last executing test programs: 1.438665299s ago: executing program 0 (id=23716): r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2180, 0x0) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92, 0x0, 0x0, 0x4}) 1.266336807s ago: executing program 0 (id=23718): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x8, "004ae9d56a571bfa970548fc3c7b000000000000000000000200", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c) 1.136095682s ago: executing program 0 (id=23720): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$FIONREAD(r0, 0x541b, 0x0) 963.17967ms ago: executing program 3 (id=23724): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/sctp\x00') fstat(r0, &(0x7f0000000700)) 962.59545ms ago: executing program 0 (id=23725): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000100)={{}, {0xf}, 0xbf00}) 841.158877ms ago: executing program 3 (id=23728): syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000000)='./file0\x00', 0xa18c14, &(0x7f0000000240)={[{@rodir}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@uni_xlateno}, {@uni_xlateno}, {@utf8}, {@uni_xlate}, {@shortname_lower}, {@shortname_lower}, {@fat=@errors_continue}, {@utf8}, {@utf8no}]}, 0x1, 0x29b, &(0x7f0000000840)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) 782.035716ms ago: executing program 0 (id=23730): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x25, &(0x7f00000001c0)=0x1, 0x4) 677.340577ms ago: executing program 3 (id=23731): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB="4800000010003b0c0000000000000000f4ff0000", @ANYRES32=0x0, @ANYBLOB="1000000080100000280012800b00010065727370616e0000180002800400120008001500000010000500160001"], 0x48}}, 0x80) 677.253026ms ago: executing program 1 (id=23732): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x100000000006, 0x0) ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000140)={0x0, 0x0, {0x0, 0xb77, 0x3014, 0x0, 0x3, 0x9, 0x1, 0x164ae0bc5ce04ee5}}) 635.184939ms ago: executing program 2 (id=23733): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000340)={'filter\x00', 0x7, 0x4, 0x3e8, 0x218, 0x108, 0x218, 0x218, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@local, @broadcast, 0xff000000, 0xff000000, 0xe, 0xf, {@mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x4b}, {[0xff, 0xff, 0xff, 0xff]}}, {@mac=@local, {[0xff, 0xff, 0x0, 0xff]}}, 0xffff, 0x9, 0x0, 0x40, 0x3f0, 0x2, 'bond0\x00', 'pimreg0\x00', {}, {}, 0x0, 0x4}, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6af, 'syz1\x00', {0xed}}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @remote, @broadcast, 0x8, 0x1}}}, {{@arp={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffff00, 0xffffff00, 0x5, 0xe, {@empty, {[0x0, 0x0, 0xff, 0xff, 0x0, 0xff]}}, {@empty, {[0x0, 0x0, 0xff, 0xff, 0xff]}}, 0x90, 0x9, 0x0, 0x6, 0x9, 0x5, 'veth0_to_bridge\x00', 'gretap0\x00', {}, {0xff}, 0x0, 0x13}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) 567.333546ms ago: executing program 0 (id=23734): r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000c80)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x10, &(0x7f0000001cc0)=ANY=[@ANYBLOB='\f@\x00N']) 521.000407ms ago: executing program 2 (id=23735): r0 = socket(0x2, 0x3, 0xff) getsockopt$inet_mreqn(r0, 0x0, 0x22, 0x0, &(0x7f0000000040)) 520.405057ms ago: executing program 3 (id=23736): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x1) 469.232968ms ago: executing program 1 (id=23737): capset(&(0x7f0000000000)={0x20080522}, &(0x7f00000000c0)={0x0, 0x3, 0x5, 0x7, 0xfffffbff, 0x8}) fsmount(0xffffffffffffffff, 0x0, 0x80) 409.228927ms ago: executing program 2 (id=23738): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000480)={r0, 0x0, 0x0}, 0x20) 398.812385ms ago: executing program 3 (id=23739): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020) 337.255163ms ago: executing program 1 (id=23740): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x13}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f00000003c0)="e02742042d1085849792762f86dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 300.169647ms ago: executing program 2 (id=23741): r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) write$cgroup_int(r0, 0x0, 0x49) 292.741615ms ago: executing program 1 (id=23742): prctl$PR_SET_THP_DISABLE(0x41, 0x3) mprotect(&(0x7f0000003000/0x1000)=nil, 0x1000, 0xf) 244.139716ms ago: executing program 3 (id=23743): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_usb_connect(0x3, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000ce0ab50801222c01e03f0000000109021b00014000000109041300016172d1000905", @ANYRES8=r0, @ANYBLOB='J!'], 0x0) 178.518644ms ago: executing program 1 (id=23744): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) 136.428215ms ago: executing program 2 (id=23745): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@bridge_delvlan={0x18, 0x70, 0x1}, 0x18}, 0x1, 0x0, 0x0, 0x40000050}, 0x0) 22.505364ms ago: executing program 2 (id=23746): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_GENEVE={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_GENEVE_CLASS={0x6, 0x1, 0x3}}}}]}, 0x38}}, 0x0) 0s ago: executing program 1 (id=23747): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'wlan0\x00', &(0x7f00000000c0)=@ethtool_stats}) kernel console output (not intermixed with test programs): nning with blocksize 2048 failed [ 1945.887793][T21621] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=259, location=259 [ 1945.911202][T21621] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=515, location=515 [ 1945.921359][T21621] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1945.933759][T21621] UDF-fs: Scanning with blocksize 4096 failed [ 1945.941751][T21621] UDF-fs: warning (device loop3): udf_fill_super: No partition found (1) [ 1947.121361][ T5888] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1947.210801][T21708] loop1: detected capacity change from 0 to 512 [ 1947.246375][T21708] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 1947.284388][T21708] EXT4-fs (loop1): Errors on filesystem, clearing orphan list. [ 1947.306226][T21708] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1947.319174][ T5888] usb 1-1: Using ep0 maxpacket: 8 [ 1947.327865][ T5888] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1947.339333][ T5888] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1947.351439][ T5888] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1947.361408][ T5888] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1947.377991][ T5888] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1947.388422][ T5888] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1947.398764][ T5888] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1947.418460][ T5888] usb 1-1: config 0 descriptor?? [ 1947.425127][T21690] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1947.439987][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1947.845366][ T5981] usb 1-1: USB disconnect, device number 4 [ 1947.854628][ T5955] Bluetooth: hci4: Opcode 0x0c03 failed: -19 [ 1948.139969][T21739] netlink: 24 bytes leftover after parsing attributes in process `syz.3.21702'. [ 1948.247271][T21725] loop1: detected capacity change from 0 to 32768 [ 1948.276943][T21725] (syz.1.21695,21725,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1948.311244][T21725] (syz.1.21695,21725,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1948.374159][T21725] JBD2: Ignoring recovery information on journal [ 1948.477044][T21725] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1948.490461][T21749] netlink: 12 bytes leftover after parsing attributes in process `syz.0.21707'. [ 1948.744105][ T5944] ocfs2: Unmounting device (7,1) on (node local) [ 1949.161341][ T23] usb 3-1: USB disconnect, device number 2 [ 1949.395716][T21776] sock: sock_timestamping_bind_phc: sock not bind to device [ 1949.764829][T21791] netlink: 76 bytes leftover after parsing attributes in process `syz.2.21726'. [ 1949.795135][T21793] netlink: 'syz.0.21727': attribute type 2 has an invalid length. [ 1950.445627][T21825] loop0: detected capacity change from 0 to 64 [ 1950.515566][T21823] loop3: detected capacity change from 0 to 4096 [ 1950.548599][T21823] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1950.603654][T21832] loop1: detected capacity change from 0 to 256 [ 1950.689053][T21823] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1950.748854][T21832] FAT-fs (loop1): Directory bread(block 64) failed [ 1950.755619][T21832] FAT-fs (loop1): Directory bread(block 65) failed [ 1950.780055][T21832] FAT-fs (loop1): Directory bread(block 66) failed [ 1950.788279][T21823] ntfs3: loop3: ino=21, The size of extended attributes must not exceed 64KiB [ 1950.816851][T21832] FAT-fs (loop1): Directory bread(block 67) failed [ 1950.825258][T21832] FAT-fs (loop1): Directory bread(block 68) failed [ 1950.833137][T21832] FAT-fs (loop1): Directory bread(block 69) failed [ 1950.850036][T21832] FAT-fs (loop1): Directory bread(block 70) failed [ 1950.857063][T21832] FAT-fs (loop1): Directory bread(block 71) failed [ 1950.876048][T21832] FAT-fs (loop1): Directory bread(block 72) failed [ 1950.885449][T21832] FAT-fs (loop1): Directory bread(block 73) failed [ 1951.047125][T21844] loop3: detected capacity change from 0 to 764 [ 1951.070436][T21844] rock: directory entry would overflow storage [ 1951.091796][T21844] rock: sig=0x4654, size=5, remaining=4 [ 1951.262124][T21849] xt_CT: No such helper "netbios-ns" [ 1951.579539][T21867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21762'. [ 1951.839862][T21875] loop3: detected capacity change from 0 to 736 [ 1951.863153][T21873] loop1: detected capacity change from 0 to 4096 [ 1951.900415][T21873] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 1951.972137][T21861] loop0: detected capacity change from 0 to 32768 [ 1951.992977][T21873] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 1952.059186][T21861] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 1952.090213][T21861] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1952.145788][T21889] netlink: 40 bytes leftover after parsing attributes in process `syz.3.21770'. [ 1952.399664][T21861] XFS (loop0): Ending clean mount [ 1952.447121][T21897] overlayfs: conflicting options: metacopy=off,verity=on [ 1952.513426][T21900] loop3: detected capacity change from 0 to 512 [ 1952.532922][T21900] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1952.551241][T21900] EXT4-fs: Ignoring removed i_version option [ 1952.595711][T21900] EXT4-fs (loop3): 1 orphan inode deleted [ 1952.602644][ T5941] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1952.626379][T21900] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1952.950819][T17089] usb 4-1: new full-speed USB device number 17 using dummy_hcd [ 1953.160335][T21922] binder: BC_ATTEMPT_ACQUIRE not supported [ 1953.173585][T17089] usb 4-1: config 0 has an invalid interface number: 120 but max is 0 [ 1953.189795][T17089] usb 4-1: config 0 has no interface number 0 [ 1953.196077][T21922] binder: 21921:21922 ioctl c0306201 2000000003c0 returned -22 [ 1953.213901][T17089] usb 4-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 12349, setting to 64 [ 1953.240791][T17089] usb 4-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 1953.257939][T21928] tc_dump_action: action bad kind [ 1953.282605][T17089] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1953.320067][T17089] usb 4-1: config 0 descriptor?? [ 1953.325947][T21900] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1953.348356][T17089] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.120/input/input116 [ 1953.391594][T21930] loop1: detected capacity change from 0 to 1024 [ 1953.477606][T21930] hfsplus: request for non-existent node 33423360 in B*Tree [ 1953.499103][T21930] hfsplus: request for non-existent node 33423360 in B*Tree [ 1953.632995][ T5888] usb 4-1: USB disconnect, device number 17 [ 1953.783948][T21944] vlan0: left allmulticast mode [ 1954.128240][T21962] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21805'. [ 1954.137979][T21960] netlink: 'syz.1.21804': attribute type 10 has an invalid length. [ 1954.225945][ T5950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1954.424731][T21972] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.21809'. [ 1954.548955][T21976] loop3: detected capacity change from 0 to 256 [ 1954.606147][T21976] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1955.184611][T21993] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21820'. [ 1955.206667][T21979] loop1: detected capacity change from 0 to 32768 [ 1955.260389][T21979] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1955.405441][T21979] XFS (loop1): Ending clean mount [ 1955.449639][T21979] XFS (loop1): Quotacheck needed: Please wait. [ 1955.577539][T21979] XFS (loop1): Quotacheck: Done. [ 1955.757366][ T5944] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1955.886866][ C0] vkms_vblank_simulate: vblank timer overrun [ 1956.324582][ C0] vkms_vblank_simulate: vblank timer overrun [ 1956.330936][T22041] sg_write: data in/out 768/1 bytes for SCSI command 0x0-- guessing data in; [ 1956.330936][T22041] program syz.0.21840 not setting count and/or reply_len properly [ 1956.588043][T22055] netlink: 36 bytes leftover after parsing attributes in process `syz.1.21846'. [ 1956.612971][T22055] netlink: 36 bytes leftover after parsing attributes in process `syz.1.21846'. [ 1956.795963][T22061] xt_ecn: cannot match TCP bits for non-tcp packets [ 1957.015661][T22066] openvswitch: netlink: Actions may not be safe on all matching packets [ 1957.211268][T22049] loop0: detected capacity change from 0 to 32768 [ 1957.281325][T22049] ERROR: (device loop0): dbAllocNext: Corrupt dmap page [ 1957.281325][T22049] [ 1957.322838][T22049] ialloc: diAlloc returned -5! [ 1957.870676][T22088] loop0: detected capacity change from 0 to 1764 [ 1958.271736][T22102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21868'. [ 1958.585570][T22119] loop3: detected capacity change from 0 to 64 [ 1959.243094][T22147] loop0: detected capacity change from 0 to 1024 [ 1959.286977][T22147] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 1959.780839][T22179] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 1960.412152][T11727] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 1960.422493][ T5980] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 1960.458952][T17089] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 1960.612741][ T5980] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1960.624422][T11727] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1960.634155][ T5980] usb 4-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3 [ 1960.643148][T11727] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1960.654163][ T5980] usb 4-1: Product: syz [ 1960.662721][ T5980] usb 4-1: Manufacturer: syz [ 1960.668284][T11727] usb 3-1: Product: syz [ 1960.673751][ T5980] usb 4-1: SerialNumber: syz [ 1960.679866][T11727] usb 3-1: Manufacturer: syz [ 1960.680499][T17089] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 1960.686431][ T5980] usb 4-1: config 0 descriptor?? [ 1960.698646][T17089] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1960.699026][T11727] usb 3-1: SerialNumber: syz [ 1960.718770][T17089] usb 1-1: config 0 descriptor?? [ 1960.727088][ T5980] ch341 4-1:0.0: ch341-uart converter detected [ 1960.748934][T11727] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1960.768981][T18637] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1960.901280][T22229] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 1960.922997][T17089] usb 1-1: Cannot read MAC address [ 1960.938343][T17089] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 1960.954941][T17089] usb 1-1: USB disconnect, device number 5 [ 1960.995028][ C0] usb 3-1: ath9k_htc: invalid pkt_len (fd7e) [ 1961.133177][ T5980] usb 4-1: failed to send control message: -71 [ 1961.148182][ T5980] ch341-uart: probe of ttyUSB0 failed with error -71 [ 1961.162519][ T5980] usb 4-1: USB disconnect, device number 18 [ 1961.179199][ T5980] ch341 4-1:0.0: device disconnected [ 1961.199497][T17089] usb 3-1: USB disconnect, device number 3 [ 1961.298908][T22239] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1961.763607][T18637] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1961.802322][T18637] ath9k_htc: Failed to initialize the device [ 1961.809569][T17089] usb 3-1: ath9k_htc: USB layer deinitialized [ 1962.235502][T22280] netlink: 88 bytes leftover after parsing attributes in process `syz.3.21954'. [ 1962.386110][T22258] loop1: detected capacity