last executing test programs: 2m37.877276461s ago: executing program 4 (id=844): r0 = socket(0x15, 0x5, 0x0) getsockopt(r0, 0x200000000114, 0x2712, &(0x7f0000005ec0)=""/102394, &(0x7f0000000040)=0x18ffa) 2m37.53795681s ago: executing program 4 (id=849): r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0) finit_module(r0, 0x0, 0x4) 2m37.425096789s ago: executing program 4 (id=851): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000003580)=@allocspi={0x214, 0x16, 0x247d92f0eaf46e55, 0x70bd26, 0x25dfdbfe, {{{@in=@empty, @in=@multicast1, 0x4e24, 0x8008, 0x4e20, 0x2, 0x2, 0x80, 0xa0, 0x2b}, {@in=@broadcast, 0x4d5, 0x6c}, @in=@empty, {0x3, 0xf83, 0x1, 0x4, 0x80, 0xe, 0x9, 0x6}, {0x9, 0x8000000000000001, 0x2, 0x1}, {0x1, 0x8, 0x80}, 0x70bd25, 0x3506, 0xa, 0x3, 0x7, 0x32}, 0x0, 0x3ff}, [@replay_val={0x10, 0xa, {0x70bd2c, 0x70bd2a, 0x1ff}}, @sa={0xe4, 0x6, {{@in6=@empty, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4e21, 0x8, 0x4e22, 0x2, 0xa, 0xa0, 0x80, 0x33}, {@in6=@ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x4d2, 0x6c}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {0xffffffffffffffff, 0x10000, 0x5, 0xccd5, 0x1, 0x8, 0xff, 0x9edd}, {0x2, 0x4, 0x8, 0xac3}, {0x6, 0xffffffff, 0xfffffff8}, 0x70bd2c, 0x3503, 0xa, 0x0, 0x3, 0xd0}}, @address_filter={0x28, 0x1a, {@in=@loopback, @in=@local, 0xa, 0x9, 0x1}}]}, 0x214}}, 0x0) 2m37.294404629s ago: executing program 4 (id=852): syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x800800, &(0x7f0000000040)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}, {@sys_tz}, {@namecase}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x7f}}, {@keep_last_dots}, {@fmask={'fmask', 0x3d, 0x3c}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x152b, &(0x7f0000000a00)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 2m36.839706508s ago: executing program 4 (id=858): r0 = socket$phonet(0x23, 0x2, 0x1) sendto$phonet(r0, 0x0, 0x27, 0x0, &(0x7f0000000480)={0x23, 0xfb}, 0x10) 2m36.362486186s ago: executing program 4 (id=864): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newtaction={0x5c, 0x30, 0xb, 0x5, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x2}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8890}, 0x2008042) 2m35.709082254s ago: executing program 32 (id=864): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newtaction={0x5c, 0x30, 0xb, 0x5, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x2}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8890}, 0x2008042) 2m0.750660155s ago: executing program 3 (id=1279): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/pid_for_children\x00') setns(r0, 0x0) 2m0.431278004s ago: executing program 3 (id=1286): r0 = syz_open_dev$vim2m(&(0x7f00000006c0), 0x8, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000200)={0x3c, 0x2, 0x0, "b937c74adf10bd2d82520b114ccb0fe4537be1767d687156ab1ed342ddafd674", 0x79080221}) 2m0.148393613s ago: executing program 3 (id=1289): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8, 0x1, @udp6}, @IFLA_GTP_FD1={0x8}]}}}]}, 0x40}}, 0x0) 1m59.865856002s ago: executing program 3 (id=1293): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x481, &(0x7f0000000140)=ANY=[@ANYBLOB='decompose,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c747970653d69759d7b2c6e6f6465636f6d706f73652c706172743d3078303030303030303030303030303030352c6e6c733d63703835322c0003cbc07ba0a1136d4473bd2732cc9433380cd22dec53d0a6f1102a4eea5601100a9ad8b17df114bc4794e98d59b6e930d8b8f9647652dc225a077d8726a372a270"], 0x1, 0x6f8, &(0x7f0000002440)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 1m59.370064031s ago: executing program 3 (id=1297): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x20, 0x1411, 0x1, 0x70bd28, 0x40000000, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0xfffffffffffffe1e}]}, 0x20}}, 0x0) 1m58.738191829s ago: executing program 3 (id=1302): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0xc00, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=rdma,porx0000000000004e21,rq=0x000000000000000b,sq=0x0000000000000001,timeout=0x0000000000000008,rq=0x0000000100000000']) 1m58.150137228s ago: executing program 33 (id=1302): mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0xc00, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=rdma,porx0000000000004e21,rq=0x000000000000000b,sq=0x0000000000000001,timeout=0x0000000000000008,rq=0x0000000100000000']) 4.211942572s ago: executing program 2 (id=2708): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xa1) 3.917947982s ago: executing program 2 (id=2712): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x64) 3.588101611s ago: executing program 2 (id=2718): r0 = socket$igmp(0x2, 0x3, 0x2) getsockopt$MRT(r0, 0x0, 0xcf, 0x0, 0x0) 3.30475086s ago: executing program 2 (id=2722): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip_mr_vif\x00') preadv(r0, &(0x7f0000001400)=[{&(0x7f0000000140)=""/199, 0xc7}], 0x1, 0x47, 0x6) 3.084084349s ago: executing program 2 (id=2726): r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000000c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@compress}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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") ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000840)={0xa, 0x0, {0x8, @struct={0x9, 0xffffffff}, 0x0, 0x9, 0x3ff, 0x0, 0x0, 0x0, 0xe8, @usage=0x50, 0x0, 0x5, [0x0, 0xfffffffffffffff9, 0x0, 0x6]}, {0x0, @usage=0x5, 0x0, 0x0, 0x0, 0x0, 0x10000000949a, 0x0, 0x414, @usage, 0x4, 0x0, [0x8001, 0x2, 0x4, 0x7]}, {0xfffffffffffffffd, @usage=0x10001, 0x0, 0x8, 0xfffffffffffffffe, 0x5, 0x100000000, 0xfffffffffffffffc, 0x1, @struct={0x0, 0x80000000}, 0x727, 0x7ff, [0x760d, 0x2, 0x7, 0x1]}, {0x100000000, 0x1, 0x2}}) 2.955874489s ago: executing program 1 (id=2727): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)={0x10, 0x1405, 0x621}, 0x10}}, 0x0) 2.744058668s ago: executing program 1 (id=2730): r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000b80)={'vxcan1\x00'}) 2.511078228s ago: executing program 1 (id=2734): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) setsockopt$inet_int(r0, 0x0, 0x1, 0x0, 0x0) 2.221988157s ago: executing program 1 (id=2738): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x17, &(0x7f0000000180)=0x3, 0x4) 2.113915086s ago: executing program 6 (id=2739): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x2808000, &(0x7f0000000140)={[{@iocharset={'iocharset', 0x3d, 'cp860'}}, {@uni_xlate}, {@fat=@errors_continue}, {@uni_xlateno}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '865'}}, {@shortname_mixed}, {@shortname_win95}, {@shortname_win95}, {@shortname_lower}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@uni_xlate}]}, 0x1, 0x294, &(0x7f0000000500)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) 1.968400486s ago: executing program 1 (id=2742): r0 = syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x120c083, &(0x7f0000000480), 0xfd, 0x111d, &(0x7f0000000640)="$eJzs2bFqFFEUBuD/7qwm3cjYD4IWFhIS1gcwhcK2ttqIBARTZUFQfA3fwLfwFTSVtSG9FgFLYWScHRMloCGbQOD7YPeeOTNnzr3lvRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoTZOvJbk5SZoxN0lSkrbdnx8macf8jY/VJCWPd+aLh3uzR4sk1a/Hy5Ok9FV9WZqt2+vNrJk1W839B9t3Pi1ev3n5bHd3Z2/5mpI2B0crXUUZ/6qTubLSHgAAAHBldedW592r/+l0/cvF9AcAAAD+ZeUHCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABn1NXHcTMGkyQladv9+WGS9pS6a5c0PwAAAOD8SiZ5Wp+WH44Bjt3L57r8zvfj99LHm3lfp0wvb8oAAABw5bz48Mdlt7YMTn5f/9EN+n333UyHffn6cO9WptnYGOLlkG/bSZVk869eB0dvn4+/0lXJ2sWsCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJ/swAEJAAAAgKD/r9sRKAAAAAAAAAAAAAAAAAAAAAAAAAAAFwUAAP//cLriEQ==") syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='.