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1205.951248][T18976] ? __switch_to+0x800/0x1100 [ 1205.955962][T18976] ? __switch_to_asm+0x39/0x70 [ 1205.960791][T18976] ? __pfx_kthread+0x10/0x10 [ 1205.965424][T18976] ret_from_fork_asm+0x1a/0x30 [ 1205.970289][T18976] [ 1205.973327][T18976] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1205.980620][T18976] CPU: 0 UID: 0 PID: 18976 Comm: kworker/u8:14 Tainted: G L syzkaller #0 PREEMPT(full) [ 1205.991833][T18976] Tainted: [L]=SOFTLOCKUP [ 1205.996149][T18976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1206.006207][T18976] Workqueue: writeback wb_workfn (flush-7:5) [ 1206.012242][T18976] Call Trace: [ 1206.015515][T18976] [ 1206.018442][T18976] dump_stack_lvl+0x100/0x190 [ 1206.023127][T18976] vpanic+0x552/0x970 [ 1206.027118][T18976] ? __pfx_vpanic+0x10/0x10 [ 1206.031629][T18976] ? lock_release+0x245/0x310 [ 1206.036346][T18976] panic+0xd1/0xe0 [ 1206.040075][T18976] ? __pfx_panic+0x10/0x10 [ 1206.044507][T18976] ? check_panic_on_warn+0x1f/0x90 [ 1206.049632][T18976] check_panic_on_warn.cold+0x19/0x34 [ 1206.055014][T18976] ? hfs_bnode_create.cold+0x41/0x49 [ 1206.060315][T18976] __warn.cold+0x191/0x328 [ 1206.064742][T18976] __report_bug+0x296/0x3d0 [ 1206.069272][T18976] ? hfs_bnode_create.cold+0x41/0x49 [ 1206.074572][T18976] ? __pfx___report_bug+0x10/0x10 [ 1206.079617][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.085266][T18976] ? irq_work_queue+0xce/0x100 [ 1206.090047][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.095710][T18976] ? __wake_up_klogd+0xe2/0x140 [ 1206.100582][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.106231][T18976] ? vprintk_emit+0x1c9/0x6b0 [ 1206.110943][T18976] ? __pfx_vprintk_emit+0x10/0x10 [ 1206.115996][T18976] ? hfs_bnode_create.cold+0x41/0x49 [ 1206.121294][T18976] report_bug+0xb2/0x220 [ 1206.125559][T18976] ? hfs_bnode_create.cold+0x41/0x49 [ 1206.130857][T18976] handle_bug+0x16a/0x2a0 [ 1206.135196][T18976] exc_invalid_op+0x17/0x50 [ 1206.139705][T18976] asm_exc_invalid_op+0x1a/0x20 [ 1206.144573][T18976] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1206.150485][T18976] Code: f5 34 63 0a e9 27 3e d1 01 e8 3b 13 e1 00 4c 89 f7 e8 e3 34 63 0a e8 2e 13 e1 00 89 ee 48 c7 c7 c0 e7 d1 8b e8 40 e1 fa ff 90 <0f> 0b 90 e9 29 41 d1 01 e8 12 13 e1 00 e8 fd 49 4d 00 e9 85 43 d1 [ 1206.170105][T18976] RSP: 0018:ffffc9000b23f020 EFLAGS: 00010282 [ 1206.176179][T18976] RAX: 000000000000001f RBX: ffff888034d20d00 RCX: 0000000000000000 [ 1206.184153][T18976] RDX: 000000000000001f RSI: ffffffff81e71b29 RDI: fffff52001647df5 [ 1206.192125][T18976] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1206.200097][T18976] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1206.208067][T18976] R13: ffff8880341f8000 R14: ffff8880341f80d8 R15: 0000000000000000 [ 1206.216050][T18976] ? vprintk_emit+0x1c9/0x6b0 [ 1206.220769][T18976] ? _raw_spin_unlock+0x28/0x50 [ 1206.225638][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.231289][T18976] ? hfs_bnode_put+0x208/0x480 [ 1206.236078][T18976] hfs_bmap_alloc+0x5a7/0x6b0 [ 1206.240785][T18976] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1206.246003][T18976] ? __asan_memcpy+0x3c/0x60 [ 1206.250611][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.256259][T18976] ? hfs_bnode_read.part.0+0x298/0x330 [ 1206.261738][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.267387][T18976] ? folio_mark_accessed+0xf3/0x1040 [ 1206.272703][T18976] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1206.278451][T18976] ? rcu_is_watching+0x12/0xc0 [ 1206.283241][T18976] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1206.289595][T18976] ? do_raw_spin_unlock+0x145/0x1e0 [ 1206.294817][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.300466][T18976] ? _raw_spin_unlock+0x28/0x50 [ 1206.305336][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.310982][T18976] ? hfs_bnode_put+0x208/0x480 [ 1206.315771][T18976] hfs_brec_insert+0x8ba/0xc20 [ 1206.320565][T18976] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1206.325871][T18976] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1206.330922][T18976] __hfs_ext_write_extent+0x3ef/0x510 [ 1206.336323][T18976] ? hfs_find_init+0x273/0x330 [ 1206.341099][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.346752][T18976] hfs_ext_write_extent+0x1b7/0x200 [ 1206.351987][T18976] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1206.357747][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.363405][T18976] ? __mpage_writepages+0x1a8/0x210 [ 1206.368616][T18976] ? __pfx___mpage_writepages+0x10/0x10 [ 1206.374172][T18976] hfs_write_inode+0xce/0xab0 [ 1206.378861][T18976] ? __pfx_hfs_write_inode+0x10/0x10 [ 1206.384152][T18976] ? __lock_acquire+0x4a5/0x2630 [ 1206.389123][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1206.394976][T18976] ? __writeback_single_inode+0x454/0x1350 [ 1206.400834][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.406498][T18976] __writeback_single_inode+0xcd4/0x1350 [ 1206.412178][T18976] ? __pfx___writeback_single_inode+0x10/0x10 [ 1206.418279][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.423930][T18976] ? do_raw_spin_unlock+0x145/0x1e0 [ 1206.429153][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.434809][T18976] writeback_sb_inodes+0x766/0x1c60 [ 1206.440054][T18976] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1206.445717][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1206.451554][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.457239][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.462894][T18976] ? rcu_is_watching+0x12/0xc0 [ 1206.467698][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.473355][T18976] ? queue_io+0x287/0x540 [ 1206.477716][T18976] wb_writeback+0x1bf/0xb90 [ 1206.482265][T18976] ? __pfx_wb_writeback+0x10/0x10 [ 1206.487329][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.492979][T18976] ? mark_held_locks+0x40/0x70 [ 1206.497758][T18976] ? _raw_spin_unlock_irq+0x23/0x50 [ 1206.502987][T18976] wb_workfn+0x14f/0xc00 [ 1206.507293][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.512972][T18976] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1206.518816][T18976] ? __pfx_wb_workfn+0x10/0x10 [ 1206.523622][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.529278][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.534929][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.540578][T18976] ? rcu_is_watching+0x12/0xc0 [ 1206.545374][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.551032][T18976] process_one_work+0xa0e/0x1980 [ 1206.556004][T18976] ? __pfx_process_one_work+0x10/0x10 [ 1206.561391][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.567049][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.572707][T18976] worker_thread+0x5ef/0xe50 [ 1206.577327][T18976] ? kthread+0x13a/0x450 [ 1206.581580][T18976] ? __pfx_worker_thread+0x10/0x10 [ 1206.586715][T18976] kthread+0x370/0x450 [ 1206.590798][T18976] ? __pfx_kthread+0x10/0x10 [ 1206.595407][T18976] ret_from_fork+0x72b/0xd50 [ 1206.600018][T18976] ? __pfx_ret_from_fork+0x10/0x10 [ 1206.605150][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.610806][T18976] ? rcu_is_watching+0x12/0xc0 [ 1206.615606][T18976] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1206.621267][T18976] ? __switch_to+0x800/0x1100 [ 1206.625972][T18976] ? __switch_to_asm+0x39/0x70 [ 1206.630761][T18976] ? __pfx_kthread+0x10/0x10 [ 1206.635367][T18976] ret_from_fork_asm+0x1a/0x30 [ 1206.640172][T18976] [ 1206.643873][T18976] Kernel Offset: disabled [ 1206.648189][T18976] Rebooting in 86400 seconds..