change from 0 to 32768 [ 1962.428056][T22258] JBD2: Ignoring recovery information on journal [ 1962.482321][T22258] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1962.564278][T22294] overlay: Unknown parameter 'subj_role' [ 1962.637416][ T5944] ocfs2: Unmounting device (7,1) on (node local) [ 1962.645498][T22297] AppArmor: change_hat: Invalid input, NULL hat and NULL magic [ 1962.752808][T22300] loop1: detected capacity change from 0 to 256 [ 1962.768449][T22302] ieee802154 phy0 wpan0: encryption failed: -90 [ 1962.807791][T18637] usb 4-1: new full-speed USB device number 19 using dummy_hcd [ 1962.875517][T22300] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 1962.910895][T22300] FAT-fs (loop1): Filesystem has been set read-only [ 1962.938297][T22300] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 1962.955722][T22300] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 1962.997622][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 1962.997637][ T27] audit: type=1800 audit(2000004777.276:3637): pid=22300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.21961" name="file1" dev="loop1" ino=1048796 res=0 errno=0 [ 1962.998520][T22300] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 1963.060679][T18637] usb 4-1: New USB device found, idVendor=0a2c, idProduct=0008, bcdDevice=c7.b3 [ 1963.074425][T18637] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1963.106305][T18637] usb 4-1: Product: syz [ 1963.110570][T18637] usb 4-1: Manufacturer: syz [ 1963.124954][T18637] usb 4-1: SerialNumber: syz [ 1963.136549][T18637] usb 4-1: config 0 descriptor?? [ 1963.151030][T18637] cypress_cy7c63 4-1:0.0: Cypress CY7C63xxx device now attached [ 1963.373662][ T5981] usb 4-1: USB disconnect, device number 19 [ 1963.387507][ T5981] cypress_cy7c63 4-1:0.0: Cypress CY7C63xxx device now disconnected [ 1963.414631][T22320] netlink: 264 bytes leftover after parsing attributes in process `syz.1.21973'. [ 1963.431696][T22320] netlink: 264 bytes leftover after parsing attributes in process `syz.1.21973'. [ 1963.445046][T22322] vivid-001: disconnect [ 1963.445360][T22320] netlink: 175 bytes leftover after parsing attributes in process `syz.1.21973'. [ 1963.460499][T22321] vivid-001: reconnect [ 1963.541772][T22326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21976'. [ 1963.649637][T22330] loop0: detected capacity change from 0 to 1024 [ 1963.780982][ T59] hfsplus: b-tree write err: -5, ino 25 [ 1963.800142][ T59] hfsplus: b-tree write err: -5, ino 4 [ 1963.811457][ T59] hfsplus: b-tree write err: -5, ino 2 [ 1964.022471][T22346] loop3: detected capacity change from 0 to 8 [ 1964.041577][T22348] loop1: detected capacity change from 0 to 512 [ 1964.060330][T22348] EXT4-fs (loop1): Test dummy encryption mode enabled [ 1964.097632][T22346] SQUASHFS error: Failed to read block 0x33c: -5 [ 1964.098608][T22348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1964.116549][T22346] SQUASHFS error: Unable to read metadata cache entry [33c] [ 1964.125753][T22346] SQUASHFS error: Failed to read block 0x85: -5 [ 1964.132912][T22346] SQUASHFS error: Failed to read block 0x85: -5 [ 1964.150374][ T27] audit: type=1800 audit(2000004778.499:3638): pid=22346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.21984" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 1964.271843][T22348] EXT4-fs (loop1): Couldn't remount RDWR because of unprocessed orphan inode list. Please umount/remount instead [ 1964.421669][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1964.578536][ T27] audit: type=1326 audit(2000004778.961:3639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.602181][ C0] vkms_vblank_simulate: vblank timer overrun [ 1964.630144][ T27] audit: type=1326 audit(2000004778.961:3640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.675081][ T27] audit: type=1326 audit(2000004778.971:3641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.734889][ T27] audit: type=1326 audit(2000004778.971:3643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.758197][ C0] vkms_vblank_simulate: vblank timer overrun [ 1964.772126][ T27] audit: type=1326 audit(2000004778.971:3642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.800753][ T27] audit: type=1326 audit(2000004778.971:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.829859][ T5981] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 1964.869040][ T27] audit: type=1326 audit(2000004778.971:3645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.892557][ C0] vkms_vblank_simulate: vblank timer overrun [ 1964.902247][ T27] audit: type=1326 audit(2000004778.971:3646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22372 comm="syz.1.21994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1964.926656][ C0] vkms_vblank_simulate: vblank timer overrun [ 1965.057459][ T5981] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 10 [ 1965.090533][ T5981] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024 [ 1965.121166][ T5981] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=69.cf [ 1965.130806][ T5981] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1965.147003][ T5981] usb 1-1: Product: syz [ 1965.155841][ T5981] usb 1-1: Manufacturer: syz [ 1965.163312][T22391] loop3: detected capacity change from 0 to 2048 [ 1965.170491][ T5981] usb 1-1: SerialNumber: syz [ 1965.184555][ T5981] usb 1-1: config 0 descriptor?? [ 1965.196878][T22391] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1965.209721][ T5981] usb 1-1: Found UVC 0.00 device syz (18ec:3288) [ 1965.219159][ T5981] usb 1-1: No valid video chain found. [ 1965.253504][T22394] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1965.458538][ T5981] usb 1-1: USB disconnect, device number 6 [ 1965.488738][T22383] loop1: detected capacity change from 0 to 32768 [ 1965.518401][T22383] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.22003 (22383) [ 1965.590221][T22383] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1965.602608][T22383] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1965.616383][T22383] BTRFS info (device loop1): using free space tree [ 1965.695279][T22383] BTRFS info (device loop1): enabling ssd optimizations [ 1965.705868][T22383] BTRFS info (device loop1): auto enabling async discard [ 1965.818515][ T5944] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1965.966239][ C0] vkms_vblank_simulate: vblank timer overrun [ 1966.600441][T18637] usb 2-1: new high-speed USB device number 125 using dummy_hcd [ 1966.633818][T22443] netlink: 48 bytes leftover after parsing attributes in process `syz.3.22024'. [ 1966.765937][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1966.772635][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1966.778053][T18637] usb 2-1: Using ep0 maxpacket: 8 [ 1966.798211][T18637] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1966.830368][T18637] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1966.846035][T18637] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1966.867444][T22449] netlink: 220 bytes leftover after parsing attributes in process `syz.0.22027'. [ 1966.880918][T18637] usb 2-1: Product: syz [ 1966.885246][T18637] usb 2-1: Manufacturer: syz [ 1966.908025][T18637] usb 2-1: SerialNumber: syz [ 1967.153083][T18637] usb 2-1: Handspring Visor / Palm OS: No valid connect info available [ 1967.173747][T18637] usb 2-1: Handspring Visor / Palm OS: port 82, is for unknown use [ 1967.204708][T18637] usb 2-1: Handspring Visor / Palm OS: port 223, is for HotSync use [ 1967.223924][T18637] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1967.235174][T22467] dlm: Unknown command passed to DLM device : 11 [ 1967.235174][T22467] [ 1967.345617][T18637] usb 2-1: palm_os_3_probe - error -71 getting bytes available request [ 1967.360787][T18637] visor 2-1:1.0: Handspring Visor / Palm OS converter detected [ 1967.371761][T18637] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1967.384728][T18637] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1967.397793][T18637] usb 2-1: USB disconnect, device number 125 [ 1967.433907][T18637] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1967.459269][ T5981] usb 4-1: new full-speed USB device number 20 using dummy_hcd [ 1967.463369][T18637] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1967.487744][T18637] visor 2-1:1.0: device disconnected [ 1967.647008][ T5981] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1967.655927][ T5981] usb 4-1: not running at top speed; connect to a high speed hub [ 1967.680427][T22485] No such timeout policy "syz0" [ 1967.683067][ T5981] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1967.709733][ T5981] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1967.720501][ T5981] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1967.748120][ T5981] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 8193, setting to 64 [ 1967.783649][T22489] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 1967.783740][ T5981] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1967.813069][ T5981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1967.821117][ T5981] usb 4-1: Product: syz [ 1967.840587][ T5981] usb 4-1: Manufacturer: syz [ 1967.845344][ T5981] usb 4-1: SerialNumber: syz [ 1967.994187][T22497] netlink: 56 bytes leftover after parsing attributes in process `syz.0.22050'. [ 1968.083860][ T5981] usb 4-1: 0:2 : does not exist [ 1968.140669][ T5981] usb 4-1: USB disconnect, device number 20 [ 1968.180508][T22505] loop0: detected capacity change from 0 to 256 [ 1968.200590][ T7795] udevd[7795]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1968.291208][T22505] FAT-fs (loop0): Directory bread(block 64) failed [ 1968.312706][T22505] FAT-fs (loop0): Directory bread(block 65) failed [ 1968.322577][T22505] FAT-fs (loop0): Directory bread(block 66) failed [ 1968.347849][T22505] FAT-fs (loop0): Directory bread(block 67) failed [ 1968.357732][T22505] FAT-fs (loop0): Directory bread(block 68) failed [ 1968.367157][T22505] FAT-fs (loop0): Directory bread(block 69) failed [ 1968.376062][T22505] FAT-fs (loop0): Directory bread(block 70) failed [ 1968.385417][T22505] FAT-fs (loop0): Directory bread(block 71) failed [ 1968.393659][T22505] FAT-fs (loop0): Directory bread(block 72) failed [ 1968.414470][T22505] FAT-fs (loop0): Directory bread(block 73) failed [ 1968.521435][ T27] kauditd_printk_skb: 1 callbacks suppressed [ 1968.521448][ T27] audit: type=1400 audit(2000004783.199:3648): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//(@\)//&@},['%%&\#*" pid=22517 comm="syz.2.22062" [ 1968.627418][T22522] netlink: 'syz.0.22063': attribute type 1 has an invalid length. [ 1969.241165][T22555] loop1: detected capacity change from 0 to 1764 [ 1969.285989][T22555] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1969.683801][T22577] loop1: detected capacity change from 0 to 64 [ 1969.802115][T22583] netlink: 'syz.0.22092': attribute type 11 has an invalid length. [ 1970.100384][T22594] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.22098'. [ 1970.120328][T22595] CIFS: VFS: Malformed UNC in devname [ 1970.130707][T22597] loop1: detected capacity change from 0 to 256 [ 1970.168083][T22597] FAT-fs (loop1): Directory bread(block 64) failed [ 1970.188009][T22597] FAT-fs (loop1): Directory bread(block 65) failed [ 1970.206567][T22597] FAT-fs (loop1): Directory bread(block 66) failed [ 1970.224148][T22597] FAT-fs (loop1): Directory bread(block 67) failed [ 1970.254980][T22597] FAT-fs (loop1): Directory bread(block 68) failed [ 1970.264964][T22597] FAT-fs (loop1): Directory bread(block 69) failed [ 1970.271613][T22597] FAT-fs (loop1): Directory bread(block 70) failed [ 1970.329437][T22597] FAT-fs (loop1): Directory bread(block 71) failed [ 1970.348493][T22597] FAT-fs (loop1): Directory bread(block 72) failed [ 1970.355404][T22597] FAT-fs (loop1): Directory bread(block 73) failed [ 1970.426671][T22582] loop3: detected capacity change from 0 to 32768 [ 1970.462658][T22582] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.22093 (22582) [ 1970.498489][T22582] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1970.526734][T22582] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1970.548401][T22582] BTRFS info (device loop3): using free space tree [ 1970.608847][T18637] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 1970.730138][T22582] BTRFS info (device loop3): enabling ssd optimizations [ 1970.737383][T22582] BTRFS info (device loop3): auto enabling async discard [ 1970.773432][T22625] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 1970.807359][T18637] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 1970.823090][T18637] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1970.845929][T18637] usb 1-1: config 220 has no interface number 2 [ 1970.860472][T18637] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1970.874783][ T5950] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1970.888801][T18637] usb 1-1: config 220 interface 0 has no altsetting 0 [ 1970.895747][T18637] usb 1-1: config 220 interface 76 has no altsetting 0 [ 1970.925738][T18637] usb 1-1: config 220 interface 1 has no altsetting 0 [ 1970.940673][T18637] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1970.953655][T18637] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1970.965720][T18637] usb 1-1: Product: syz [ 1970.970174][T18637] usb 1-1: Manufacturer: syz [ 1970.977800][T18637] usb 1-1: SerialNumber: syz [ 1971.105689][ T7795] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop3 scanned by udevd (7795) [ 1971.197939][T18637] usb 1-1: selecting invalid altsetting 0 [ 1971.204508][T18637] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 1971.223770][T18637] usb 1-1: No valid video chain found. [ 1971.232885][ T5980] usb 2-1: new full-speed USB device number 126 using dummy_hcd [ 1971.245373][T18637] usb 1-1: selecting invalid altsetting 0 [ 1971.261444][T18637] usbtest: probe of 1-1:220.1 failed with error -22 [ 1971.279660][T18637] usb 1-1: USB disconnect, device number 7 [ 1971.423093][ T5980] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1971.442902][ T5980] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1971.473844][ T5980] usb 2-1: config 0 descriptor?? [ 1971.730057][ T5980] [drm] vendor descriptor length:6 data:06 5f 01 00 00 00 00 00 00 00 00 [ 1971.781864][ T5980] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 1971.903163][ T5980] [drm:udl_init] *ERROR* Selecting channel failed [ 1972.028429][ T5980] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2 [ 1972.047593][ T5980] [drm] Initialized udl on minor 2 [ 1972.063002][ T5980] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1972.085900][T22650] netlink: 268 bytes leftover after parsing attributes in process `syz.0.22118'. [ 1972.098953][ T5980] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1972.116754][T18637] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1972.137152][ T5980] usb 2-1: USB disconnect, device number 126 [ 1972.143623][T18637] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1972.311957][T22656] xt_TCPMSS: Only works on TCP SYN packets [ 1972.565962][T22664] loop1: detected capacity change from 0 to 2048 [ 1972.614167][T22664] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 1972.661264][T22664] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1973.076436][T22688] loop3: detected capacity change from 0 to 128 [ 1973.528341][T22707] loop3: detected capacity change from 0 to 128 [ 1973.616687][T22707] syz.3.22146: attempt to access beyond end of device [ 1973.616687][T22707] loop3: rw=0, sector=25674, nr_sectors = 2 limit=128 [ 1973.656818][T22707] Buffer I/O error on dev loop3, logical block 12837, async page read [ 1973.695097][T22707] Trying to free block not in datazone [ 1973.836324][T22689] loop0: detected capacity change from 0 to 32768 [ 1974.568712][T22739] cgroup: Unexpected value for 'nofavordynmods' [ 1975.268613][ T23] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 1975.275056][T22755] loop0: detected capacity change from 0 to 32768 [ 1975.391220][T22768] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.22176'. [ 1975.410027][T22768] debugfs: Directory '!!' with parent 'ieee80211' already present! [ 1975.478075][ T23] usb 4-1: Using ep0 maxpacket: 32 [ 1975.495943][ T23] usb 4-1: config 0 has an invalid interface number: 16 but max is 0 [ 1975.513078][ T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1975.528439][ T23] usb 4-1: config 0 has no interface number 0 [ 1975.535219][ T23] usb 4-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 255 [ 1975.549066][ T23] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1975.567937][ T23] usb 4-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d [ 1975.595293][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1975.610804][ T23] usb 4-1: Product: syz [ 1975.625628][ T23] usb 4-1: Manufacturer: syz [ 1975.635302][ T23] usb 4-1: SerialNumber: syz [ 1975.653900][ T23] usb 4-1: config 0 descriptor?? [ 1975.668383][T22757] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1975.700002][ T23] usb 4-1: Quirk or no altest; falling back to MIDI 1.0 [ 1975.791112][T17089] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 1975.937343][ T23] usb 4-1: USB disconnect, device number 21 [ 1976.004189][T17089] usb 3-1: not running at top speed; connect to a high speed hub [ 1976.031044][T17089] usb 3-1: config 129 has an invalid interface number: 35 but max is 0 [ 1976.041949][T17089] usb 3-1: config 129 has no interface number 0 [ 1976.050438][T17089] usb 3-1: config 129 interface 35 has no altsetting 0 [ 1976.064888][T17089] usb 3-1: New USB device found, idVendor=1a0a, idProduct=0102, bcdDevice=26.99 [ 1976.076980][T17089] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1976.087134][T17089] usb 3-1: Product: syz [ 1976.093921][T17089] usb 3-1: Manufacturer: syz [ 1976.100617][T17089] usb 3-1: SerialNumber: syz [ 1976.302624][T22782] loop1: detected capacity change from 0 to 32768 [ 1976.311010][T17089] usb_ehset_test: probe of 3-1:129.35 failed with error -32 [ 1976.344233][T17089] usb 3-1: USB disconnect, device number 4 [ 1976.370376][T22782] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1976.387713][ T5980] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 1976.431044][T22782] XFS (loop1): Ending clean mount [ 1976.439772][T22782] XFS (loop1): Quotacheck needed: Please wait. [ 1976.518224][T22782] XFS (loop1): Quotacheck: Done. [ 1976.559709][T22797] netlink: 'syz.3.22187': attribute type 5 has an invalid length. [ 1976.564837][ T5980] usb 1-1: Using ep0 maxpacket: 8 [ 1976.603227][ T5980] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 1976.618522][ T5980] usb 1-1: config 179 has no interface number 0 [ 1976.651026][ T5980] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 1976.664515][ T5980] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 1976.676271][ T5980] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1976.688038][ T5980] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 1976.700504][ T5980] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1976.714858][ T5980] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1976.743612][ T5980] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1976.761672][T22787] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1976.763223][ T5944] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1976.928526][ C1] vkms_vblank_simulate: vblank timer overrun [ 1977.051185][ C1] vkms_vblank_simulate: vblank timer overrun [ 1977.244194][T17089] usb 1-1: USB disconnect, device number 8 [ 1977.244191][ C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 1977.244322][ C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1977.340872][T22813] netlink: 'syz.2.22195': attribute type 1 has an invalid length. [ 1977.360324][T22813] netlink: 112865 bytes leftover after parsing attributes in process `syz.2.22195'. [ 1977.738831][ T5980] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 1977.857474][T22836] loop3: detected capacity change from 0 to 2048 [ 1977.885848][T22836] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1977.890252][T22838] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.22207'. [ 1977.928852][T22838] debugfs: Directory '!!' with parent 'ieee80211' already present! [ 1977.929384][T22836] NILFS (loop3): unrecognized mount option "g)-aؠ" [ 1977.960302][ T5980] usb 3-1: config index 0 descriptor too short (expected 133, got 72) [ 1977.976509][ T5980] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1977.990239][ T5980] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1978.002745][ T5980] usb 3-1: Product: syz [ 1978.006987][ T5980] usb 3-1: Manufacturer: syz [ 1978.011906][ T5980] usb 3-1: SerialNumber: syz [ 1978.052972][ T5980] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1978.095772][T18637] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1978.155867][T22836] NILFS (loop3): device size too small [ 1978.324970][ C0] usb 3-1: ath9k_htc: over RX MAX_PKT_NUM [ 1978.540663][ T5980] usb 3-1: USB disconnect, device number 5 [ 1979.068499][T18637] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1979.119607][T18637] ath9k_htc: Failed to initialize the device [ 1979.126518][ T5980] usb 3-1: ath9k_htc: USB layer deinitialized [ 1979.364243][ T27] audit: type=1326 audit(2000004794.829:3649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22893 comm="syz.1.22235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1979.446253][ T27] audit: type=1326 audit(2000004794.829:3650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22893 comm="syz.1.22235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1979.471385][ T27] audit: type=1326 audit(2000004794.829:3651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22893 comm="syz.1.22235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1979.496744][ T27] audit: type=1326 audit(2000004794.829:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22893 comm="syz.1.22235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1979.564698][T22900] loop0: detected capacity change from 0 to 4096 [ 1979.578883][ T27] audit: type=1326 audit(2000004794.829:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22893 comm="syz.1.22235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1979.609598][T22900] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1979.744282][T22900] ntfs3: loop0: failed to convert "c46c" to macroman [ 1980.261239][T22933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22253'. [ 1980.286744][T22931] netlink: 209820 bytes leftover after parsing attributes in process `syz.1.22254'. [ 1980.370858][T22937] netlink: 'syz.3.22256': attribute type 1 has an invalid length. [ 1980.863933][T22951] loop0: detected capacity change from 0 to 4096 [ 1980.880063][T22951] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 1981.765219][ T23] usb 2-1: new high-speed USB device number 127 using dummy_hcd [ 1981.827033][T22996] netlink: 68 bytes leftover after parsing attributes in process `syz.0.22280'. [ 1981.991128][ T23] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1982.012945][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1982.025581][ T23] usb 2-1: Product: syz [ 1982.037030][ T23] usb 2-1: Manufacturer: syz [ 1982.041791][ T23] usb 2-1: SerialNumber: syz [ 1982.077301][ T23] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1982.106917][T17089] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1982.481643][T23028] netlink: 'syz.0.22290': attribute type 1 has an invalid length. [ 1982.519966][T23028] netlink: 224 bytes leftover after parsing attributes in process `syz.0.22290'. [ 1982.544150][T18637] usb 2-1: USB disconnect, device number 127 [ 1982.949422][ T23] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 1983.110745][T17089] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1983.137087][T17089] ath9k_htc: Failed to initialize the device [ 1983.147425][T18637] usb 2-1: ath9k_htc: USB layer deinitialized [ 1983.154335][ T23] usb 4-1: Using ep0 maxpacket: 16 [ 1983.163691][ T23] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1983.182334][ T23] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1983.208736][ T23] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1983.227811][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1983.243179][ T23] usb 4-1: Product: syz [ 1983.261691][ T23] usb 4-1: Manufacturer: syz [ 1983.276707][ T23] usb 4-1: SerialNumber: syz [ 1983.506970][T23064] loop0: detected capacity change from 0 to 256 [ 1983.699392][ T23] usb 4-1: cannot find UAC_HEADER [ 1983.746521][ T23] snd-usb-audio: probe of 4-1:1.0 failed with error -22 [ 1983.780287][ T23] usb 4-1: USB disconnect, device number 22 [ 1983.835047][ T7795] udevd[7795]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1983.928582][T23079] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 1984.013295][T23082] loop1: detected capacity change from 0 to 512 [ 1984.053201][T23082] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.22319: Invalid inode bitmap blk 4 in block_group 0 [ 1984.099299][T23082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1984.250303][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1984.486809][T18637] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 1984.511354][T23096] netlink: 12 bytes leftover after parsing attributes in process `syz.3.22325'. [ 1984.524361][T23096] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1984.664880][T23088] loop0: detected capacity change from 0 to 32768 [ 1984.676246][T18637] usb 3-1: Using ep0 maxpacket: 32 [ 1984.693509][T18637] usb 3-1: config 0 has an invalid interface number: 35 but max is 0 [ 1984.703327][T18637] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1984.740482][T18637] usb 3-1: config 0 has no interface number 0 [ 1984.762174][T18637] usb 3-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1984.807562][T18637] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 1984.817871][T18637] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1984.827279][T18637] usb 3-1: Product: syz [ 1984.833403][T18637] usb 3-1: Manufacturer: syz [ 1984.839381][T18637] usb 3-1: SerialNumber: syz [ 1984.866332][T18637] usb 3-1: config 0 descriptor?? [ 1984.883427][T18637] radio-si470x 3-1:0.35: could not find interrupt in endpoint [ 1984.896916][T23108] netlink: 'syz.3.22332': attribute type 3 has an invalid length. [ 1984.898719][T18637] radio-si470x: probe of 3-1:0.35 failed with error -5 [ 1984.907652][T23108] netlink: 3 bytes leftover after parsing attributes in process `syz.3.22332'. [ 1985.045857][ T5980] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 1985.086333][T18637] radio-raremono 3-1:0.35: this is not Thanko's Raremono. [ 1985.099886][T18637] usbhid 3-1:0.35: couldn't find an input interrupt endpoint [ 1985.223830][ T5980] usb 2-1: Using ep0 maxpacket: 32 [ 1985.234850][ T5980] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1985.262702][ T5980] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1985.283577][T18637] usb 3-1: USB disconnect, device number 6 [ 1985.302369][ T5980] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1985.304973][T23117] netlink: 'syz.3.22335': attribute type 1 has an invalid length. [ 1985.324571][ T5980] usb 2-1: Product: syz [ 1985.330993][ T5980] usb 2-1: Manufacturer: syz [ 1985.338763][ T5980] usb 2-1: SerialNumber: syz [ 1985.340010][T23117] netlink: 'syz.3.22335': attribute type 3 has an invalid length. [ 1985.356741][T23117] netlink: 224 bytes leftover after parsing attributes in process `syz.3.22335'. [ 1985.365949][ T5980] usb 2-1: config 0 descriptor?? [ 1985.368119][ T5980] usb 2-1: bad CDC descriptors [ 1985.378939][ T5980] usb 2-1: unsupported MDLM descriptors [ 1985.597473][T18637] usb 2-1: USB disconnect, device number 2 [ 1985.745242][T17089] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 1985.848027][ C1] ip6_tunnel: ip6gretap3 xmit: Local address not yet configured! [ 1985.872997][T23131] x_tables: unsorted underflow at hook 4 [ 1985.931473][T17089] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1985.941312][T17089] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1985.972219][T17089] usb 4-1: config 0 descriptor?? [ 1985.981068][T17089] cp210x 4-1:0.0: cp210x converter detected [ 1986.170348][T17089] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121 [ 1986.190094][T17089] cp210x 4-1:0.0: querying part number failed [ 1986.214496][T17089] usb 4-1: cp210x converter now attached to ttyUSB0 [ 1986.330155][T23149] libceph: resolve '@e2OAqcz' (ret=-3): failed [ 1986.374176][T17089] usb 4-1: USB disconnect, device number 23 [ 1986.439171][T17089] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1986.481401][T17089] cp210x 4-1:0.0: device disconnected [ 1987.105971][T17089] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 1987.211342][T23179] --map-set only usable from mangle table [ 1987.301615][T17089] usb 2-1: Using ep0 maxpacket: 16 [ 1987.312861][T17089] usb 2-1: config index 0 descriptor too short (expected 51443, got 18) [ 1987.330648][T17089] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1987.349775][T17089] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1987.373936][T17089] usb 2-1: Product: syz [ 1987.383520][T17089] usb 2-1: Manufacturer: syz [ 1987.388980][T17089] usb 2-1: SerialNumber: syz [ 1987.409719][T17089] r8152-cfgselector 2-1: config 0 descriptor?? [ 1987.636668][T17089] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 1987.648172][T23197] netlink: 28 bytes leftover after parsing attributes in process `syz.0.22372'. [ 1987.668221][T23195] netlink: 20 bytes leftover after parsing attributes in process `syz.3.22371'. [ 1987.767317][T23203] vim2m vim2m.0: Fourcc format (0x47425247) invalid. [ 1987.869204][T17089] usb 2-1: USB disconnect, device number 3 [ 1988.175126][T23224] loop3: detected capacity change from 0 to 136 [ 1988.195204][T23224] Attempt to read inode for relocated directory [ 1988.504382][T23238] loop1: detected capacity change from 0 to 512 [ 1988.626754][T23238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1988.700254][T23238] ext4 filesystem being mounted at /5599/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1988.887146][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1989.080065][T23267] netlink: 'syz.1.22403': attribute type 2 has an invalid length. [ 1989.098176][T23267] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.22403'. [ 1989.295080][T23279] geneve4: entered allmulticast mode [ 1990.149964][T23308] netlink: 'syz.2.22424': attribute type 2 has an invalid length. [ 1990.401950][T23298] loop1: detected capacity change from 0 to 32768 [ 1990.442967][T23298] add_index: next_index = 0. Resetting! [ 1990.450906][T23298] find_entry called with index >= next_index [ 1990.475371][T23298] find_entry called with index >= next_index [ 1990.489437][T23298] find_entry called with index >= next_index [ 1990.495892][T23298] find_entry called with index >= next_index [ 1990.842375][T23337] loop3: detected capacity change from 0 to 512 [ 1990.949363][T23337] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1991.082084][T23347] syz.2.22442: attempt to access beyond end of device [ 1991.082084][T23347] loop5: rw=0, sector=0, nr_sectors = 1 limit=0 [ 1991.098039][T23347] FAT-fs (loop5): unable to read boot sector [ 1991.160595][ T5950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1991.570889][ T5981] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 1991.784820][ T5981] usb 4-1: Using ep0 maxpacket: 16 [ 1991.794429][ T5981] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 1991.813386][ T5981] usb 4-1: config 0 has an invalid descriptor of length 214, skipping remainder of the config [ 1991.843340][ T5981] usb 4-1: config 0 has no interface number 0 [ 1991.856885][ T5981] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 1991.869538][ T5981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1991.888276][ T5981] usb 4-1: Product: syz [ 1991.896571][ T5981] usb 4-1: Manufacturer: syz [ 1991.906015][ T5981] usb 4-1: SerialNumber: syz [ 1991.919873][ T5981] usb 4-1: config 0 descriptor?? [ 1992.033109][T23389] loop1: detected capacity change from 0 to 256 [ 1992.184852][T23395] netlink: 144 bytes leftover after parsing attributes in process `syz.0.22466'. [ 1992.194421][ T5981] usb 4-1: USB disconnect, device number 24 [ 1992.213262][T23395] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 1992.289350][T23399] loop1: detected capacity change from 0 to 4096 [ 1992.338180][T23399] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1992.348413][T23399] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1992.367353][T23399] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1992.394948][T23399] ntfs: volume version 3.1. [ 1992.509576][ T5944] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 1992.853837][T23411] netlink: 'syz.2.22473': attribute type 11 has an invalid length. [ 1993.991120][ T27] audit: type=1326 audit(2000004810.525:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23459 comm="syz.1.22498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1993.994140][T23458] loop0: detected capacity change from 0 to 256 [ 