\x00', 0x1a484bc, &(0x7f0000000200)=ANY=[@ANYRES8=r0, @ANYBLOB="eea73c3ca047349ab66dff07b1e2bdc61875c6ccebea30ba1b8977c632dd4bd75d3cfd10cce0c88ccff0ff447cd9caded4abf65767e9dbbd7b5841a8ce3eae5cb5abfd7d4fb44c7151dec2b7b8f9cf870af04f1cc951b195c7fd36ffdbd0622cdc14395f095fb0d31f384214d59a0105d577557215473973f3b70178f49f07562f4d21cad59fafb7fbaf76061c56fdd2093329e2ece7cf96435bca11a90ba7f31e69c4b73ba3d172906ffc90f5de134a696a731d20a9cf70009a31f83d4b774b0d99de69f14de9e655b84b646166d979b9cdbde38324510998bba500000000007cf791c3e2fc9c72f920a64e0000000000000000000000b5ff5bb6b1fa869800651587af", @ANYRES8=r0, @ANYRESDEC=r0, @ANYRES32, @ANYRES16, @ANYRESHEX=r0, @ANYRESHEX, @ANYRES64], 0x1, 0x0, &(0x7f0000000480)) 1.844215475s ago: executing program 6 (id=2744): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}], {0x14, 0x10}}, 0xc0}}, 0x0) 1.697740585s ago: executing program 0 (id=2746): r0 = socket$inet6(0xa, 0x3, 0x88) recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}, 0x7c8}], 0x1, 0x10001, 0x0) 1.623543935s ago: executing program 6 (id=2747): r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) write$P9_RLERRORu(r0, 0x0, 0x0) 1.515626405s ago: executing program 5 (id=2748): syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nodots,allow_utime=000000000034,usefree,check=strict,dots,\x00'/70], 0x1, 0x1e9, &(0x7f00000002c0)="$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") truncate(&(0x7f0000000900)='./file1\x00', 0xb73d) 1.332122414s ago: executing program 6 (id=2749): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$bt_hci(r0, 0x84, 0x80, &(0x7f0000000000)=""/4103, &(0x7f0000001180)=0x1007) 1.297924694s ago: executing program 0 (id=2750): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3003}, 0xe) 1.208922744s ago: executing program 6 (id=2751): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0xa5, 0x358, &(0x7f0000000480)="$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") rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1.067223744s ago: executing program 5 (id=2752): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x541b, 0x0) 1.029517683s ago: executing program 0 (id=2753): r0 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2) ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f00000000c0)={0x0, 0x1, 0x1000000, 0x0, 0x0, 0x4}) 758.804503ms ago: executing program 0 (id=2754): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0xffff, 0x28001) ioctl$VIDIOC_SUBDEV_S_CROP(r0, 0xc038563c, &(0x7f0000000040)={0x1, 0x0, {0xffff514b, 0x3, 0x6a, 0xa3e}}) 725.257423ms ago: executing program 5 (id=2755): r0 = socket$netlink(0x10, 0x3, 0x12) sendfile(0xffffffffffffffff, r0, &(0x7f0000000100)=0x3f, 0x3) 458.351692ms ago: executing program 0 (id=2756): r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) setsockopt$llc_int(r0, 0x10c, 0x8, &(0x7f00000000c0)=0xf57, 0x4) 445.022332ms ago: executing program 5 (id=2757): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="600000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800e00010069703665727370616e0000002c00028014000500000000000000000000000000000000010500160002000000040012"], 0x60}}, 0x0) 424.549232ms ago: executing program 2 (id=2758): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_dccp_buf(r0, 0x21, 0x0, 0x0, 0x0) 217.629101ms ago: executing program 5 (id=2759): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@bridge_delneigh={0x1c, 0x1c, 0xc07, 0x70bd27, 0x0, {0x7, 0x0, 0x0, 0x0, 0x2, 0xee, 0x3}}, 0x1c}}, 0x240000a0) 198.307041ms ago: executing program 6 (id=2760): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="757466383d302c696f636861727365743d69736f383835392d312c666d61736b3d30303030303030303030303030303030303030303036362c756e695f786c6174653d312c756e695f786c6174653d302c726f6469722c73686f72746e616d653d6c6f7765722c756e695f786c6174653d302c757466383d302c757466383d312c73686f72746e616d653d77696e39352c726f6469722c6e66733d6e6f7374616c655f726f2c726f6469722c757466383d312c73686f72746e616d653d77696e6e742c636865636b3d72656c617865642c00c63b831754d4eeec4cf38c28cf1e3409b9950bbab09abe8d407d1c7c935e034461a37ac3113829124efad15a202673b20ad011cb0f0cedb0cef9f6ec5e2634db26ef8581fd506844d0133ac021c0172b4b36a109949512e8dc6a8c7d603e3ef3cd57451eaee1b0e4804b9ea88fcad7afb59594dcfeaf8d34935fa0e54a36c57d964429e7ec869287810e5d97759017ace0c3f5"], 0x1, 0x2ca, &(0x7f0000000d80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) 176.887801ms ago: executing program 1 (id=2761): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0xc, &(0x7f0000000340)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000003}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 127.262731ms ago: executing program 0 (id=2762): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000180)=ANY=[@ANYBLOB="140000001300010000001f000000000006"], 0x14}], 0x1}, 0x0) 0s ago: executing program 5 (id=2763): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, 0x0) kernel console output (not intermixed with test programs): aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 177.225980][ T4253] syz-executor (4253) used greatest stack depth: 20088 bytes left [ 177.268637][ T7356] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 177.312889][ C1] vkms_vblank_simulate: vblank timer overrun [ 177.363897][ T7348] XFS (loop1): Mounting V5 Filesystem [ 177.548017][ T7348] XFS (loop1): Ending clean mount [ 177.555558][ T7356] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 177.565879][ T7356] BTRFS info (device loop0): using free space tree [ 177.613856][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.639836][ T4250] XFS (loop1): Unmounting Filesystem [ 177.842942][ T7356] BTRFS info (device loop0): enabling ssd optimizations [ 177.862773][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.147324][ T4260] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 178.185016][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.399812][ T7431] ieee802154 phy0 wpan0: encryption failed: -22 [ 178.527659][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.048956][ T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 179.060422][ T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 179.070627][ T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 179.079942][ T48] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 179.088246][ T48] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 179.097546][ T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 179.785001][ T7474] loop2: detected capacity change from 0 to 16 [ 179.865748][ T7474] erofs: (device loop2): mounted with root inode @ nid 36. [ 179.908372][ T7474] erofs: (device loop2): init_inode_xattrs: xattr_isize 12 of nid 86 is not supported yet [ 179.993612][ T7479] loop0: detected capacity change from 0 to 256 [ 180.040277][ T7479] MINIX-fs: mounting file system with errors, running fsck is recommended [ 180.262913][ T7448] chnl_net:caif_netlink_parms(): no params data found [ 180.286198][ T7445] loop1: detected capacity change from 0 to 40427 [ 180.355273][ T7445] F2FS-fs (loop1): Wrong SSA boundary, start(3584) end(4096) blocks(0) [ 180.370031][ T7445] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 180.384323][ T7445] F2FS-fs (loop1): invalid crc_offset: 5705724 [ 180.390808][ T7485] netlink: 'syz.5.1326': attribute type 7 has an invalid length. [ 180.404883][ T7445] F2FS-fs (loop1): Found nat_bits in checkpoint [ 180.574948][ T7445] F2FS-fs (loop1): recover fsync data on readonly fs [ 180.595913][ T7445] F2FS-fs (loop1): Try to recover 2th superblock, ret: -30 [ 180.603370][ T7445] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 180.752188][ T7503] loop5: detected capacity change from 0 to 1024 [ 180.855523][ T7503] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 181.059743][ T6252] EXT4-fs (loop5): unmounting filesystem. [ 181.165509][ T4255] Bluetooth: hci1: command 0x0409 tx timeout [ 181.599499][ T7448] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.625596][ T7448] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.633720][ T7448] device bridge_slave_0 entered promiscuous mode [ 181.720701][ T7448] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.730306][ T7448] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.757001][ T7448] device bridge_slave_1 entered promiscuous mode [ 181.788874][ T11] device hsr_slave_0 left promiscuous mode [ 181.806135][ T11] device hsr_slave_1 left promiscuous mode [ 181.855494][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 181.862992][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 181.917022][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 181.924494][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 181.927279][ T7538] loop0: detected capacity change from 0 to 2048 [ 181.965243][ T7538] EXT4-fs: Ignoring removed mblk_io_submit option [ 181.977424][ T11] device bridge_slave_1 left promiscuous mode [ 181.983721][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.007686][ T7538] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 182.052044][ T11] device bridge_slave_0 left promiscuous mode [ 182.088902][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 182.100307][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.217411][ T7542] loop2: detected capacity change from 0 to 4096 [ 182.252519][ T11] device veth1_macvtap left promiscuous mode [ 182.272859][ T11] device veth0_macvtap left promiscuous mode [ 182.279408][ T11] device veth1_vlan left promiscuous mode [ 182.285427][ T11] device veth0_vlan left promiscuous mode [ 182.291565][ T7542] ntfs: volume version 3.1. [ 182.694736][ T7553] loop1: detected capacity change from 0 to 4096 [ 182.742506][ T7553] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 182.787833][ T7553] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 182.854209][ T7553] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 182.880296][ T7553] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 182.894697][ T7553] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 182.930286][ T7553] ntfs: volume version 3.1. [ 182.942121][ T7553] ntfs: (device loop1): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 182.972581][ T7553] ntfs: (device