1994.014148][ C0] vkms_vblank_simulate: vblank timer overrun [ 1994.049341][ T27] audit: type=1326 audit(2000004810.525:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23459 comm="syz.1.22498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1994.083306][T23458] exfat: Unknown parameter 'd' [ 1994.124174][T23458] afs: Unexpected value for 'dyn' [ 1994.156881][ T27] audit: type=1326 audit(2000004810.568:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23459 comm="syz.1.22498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1994.261748][ T27] audit: type=1326 audit(2000004810.568:3657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23459 comm="syz.1.22498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b299c799 code=0x7ffc0000 [ 1994.547454][T23486] netlink: 8 bytes leftover after parsing attributes in process `syz.0.22511'. [ 1994.944247][T23503] loop3: detected capacity change from 0 to 4096 [ 1995.008722][T23503] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1995.096456][T23503] ntfs3: loop3: Failed to load $Extend (-22). [ 1995.119948][T23503] ntfs3: loop3: Failed to initialize $Extend. [ 1995.257104][T23519] QAT: Device 3 not found [ 1995.760716][T23539] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 1996.064759][T23552] bridge8: entered promiscuous mode [ 1996.226656][T23555] netlink: 'syz.3.22542': attribute type 5 has an invalid length. [ 1996.312886][T23558] netlink: 200 bytes leftover after parsing attributes in process `syz.3.22544'. [ 1996.671079][T23572] IPv6: Can't replace route, no match found [ 1997.118169][T23562] loop3: detected capacity change from 0 to 32768 [ 1997.204726][T23562] JBD2: Ignoring recovery information on journal [ 1997.289372][T23562] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1997.339895][ T5981] usb 1-1: new full-speed USB device number 9 using dummy_hcd [ 1997.408883][T23562] OCFS2: ERROR (device loop3): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 1997.433255][T23562] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1997.448011][T23607] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1997.454867][T23562] OCFS2: File system is now read-only. [ 1997.465231][T23607] overlayfs: missing 'lowerdir' [ 1997.479537][T23562] (syz.3.22546,23562,1):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 1997.539020][ T5981] usb 1-1: config index 0 descriptor too short (expected 39, got 27) [ 1997.555677][ T5981] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 1997.572168][ T5981] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1997.594788][ T5981] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1997.609553][ T5981] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1997.617736][T23612] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1997.632235][ T5950] ocfs2: Unmounting device (7,3) on (node local) [ 1997.634693][ T5981] usb 1-1: Product: syz [ 1997.643506][ T5981] usb 1-1: Manufacturer: syz [ 1997.648689][ T5981] usb 1-1: SerialNumber: syz [ 1997.705509][ T5981] usb 1-1: config 0 descriptor?? [ 1997.737457][ T5981] hub 1-1:0.0: bad descriptor, ignoring hub [ 1997.759914][ T5981] hub: probe of 1-1:0.0 failed with error -5 [ 1997.780393][ T5981] usb 1-1: selecting invalid altsetting 0 [ 1998.132906][T17089] usb 1-1: USB disconnect, device number 9 [ 1998.745906][T23694] loop0: detected capacity change from 0 to 256 [ 1998.781665][T23692] loop3: detected capacity change from 0 to 4096 [ 1998.818989][T23692] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 1998.894179][T23692] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1999.376315][T23728] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22591'. [ 1999.524456][ T27] audit: type=1326 audit(2000004816.469:3658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 1999.559755][T23736] loop3: detected capacity change from 0 to 512 [ 1999.583284][ T27] audit: type=1326 audit(2000004816.469:3659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 1999.615984][T23736] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1999.616476][ T27] audit: type=1326 audit(2000004816.480:3660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 1999.651280][ T27] audit: type=1326 audit(2000004816.480:3661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc46d39c502 code=0x7ffc0000 [ 1999.661760][T23745] CIFS mount error: No usable UNC path provided in device string! [ 1999.661760][T23745] [ 1999.675810][ T27] audit: type=1326 audit(2000004816.480:3662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc46d35cfce code=0x7ffc0000 [ 1999.710386][ T27] audit: type=1326 audit(2000004816.480:3663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc46d39c5c7 code=0x7ffc0000 [ 1999.726970][T23736] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 1999.734507][ T27] audit: type=1326 audit(2000004816.480:3664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc46d35cfce code=0x7ffc0000 [ 1999.768093][ T27] audit: type=1326 audit(2000004816.502:3665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc46d39c42b code=0x7ffc0000 [ 1999.792694][T23745] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1999.800886][T23736] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.22597: Corrupt directory, running e2fsck is recommended [ 1999.801815][ T27] audit: type=1326 audit(2000004816.512:3666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc46d35cfce code=0x7ffc0000 [ 1999.838376][ T27] audit: type=1326 audit(2000004816.512:3667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23735 comm="syz.3.22597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc46d35cfce code=0x7ffc0000 [ 1999.877428][T23736] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 1999.906572][T23736] EXT4-fs error (device loop3): ext4_iget_extra_inode:4732: inode #15: comm syz.3.22597: corrupted in-inode xattr: e_name out of bounds [ 1999.941851][T23736] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.22597: couldn't read orphan inode 15 (err -117) [ 1999.968894][T23736] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2000.156171][ T5950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2000.171661][T23723] loop0: detected capacity change from 0 to 32768 [ 2000.263841][T23723] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 2000.378405][T23723] XFS (loop0): Ending clean mount [ 2000.446906][T23723] XFS (loop0): Quotacheck needed: Please wait. [ 2000.643004][T23723] XFS (loop0): Quotacheck: Done. [ 2000.795885][ T5941] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 2000.950660][T23806] loop3: detected capacity change from 0 to 64 [ 2001.025623][T23806] syz.3.22618: attempt to access beyond end of device [ 2001.025623][T23806] loop3: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 2001.088982][T23806] Buffer I/O error on dev loop3, logical block 512, async page read [ 2001.117508][T23806] syz.3.22618: attempt to access beyond end of device [ 2001.117508][T23806] loop3: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 2001.167458][T23817] netlink: 'syz.1.22619': attribute type 1 has an invalid length. [ 2001.189831][T23806] Buffer I/O error on dev loop3, logical block 56576, async page read [ 2002.142155][T23878] netlink: 156 bytes leftover after parsing attributes in process `syz.3.22641'. [ 2002.180603][T23878] netlink: 12 bytes leftover after parsing attributes in process `syz.3.22641'. [ 2002.215010][T23878] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22641'. [ 2002.402810][T23897] tmpfs: Bad value for 'nr_inodes' [ 2002.532005][T18637] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 2002.737215][T18637] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 2002.762607][T18637] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2002.796906][T18637] usb 3-1: config 0 descriptor?? [ 2002.936300][T23936] loop0: detected capacity change from 0 to 16 [ 2002.965136][T23936] erofs: (device loop0): mounted with root inode @ nid 36. [ 2002.984737][T23940] ip6gretap5: default qdisc (pfifo_fast) fail, fallback to noqueue [ 2003.107186][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.107186][T23936] loop0: rw=524288, sector=131758, nr_sectors = 2 limit=16 [ 2003.138358][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.138358][T23936] loop0: rw=524288, sector=74, nr_sectors = 2 limit=16 [ 2003.182805][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.182805][T23936] loop0: rw=524288, sector=262336, nr_sectors = 2 limit=16 [ 2003.205615][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.205615][T23936] loop0: rw=524288, sector=172, nr_sectors = 2 limit=16 [ 2003.224420][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.224420][T23936] loop0: rw=524288, sector=131274, nr_sectors = 2 limit=16 [ 2003.230867][T18637] ath6kl: Failed to submit usb control message: -71 [ 2003.267863][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.267863][T23936] loop0: rw=524288, sector=178, nr_sectors = 2 limit=16 [ 2003.277116][T18637] ath6kl: unable to send the bmi data to the device: -71 [ 2003.295003][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.295003][T23936] loop0: rw=524288, sector=131284, nr_sectors = 2 limit=16 [ 2003.309574][T18637] ath6kl: Unable to send get target info: -71 [ 2003.317832][T23936] syz.0.22658: attempt to access beyond end of device [ 2003.317832][T23936] loop0: rw=524288, sector=178, nr_sectors = 2 limit=16 [ 2003.342771][T18637] ath6kl: Failed to init ath6kl core: -71 [ 2003.352930][T18637] ath6kl_usb: probe of 3-1:0.0 failed with error -71 [ 2003.390826][T18637] usb 3-1: USB disconnect, device number 7 [ 2003.447776][T23964] loop1: detected capacity change from 0 to 4096 [ 2003.539646][T23973] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2003.590371][T23964] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.' [ 2003.635687][T23964] Remounting filesystem read-only [ 2004.094679][T24005] netlink: 40 bytes leftover after parsing attributes in process `syz.1.22675'. [ 2004.392745][T24019] loop0: detected capacity change from 0 to 64 [ 2004.599368][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 2004.599383][ T27] audit: type=1326 audit(2000004821.909:3682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24035 comm="syz.2.22685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2004.639585][T24038] netlink: 'syz.3.22687': attribute type 13 has an invalid length. [ 2004.680617][ T27] audit: type=1326 audit(2000004821.941:3683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24035 comm="syz.2.22685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2004.748428][ T27] audit: type=1326 audit(2000004821.963:3684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24035 comm="syz.2.22685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2004.777728][T24046] netlink: 248 bytes leftover after parsing attributes in process `syz.1.22689'. [ 2004.829030][ T27] audit: type=1326 audit(2000004821.963:3685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24035 comm="syz.2.22685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2004.852406][ T27] audit: type=1326 audit(2000004821.963:3686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24035 comm="syz.2.22685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2004.923058][T24042] bond9: entered promiscuous mode [ 2004.928825][T24042] 8021q: adding VLAN 0 to HW filter on device bond9 [ 2005.435500][T24114] loop1: detected capacity change from 0 to 512 [ 2005.483695][T24114] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 2005.952098][T18637] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 2006.159951][T18637] usb 1-1: config 0 has an invalid interface number: 238 but max is 0 [ 2006.175972][T18637] usb 1-1: config 0 has no interface number 0 [ 2006.182589][T18637] usb 1-1: config 0 interface 238 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 2006.213393][T18637] usb 1-1: config 0 interface 238 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0 [ 2006.231890][T18637] usb 1-1: config 0 interface 238 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 2006.250570][T18637] usb 1-1: config 0 interface 238 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 0 [ 2006.289447][T18637] usb 1-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=f6.6a [ 2006.306205][T24137] loop3: detected capacity change from 0 to 32768 [ 2006.314199][T18637] usb 1-1: New USB device strings: Mfr=181, Product=147, SerialNumber=160 [ 2006.324076][T18637] usb 1-1: Product: syz [ 2006.330014][T18637] usb 1-1: Manufacturer: syz [ 2006.335247][T18637] usb 1-1: SerialNumber: syz [ 2006.345298][T18637] usb 1-1: config 0 descriptor?? [ 2006.362590][T24137] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2006.434339][T18637] ni6501 1-1:0.238: driver 'ni6501' failed to auto-configure device. [ 2006.476613][T24173] netlink: 8 bytes leftover after parsing attributes in process `syz.1.22716'. [ 2006.619411][T24137] XFS (loop3): Ending clean mount [ 2006.653556][T18637] usb 1-1: USB disconnect, device number 10 [ 2006.818427][ T5950] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2006.940276][ C1] vkms_vblank_simulate: vblank timer overrun [ 2007.116844][T17089] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 2007.330829][T17089] usb 3-1: Using ep0 maxpacket: 8 [ 2007.367977][T17089] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 2007.416781][T17089] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 2007.439832][T24220] kAFS: unparsable volume name [ 2007.443507][T17089] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 2007.462182][T17089] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 2007.508900][T17089] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 2007.527872][T17089] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 2007.545630][T17089] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2007.569330][T17089] usb 3-1: config 0 descriptor?? [ 2007.593751][T24196] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 2008.017304][ T5955] Bluetooth: hci4: Opcode 0x0c03 failed: -71 [ 2008.037646][ T5980] usb 3-1: USB disconnect, device number 8 [ 2008.792275][T24269] netlink: 'syz.0.22739': attribute type 3 has an invalid length. [ 2008.927706][T24277] netlink: 176 bytes leftover after parsing attributes in process `syz.1.22742'. [ 2009.038381][T24281] tmpfs: Bad value for 'mpol' [ 2009.204450][T24225] syz.3.22729 (24225): drop_caches: 2 [ 2009.493526][T24313] netlink: 'syz.0.22753': attribute type 10 has an invalid length. [ 2009.550971][T24316] loop3: detected capacity change from 0 to 16 [ 2009.580727][T24316] erofs: (device loop3): mounted with root inode @ nid 36. [ 2010.117856][T24358] netlink: 'syz.0.22767': attribute type 5 has an invalid length. [ 2010.171232][T24360] program syz.2.22769 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2010.268160][T17089] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 2010.308507][T24365] netlink: 8 bytes leftover after parsing attributes in process `syz.2.22771'. [ 2010.459281][T17089] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2010.465608][T24353] loop1: detected capacity change from 0 to 32768 [ 2010.493279][T24353] (syz.1.22766,24353,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 2010.494280][T17089] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 2010.525977][T24353] (syz.1.22766,24353,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 2010.533342][T17089] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 2010.581716][T17089] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 2010.584841][T24353] JBD2: Ignoring recovery information on journal [ 2010.601153][T17089] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2010.654016][T24353] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 2010.662323][T17089] usb 4-1: Product: syz [ 2010.667367][T17089] usb 4-1: Manufacturer: syz [ 2010.752365][T17089] usb 4-1: SerialNumber: syz [ 2010.759472][T17089] usb 4-1: config 0 descriptor?? [ 2010.961620][T24393] loop0: detected capacity change from 0 to 4096 [ 2011.000096][T24393] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 2011.015971][T24393] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 2011.018475][ T5944] ocfs2: Unmounting device (7,1) on (node local) [ 2011.025600][T24393] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 2011.053147][T24393] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 2011.112370][T24393] ntfs: volume version 3.1. [ 2011.129846][T17089] usb 4-1: USB disconnect, device number 25 [ 2011.210152][T24393] ntfs: (device loop0): ntfs_attr_find(): Inode is corrupt. Run chkdsk. [ 2011.228284][T24393] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x40 