loop1): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 182.994135][ T7553] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 183.014135][ T7553] ntfs: (device loop1): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 183.026883][ T7553] ntfs: (device loop1): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 183.154757][ T7565] netlink: 204732 bytes leftover after parsing attributes in process `syz.0.1353'. [ 183.247610][ T4255] Bluetooth: hci1: command 0x041b tx timeout [ 183.696828][ T7578] loop0: detected capacity change from 0 to 512 [ 183.762282][ T7578] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 183.786092][ T7578] ext4 filesystem being mounted at /275/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 183.827557][ T7578] syz.0.1359 (7578) used greatest stack depth: 19952 bytes left [ 183.843572][ T11] team0 (unregistering): Port device team_slave_1 removed [ 183.888334][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 184.031179][ T11] team0 (unregistering): Port device team_slave_0 removed [ 184.094044][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 184.164218][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 184.494813][ T7591] loop1: detected capacity change from 0 to 32768 [ 184.571285][ T7591] XFS (loop1): Mounting V5 Filesystem [ 184.673534][ T7591] XFS (loop1): Ending clean mount [ 184.703349][ T7591] XFS (loop1): Quotacheck needed: Please wait. [ 184.773862][ T7591] XFS (loop1): Quotacheck: Done. [ 184.837448][ T4250] XFS (loop1): Unmounting Filesystem [ 184.926660][ T11] bond0 (unregistering): Released all slaves [ 185.043761][ T7589] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1361'. [ 185.067768][ T7448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.136110][ T7448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.295209][ T7448] team0: Port device team_slave_0 added [ 185.325487][ T4255] Bluetooth: hci1: command 0x040f tx timeout [ 185.363375][ T7604] device netdevsim0 entered promiscuous mode [ 185.387581][ T7448] team0: Port device team_slave_1 added [ 185.393514][ T7607] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1367'. [ 185.424024][ T7607] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 185.448909][ T7607] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 185.475407][ T7607] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 185.495386][ T7607] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 185.594297][ T7613] netlink: 'syz.0.1368': attribute type 10 has an invalid length. [ 185.602298][ T7613] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1368'. [ 185.702024][ T7613] team0: Port device geneve0 added [ 185.727054][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 185.734065][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 185.786164][ T7448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 185.842036][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 185.856293][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 185.965737][ T7448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.131230][ T7625] netlink: 'syz.2.1371': attribute type 1 has an invalid length. [ 186.205455][ T7625] netlink: 'syz.2.1371': attribute type 1 has an invalid length. [ 186.279050][ T7448] device hsr_slave_0 entered promiscuous mode [ 186.343964][ T7448] device hsr_slave_1 entered promiscuous mode [ 186.738633][ T7643] loop2: detected capacity change from 0 to 256 [ 186.944675][ T7448] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 186.991370][ T7448] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 187.048675][ T7448] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 187.116901][ T7448] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 187.411699][ T4255] Bluetooth: hci1: command 0x0419 tx timeout [ 187.505939][ T7448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 187.603231][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 187.629200][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 187.661688][ T7448] 8021q: adding VLAN 0 to HW filter on device team0 [ 187.715201][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 187.733974][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 187.753604][ T1308] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.760864][ T1308] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.818290][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.866228][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 187.899245][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 187.955601][ T1308] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.962787][ T1308] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.026482][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 188.082263][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 188.114991][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 188.178900][ T7686] loop0: detected capacity change from 0 to 2048 [ 188.191214][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 188.248308][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 188.283051][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 188.309617][ T7686] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 188.333511][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 188.363269][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 188.398452][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 188.460576][ T7448] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 188.478742][ T7448] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 188.523633][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 188.556461][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 188.821990][ T7709] loop1: detected capacity change from 0 to 64 [ 188.884943][ T7706] loop0: detected capacity change from 0 to 4096 [ 188.920682][ T7706] __ntfs_error: 6 callbacks suppressed [ 188.920699][ T7706] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 188.990961][ T7706] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 189.046309][ T7706] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 189.125633][ T7706] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 189.216724][ T7706] ntfs: volume version 3.1. [ 189.271925][ T7706] process 'syz.0.1400' launched './file0' with NULL argv: empty string added [ 189.336077][ T7706] ntfs: (device loop0): ntfs_attr_find(): Inode is corrupt. Run chkdsk. [ 189.404569][ T7706] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x40 as bad. Run chkdsk. [ 189.417885][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 189.435110][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 189.472574][ T7448] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 189.694362][ T7736] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1409'. [ 189.729093][ T7736] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1409'. [ 190.049661][ T7750] netlink: 'syz.1.1413': attribute type 15 has an invalid length. [ 190.098903][ T7750] netlink: 666 bytes leftover after parsing attributes in process `syz.1.1413'. [ 190.575466][ T7767] netlink: 'syz.1.1419': attribute type 6 has an invalid length. [ 190.620941][ T7767] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1419'. [ 190.644480][ T7752] infiniband syz1: set active [ 190.650916][ T7752] infiniband syz1: added syz_tun [ 190.720804][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 190.739712][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 190.816541][ T7752] RDS/IB: syz1: added [ 190.821437][ T7752] smc: adding ib device syz1 with port count 1 [ 190.862432][ T4506] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 190.869753][ T7752] smc: ib device syz1 port 1 has pnetid [ 190.871302][ T4506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 190.885465][ T4506] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 190.895457][ T4506] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 190.928464][ T7448] device veth0_vlan entered promiscuous mode [ 191.001191][ T7448] device veth1_vlan entered promiscuous mode [ 191.096072][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 191.118870][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 191.146650][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 191.168073][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 191.211766][ T7448] device veth0_macvtap entered promiscuous mode [ 191.251169][ T7448] device veth1_macvtap entered promiscuous mode [ 191.317086][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.342859][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.370053][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.393606][ T7787] xt_HMARK: spi-set and port-set can't be combined [ 191.411204][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.461220][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.500948][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.543133][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 191.562817][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.596100][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.636580][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.668196][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.698045][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.730346][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.760666][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 191.768366][ T7792] netlink: 'syz.5.1428': attribute type 10 has an invalid length. [ 191.799349][ T7792] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1428'. [ 191.842103][ T7792] batman_adv: batadv0: Adding interface: virt_wifi0 [ 191.866637][ T7792] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 191.892347][ C0] vkms_vblank_simulate: vblank timer overrun [ 191.987625][ T7792] batman_adv: batadv0: Interface activated: virt_wifi0 [ 192.011264][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 192.032179][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 192.081453][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 192.111289][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 192.152247][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 192.193025][ T1308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 192.234885][ T7448] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.271102][ T7448] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.311000][ T7448] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.343018][ T7448] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.665907][ T4506] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.675992][ T4506] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.750994][ T6337] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 192.781163][ T6337] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.819426][ T6337] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.885466][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 192.972639][ T7797] loop2: detected capacity change from 0 to 40427 [ 193.067087][ T7797] F2FS-fs (loop2): invalid crc value [ 193.095693][ T7797] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root [ 193.149941][ T7797] F2FS-fs (loop2): Found nat_bits in checkpoint [ 193.382007][ T7797] F2FS-fs (loop2): recover fsync data on readonly fs [ 193.400320][ T7797] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0 [ 193.437029][ T7797] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1 [ 193.454030][ T7797] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 193.970755][ T7819] loop5: detected capacity change from 0 to 32768 [ 194.010608][ T7819] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.1437 (7819) [ 194.103162][ T7819] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 194.131932][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.138971][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.145893][ T7819] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 194.196609][ T7819] BTRFS info (device loop5): using free space tree [ 194.325971][ T7860] netlink: 'syz.1.1446': attribute type 2 has an invalid length. [ 194.372603][ T7860] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1446'. [ 194.581796][ T7873] xt_HMARK: proto mask must be zero with L3 mode [ 194.684278][ T7819] BTRFS info (device loop5): enabling ssd optimizations [ 194.909951][ T7844] loop6: detected capacity change from 0 to 32768 [ 195.052157][ T7895] loop1: detected capacity change from 0 to 2048 [ 195.103781][ T6252] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 195.125241][ T7844] XFS (loop6): Mounting V5 Filesystem [ 195.228436][ T7895] Alternate GPT is invalid, using primary GPT. [ 195.302133][ T7895] loop1: p2 p3 p7 [ 195.604048][ T7844] XFS (loop6): Ending clean mount [ 195.635857][ T7844] XFS (loop6): Quotacheck needed: Please wait. [ 195.744847][ T7844] XFS (loop6): Quotacheck: Done. [ 195.953198][ T7448] XFS (loop6): Unmounting Filesystem [ 196.023441][ T7924] loop1: detected capacity change from 0 to 1024 [ 196.205631][ T4258] Bluetooth: hci4: command 0x0406 tx timeout [ 196.211740][ T4258] Bluetooth: hci3: command 0x0406 tx timeout [ 196.214729][ T4255] Bluetooth: hci0: command 0x0406 tx timeout [ 197.401149][ T7971] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1481'. [ 197.864886][ T7984] loop2: detected capacity change from 0 to 4096 [ 197.905841][ T7992] netlink: 1100 bytes leftover after parsing attributes in process `syz.0.1489'. [ 197.930292][ T7984] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 198.102991][ T8000] loop1: detected capacity change from 0 to 2048 [ 198.183094][ T8000] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 199.337676][ T8039] syz.2.1507 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 199.407143][ T8005] loop5: detected capacity change from 0 to 32768 [ 199.442380][ T8045] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (31) [ 199.479952][ T8005] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.1494 (8005) [ 199.586147][ T8005] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 199.625411][ T8005] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm [ 199.661614][ T8044] loop6: detected capacity change from 0 to 4096 [ 199.665667][ T8005] BTRFS info (device loop5): force zlib compression, level 3 [ 199.735425][ T8005] BTRFS info (device loop5): force clearing of disk cache [ 199.773565][ T8005] BTRFS info (device loop5): setting nodatasum [ 199.778736][ T8044] ntfs3: loop6: Different NTFS' sector size (2048) and media sector size (512) [ 199.795638][ T8005] BTRFS info (device loop5): allowing degraded mounts [ 199.820912][ T8055] loop1: detected capacity change from 0 to 512 [ 199.837541][ T8005] BTRFS info (device loop5): enabling disk space caching [ 199.844633][ T8005] BTRFS info (device loop5): disk space caching is enabled [ 199.902867][ T8055] EXT4-fs (loop1): orphan cleanup on readonly fs [ 199.926028][ T8055] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 199.957168][ T8061] netlink: 'syz.2.1514': attribute type 1 has an invalid length. [ 200.024597][ T8055] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 200.030621][ T8061] netlink: 112865 bytes leftover after parsing attributes in process `syz.2.1514'. [ 200.049932][ T8055] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.1513: Failed to acquire dquot type 1 [ 200.084394][ T8055] EXT4-fs (loop1): 1 truncate cleaned up [ 200.156123][ T8055] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 200.302992][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 200.382037][ T8005] BTRFS info (device loop5): rebuilding free space tree [ 200.428306][ T8005] BTRFS info (device loop5): disabling free space tree [ 200.455471][ T8005] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 200.499693][ T8005] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 200.539399][ T8089] netlink: 'syz.1.1518': attribute type 2 has an invalid length. [ 200.748231][ T8005] BTRFS error (device loop5): balance: invalid convert metadata profile raid0 [ 200.828130][ T8097] loop6: detected capacity change from 0 to 64 [ 200.846756][ T8098] netlink: 'syz.2.1522': attribute type 1 has an invalid length. [ 200.984815][ T6252] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 201.592134][ T8119] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1525'. [ 201.834188][ T8127] netlink: 'syz.6.1532': attribute type 1 has an invalid length. [ 201.969785][ T27] audit: type=1326 audit(1736916169.822:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8131 comm="syz.1.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 202.101105][ T27] audit: type=1326 audit(1736916169.862:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8131 comm="syz.1.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 202.195396][ T27] audit: type=1326 audit(1736916169.862:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8131 comm="syz.1.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 202.301318][ T27] audit: type=1326 audit(1736916169.862:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8131 comm="syz.1.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 202.385783][ T8144] loop2: detected capacity change from 0 to 512 [ 202.406004][ T8144] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 202.437816][ T27] audit: type=1326 audit(1736916170.012:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8136 comm="syz.6.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 202.527261][ T8109] loop0: detected capacity change from 0 to 32768 [ 202.591087][ T8144] EXT4-fs (loop2): 1 truncate cleaned up [ 202.601603][ T8144] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 202.602002][ T8109] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 202.631783][ T27] audit: type=1326 audit(1736916170.042:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8136 comm="syz.6.