as bad. Run chkdsk. [ 2011.532352][T24422] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 2011.554744][T24422] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 2011.594089][T24426] dlm: non-version read from control device 36 [ 2011.659159][T24425] loop0: detected capacity change from 0 to 4096 [ 2011.684082][T24425] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 2011.763664][T24425] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 2012.224221][T24457] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode [ 2012.236030][T24457] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 2012.543278][T24476] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 2012.752724][T24493] loop0: detected capacity change from 0 to 512 [ 2012.790824][T24493] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 2012.818750][T24493] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 2012.837822][T24493] EXT4-fs (loop0): orphan cleanup on readonly fs [ 2012.849087][T24493] EXT4-fs error (device loop0): ext4_orphan_get:1424: comm syz.0.22808: bad orphan inode 3 [ 2012.872267][ T27] audit: type=1326 audit(2000004830.771:3687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24499 comm="syz.2.22812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2012.947394][T24493] EXT4-fs (loop0): Remounting filesystem read-only [ 2012.961419][ T27] audit: type=1326 audit(2000004830.771:3688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24499 comm="syz.2.22812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2013.018948][T24493] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 2013.058943][ T27] audit: type=1326 audit(2000004830.825:3689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24499 comm="syz.2.22812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2013.094564][ T27] audit: type=1326 audit(2000004830.825:3690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24499 comm="syz.2.22812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2013.177519][T24493] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.22808: dx entry: limit 0 != root limit 125 [ 2013.194602][T24493] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.22808: Corrupt directory, running e2fsck is recommended [ 2013.301101][ T5941] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 2013.309812][T24527] loop3: detected capacity change from 0 to 256 [ 2013.385086][T24527] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 2015.362641][T24675] loop0: detected capacity change from 0 to 64 [ 2015.657478][T24690] futex_wake_op: syz.0.22874 tries to shift op by 32; fix this program [ 2015.720610][T24659] loop1: detected capacity change from 0 to 32768 [ 2015.748277][T24659] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 2015.841551][ T7794] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2015.992710][T24676] loop3: detected capacity change from 0 to 32768 [ 2016.012808][T24676] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.22871 (24676) [ 2016.094095][T24676] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2016.121708][T24676] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 2016.149234][T24676] BTRFS info (device loop3): max_inline at 6 [ 2016.155501][T24676] BTRFS info (device loop3): enabling disk space caching [ 2016.188673][T24676] BTRFS info (device loop3): turning off barriers [ 2016.215653][T24676] BTRFS info (device loop3): disabling tree log [ 2016.234801][T24676] BTRFS info (device loop3): force clearing of disk cache [ 2016.234863][T24715] netlink: 'syz.0.22882': attribute type 21 has an invalid length. [ 2016.260311][T24676] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 2016.274355][T24715] netlink: 128 bytes leftover after parsing attributes in process `syz.0.22882'. [ 2016.291546][T24676] BTRFS info (device loop3): force lzo compression, level 0 [ 2016.313275][T24676] BTRFS info (device loop3): enabling tree log [ 2016.316645][T24715] netlink: 'syz.0.22882': attribute type 4 has an invalid length. [ 2016.336252][T24676] BTRFS info (device loop3): max_inline at 0 [ 2016.359327][T24676] BTRFS info (device loop3): disk space caching is enabled [ 2016.376103][T24715] netlink: 'syz.0.22882': attribute type 5 has an invalid length. [ 2016.400328][T24715] netlink: 3 bytes leftover after parsing attributes in process `syz.0.22882'. [ 2016.499717][T24676] BTRFS info (device loop3): enabling ssd optimizations [ 2016.542009][T24676] BTRFS info (device loop3): rebuilding free space tree [ 2016.604629][T24676] BTRFS info (device loop3): disabling free space tree [ 2016.624061][T24676] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2016.661777][T24676] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2016.758748][T24751] netlink: 'syz.1.22889': attribute type 3 has an invalid length. [ 2016.784234][T24751] netlink: 24 bytes leftover after parsing attributes in process `syz.1.22889'. [ 2016.923171][ T5950] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2017.273758][ C0] vkms_vblank_simulate: vblank timer overrun [ 2017.473186][T24789] loop1: detected capacity change from 0 to 1024 [ 2017.501731][ T5981] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 2017.528824][T24789] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 2017.661855][T24789] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2017.719134][ T5981] usb 3-1: Using ep0 maxpacket: 32 [ 2017.757066][ T5981] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2017.787085][ T27] kauditd_printk_skb: 6 callbacks suppressed [ 2017.787102][ T27] audit: type=1800 audit(2000004836.050:3697): pid=24789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.22901" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 2017.787864][T24789] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #11: comm syz.1.22901: missing EA_INODE flag [ 2017.834104][ T5981] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2017.848320][ T5981] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 2017.861423][ T5981] usb 3-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 2017.871011][ T5981] usb 3-1: Product: syz [ 2017.886422][ T5981] usb 3-1: Manufacturer: syz [ 2017.891494][T24789] EXT4-fs (loop1): Remounting filesystem read-only [ 2017.918150][ T5981] hub 3-1:4.0: USB hub found [ 2018.003846][ C0] vkms_vblank_simulate: vblank timer overrun [ 2018.015253][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2018.050509][ C0] vkms_vblank_simulate: vblank timer overrun [ 2018.085431][T24763] loop0: detected capacity change from 0 to 32768 [ 2018.099880][T24763] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.22894 (24763) [ 2018.116514][ T5981] hub 3-1:4.0: 5 ports detected [ 2018.141760][ T5981] hub 3-1:4.0: insufficient power available to use all downstream ports [ 2018.174410][T24763] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2018.186857][T24763] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 2018.200966][T24763] BTRFS info (device loop0): using free space tree [ 2018.315137][ T5981] hub 3-1:4.0: hub_hub_status failed (err = -71) [ 2018.322801][ T5981] hub 3-1:4.0: config failed, can't get hub status (err -71) [ 2018.331749][T24763] BTRFS info (device loop0): enabling ssd optimizations [ 2018.361337][T24763] BTRFS info (device loop0): auto enabling async discard [ 2018.369145][ T5981] usb 3-1: USB disconnect, device number 9 [ 2018.485732][ T5941] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2018.593206][ C0] vkms_vblank_simulate: vblank timer overrun [ 2018.622266][T24859] netlink: 72 bytes leftover after parsing attributes in process `syz.3.22913'. [ 2018.651610][T24859] netlink: 72 bytes leftover after parsing attributes in process `syz.3.22913'. [ 2019.066188][ T5980] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 2019.088973][T24887] ubi: mtd0 is already attached to ubi31 [ 2019.273339][ T5980] usb 4-1: too many configurations: 65, using maximum allowed: 8 [ 2019.287143][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.317540][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.380995][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.400573][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.417092][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.433567][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.464540][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.499652][ T5980] usb 4-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 2019.513512][ T5980] usb 4-1: New USB device found, idVendor=046d, idProduct=08b8, bcdDevice=ee.8d [ 2019.541919][ T5980] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2019.582975][ T5980] pwc: Logitech QuickCam detected (reserved ID). [ 2019.597506][ T5980] pwc: Warning: more than 1 configuration available. [ 2019.883007][T24921] loop0: detected capacity change from 0 to 1024 [ 2019.985791][ T5980] pwc: send_video_command error -71 [ 2020.012980][ T5980] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 2020.030496][ T5980] Philips webcam: probe of 4-1:250.0 failed with error -71 [ 2020.059184][ T5980] usb 4-1: USB disconnect, device number 26 [ 2020.134887][T24941] netlink: 20 bytes leftover after parsing attributes in process `syz.1.22936'. [ 2020.776389][T24975] loop1: detected capacity change from 0 to 4096 [ 2020.816728][T24975] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 2020.900554][T24975] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 2020.994591][T24975] ntfs3: loop1: failed to convert "c46c" to macinuit [ 2022.126802][ T5980] usb 1-1: new full-speed USB device number 11 using dummy_hcd [ 2022.329025][ T5980] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 2022.356254][ T5980] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2022.370934][ T5980] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 2022.380565][ T5980] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2022.399926][ T5980] hub 1-1:4.0: USB hub found [ 2022.476088][T25102] xt_hashlimit: size too large, truncated to 1048576 [ 2022.486054][T25102] xt_hashlimit: max too large, truncated to 1048576 [ 2022.587416][ T5980] hub 1-1:4.0: 9 ports detected [ 2022.602417][ T5980] usb 1-1: selecting invalid altsetting 1 [ 2022.616583][ T5980] hub 1-1:4.0: Using single TT (err -22) [ 2022.631049][ T5980] hub 1-1:4.0: insufficient power available to use all downstream ports [ 2022.789962][ T5980] hub 1-1:4.0: hub_hub_status failed (err = -71) [ 2022.806200][ T5980] hub 1-1:4.0: config failed, can't get hub status (err -71) [ 2022.814470][T11727] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 2022.880264][ T5980] usb 1-1: USB disconnect, device number 11 [ 2023.004182][T11727] usb 3-1: Using ep0 maxpacket: 16 [ 2023.019184][T25147] loop3: detected capacity change from 0 to 8 [ 2023.024084][T11727] usb 3-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88 [ 2023.038751][T11727] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2023.041829][T25147] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 2023.061519][T11727] usb 3-1: Product: syz [ 2023.066572][T11727] usb 3-1: Manufacturer: syz [ 2023.069676][ T7795] udevd[7795]: incorrect cramfs checksum on /dev/loop3 [ 2023.071187][T11727] usb 3-1: SerialNumber: syz [ 2023.096104][T11727] usb 3-1: config 0 descriptor?? [ 2023.097040][T25147] cramfs: Error -3 while decompressing! [ 2023.127580][T25147] cramfs: ffffffff973fa368(26)->ffff888052932000(4096) [ 2023.151681][T25147] cramfs: Error -5 while decompressing! [ 2023.155681][ T7795] udevd[7795]: incorrect cramfs checksum on /dev/loop3 [ 2023.165145][T25147] cramfs: ffffffff973fa382(26)->ffff88805403b000(4096) [ 2023.165182][T25147] cramfs: Error -3 while decompressing! [ 2023.184845][T25147] cramfs: ffffffff973fa39c(16)->ffff888051533000(4096) [ 2023.192996][T25147] cramfs: Error -3 while decompressing! [ 2023.202196][T25147] cramfs: ffffffff973fa368(26)->ffff888052932000(4096) [ 2023.210502][ T27] audit: type=1800 audit(2000000001.727:3698): pid=25147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.23003" name="file2" dev="loop3" ino=348 res=0 errno=0 [ 2023.325841][T11727] speedtch 3-1:0.0: speedtch_bind: data interface not found! [ 2023.355054][T11727] speedtch 3-1:0.0: usbatm_usb_probe: bind failed: -19! [ 2023.526538][T25176] netlink: 12 bytes leftover after parsing attributes in process `syz.1.23010'. [ 2023.530880][T11727] usb 3-1: USB disconnect, device number 10 [ 2023.915053][T25206] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 2024.030112][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 2024.039324][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 2024.148765][T25223] netlink: 'syz.3.23024': attribute type 3 has an invalid length. [ 2024.165741][T25223] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.23024'. [ 2024.691749][T25264] loop0: detected capacity change from 0 to 64 [ 2024.701705][T25262] tmpfs: Bad value for 'mpol' [ 2024.817207][ T27] audit: type=1326 audit(2000000003.454:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25270 comm="syz.3.23040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 2024.893592][ T27] audit: type=1326 audit(2000000003.454:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25270 comm="syz.3.23040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 2024.951019][ T27] audit: type=1326 audit(2000000003.465:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25270 comm="syz.3.23040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 2025.012699][ T27] audit: type=1326 audit(2000000003.465:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25270 comm="syz.3.23040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 2025.041179][ T27] audit: type=1326 audit(2000000003.465:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25270 comm="syz.3.23040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc46d39c799 code=0x7ffc0000 [ 2025.048266][T25284] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23044'. [ 2025.088099][T25284] netlink: 'syz.3.23044': attribute type 1 has an invalid length. [ 2025.120732][T25284] netlink: 'syz.3.23044': attribute type 2 has an invalid length. [ 2025.129162][T25284] netlink: 120 bytes leftover after parsing attributes in process `syz.3.23044'. [ 2025.282721][T25301] netlink: 'syz.3.23049': attribute type 2 has an invalid length. [ 2025.478954][ T5980] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 2025.564499][T25323] (syz.0.23056,25323,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 2025.577909][T25323] (syz.0.23056,25323,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 2025.664837][ T5980] usb 2-1: Using ep0 maxpacket: 16 [ 2025.674706][ T5981] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 2025.678325][ T5980] usb 2-1: config 0 has no interfaces? [ 2025.700949][ T5980] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 2025.721291][ T5980] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2025.739332][ T5980] usb 2-1: Product: syz [ 2025.760928][ T5980] usb 2-1: Manufacturer: syz [ 2025.766089][ T5980] usb 2-1: SerialNumber: syz [ 2025.776158][ T5980] r8152-cfgselector 2-1: config 0 descriptor?? [ 2025.866106][ T5981] usb 4-1: Using ep0 maxpacket: 16 [ 2025.880836][ T5981] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2025.884744][T25339] netlink: 'syz.0.23062': attribute type 5 has an invalid length. [ 2025.900210][ T5981] usb 4-1: New USB device found, idVendor=046d, idProduct=08f0, bcdDevice=50.0d [ 2025.900238][ T5981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2025.900256][ T5981] usb 4-1: Product: syz [ 2025.900270][ T5981] usb 4-1: Manufacturer: syz [ 2025.900281][ T5981] usb 4-1: SerialNumber: syz [ 2025.902770][ T5981] usb 4-1: config 0 descriptor?? [ 2025.952312][ T5981] gspca_main: STV06xx-2.14.0 probing 046d:08f0 [ 2025.970029][ T5981] gspca_stv06xx: st6422 sensor detected [ 2026.019448][ T5980] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 2026.235597][ T5980] usb 2-1: USB disconnect, device number 4 [ 2026.422182][ T5981] STV06xx: probe of 4-1:0.0 failed with error -71 [ 2026.434478][ T5981] usb 4-1: USB disconnect, device number 27 [ 2026.449911][T25355] QAT: failed to copy from user cfg_data. [ 2026.806452][T25379] ip6tnl5: entered promiscuous mode [ 2026.816430][T25379] ip6tnl5: entered allmulticast mode [ 2027.180650][T25405] loop0: detected capacity change from 0 to 64 [ 2027.295636][T25409] bond6: entered allmulticast mode [ 2027.329185][ T27] audit: type=1326 audit(2000000006.147:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25449 comm="syz.2.23087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2027.365775][ T27] audit: type=1326 audit(2000000006.190:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25449 comm="syz.2.23087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2027.389199][ C1] vkms_vblank_simulate: vblank timer overrun [ 2027.397015][ T27] audit: type=1326 audit(2000000006.201:3706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25449 comm="syz.2.23087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2027.420326][ C1] vkms_vblank_simulate: vblank timer overrun [ 2027.432173][ T27] audit: type=1326 audit(2000000006.265:3707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25449 comm="syz.2.23087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bdfd9c799 code=0x7ffc0000 [ 2027.554128][T25456] bridge13: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 2027.796055][T25471] loop1: detected capacity change from 0 to 2048 [ 2027.812806][T25471] ext2: Unknown parameter 'uid<00000000000000000000' [ 2028.487595][T25528] netlink: 'syz.3.23112': attribute type 2 has an invalid length. [ 2029.174736][T25563] loop1: detected capacity change from 0 to 512 [ 2029.218888][T25563] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 2030.400132][ T5981] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 2030.548636][T25647] x_tables: duplicate underflow at hook 3 [ 2030.610053][ T5981] usb 3-1: Using ep0 maxpacket: 8 [ 2030.625607][ T5981] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 2030.643011][ T5981] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid wMaxPacketSize 0 [ 2030.670640][ T5981] usb 3-1: config 0 interface 0 has no altsetting 0 [ 2030.688104][ T5981] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 2030.713120][ T5981] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2030.730773][ T5981] usb 3-1: Product: syz [ 2030.750327][ T5981] usb 3-1: Manufacturer: syz [ 2030.764759][ T5981] usb 3-1: SerialNumber: syz [ 2030.790630][ T5981] usb 3-1: config 0 descriptor?? [ 2030.829658][ T5981] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found [ 2030.848488][T25664] loop3: detected capacity change from 0 to 1024 [ 2030.973523][ T41] hfsplus: b-tree write err: -5, ino 25 [ 2030.987335][ T41] hfsplus: b-tree write err: -5, ino 4 [ 2031.001316][ T41] hfsplus: b-tree write err: -5, ino 2 [ 2031.037683][ T5981] snd_usb_toneport 3-1:0.0: cannot get proper max packet size [ 2031.065601][ T5981] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected [ 2031.081680][ T5981] snd_usb_toneport: probe of 3-1:0.0 failed with error -22 [ 2031.175880][T25675] loop0: detected capacity change from 0 to 4096 [ 2031.290792][ T5981] usb 3-1: USB disconnect, device number 11 [ 2031.938471][T25732] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.23172'. [ 2032.256183][T25712] loop0: detected capacity change from 0 to 32768 [ 2032.350971][T25756] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23179'. [ 2032.379195][T25712] ERROR: (device loop0): dbAlloc: unable to allocate blocks [ 2032.379195][T25712] [ 2032.396570][T25712] ERROR: (device loop0): remounting filesystem as read-only [ 2032.444764][T25712] jfs_rename: dtInsert returned -EIO [ 2032.762707][T25746] loop1: detected capacity change from 0 to 32768 [ 2032.877579][T25746] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2033.028469][T25746] XFS (loop1): Ending clean mount [ 2033.178838][ T5944] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2033.181669][T25799] loop0: detected capacity change from 0 to 512 [ 2033.194377][T25798] xt_TCPMSS: Only works on TCP SYN packets [ 2033.211632][T25799] EXT4-fs: Ignoring removed orlov option [ 2033.261618][T25799] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 2033.339463][ C1] vkms_vblank_simulate: vblank timer overrun [ 2033.349612][T25805] netlink: 'syz.2.23194': attribute type 1 has an invalid length. [ 2033.362152][T25799] EXT4-fs (loop0): 1 orphan inode deleted [ 2033.365932][T25805] netlink: 'syz.2.23194': attribute type 2 has an invalid length. [ 2033.385848][T25799] EXT4-fs (loop0): 1 truncate cleaned up [ 2033.418745][T25805] netlink: 132 bytes leftover after parsing attributes in process `syz.2.23194'. [ 2033.422627][T25799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2033.658021][ T5941] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2034.219672][T25853] loop3: detected capacity change from 0 to 256 [ 2034.278307][T25855] qrtr: Invalid version 15 [ 2034.456064][T25866] loop1: detected capacity change from 0 to 512 [ 2034.549637][T25866] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 2034.565948][T25866] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 2034.599313][T25833] loop0: detected capacity change from 0 to 40427 [ 2034.603853][T25866] EXT4-fs error (device loop1): ext4_orphan_get:1424: comm syz.1.23211: bad orphan inode 13 [ 2034.618733][T25874] netlink: 16 bytes leftover after parsing attributes in process `syz.2.23214'. [ 2034.634537][T25833] F2FS-fs (loop0): heap/no_heap options were deprecated [ 2034.649888][T25833] F2FS-fs (loop0): build fault injection attr: rate: 19, type: 0x7ffff [ 2034.659909][T25833] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x77e8c [ 2034.677515][T25866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2034.696017][T25833] F2FS-fs (loop0): invalid crc value [ 2034.739197][T25833] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 2034.765568][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2034.801165][T25833] F2FS-fs (loop0): Found nat_bits in checkpoint [ 2034.910217][T25833] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x134/0x650 [ 2034.952781][ C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x597/0xe40 [ 2035.017263][T25833] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 2035.053442][T25895] loop1: detected capacity change from 0 to 16 [ 2035.068762][T25895] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 2035.763449][T25931] loop1: detected capacity change from 0 to 4096 [ 2035.815514][T25935] loop3: detected capacity change from 0 to 8 [ 2035.831435][T25935] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 2035.839669][T25931] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 2035.889879][T25935] cramfs: Error -5 while decompressing! [ 2035.890778][ T7794] udevd[7794]: incorrect cramfs checksum on /dev/loop3 [ 2035.907577][T25931] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 2035.916185][T25931] ntfs3: loop1: Failed to load $BadClus (-22). [ 2035.916276][T25935] cramfs: ffffffff973fa348(18)->ffff888069ea7000(4096) [ 2035.963359][T25935] cramfs: Error -5 while decompressing! [ 2035.968016][ T7794] udevd[7794]: incorrect cramfs checksum on /dev/loop3 [ 2035.979418][T25935] cramfs: ffffffff973fa348(18)->ffff888069ea7000(4096) [ 2036.008771][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 2036.008784][ T27] audit: type=1800 audit(2000000015.460:3720): pid=25935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.23232" name="file1" dev="loop3" ino=324 res=0 errno=0 [ 2036.147005][T25950] loop1: detected capacity change from 0 to 64 [ 2036.222534][ T27] audit: type=1800 audit(2000000015.696:3721): pid=25950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.23234" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 2036.806140][T18637] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 2036.914993][T26012] netlink: 'syz.0.23252': attribute type 58 has an invalid length. [ 2036.923683][T26012] netlink: 20 bytes leftover after parsing attributes in process `syz.0.23252'. [ 2036.995377][T18637] usb 3-1: config index 0 descriptor too short (expected 39, got 27) [ 2037.008465][ T5981] usb 2-1: new low-speed USB device number 5 using dummy_hcd [ 2037.013658][T18637] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 2037.030002][T18637] usb 3-1: config 0 interface 0 has no altsetting 0 [ 2037.043916][T18637] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 2037.059440][T18637] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 2037.068424][T18637] usb 3-1: Product: syz [ 2037.072625][T18637] usb 3-1: Manufacturer: syz [ 2037.078189][T18637] usb 3-1: SerialNumber: syz [ 2037.091707][T18637] usb 3-1: config 0 descriptor?? [ 2037.103565][T18637] hub 3-1:0.0: bad descriptor, ignoring hub [ 2037.109634][T18637] hub: probe of 3-1:0.0 failed with error -5 [ 2037.119418][T18637] usb 3-1: selecting invalid altsetting 0 [ 2037.196359][ T5981] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 2037.217364][ T5981] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 2037.241809][ T5981] usb 2-1: config 1 interface 0 has no altsetting 0 [ 2037.261653][ T5981] usb 2-1: string descriptor 0 read error: -22 [ 2037.267961][ T5981] usb 2-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 2037.286344][ T5981] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=3 [ 2037.288550][ T5980] usb 4-1: new high-speed USB device number 28 using dummy_hcd [ 2037.315904][T26045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.23257'. [ 2037.330545][ T5981] usb 2-1: 0:2 : does not exist [ 2037.370840][ T5981] usb-storage 2-1:1.1: USB Mass Storage device detected [ 2037.437086][T17089] usb 3-1: USB disconnect, device number 12 [ 2037.463250][T26068] netlink: 'syz.0.23258': attribute type 4 has an invalid length. [ 2037.483051][ T5980] usb 4-1: Using ep0 maxpacket: 32 [ 2037.492150][ T5980] usb 4-1: unable to get BOS descriptor or descriptor too short [ 2037.513363][ T5980] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 120, changing to 7 [ 2037.538620][ T5980] usb 4-1: string descriptor 0 read error: -22 [ 2037.558455][ T5980] usb 4-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice= 0.40 [ 2037.576968][ T5980] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2037.667125][T26085] xt_CT: You must specify a L4 protocol and not use inversions on it [ 2037.735740][ T5981] us122l: couldn't allocate write buffer [ 2037.746344][ T5981] snd-usb-us122l: probe of 2-1:1.1 failed with error -22 [ 2037.779274][ T5981] usb 2-1: USB disconnect, device number 5 [ 2037.819962][ T5980] usb 4-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 2038.024751][ T5980] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 2038.114375][ T5980] usb 4-1: USB disconnect, device number 28 [ 2038.328363][ T27] audit: type=1326 audit(2000000017.949:3722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2038.364499][ T27] audit: type=1326 audit(2000000017.981:3723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2038.411843][ T27] audit: type=1326 audit(2000000017.981:3724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2038.456518][ T27] audit: type=1326 audit(2000000017.981:3725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2038.480965][ T27] audit: type=1326 audit(2000000017.981:3726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2038.555245][ T27] audit: type=1326 audit(2000000018.035:3727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdfd535cfce code=0x7ffc0000 [ 2038.597702][ T27] audit: type=1326 audit(2000000018.046:3728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdfd535cfce code=0x7ffc0000 [ 2038.646576][ T27] audit: type=1326 audit(2000000018.046:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26152 comm="syz.0.23271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdfd535cfce code=0x7ffc0000 [ 2038.803420][T26185] loop1: detected capacity change from 0 to 256 [ 2038.828699][T26185] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x395e47cf, utbl_chksum : 0xe619d30d) [ 2038.841964][T18637] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 2038.974761][ T5980] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 2039.021803][T18637] usb 3-1: Using ep0 maxpacket: 8 [ 2039.038997][T18637] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2039.064290][T18637] usb 3-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b [ 2039.079488][T18637] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2039.091902][T18637] usb 3-1: Product: syz [ 2039.097811][T18637] usb 3-1: Manufacturer: syz [ 2039.103568][T18637] usb 3-1: SerialNumber: syz [ 2039.119112][T18637] usb 3-1: config 0 descriptor?? [ 2039.135121][T18637] gspca_main: stk014-2.14.0 probing 05e1:0893 [ 2039.141288][T18637] usb 3-1: selecting invalid altsetting 1 [ 2039.157120][ T5980] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 2039.173739][ T5980] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 2039.200585][ T5980] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 2039.237127][ T5980] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2039.255327][ T5980] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2039.270638][ T5980] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 2039.287076][ T5980] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 2039.295914][ T5980] usb 4-1: Product: syz [ 2039.301367][ T5980] usb 4-1: Manufacturer: syz [ 2039.324272][ T5980] cdc_wdm 4-1:1.0: skipping garbage [ 2039.347930][ T5980] cdc_wdm 4-1:1.0: skipping garbage [ 2039.370616][ T5980] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device [ 2039.379908][ T5980] cdc_wdm 4-1:1.0: Unknown control protocol [ 2039.591258][ T5980] usb 3-1: USB disconnect, device number 13 [ 2039.606439][T26177] cdc_wdm 4-1:1.0: Error submitting int urb - -90 [ 2039.633400][T18637] usb 4-1: USB disconnect, device number 29 [ 2039.848132][T26267] ieee802154 phy0 wpan0: encryption failed: -90 [ 2040.175717][T26287] usb usb7: usbfs: process 26287 (syz.2.23305) did not claim interface 0 before use [ 2040.829374][T26334] vlan0: left promiscuous mode [ 2041.601447][T26350] loop3: detected capacity change from 0 to 32768 [ 2041.636258][T26350] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.23325 (26350) [ 2041.667429][T26350] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 2041.686758][T26350] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 2041.707120][T26350] BTRFS info (device loop3): force zlib compression, level 3 [ 2041.720369][T26350] BTRFS info (device loop3): force clearing of disk cache [ 2041.738702][T26350] BTRFS info (device loop3): setting nodatasum [ 2041.745509][T26350] BTRFS info (device loop3): allowing degraded mounts [ 2041.757557][T26350] BTRFS info (device loop3): enabling disk space caching [ 2041.765297][T26350] BTRFS info (device loop3): disk space caching is enabled [ 2041.820471][ T5981] usb 1-1: new full-speed USB device number 12 using dummy_hcd [ 2041.832076][T26350] BTRFS info (device loop3): auto enabling async discard [ 2041.852908][T26350] BTRFS info (device loop3): rebuilding free space tree [ 2041.910996][T26350] BTRFS info (device loop3): disabling free space tree [ 2041.944309][T26350] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2041.969480][T26350] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2042.034850][ T5981] usb 1-1: config 8 has an invalid interface number: 177 but max is 0 [ 2042.055006][ T5981] usb 1-1: config 8 has no interface number 0 [ 2042.078239][ T5981] usb 1-1: config 8 interface 177 altsetting 9 endpoint 0x8 has invalid maxpacket 1023, setting to 64 [ 2042.099510][ T5981] usb 1-1: config 8 interface 177 altsetting 9 endpoint 0x87 has invalid wMaxPacketSize 0 [ 2042.116572][ T5950] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 2042.130049][ T5981] usb 1-1: config 8 interface 177 has no altsetting 0 [ 2042.139312][ T5981] usb 1-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1 [ 2042.172088][ T5981] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2042.186240][T26382] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 2042.409072][ T5981] usb 1-1: string descriptor 0 read error: -71 [ 2042.439690][ T5981] ir_toy 1-1:8.177: required endpoints not found [ 2042.479830][ T5981] usb 1-1: USB disconnect, device number 12 [ 2042.722799][ C0] vkms_vblank_simulate: vblank timer overrun [ 2043.002778][ C0] vkms_vblank_simulate: vblank timer overrun [ 2043.092622][ C0] vkms_vblank_simulate: vblank timer overrun [ 2043.539916][T26462] loop1: detected capacity change from 0 to 32768 [ 2043.616859][T26462] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 2043.851503][ T5944] ocfs2: Unmounting device (7,1) on (node local) [ 2044.241665][T26532] loop0: detected capacity change from 0 to 4096 [ 2044.271454][T26532] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 2044.434426][T26548] loop3: detected capacity change from 0 to 256 [ 2044.619342][T26548] FAT-fs (loop3): Directory bread(block 64) failed [ 2044.651784][T26548] FAT-fs (loop3): Directory bread(block 65) failed [ 2044.658729][T26548] FAT-fs (loop3): Directory bread(block 66) failed [ 2044.694452][T26548] FAT-fs (loop3): Directory bread(block 67) failed [ 2044.710298][T26548] FAT-fs (loop3): Directory bread(block 68) failed [ 2044.726034][T26548] FAT-fs (loop3): Directory bread(block 69) failed [ 2044.755907][T26548] FAT-fs (loop3): Directory bread(block 70) failed [ 2044.800514][T26548] FAT-fs (loop3): Directory bread(block 71) failed [ 2044.807391][T26548] FAT-fs (loop3): Directory bread(block 72) failed [ 2044.827595][T26548] FAT-fs (loop3): Directory bread(block 73) failed [ 2044.991669][ T27] kauditd_printk_skb: 13 callbacks suppressed [ 2044.991683][ T27] audit: type=1800 audit(2000000025.105:3743): pid=26548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.23384" name="file1" dev="loop3" ino=1048806 res=0 errno=0 [ 2045.019487][ C0] vkms_vblank_simulate: vblank timer overrun [ 2045.585323][T26620] netlink: 104 bytes leftover after parsing attributes in process `syz.3.23405'. [ 2045.603852][T26620] netlink: 12 bytes leftover after parsing attributes in process `syz.3.23405'. [ 2045.630654][T26620] netlink: 20 bytes leftover after parsing attributes in process `syz.3.23405'. [ 2045.926202][T26592] loop0: detected capacity change from 0 to 40427 [ 2045.979312][T26592] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 2046.001184][T26592] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 2046.048480][T26592] F2FS-fs (loop0): Found nat_bits in checkpoint [ 2046.252626][T26592] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 2046.261858][T26592] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 2046.660802][T26638] loop1: detected capacity change from 0 to 32768 [ 2046.683564][T26638] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.23411 (26638) [ 2046.759519][T26671] [U]  [ 2046.762423][T26671] [U] K{ [ 2046.765552][T26671] [U] t 1ŠFfˊ`GJgo/mC [ 2046.821327][T26638] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 2046.825220][T26671] [U] tؖ/,~Ĝj}8'o1"7-JQKWq5c%"H12YX``+(!