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 202.766232][ T27] audit: type=1326 audit(1736916170.042:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8136 comm="syz.6.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 202.807949][ T8158] loop6: detected capacity change from 0 to 8 [ 202.853473][ T8154] loop1: detected capacity change from 0 to 8192 [ 202.866596][ T4263] EXT4-fs (loop2): unmounting filesystem. [ 202.894995][ T27] audit: type=1326 audit(1736916170.042:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8136 comm="syz.6.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 202.925203][ T4260] ocfs2: Unmounting device (7,0) on (node local) [ 202.935709][ T8154] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 203.024567][ T8158] SQUASHFS error: Failed to read block 0x2d7: -5 [ 203.062040][ T8158] SQUASHFS error: Unable to read metadata cache entry [2d5] [ 203.071964][ T8154] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 1046) [ 203.125239][ T8154] FAT-fs (loop1): Filesystem has been set read-only [ 203.437077][ T4250] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 1046) [ 204.790868][ T8212] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1564'. [ 204.913929][ T8173] loop0: detected capacity change from 0 to 32768 [ 204.951610][ T8173] XFS: ikeep mount option is deprecated. [ 204.983001][ T8217] loop2: detected capacity change from 0 to 256 [ 205.068380][ T8217] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d) [ 205.158195][ T8226] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1567'. [ 205.185465][ T8173] XFS (loop0): Mounting V5 Filesystem [ 205.274943][ T8183] loop1: detected capacity change from 0 to 40427 [ 205.383395][ T8183] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 205.422433][ T8173] XFS (loop0): Ending clean mount [ 205.443209][ T8173] XFS (loop0): Quotacheck needed: Please wait. [ 205.453551][ T8183] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 205.556401][ T8183] F2FS-fs (loop1): invalid crc value [ 205.562362][ T8173] XFS (loop0): Quotacheck: Done. [ 205.637779][ T8183] F2FS-fs (loop1): Found nat_bits in checkpoint [ 205.693370][ T8242] loop2: detected capacity change from 0 to 64 [ 205.873548][ T8183] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 205.893642][ T8183] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 205.971808][ T4260] XFS (loop0): Unmounting Filesystem [ 206.115509][ T8183] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 206.157623][ T8183] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 206.306570][ T8259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1578'. [ 207.594168][ T8300] xt_hashlimit: max too large, truncated to 1048576 [ 208.179889][ T5465] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 208.269478][ T8330] loop2: detected capacity change from 0 to 64 [ 208.385449][ T5465] usb 1-1: Using ep0 maxpacket: 32 [ 208.393606][ T5465] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 208.440795][ T5465] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 208.485357][ T5465] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 208.513798][ T5465] usb 1-1: Product: syz [ 208.523921][ T5465] usb 1-1: Manufacturer: syz [ 208.535431][ T5465] usb 1-1: SerialNumber: syz [ 208.563706][ T5465] usb 1-1: config 0 descriptor?? [ 208.596816][ T5465] cdc_ether 1-1:0.0: skipping garbage [ 208.602268][ T5465] usb 1-1: bad CDC descriptors [ 208.631138][ T5465] usb 1-1: unsupported MDLM descriptors [ 208.796588][ T8345] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1615'. [ 208.821447][ T5462] usb 1-1: USB disconnect, device number 7 [ 209.228288][ T8362] netlink: 'syz.2.1623': attribute type 3 has an invalid length. [ 209.820707][ T8346] loop1: detected capacity change from 0 to 32768 [ 209.893009][ T8346] [ 209.893009][ T8346] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 209.893009][ T8346] [ 209.920810][ T8382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1634'. [ 209.947368][ T8382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1634'. [ 210.022859][ T8346] ERROR: (device loop1): dbAlloc: the hint is outside the map [ 210.022859][ T8346] [ 210.261345][ T6337] read_mapping_page failed! [ 210.274164][ T6337] ERROR: (device loop1): txCommit: [ 210.274164][ T6337] [ 210.302199][ T6337] jfs_write_inode: jfs_commit_inode failed! [ 210.319573][ T4250] [ 210.319573][ T4250] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 210.319573][ T4250] [ 210.328885][ T8394] loop6: detected capacity change from 0 to 2048 [ 210.343491][ T4250] [ 210.343491][ T4250] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 210.343491][ T4250] [ 210.389174][ T8394] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 211.010913][ T27] audit: type=1326 audit(1736916178.862:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="syz.2.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 211.089891][ T27] audit: type=1326 audit(1736916178.892:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="syz.2.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 211.206222][ T27] audit: type=1326 audit(1736916178.892:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="syz.2.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 211.308803][ T27] audit: type=1326 audit(1736916178.892:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="syz.2.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 211.834558][ T8449] tmpfs: Bad value for 'mpol' [ 211.860201][ T127] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 211.924183][ T52] block nbd2: Attempted send on invalid socket [ 211.930755][ T52] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 211.946804][ T8452] vxfs: unable to read disk superblock at 1 [ 211.967776][ T93] block nbd2: Attempted send on invalid socket [ 211.974008][ T93] I/O error, dev nbd2, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 211.995333][ T8452] vxfs: unable to read disk superblock at 8 [ 212.015353][ T8452] vxfs: can't find superblock. [ 212.087572][ T127] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 212.099790][ T127] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.112361][ T127] usb 1-1: config 0 descriptor?? [ 212.551381][ T127] usb 1-1: Cannot set MAC address [ 212.559910][ T127] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 212.585563][ T127] usb 1-1: USB disconnect, device number 8 [ 212.723298][ T27] audit: type=1326 audit(1736916180.572:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 212.782759][ T27] audit: type=1326 audit(1736916180.572:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 212.847296][ T27] audit: type=1326 audit(1736916180.622:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb4c2384690 code=0x7ffc0000 [ 212.890152][ T27] audit: type=1326 audit(1736916180.622:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb4c2387557 code=0x7ffc0000 [ 212.953589][ T27] audit: type=1326 audit(1736916180.622:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 213.009853][ T27] audit: type=1326 audit(1736916180.622:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.5.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb4c2387557 code=0x7ffc0000 [ 213.818134][ T8511] Non-string source [ 213.970964][ T8515] xt_hashlimit: size too large, truncated to 1048576 [ 213.985433][ T8515] xt_hashlimit: max too large, truncated to 1048576 [ 214.097712][ T4767] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 214.181646][ T8526] loop0: detected capacity change from 0 to 512 [ 214.206144][ T8526] EXT4-fs: Ignoring removed i_version option [ 214.224409][ T8526] EXT4-fs: Ignoring removed mblk_io_submit option [ 214.232056][ T8526] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 214.297420][ T4767] usb 3-1: config 0 has an invalid interface number: 64 but max is 0 [ 214.305950][ T4767] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 214.311206][ T8533] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1702'. [ 214.316398][ T4767] usb 3-1: config 0 has no interface number 0 [ 214.331108][ T8526] EXT4-fs (loop0): 1 truncate cleaned up [ 214.340312][ T4767] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 214.344494][ T8526] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 214.359963][ T4767] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.380066][ T4767] usb 3-1: Product: syz [ 214.384373][ T4767] usb 3-1: Manufacturer: syz [ 214.389367][ T4767] usb 3-1: SerialNumber: syz [ 214.398485][ T4767] usb 3-1: config 0 descriptor?? [ 214.424168][ T8526] EXT4-fs (loop0): unmounting filesystem. [ 214.621741][ T4767] usb 3-1: Found UVC 0.08 device syz (046d:0823) [ 214.633479][ T4767] usb 3-1: No valid video chain found. [ 214.702268][ T8539] loop1: detected capacity change from 0 to 256 [ 214.764457][ T8539] FAT-fs (loop1): Directory bread(block 64) failed [ 214.772739][ T8539] FAT-fs (loop1): Directory bread(block 65) failed [ 214.796914][ T8539] FAT-fs (loop1): Directory bread(block 66) failed [ 214.813878][ T8539] FAT-fs (loop1): Directory bread(block 67) failed [ 214.823766][ T8539] FAT-fs (loop1): Directory bread(block 68) failed [ 214.835685][ T8543] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1707'. [ 214.867551][ T8539] FAT-fs (loop1): Directory bread(block 69) failed [ 214.874825][ T8539] FAT-fs (loop1): Directory bread(block 70) failed [ 214.883309][ T4767] usb 3-1: USB disconnect, device number 10 [ 214.901534][ T8539] FAT-fs (loop1): Directory bread(block 71) failed [ 214.908446][ T8539] FAT-fs (loop1): Directory bread(block 72) failed [ 214.919280][ T8539] FAT-fs (loop1): Directory bread(block 73) failed [ 215.022608][ T8547] binder: 8546:8547 ioctl 541b 0 returned -22 [ 215.337884][ T8555] netlink: 164 bytes leftover after parsing attributes in process `syz.1.1713'. [ 216.034219][ T8577] loop0: detected capacity change from 0 to 4096 [ 216.086504][ T8577] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 216.246912][ T8577] ntfs3: loop0: failed to convert "c46c" to maciceland [ 216.624110][ T8601] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1731'. [ 217.572730][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 217.572749][ T27] audit: type=1326 audit(1736916185.422:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8632 comm="syz.0.