(z'tXlnIgjݭp~7!" (5Ob̓J [ 2046.845113][T26638] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 2046.868966][T26638] BTRFS info (device loop1): force zlib compression, level 3 [ 2046.876600][T26638] BTRFS info (device loop1): turning on flush-on-commit [ 2046.897451][T26638] BTRFS info (device loop1): max_inline at 4096 [ 2046.903988][T26638] BTRFS info (device loop1): using free space tree [ 2046.907857][T26671] [U] k\&}66XHX .`a$40|϶9ި U4Vbz}wMTQΦr 4 [ 2046.944085][T26671] [U] ".h6"k[J4In[Z(C|T]z{3c=x4w)\TXJSH{q;칢t+gd.˂>ywUhfNhl]S2\g%O&z)'pul_< ذ`ұT;_"(u{7j2X /'cIHcճV=Ai%wEs RjgrhIa6-DV i"n Asc~48c*OO5/J~wvK+3Y)Mvyq潀DTrOtpem%fejA5T_-X~^aaۂq [ 2046.997685][T26671] [U] +wG?]'a: )' B>tf/<'U'hi.+]e.-ɿ%>2`^U8F.63+A«g3p6:^0tv'EtYCnrϩnPj ;Z8!\Aʖ2$­wi.#/Bai`4jdy@zgW5˿B ٜNy"vI2 [ 2047.022031][T26671] [U] T_K5tYJ9c$brLNul 9w|G"ʃ%C؝q 3qN^HP*$ .7yӱ2 [ 2047.033927][T26671] [U] ? h*37鍾^#Q"0~ (oX Lb,'v=CSGS0ւ`ه=1(p#2DO*Ƀ [ 2047.046710][T26671] [U] sgGud-{|&2Lc_!`oz֥B%>rwSsH"yA4O.Y䏄RTԶB[+/<>{q_՝LX8U{Z)7?rR;crhײڣ1>)Măt(aϝ}9ڥJ*Mќġ'Lq DW=|q ÆW;5Ž!dBx`/E`ƦMX"\ [ 2047.122875][T26638] BTRFS info (device loop1): auto enabling async discard [ 2047.155352][ C0] vkms_vblank_simulate: vblank timer overrun [ 2047.198085][T26671] [U] {; ٘_o2)o.2W2yx_ HPϱSD:]{ [ 2047.235490][T26671] [U] I,> 51^1N4oǶ'0?֒i9w._.WaV`)Zc6GiӹaXL[F*OW)+'\n[K@2Ǭp"^` [ 2047.289001][T26671] [U] 22Ʃx?0;3u [ 2047.293432][T26671] [U] ޜsObx8W4(~/KUԖoQe+G-ygY_>v3.hә]̈́2)D, D~d+w; A\FPȘ|$)KؐIɿkYT^R癵A=#ܜ aet1ݯ4K.e"RS|s:>p r"z#P!KY"}FN84hޱosߙ̫%Dlwm [ 2047.393939][T26671] [U] [['xn' ,mr/1D=!Dx91BwRlfKZ#` l؛˜b~m [ 2047.450524][T26671] [U] L>d+d"5h3<iR=F^fnvDOIO:U>Y [ 2047.482764][T26671] [U] 'B6v20瞥׌"t8{9FW]쩍 [ 2047.490916][T26638] BTRFS info (device loop1): balance: start -d -m [ 2047.500312][T26671] [U] 72uC6τI]8ctۨQSkYI |V'TV/g$[ 9kh`"}[^=0]%̂TF_v4C [ 2047.532483][T26638] BTRFS info (device loop1): relocating block group 6881280 flags data|metadata [ 2047.540376][T26671] [U] ec [ 2047.545121][T26671] [U] |<:^3$7nK~-@?/mtl۾Iw@g~t{P+$jp| IRipm Y 8tV,l, [ 2047.565027][T26671] [U] K)0~ʪiP'fzr @B]5{ʼ'8ƥFUTqUdǩK;70c[yYCذmL8T͚5rxW xoQhVi'8L [ 2047.702842][T26710] netlink: 'syz.0.23427': attribute type 1 has an invalid length. [ 2047.710905][T26710] netlink: 4 bytes leftover after parsing attributes in process `syz.0.23427'. [ 2047.815994][T26638] BTRFS info (device loop1): relocating block group 5242880 flags data|metadata [ 2047.987093][T26638] BTRFS info (device loop1): balance: canceled [ 2048.118467][ T5944] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 2048.176907][T26731] loop3: detected capacity change from 0 to 256 [ 2048.430075][T26731] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 2049.595055][T26818] Timeout policy `syz0' can only be used by L3 protocol number 37120 [ 2049.745521][T26827] netlink: 4 bytes leftover after parsing attributes in process `syz.1.23468'. [ 2050.118650][T26878] loop1: detected capacity change from 0 to 16 [ 2050.154244][T26878] erofs: (device loop1): mounted with root inode @ nid 36. [ 2050.438566][T26900] loop0: detected capacity change from 0 to 512 [ 2050.451418][T26900] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 2050.473751][T26900] EXT4-fs (loop0): 1 truncate cleaned up [ 2050.523904][T26900] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2050.797557][ T5941] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2051.386595][T26950] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23496'. [ 2051.437294][T26958] xt_policy: too many policy elements [ 2051.745094][T26975] loop3: detected capacity change from 0 to 1024 [ 2052.190293][T27006] loop0: detected capacity change from 0 to 1764 [ 2052.248255][T27011] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 2052.281781][T27006] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 2052.362035][T27017] loop3: detected capacity change from 0 to 2048 [ 2052.447667][T27022] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2052.683578][T27033] netlink: 'syz.1.23521': attribute type 21 has an invalid length. [ 2052.888124][T27042] loop3: detected capacity change from 0 to 256 [ 2052.914532][T27042] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 2052.929100][T27046] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.23524'. [ 2053.048710][ T3539] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 2053.353969][T27032] loop0: detected capacity change from 0 to 32768 [ 2053.408930][T27032] jfs_lookup: iget failed on inum 32 [ 2053.512234][T27081] netlink: 16 bytes leftover after parsing attributes in process `syz.3.23534'. [ 2053.677486][T27090] loop1: detected capacity change from 0 to 256 [ 2053.757060][T27090] FAT-fs (loop1): Directory bread(block 64) failed [ 2053.783386][T27090] FAT-fs (loop1): Directory bread(block 65) failed [ 2053.807210][T27090] FAT-fs (loop1): Directory bread(block 66) failed [ 2053.817940][T27090] FAT-fs (loop1): Directory bread(block 67) failed [ 2053.827160][T27090] FAT-fs (loop1): Directory bread(block 68) failed [ 2053.837187][T27090] FAT-fs (loop1): Directory bread(block 69) failed [ 2053.846066][T27090] FAT-fs (loop1): Directory bread(block 70) failed [ 2053.855419][T27090] FAT-fs (loop1): Directory bread(block 71) failed [ 2053.866189][T27090] FAT-fs (loop1): Directory bread(block 72) failed [ 2053.874498][T27090] FAT-fs (loop1): Directory bread(block 73) failed [ 2054.236503][T27120] loop3: detected capacity change from 0 to 1024 [ 2054.263846][T27120] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 2054.667583][T27148] bridge10: entered allmulticast mode [ 2054.970067][T27173] netlink: 8 bytes leftover after parsing attributes in process `syz.2.23564'. [ 2055.010933][T27178] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (18446744073709551615) [ 2055.049714][T27180] loop1: detected capacity change from 0 to 256 [ 2055.181777][T27180] FAT-fs (loop1): Directory bread(block 64) failed [ 2055.192852][T27180] FAT-fs (loop1): Directory bread(block 65) failed [ 2055.211601][T27180] FAT-fs (loop1): Directory bread(block 66) failed [ 2055.218280][T27180] FAT-fs (loop1): Directory bread(block 67) failed [ 2055.229089][T27180] FAT-fs (loop1): Directory bread(block 68) failed [ 2055.239961][T27180] FAT-fs (loop1): Directory bread(block 69) failed [ 2055.266767][T27180] FAT-fs (loop1): Directory bread(block 70) failed [ 2055.278632][T27180] FAT-fs (loop1): Directory bread(block 71) failed [ 2055.295708][T27180] FAT-fs (loop1): Directory bread(block 72) failed [ 2055.316350][T27180] FAT-fs (loop1): Directory bread(block 73) failed [ 2055.402760][T27195] netlink: 12 bytes leftover after parsing attributes in process `syz.2.23572'. [ 2055.461810][T27198] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING [ 2055.583389][T27176] loop3: detected capacity change from 0 to 32768 [ 2055.624860][T27176] (syz.3.23565,27176,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 2055.693849][T27176] (syz.3.23565,27176,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 2055.766474][T27176] JBD2: Ignoring recovery information on journal [ 2055.776513][T27209] loop0: detected capacity change from 0 to 4096 [ 2055.813976][T27215] x_tables: unsorted underflow at hook 3 [ 2055.833694][T27176] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 2056.081336][ T5950] ocfs2: Unmounting device (7,3) on (node local) [ 2056.785968][ T27] audit: type=1326 audit(2000000037.755:3744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27264 comm="syz.0.23595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2056.858717][ T27] audit: type=1326 audit(2000000037.755:3745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27264 comm="syz.0.23595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2056.943182][ T27] audit: type=1326 audit(2000000037.787:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27264 comm="syz.0.23595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2057.019262][ T27] audit: type=1326 audit(2000000037.787:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27264 comm="syz.0.23595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2057.086074][ T27] audit: type=1326 audit(2000000037.787:3748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27264 comm="syz.0.23595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd539c799 code=0x7ffc0000 [ 2057.669918][T27321] loop1: detected capacity change from 0 to 256 [ 2057.693913][T27321] exfat: Deprecated parameter 'utf8' [ 2057.723214][T27321] exfat: Deprecated parameter 'utf8' [ 2057.736092][T27321] exfat: Deprecated parameter 'namecase' [ 2057.757264][T27321] exfat: Deprecated parameter 'namecase' [ 2057.788366][T27321] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 2058.193995][ T23] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 2058.272899][T27324] loop0: detected capacity change from 0 to 32768 [ 2058.342291][T27324] JBD2: Ignoring recovery information on journal [ 2058.374762][ T23] usb 3-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65 [ 2058.389088][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2058.398652][ T23] usb 3-1: Product: syz [ 2058.402953][ T23] usb 3-1: Manufacturer: syz [ 2058.407575][ T23] usb 3-1: SerialNumber: syz [ 2058.413657][T27324] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 2058.415570][ T23] usb 3-1: config 0 descriptor?? [ 2058.462298][T27324] (syz.0.23615,27324,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry too close to end - offset=32, inode=17057, rec_len=280, name_len=10 [ 2058.496558][T27324] (syz.0.23615,27324,0):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 2058.510279][T27324] (syz.0.23615,27324,0):ocfs2_mknod:298 ERROR: status = -2 [ 2058.538599][T27324] (syz.0.23615,27324,0):ocfs2_mknod:502 ERROR: status = -2 [ 2058.575680][T27324] (syz.0.23615,27324,1):ocfs2_create:676 ERROR: status = -2 [ 2058.636244][ T23] cx82310_eth: probe of 3-1:0.0 failed with error -22 [ 2058.684009][ T23] cxacru 3-1:0.0: usbatm_usb_probe: bind failed: -19! [ 2058.723221][ T23] usb 3-1: USB disconnect, device number 14 [ 2058.812764][ T5941] ocfs2: Unmounting device (7,0) on (node local) [ 2059.107724][T27396] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2059.558927][T27432] autofs4:pid:27432:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.2147483646), cmd(0xc0189375) [ 2059.603418][T27432] autofs4:pid:27432:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 2059.870519][T27446] xt_hashlimit: max too large, truncated to 1048576 [ 2060.502740][T27482] kAFS: unable to lookup cell '' [ 2060.690863][T27497] netlink: 'syz.3.23669': attribute type 3 has an invalid length. [ 2061.092673][ T5981] usb 4-1: new low-speed USB device number 30 using dummy_hcd [ 2061.325263][ T5981] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 2061.333704][ T5981] usb 4-1: config 0 has no interface number 0 [ 2061.353368][ T5981] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 2061.377547][ T5981] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 2061.398073][ T5981] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 2061.427064][ T5981] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2061.460546][T27554] overlayfs: conflicting options: userxattr,redirect_dir=on [ 2061.473020][ T5981] usb 4-1: config 0 descriptor?? [ 2061.482854][ T5981] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 2061.629223][T27568] tipc: Can't bind to reserved service type 0 [ 2061.679666][T27510] iowarrior 4-1:0.1: Error -90 while submitting URB [ 2061.695581][T18637] usb 4-1: USB disconnect, device number 30 [ 2061.728104][T27576] netlink: 16 bytes leftover after parsing attributes in process `syz.1.23695'. [ 2061.878885][T27592] loop1: detected capacity change from 0 to 256 [ 2061.896084][T27592] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 2061.920607][T27592] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 2061.946502][T27592] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 2062.191398][T27610] netlink: 132 bytes leftover after parsing attributes in process `syz.0.23704'. [ 2062.231890][T27614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.23706'. [ 2062.277747][T27614] netlink: 60 bytes leftover after parsing attributes in process `syz.2.23706'. [ 2062.311987][T27620] loop1: detected capacity change from 0 to 256 [ 2062.320585][T27614] netlink: 60 bytes leftover after parsing attributes in process `syz.2.23706'. [ 2062.554679][T27637] loop1: detected capacity change from 0 to 256 [ 2062.628206][T27637] FAT-fs (loop1): Directory bread(block 64) failed [ 2062.651431][T27637] FAT-fs (loop1): Directory bread(block 65) failed [ 2062.665776][T27637] FAT-fs (loop1): Directory bread(block 66) failed [ 2062.672587][T27637] FAT-fs (loop1): Directory bread(block 67) failed [ 2062.682493][T27637] FAT-fs (loop1): Directory bread(block 68) failed [ 2062.710020][T27637] FAT-fs (loop1): Directory bread(block 69) failed [ 2062.741935][T27637] FAT-fs (loop1): Directory bread(block 70) failed [ 2062.757380][T27637] FAT-fs (loop1): Directory bread(block 71) failed [ 2062.772171][T27637] FAT-fs (loop1): Directory bread(block 72) failed [ 2062.811845][T27637] FAT-fs (loop1): Directory bread(block 73) failed [ 2062.827227][T27650] overlay: Unknown parameter 'smackfstransmute' [ 2063.028297][T27663] xt_TPROXY: Can be used only with -p tcp or -p udp [ 2063.234943][T27678] loop3: detected capacity change from 0 to 256 [ 2063.842511][ T23] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 2063.953263][T27736] loop1: detected capacity change from 0 to 64 [ 2063.969502][T27736] hfs: unable to locate alternate MDB [ 2063.976777][T27736] hfs: continuing without an alternate MDB [ 2064.010788][ T27] audit: type=1800 audit(2000000045.512:3749): pid=27736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.23744" name="bus" dev="loop1" ino=21 res=0 errno=0 [ 2064.045061][T27741] netlink: 'syz.2.23746': attribute type 1 has an invalid length. [ 2064.058245][ T3473] [ 2064.060588][ T3473] ====================================================== [ 2064.067698][ T3473] WARNING: possible circular locking dependency detected [ 2064.074909][ T3473] syzkaller #0 Not tainted [ 2064.079507][ T3473] ------------------------------------------------------ [ 2064.086626][ T3473] kworker/u4:8/3473 is trying to acquire lock: [ 2064.092865][ T3473] ffff88805a6b34f8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1380 [ 2064.103646][ T3473] [ 2064.103646][ T3473] but task is already holding lock: [ 2064.111108][ T3473] ffff8880249da0b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 2064.115843][ T23] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2064.120749][ T3473] [ 2064.120749][ T3473] which lock already depends on the new lock. [ 2064.120749][ T3473] [ 2064.120759][ T3473] [ 2064.120759][ T3473] the existing dependency chain (in reverse order) is: [ 2064.130403][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2064.140513][ T3473] [ 2064.140513][ T3473] -> #1 (&tree->tree_lock#2/1){+.