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 217.575003][ T8635] loop6: detected capacity change from 0 to 16 [ 217.590336][ T27] audit: type=1326 audit(1736916185.422:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8632 comm="syz.0.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 217.686614][ T8635] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 217.746157][ T8635] erofs: (device loop6): mounted with root inode @ nid 36. [ 217.771182][ T27] audit: type=1326 audit(1736916185.462:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8632 comm="syz.0.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 217.919944][ T27] audit: type=1326 audit(1736916185.462:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8632 comm="syz.0.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 218.005711][ T27] audit: type=1326 audit(1736916185.462:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8632 comm="syz.0.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 218.161328][ T8657] netlink: 'syz.2.1750': attribute type 1 has an invalid length. [ 218.216124][ T8657] netlink: 'syz.2.1750': attribute type 2 has an invalid length. [ 218.227818][ T8661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1753'. [ 218.252431][ T8659] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1752'. [ 218.547439][ T8674] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1758'. [ 218.587862][ T8674] netlink: 'syz.0.1758': attribute type 1 has an invalid length. [ 218.746598][ T8677] team0: Port device team_slave_0 removed [ 218.770425][ T8677] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 219.120759][ T8695] netlink: zone id is out of range [ 219.128665][ T8696] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1765'. [ 219.155504][ T8695] netlink: zone id is out of range [ 219.170945][ T8695] netlink: zone id is out of range [ 219.185349][ T8696] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1765'. [ 219.195997][ T8695] netlink: zone id is out of range [ 219.214835][ T8695] netlink: zone id is out of range [ 219.226283][ T8695] netlink: zone id is out of range [ 219.245556][ T8695] netlink: zone id is out of range [ 219.275362][ T8695] netlink: zone id is out of range [ 219.290845][ T8695] netlink: zone id is out of range [ 219.573048][ T8713] loop2: detected capacity change from 0 to 128 [ 220.283422][ T8736] loop5: detected capacity change from 0 to 2048 [ 220.396635][ T8746] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 220.505741][ T8736] NILFS error (device loop5): nilfs_bmap_last_key: broken bmap (inode number=16) [ 220.549506][ T8751] loop2: detected capacity change from 0 to 256 [ 220.600538][ T8736] Remounting filesystem read-only [ 220.611038][ T8749] loop6: detected capacity change from 0 to 1764 [ 220.622488][ T8736] NILFS (loop5): error -5 truncating bmap (ino=16) [ 220.645112][ T8751] FAT-fs (loop2): Directory bread(block 64) failed [ 220.703695][ T8751] FAT-fs (loop2): Directory bread(block 65) failed [ 220.720934][ T8749] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 220.729856][ T8751] FAT-fs (loop2): Directory bread(block 66) failed [ 220.743369][ T8751] FAT-fs (loop2): Directory bread(block 67) failed [ 220.792880][ T8751] FAT-fs (loop2): Directory bread(block 68) failed [ 220.815194][ T8751] FAT-fs (loop2): Directory bread(block 69) failed [ 220.845039][ T6252] NILFS (loop5): discard dirty page: offset=4096, ino=6 [ 220.876566][ T8751] FAT-fs (loop2): Directory bread(block 70) failed [ 220.903662][ T6252] NILFS (loop5): discard dirty block: blocknr=39, size=1024 [ 220.911591][ T8751] FAT-fs (loop2): Directory bread(block 71) failed [ 220.936714][ T6252] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 220.953931][ T8751] FAT-fs (loop2): Directory bread(block 72) failed [ 220.965363][ T6252] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 220.991149][ T8751] FAT-fs (loop2): Directory bread(block 73) failed [ 221.010557][ T6252] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 221.055128][ T6252] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 221.347692][ T8774] loop6: detected capacity change from 0 to 16 [ 221.386640][ T8774] erofs: (device loop6): mounted with root inode @ nid 36. [ 221.442787][ T8774] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 221.492618][ T8774] erofs: (device loop6): z_erofs_read_folio: failed to read, err [-117] [ 221.793221][ T8787] loop1: detected capacity change from 0 to 2048 [ 221.943883][ T8798] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 222.021754][ T8787] NILFS error (device loop1): nilfs_bmap_last_key: broken bmap (inode number=16) [ 222.088668][ T8787] Remounting filesystem read-only [ 222.093839][ T8787] NILFS (loop1): error -5 truncating bmap (ino=16) [ 222.112241][ T8797] loop5: detected capacity change from 0 to 4096 [ 222.366004][ T4250] NILFS (loop1): discard dirty page: offset=4096, ino=6 [ 222.373018][ T4250] NILFS (loop1): discard dirty block: blocknr=39, size=1024 [ 222.405984][ T4250] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 222.425858][ T4250] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 222.485393][ T4250] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 222.552483][ T4250] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 222.796410][ T8825] IPv6: Can't replace route, no match found [ 223.777257][ T8860] overlayfs: missing 'workdir' [ 223.935839][ T8817] loop2: detected capacity change from 0 to 32768 [ 223.963651][ T8817] (syz.2.1815,8817,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 224.004514][ T8817] (syz.2.1815,8817,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 224.020212][ T8869] netlink: 'syz.5.1833': attribute type 3 has an invalid length. [ 224.073844][ T27] audit: type=1326 audit(1736916191.922:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8870 comm="syz.6.1834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 224.097503][ T8869] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.1833'. [ 224.124785][ T8817] JBD2: Ignoring recovery information on journal [ 224.241168][ T8817] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 224.251599][ T27] audit: type=1326 audit(1736916191.972:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8870 comm="syz.6.1834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 224.295918][ T27] audit: type=1326 audit(1736916191.972:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8870 comm="syz.6.1834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 224.390773][ T27] audit: type=1326 audit(1736916191.972:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8870 comm="syz.6.1834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4af85d29 code=0x7ffc0000 [ 224.412961][ C0] vkms_vblank_simulate: vblank timer overrun [ 224.469776][ T8884] loop5: detected capacity change from 0 to 512 [ 224.479124][ T8885] net_ratelimit: 6 callbacks suppressed [ 224.479143][ T8885] openvswitch: netlink: Key 0 has unexpected len 2 expected 0 [ 224.548441][ T8884] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 224.564758][ T8884] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.570621][ T4263] ocfs2: Unmounting device (7,2) on (node local) [ 224.658050][ T8891] loop6: detected capacity change from 0 to 4096 [ 224.671018][ T6252] EXT4-fs (loop5): unmounting filesystem. [ 224.782391][ T8895] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 224.856189][ T8891] NILFS error (device loop6): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 225.283833][ T8907] netlink: 'syz.2.1841': attribute type 2 has an invalid length. [ 225.409688][ T8915] loop6: detected capacity change from 0 to 16 [ 225.447217][ T8915] erofs: (device loop6): mounted with root inode @ nid 36. [ 225.480625][ T8915] erofs: (device loop6): z_erofs_pcluster_readmore: readmore error at page 72 @ nid 36 [ 225.529263][ T8915] erofs: (device loop6): z_erofs_read_folio: failed to read, err [-117] [ 225.678140][ T8920] autofs4:pid:8920:autofs_fill_super: called with bogus options [ 226.178265][ T8942] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1858'. [ 227.325486][ T8994] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1879'. [ 228.708672][ T5465] usb 3-1: new low-speed USB device number 11 using dummy_hcd [ 228.921557][ T9058] loop0: detected capacity change from 0 to 512 [ 228.930298][ T5465] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 228.942528][ T5465] usb 3-1: config 179 has no interface number 0 [ 228.965437][ T5465] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10 [ 229.018444][ T5465] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 8 [ 229.043094][ T9058] EXT4-fs (loop0): orphan cleanup on readonly fs [ 229.086020][ T9058] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #4: comm syz.0.1902: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 32767, max 0(0), depth 0(0) [ 229.108785][ T9032] loop6: detected capacity change from 0 to 32768 [ 229.128841][ T9032] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 scanned by syz.6.1894 (9032) [ 229.145684][ T9058] EXT4-fs error (device loop0): ext4_quota_enable:6988: comm syz.0.1902: Bad quota inode: 4, type: 1 [ 229.159125][ T5465] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 229.220175][ T5465] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 8 [ 229.252090][ T9058] EXT4-fs warning (device loop0): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 229.285405][ T5465] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 229.313708][ T9058] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 229.332388][ T5465] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 229.345254][ T9058] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 229.373224][ T5465] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.405641][ T9039] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 229.406470][ T9032] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 229.433447][ T9039] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 229.468297][ T9032] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm [ 229.535400][ T9032] BTRFS info (device loop6): force zlib compression, level 3 [ 229.573377][ T9032] BTRFS info (device loop6): force clearing of disk cache [ 229.603728][ T9032] BTRFS info (device loop6): setting nodatasum [ 229.649069][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 229.656187][ T9032] BTRFS info (device loop6): use zlib compression, level 3 [ 229.663445][ T9032] BTRFS info (device loop6): allowing degraded mounts [ 229.742242][ T9076] loop5: detected capacity change from 0 to 16 [ 229.775757][ T9032] BTRFS info (device loop6): enabling disk space caching [ 229.782855][ T9032] BTRFS info (device loop6): disk space caching is enabled [ 229.834212][ T9076] erofs: (device loop5): mounted with root inode @ nid 36. [ 229.960517][ T4762] usb 3-1: USB disconnect, device number 11 [ 229.960611][ C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 229.975701][ C1] dummy_hcd dummy_hcd.2: timer fired with no URBs pending? [ 230.029964][ T9032] BTRFS info (device loop6): enabling ssd optimizations [ 230.061124][ T9032] BTRFS info (device loop6): rebuilding free space tree [ 230.133461][ T9032] BTRFS info (device loop6): disabling free space tree [ 230.150938][ T9032] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 230.165731][ T9032] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 230.262025][ T9103] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1912'. [ 230.457318][ T9032] BTRFS info (device loop6): balance: start -f -svrange=7..0,limit=38991 [ 230.486315][ T9032] BTRFS info (device loop6): balance: ended with status: 0 [ 230.800440][ T7448] BTRFS info (device loop6): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 231.659353][ T9142] ebt_among: src integrity fail: 30a [ 232.217957][ T9128] loop2: detected capacity change from 0 to 32768 [ 232.236746][ T9154] loop5: detected capacity change from 0 to 8192 [ 232.254577][ T9128] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1924 (9128) [ 232.292912][ T9154] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 232.306235][ T9154] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal [ 232.306722][ T9128] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 232.315499][ T9154] REISERFS (device loop5): using ordered data mode [ 232.332356][ T9154] reiserfs: using flush barriers [ 232.350790][ T9128] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 232.359634][ T9128] BTRFS info (device loop2): using free space tree [ 232.366273][ T9154] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 232.383966][ T9154] REISERFS (device loop5): checking transaction log (loop5) [ 232.399123][ T9154] REISERFS (device loop5): Using r5 hash to sort names [ 232.416409][ T9154] REISERFS (device loop5): using 3.5.x disk format [ 232.452226][ T9154] REISERFS warning (device loop5): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 232.520250][ T9154] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 232.609819][ T9181] Cannot find set identified by id 0 to match [ 232.807691][ T9192] loop6: detected capacity change from 0 to 2048 [ 232.856959][ T9128] BTRFS info (device loop2): enabling ssd optimizations [ 232.955639][ T9192] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 233.216763][ T27] audit: type=1326 audit(1736916201.072:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9203 comm="syz.5.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 233.295949][ T27] audit: type=1326 audit(1736916201.072:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9203 comm="syz.5.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 233.395423][ T27] audit: type=1326 audit(2000000000.000:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9203 comm="syz.5.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 233.481062][ T27] audit: type=1326 audit(2000000000.000:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9203 comm="syz.5.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c2385d29 code=0x7ffc0000 [ 233.536484][ T4263] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 233.713897][ T9216] netlink: 'syz.5.1959': attribute type 7 has an invalid length. [ 233.723834][ T9216] netlink: 'syz.5.1959': attribute type 8 has an invalid length. [ 233.744390][ T4768] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 233.945442][ T4768] usb 2-1: Using ep0 maxpacket: 8 [ 233.952869][ T4768] usb 2-1: unable to get BOS descriptor or descriptor too short [ 233.986452][ T4768] usb 2-1: config 1 interface 0 altsetting 9 bulk endpoint 0x1 has invalid maxpacket 1023 [ 234.005693][ T4768] usb 2-1: config 1 interface 0 has no altsetting 0 [ 234.046324][ T4768] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 234.072118][ T4768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.105574][ T4768] usb 2-1: Product: syz [ 234.109808][ T4768] usb 2-1: Manufacturer: aኖ剾ﵴ赅靐⿤볡瀟ꕌ䂠顧⃲դ鱂ꉆ뛼񙑯塌职鮅멁段ꯏམ别䡯嵦⻳ఖﰧ㚵괰蛱㷋苑械倴㊃쟓횽㶀㚍䊸谵쿡躏磠衟ꫡ麕놤秴♲浠ﭥu뮶઎鳈䇅鼯婄≀俄穆䔰辋쉰䧶菊房ᕉ猳먱䍢龻ꍻ潅㏬ힽ፟⒭ᨓꕝ [ 234.215969][ T9230] ip6t_srh: unknown srh match flags FDC7 [ 234.242171][ T4768] usb 2-1: SerialNumber: syz [ 234.255049][ T9210] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 234.407632][ T9226] loop5: detected capacity change from 0 to 4096 [ 234.434841][ T9226] ntfs3: loop5: Different NTFS' sector size (1024) and media sector size (512) [ 234.485940][ T4768] usb 2-1: USB disconnect, device number 5 [ 234.512280][ T9235] device bridge1 entered promiscuous mode [ 234.624873][ T9226] ntfs3: loop5: ino=0, attr_set_size [ 235.007342][ T9253] netlink: 'syz.0.1975': attribute type 5 has an invalid length. [ 235.227659][ T9258] loop2: detected capacity change from 0 to 256 [ 235.237212][ T9261] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551615) [ 235.302308][ T9261] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535 [ 235.303945][ T9258] FAT-fs (loop2): Directory bread(block 64) failed [ 235.343037][ T9263] loop1: detected capacity change from 0 to 1024 [ 235.349863][ T9258] FAT-fs (loop2): Directory bread(block 65) failed [ 235.386415][ T9258] FAT-fs (loop2): Directory bread(block 66) failed [ 235.400784][ T9258] FAT-fs (loop2): Directory bread(block 67) failed [ 235.428294][ T9258] FAT-fs (loop2): Directory bread(block 68) failed [ 235.434893][ T9258] FAT-fs (loop2): Directory bread(block 69) failed [ 235.456380][ T9263] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 235.469832][ T9258] FAT-fs (loop2): Directory bread(block 70) failed [ 235.477009][ T9258] FAT-fs (loop2): Directory