+.}-{3:3}: [ 2064.140550][ T3473] __mutex_lock+0x136/0xcc0 [ 2064.140572][ T3473] hfs_find_init+0x17e/0x1f0 [ 2064.140590][ T3473] hfs_get_block+0x557/0xc50 [ 2064.140602][ T3473] block_read_full_folio+0x44b/0xf60 [ 2064.151069][ T23] usb 1-1: Product: syz [ 2064.157840][ T3473] filemap_read_folio+0x172/0x760 [ 2064.157867][ T3473] do_read_cache_folio+0x468/0x7d0 [ 2064.157882][ T3473] do_read_cache_page+0x32/0x250 [ 2064.167652][ T23] usb 1-1: Manufacturer: syz [ 2064.171138][ T3473] __hfs_bnode_create+0x4b1/0x7b0 [ 2064.171170][ T3473] hfs_bnode_find+0x222/0xd40 [ 2064.171186][ T3473] hfs_brec_find+0x17c/0x500 [ 2064.171201][ T3473] hfs_brec_read+0x24/0x110 [ 2064.171217][ T3473] hfs_cat_find_brec+0x178/0x3f0 [ 2064.171237][ T3473] hfs_fill_super+0xee2/0x14a0 [ 2064.177219][ T23] usb 1-1: SerialNumber: syz [ 2064.181693][ T3473] mount_bdev+0x221/0x2d0 [ 2064.199271][ T23] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 2064.204067][ T3473] legacy_get_tree+0xea/0x180 [ 2064.204090][ T3473] vfs_get_tree+0x8c/0x280 [ 2064.222752][T17089] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 2064.224991][ T3473] do_new_mount+0x24b/0xa40 [ 2064.225012][ T3473] __se_sys_mount+0x2e7/0x3d0 [ 2064.225024][ T3473] do_syscall_64+0x55/0xa0 [ 2064.298453][ T3473] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 2064.304902][ T3473] [ 2064.304902][ T3473] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}: [ 2064.314226][ T3473] __lock_acquire+0x2df1/0x7d40 [ 2064.319972][ T3473] lock_acquire+0x19e/0x420 [ 2064.325281][ T3473] __mutex_lock+0x136/0xcc0 [ 2064.330406][ T3473] hfs_extend_file+0xff/0x1380 [ 2064.335955][ T3473] hfs_bmap_reserve+0x107/0x430 [ 2064.341604][ T3473] __hfs_ext_write_extent+0x1fa/0x470 [ 2064.347520][ T3473] hfs_ext_write_extent+0x17f/0x210 [ 2064.353602][ T3473] hfs_write_inode+0xdc/0x880 [ 2064.358874][ T3473] __writeback_single_inode+0x705/0xec0 [ 2064.365029][ T3473] writeback_sb_inodes+0x7cd/0xf50 [ 2064.371051][ T3473] wb_writeback+0x46a/0xbf0 [ 2064.376327][ T3473] wb_workfn+0x400/0xe60 [ 2064.381334][ T3473] process_scheduled_works+0xa5d/0x15d0 [ 2064.387864][ T3473] worker_thread+0xa55/0xfc0 [ 2064.393269][ T3473] kthread+0x2fa/0x390 [ 2064.397907][ T3473] ret_from_fork+0x48/0x80 [ 2064.403036][ T3473] ret_from_fork_asm+0x11/0x20 [ 2064.408966][ T3473] [ 2064.408966][ T3473] other info that might help us debug this: [ 2064.408966][ T3473] [ 2064.420080][ T3473] Possible unsafe locking scenario: [ 2064.420080][ T3473] [ 2064.427998][ T3473] CPU0 CPU1 [ 2064.433816][ T3473] ---- ---- [ 2064.439637][ T3473] lock(&tree->tree_lock#2/1); [ 2064.444696][ T3473] lock(&HFS_I(tree->inode)->extents_lock); [ 2064.453747][ T3473] lock(&tree->tree_lock#2/1); [ 2064.461955][ T3473] lock(&HFS_I(tree->inode)->extents_lock); [ 2064.468157][ T3473] [ 2064.468157][ T3473] *** DEADLOCK *** [ 2064.468157][ T3473] [ 2064.476477][ T3473] 3 locks held by kworker/u4:8/3473: [ 2064.482041][ T3473] #0: ffff88801ce4f938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 2064.493691][ T3473] #1: ffffc9000ccf7d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 2064.506492][ T3473] #2: ffff8880249da0b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 2064.517121][ T3473] [ 2064.517121][ T3473] stack backtrace: [ 2064.523307][ T3473] CPU: 0 PID: 3473 Comm: kworker/u4:8 Not tainted syzkaller #0 [ 2064.531935][ T3473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 2064.542102][ T3473] Workqueue: writeback wb_workfn (flush-7:1) [ 2064.548149][ T3473] Call Trace: [ 2064.551474][ T3473] [ 2064.554735][ T3473] dump_stack_lvl+0x18c/0x250 [ 2064.559607][ T3473] ? load_image+0x400/0x400 [ 2064.564208][ T3473] ? show_regs_print_info+0x20/0x20 [ 2064.569472][ T3473] ? print_circular_bug+0x12b/0x1a0 [ 2064.575222][ T3473] check_noncircular+0x2fc/0x400 [ 2064.580177][ T3473] ? look_up_lock_class+0x75/0x140 [ 2064.585318][ T3473] ? print_deadlock_bug+0x5d0/0x5d0 [ 2064.590667][ T3473] ? lockdep_lock+0xf5/0x230 [ 2064.595281][ T3473] ? _find_first_zero_bit+0xd3/0x100 [ 2064.600668][ T3473] __lock_acquire+0x2df1/0x7d40 [ 2064.605566][ T3473] ? arch_stack_walk+0x16e/0x190 [ 2064.610779][ T3473] ? ret_from_fork_asm+0x11/0x20 [ 2064.615817][ T3473] ? verify_lock_unused+0x140/0x140 [ 2064.621389][ T3473] ? stack_trace_save+0xaa/0x100 [ 2064.626601][ T3473] ? stack_trace_snprint+0xf0/0xf0 [ 2064.631924][ T3473] ? check_noncircular+0x18a/0x400 [ 2064.637193][ T3473] ? print_deadlock_bug+0x5d0/0x5d0 [ 2064.642692][ T3473] lock_acquire+0x19e/0x420 [ 2064.647390][ T3473] ? hfs_extend_file+0xff/0x1380 [ 2064.652522][ T3473] ? __might_sleep+0xe0/0xe0 [ 2064.657221][ T3473] ? read_lock_is_recursive+0x20/0x20 [ 2064.662708][ T3473] __mutex_lock+0x136/0xcc0 [ 2064.667333][ T3473] ? hfs_extend_file+0xff/0x1380 [ 2064.672377][ T3473] ? verify_lock_unused+0x140/0x140 [ 2064.677688][ T3473] ? hfs_extend_file+0xff/0x1380 [ 2064.682916][ T3473] ? mutex_lock_nested+0x20/0x20 [ 2064.688056][ T3473] hfs_extend_file+0xff/0x1380 [ 2064.692834][ T3473] ? hfs_ext_write_extent+0x152/0x210 [ 2064.698208][ T3473] ? hfs_write_inode+0xdc/0x880 [ 2064.703166][ T3473] ? hfs_get_block+0xc50/0xc50 [ 2064.708123][ T3473] ? trace_raw_output_contention_end+0xd0/0xd0 [ 2064.714730][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2064.719599][ T3473] ? trace_contention_end+0x39/0xe0 [ 2064.724901][ T3473] ? __asan_memset+0x22/0x40 [ 2064.729681][ T3473] ? hfs_brec_find+0x19b/0x500 [ 2064.734566][ T3473] ? hfs_find_init+0x17e/0x1f0 [ 2064.739607][ T3473] hfs_bmap_reserve+0x107/0x430 [ 2064.744566][ T3473] __hfs_ext_write_extent+0x1fa/0x470 [ 2064.750149][ T3473] hfs_ext_write_extent+0x17f/0x210 [ 2064.755351][ T3473] ? verify_lock_unused+0x140/0x140 [ 2064.760640][ T3473] ? hfs_ext_find_block+0x190/0x190 [ 2064.765858][ T3473] ? blk_start_plug+0x51/0x1a0 [ 2064.770633][ T3473] hfs_write_inode+0xdc/0x880 [ 2064.775334][ T3473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 2064.780726][ T3473] ? __writeback_single_inode+0x48d/0xec0 [ 2064.786546][ T3473] ? __lock_acquire+0x7d40/0x7d40 [ 2064.791756][ T3473] ? do_raw_spin_lock+0x11f/0x2c0 [ 2064.797058][ T3473] ? __rwlock_init+0x150/0x150 [ 2064.801930][ T3473] __writeback_single_inode+0x705/0xec0 [ 2064.807506][ T3473] writeback_sb_inodes+0x7cd/0xf50 [ 2064.813070][ T3473] ? queue_io+0x550/0x550 [ 2064.817448][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2064.822314][ T3473] wb_writeback+0x46a/0xbf0 [ 2064.827004][ T3473] ? queue_io+0x3b1/0x550 [ 2064.831522][ T3473] ? percpu_ref_tryget+0x250/0x250 [ 2064.836932][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2064.843196][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2064.848405][ T3473] wb_workfn+0x400/0xe60 [ 2064.852925][ T3473] ? try_to_wake_up+0x70a/0x1190 [ 2064.857877][ T3473] ? inode_wait_for_writeback+0x230/0x230 [ 2064.863810][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2064.869905][ T3473] ? read_lock_is_recursive+0x20/0x20 [ 2064.875297][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2064.880500][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2064.886414][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2064.892318][ T3473] process_scheduled_works+0xa5d/0x15d0 [ 2064.898327][ T3473] ? worker_attach_to_pool+0x380/0x380 [ 2064.903866][ T3473] ? assign_work+0x3d2/0x5d0 [ 2064.908521][ T3473] worker_thread+0xa55/0xfc0 [ 2064.913302][ T3473] kthread+0x2fa/0x390 [ 2064.918079][ T3473] ? pr_cont_work+0x560/0x560 [ 2064.922767][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2064.927545][ T3473] ret_from_fork+0x48/0x80 [ 2064.931970][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2064.936571][ T3473] ret_from_fork_asm+0x11/0x20 [ 2064.941395][ T3473] [ 2064.981111][ T3473] hfs: new node 0 already hashed? [ 2064.986983][ T3473] ------------[ cut here ]------------ [ 2064.992837][ T3473] WARNING: CPU: 0 PID: 3473 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440 [ 2065.001896][ T3473] Modules linked in: [ 2065.005934][ T3473] CPU: 0 PID: 3473 Comm: kworker/u4:8 Not tainted syzkaller #0 [ 2065.007636][ T23] usb 1-1: USB disconnect, device number 13 [ 2065.013954][ T3473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 2065.013970][ T3473] Workqueue: writeback wb_workfn (flush-7:1) [ 2065.013999][ T3473] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 2065.014018][ T3473] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 2065.014031][ T3473] RSP: 0018:ffffc9000ccf6e18 EFLAGS: 00010246 [ 2065.014046][ T3473] RAX: 000000000000001f RBX: ffff8880249da000 RCX: 90c05aa6780c8600 [ 2065.014058][ T3473] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 2065.014067][ T3473] RBP: 0000000000000000 R08: ffffc9000ccf6b27 R09: 1ffff9200199ed64 [ 2065.014077][ T3473] R10: dffffc0000000000 R11: fffff5200199ed65 R12: 0000000000000000 [ 2065.014089][ T3473] R13: ffff8880249da0e0 R14: ffff8880266ecb00 R15: dffffc0000000000 [ 2065.014101][ T3473] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 2065.014115][ T3473] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2065.014126][ T3473] CR2: 00007f6bdffe7158 CR3: 000000007b34d000 CR4: 00000000003506f0 [ 2065.014140][ T3473] Call Trace: [ 2065.014148][ T3473] [ 2065.014157][ T3473] hfs_bmap_alloc+0x541/0x5d0 [ 2065.014176][ T3473] ? hfs_bmap_reserve+0x430/0x430 [ 2065.014193][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2065.014214][ T3473] hfs_btree_inc_height+0x101/0xac0 [ 2065.014230][ T3473] ? __rwlock_init+0x150/0x150 [ 2065.014251][ T3473] ? hfs_brec_insert+0xbd0/0xbd0 [ 2065.014268][ T3473] ? do_raw_spin_unlock+0x121/0x230 [ 2065.014288][ T3473] hfs_brec_insert+0x748/0xbd0 [ 2065.014310][ T3473] ? hfs_brec_keylen+0x360/0x360 [ 2065.014327][ T3473] __hfs_ext_write_extent+0x2a1/0x470 [ 2065.014346][ T3473] hfs_ext_write_extent+0x17f/0x210 [ 2065.014362][ T3473] ? verify_lock_unused+0x140/0x140 [ 2065.014379][ T3473] ? hfs_ext_find_block+0x190/0x190 [ 2065.014398][ T3473] ? blk_start_plug+0x51/0x1a0 [ 2065.014414][ T3473] hfs_write_inode+0xdc/0x880 [ 2065.014431][ T3473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 2065.014451][ T3473] ? __writeback_single_inode+0x48d/0xec0 [ 2065.014472][ T3473] ? __lock_acquire+0x7d40/0x7d40 [ 2065.014487][ T3473] ? do_raw_spin_lock+0x11f/0x2c0 [ 2065.014506][ T3473] ? __rwlock_init+0x150/0x150 [ 2065.014527][ T3473] __writeback_single_inode+0x705/0xec0 [ 2065.014551][ T3473] writeback_sb_inodes+0x7cd/0xf50 [ 2065.014580][ T3473] ? queue_io+0x550/0x550 [ 2065.014604][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2065.014625][ T3473] wb_writeback+0x46a/0xbf0 [ 2065.014646][ T3473] ? queue_io+0x3b1/0x550 [ 2065.014683][ T3473] ? percpu_ref_tryget+0x250/0x250 [ 2065.014703][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2065.014724][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2065.014744][ T3473] wb_workfn+0x400/0xe60 [ 2065.014762][ T3473] ? try_to_wake_up+0x70a/0x1190 [ 2065.014783][ T3473] ? inode_wait_for_writeback+0x230/0x230 [ 2065.014807][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2065.014825][ T3473] ? read_lock_is_recursive+0x20/0x20 [ 2065.014845][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2065.014860][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2065.014880][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2065.014904][ T3473] process_scheduled_works+0xa5d/0x15d0 [ 2065.014933][ T3473] ? worker_attach_to_pool+0x380/0x380 [ 2065.014953][ T3473] ? assign_work+0x3d2/0x5d0 [ 2065.014972][ T3473] worker_thread+0xa55/0xfc0 [ 2065.014999][ T3473] kthread+0x2fa/0x390 [ 2065.015014][ T3473] ? pr_cont_work+0x560/0x560 [ 2065.015031][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2065.015046][ T3473] ret_from_fork+0x48/0x80 [ 2065.015064][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2065.015079][ T3473] ret_from_fork_asm+0x11/0x20 [ 2065.015103][ T3473] [ 2065.015112][ T3473] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 2065.015121][ T3473] CPU: 0 PID: 3473 Comm: kworker/u4:8 Not tainted syzkaller #0 [ 2065.015136][ T3473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 2065.015145][ T3473] Workqueue: writeback wb_workfn (flush-7:1) [ 2065.015166][ T3473] Call Trace: [ 2065.015172][ T3473] [ 2065.015178][ T3473] dump_stack_lvl+0x18c/0x250 [ 2065.015199][ T3473] ? show_regs_print_info+0x20/0x20 [ 2065.015219][ T3473] ? load_image+0x400/0x400 [ 2065.015242][ T3473] panic+0x2dc/0x730 [ 2065.015260][ T3473] ? bpf_jit_dump+0xd0/0xd0 [ 2065.015279][ T3473] ? ret_from_fork_asm+0x11/0x20 [ 2065.015299][ T3473] __warn+0x2e0/0x470 [ 2065.015314][ T3473] ? hfs_bnode_create+0x3b9/0x440 [ 2065.015329][ T3473] ? hfs_bnode_create+0x3b9/0x440 [ 2065.015343][ T3473] report_bug+0x2be/0x4f0 [ 2065.015356][ T3473] ? hfs_bnode_create+0x3b9/0x440 [ 2065.015370][ T3473] ? hfs_bnode_create+0x3b9/0x440 [ 2065.015384][ T3473] ? hfs_bnode_create+0x3bb/0x440 [ 2065.015398][ T3473] handle_bug+0xcf/0x120 [ 2065.015417][ T3473] exc_invalid_op+0x1a/0x50 [ 2065.015437][ T3473] asm_exc_invalid_op+0x1a/0x20 [ 2065.015453][ T3473] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 2065.015468][ T3473] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 2065.015481][ T3473] RSP: 0018:ffffc9000ccf6e18 EFLAGS: 00010246 [ 2065.015494][ T3473] RAX: 000000000000001f RBX: ffff8880249da000 RCX: 90c05aa6780c8600 [ 2065.015505][ T3473] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 2065.015514][ T3473] RBP: 0000000000000000 R08: ffffc9000ccf6b27 R09: 1ffff9200199ed64 [ 2065.015525][ T3473] R10: dffffc0000000000 R11: fffff5200199ed65 R12: 0000000000000000 [ 2065.015535][ T3473] R13: ffff8880249da0e0 R14: ffff8880266ecb00 R15: dffffc0000000000 [ 2065.015553][ T3473] ? hfs_bnode_create+0x3b9/0x440 [ 2065.015568][ T3473] hfs_bmap_alloc+0x541/0x5d0 [ 2065.015585][ T3473] ? hfs_bmap_reserve+0x430/0x430 [ 2065.015600][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2065.015619][ T3473] hfs_btree_inc_height+0x101/0xac0 [ 2065.015634][ T3473] ? __rwlock_init+0x150/0x150 [ 2065.015654][ T3473] ? hfs_brec_insert+0xbd0/0xbd0 [ 2065.015670][ T3473] ? do_raw_spin_unlock+0x121/0x230 [ 2065.015689][ T3473] hfs_brec_insert+0x748/0xbd0 [ 2065.015711][ T3473] ? hfs_brec_keylen+0x360/0x360 [ 2065.015729][ T3473] __hfs_ext_write_extent+0x2a1/0x470 [ 2065.015746][ T3473] hfs_ext_write_extent+0x17f/0x210 [ 2065.015762][ T3473] ? verify_lock_unused+0x140/0x140 [ 2065.015778][ T3473] ? hfs_ext_find_block+0x190/0x190 [ 2065.015797][ T3473] ? blk_start_plug+0x51/0x1a0 [ 2065.015813][ T3473] hfs_write_inode+0xdc/0x880 [ 2065.015830][ T3473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 2065.015849][ T3473] ? __writeback_single_inode+0x48d/0xec0 [ 2065.015869][ T3473] ? __lock_acquire+0x7d40/0x7d40 [ 2065.015884][ T3473] ? do_raw_spin_lock+0x11f/0x2c0 [ 2065.015913][ T3473] ? __rwlock_init+0x150/0x150 [ 2065.015934][ T3473] __writeback_single_inode+0x705/0xec0 [ 2065.015957][ T3473] writeback_sb_inodes+0x7cd/0xf50 [ 2065.015984][ T3473] ? queue_io+0x550/0x550 [ 2065.016008][ T3473] ? rcu_is_watching+0x15/0xb0 [ 2065.016029][ T3473] wb_writeback+0x46a/0xbf0 [ 2065.016050][ T3473] ? queue_io+0x3b1/0x550 [ 2065.016070][ T3473] ? percpu_ref_tryget+0x250/0x250 [ 2065.016089][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2065.016110][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2065.016128][ T3473] wb_workfn+0x400/0xe60 [ 2065.016145][ T3473] ? try_to_wake_up+0x70a/0x1190 [ 2065.016165][ T3473] ? inode_wait_for_writeback+0x230/0x230 [ 2065.016188][ T3473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 2065.016205][ T3473] ? read_lock_is_recursive+0x20/0x20 [ 2065.016224][ T3473] ? _raw_spin_unlock_irq+0x23/0x50 [ 2065.016240][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2065.016258][ T3473] ? process_scheduled_works+0x96f/0x15d0 [ 2065.016275][ T3473] process_scheduled_works+0xa5d/0x15d0 [ 2065.016303][ T3473] ? worker_attach_to_pool+0x380/0x380 [ 2065.016323][ T3473] ? assign_work+0x3d2/0x5d0 [ 2065.016342][ T3473] worker_thread+0xa55/0xfc0 [ 2065.016368][ T3473] kthread+0x2fa/0x390 [ 2065.016381][ T3473] ? pr_cont_work+0x560/0x560 [ 2065.016399][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2065.016413][ T3473] ret_from_fork+0x48/0x80 [ 2065.016430][ T3473] ? kthread_blkcg+0xd0/0xd0 [ 2065.016444][ T3473] ret_from_fork_asm+0x11/0x20 [ 2065.016467][ T3473] [ 2065.020281][ T3473] Kernel Offset: disabled