bread(block 71) failed [ 235.506498][ T9258] FAT-fs (loop2): Directory bread(block 72) failed [ 235.513095][ T9258] FAT-fs (loop2): Directory bread(block 73) failed [ 235.740973][ T9274] loop6: detected capacity change from 0 to 4096 [ 235.768708][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 235.820857][ T9274] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512) [ 235.990686][ T9274] ntfs3: loop6: ino=0, attr_set_size [ 236.136726][ T9283] loop1: detected capacity change from 0 to 4096 [ 236.154014][ T9283] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 236.207586][ T9283] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 236.343616][ T9283] ntfs: volume version 3.1. [ 236.705495][ T9307] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1995'. [ 236.880160][ T9312] loop6: detected capacity change from 0 to 2048 [ 236.964022][ T9312] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 236.988104][ T4381] udevd[4381]: incorrect nilfs2 checksum on /dev/loop6 [ 237.027188][ T9312] syz.6.1997: attempt to access beyond end of device [ 237.027188][ T9312] loop6: rw=0, sector=1125899906842706, nr_sectors = 2 limit=2048 [ 237.063693][ T9312] NILFS (loop6): I/O error reading meta-data file (ino=5, block-offset=0) [ 237.100868][ T9312] NILFS (loop6): error -5 while loading super root [ 237.342662][ T9312] loop6: detected capacity change from 0 to 2048 [ 237.388203][ T9312] NILFS (loop6): corrupt root inode [ 237.464895][ T4381] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 237.622065][ T9305] loop2: detected capacity change from 0 to 32768 [ 237.669024][ T9340] netlink: 'syz.1.2006': attribute type 13 has an invalid length. [ 237.705524][ T9340] netlink: 'syz.1.2006': attribute type 14 has an invalid length. [ 237.738759][ T9340] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2006'. [ 237.999768][ T9351] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2012'. [ 238.292929][ T9360] loop0: detected capacity change from 0 to 256 [ 238.314947][ T9360] exfat: Deprecated parameter 'utf8' [ 238.336744][ T9360] exfat: Deprecated parameter 'namecase' [ 238.374653][ T9360] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 238.454775][ T9365] binder: 9364:9365 unknown command 0 [ 238.477947][ T9365] binder: 9364:9365 ioctl c0306201 200001c0 returned -22 [ 238.547819][ T9370] xt_l2tp: invalid flags combination: 0 [ 238.728517][ T9374] netlink: 'syz.5.2022': attribute type 1 has an invalid length. [ 238.818306][ T9377] loop1: detected capacity change from 0 to 1024 [ 238.863618][ T9377] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 238.910982][ T9377] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 239.060289][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 239.207138][ T27] audit: type=1326 audit(2000000005.980:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9395 comm="syz.0.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 239.301024][ T27] audit: type=1326 audit(2000000005.980:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9395 comm="syz.0.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 239.444742][ T27] audit: type=1326 audit(2000000005.980:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9395 comm="syz.0.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 239.508451][ T27] audit: type=1326 audit(2000000005.980:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9395 comm="syz.0.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 239.671890][ T9411] netlink: 'syz.0.2040': attribute type 2 has an invalid length. [ 239.691244][ T9409] netlink: 'syz.6.2039': attribute type 2 has an invalid length. [ 240.097207][ T9422] netlink: 'syz.1.2045': attribute type 8 has an invalid length. [ 240.262647][ T9393] loop2: detected capacity change from 0 to 32768 [ 240.298352][ T9393] XFS: ikeep mount option is deprecated. [ 240.351320][ T9436] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check. [ 240.441105][ T9393] XFS (loop2): Mounting V5 Filesystem [ 240.481387][ T9442] loop0: detected capacity change from 0 to 512 [ 240.536562][ T9442] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 240.623828][ T9442] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.2053: Unimplemented hash flags: 0x0001 [ 240.638229][ T9442] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.2053: Corrupt directory, running e2fsck is recommended [ 240.690953][ T9393] XFS (loop2): Ending clean mount [ 240.760385][ T9393] XFS (loop2): Quotacheck needed: Please wait. [ 240.817759][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 240.955616][ T9393] XFS (loop2): Quotacheck: Done. [ 241.180265][ T4263] XFS (loop2): Unmounting Filesystem [ 241.344824][ T9472] xt_CT: You must specify a L4 protocol and not use inversions on it [ 241.375369][ T127] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 241.554066][ T9474] loop6: detected capacity change from 0 to 4096 [ 241.578187][ T127] usb 1-1: Using ep0 maxpacket: 32 [ 241.599713][ T127] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36 [ 241.611550][ T9474] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512) [ 241.632653][ T127] usb 1-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 241.654220][ T127] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 241.670691][ T127] usb 1-1: Product: syz [ 241.694207][ T127] usb 1-1: Manufacturer: syz [ 241.699222][ T127] usb 1-1: SerialNumber: syz [ 241.738725][ T127] usb 1-1: config 0 descriptor?? [ 241.752235][ T9464] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 241.777538][ T9481] loop5: detected capacity change from 0 to 128 [ 241.786356][ T127] hub 1-1:0.0: bad descriptor, ignoring hub [ 241.789490][ T9482] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 241.792290][ T127] hub: probe of 1-1:0.0 failed with error -5 [ 241.826359][ T9474] ntfs3: loop6: Mark volume as dirty due to NTFS errors [ 241.839635][ T127] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input12 [ 241.892555][ T9481] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 241.943316][ T9481] ext4 filesystem being mounted at /212/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 242.045408][ T4768] usb 1-1: USB disconnect, device number 9 [ 242.045616][ C1] usbtouchscreen 1-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 242.127356][ T9488] binder: 9487:9488 ioctl c018620c 20001180 returned -22 [ 242.183577][ T6252] EXT4-fs (loop5): unmounting filesystem. [ 242.209633][ T9490] loop2: detected capacity change from 0 to 1024 [ 242.315100][ T9493] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2076'. [ 242.333714][ T9490] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5 [ 242.363523][ T9490] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 242.385395][ T9490] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.2075: Failed to acquire dquot type 0 [ 242.412246][ T9490] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 242.445527][ T9490] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #13: comm syz.2.2075: corrupted inode contents [ 242.469896][ T9490] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #13: comm syz.2.2075: mark_inode_dirty error [ 242.500565][ T9490] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #13: comm syz.2.2075: corrupted inode contents [ 242.552747][ T9490] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #13: comm syz.2.2075: mark_inode_dirty error [ 242.615319][ T9490] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #13: comm syz.2.2075: corrupted inode contents [ 242.674381][ T9490] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 242.695791][ T9490] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #13: comm syz.2.2075: corrupted inode contents [ 242.728103][ T9490] EXT4-fs error (device loop2): ext4_truncate:4311: inode #13: comm syz.2.2075: mark_inode_dirty error [ 242.740097][ T9507] loop1: detected capacity change from 0 to 128 [ 242.775680][ T9490] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 242.785047][ T9507] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 242.803847][ T9503] loop5: detected capacity change from 0 to 4096 [ 242.811425][ T9490] EXT4-fs (loop2): 1 truncate cleaned up [ 242.831340][ T9507] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 242.845645][ T9490] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 242.853248][ T9503] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 242.965027][ T9490] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5 [ 243.006816][ T9503] ntfs3: loop5: failed to convert "c46c" to macceltic [ 243.018344][ T9490] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 243.065719][ T9490] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.2075: Failed to acquire dquot type 0 [ 243.303662][ T4263] EXT4-fs (loop2): unmounting filesystem. [ 243.485132][ T9520] device vlan1 entered promiscuous mode [ 243.663523][ T9499] loop6: detected capacity change from 0 to 32768 [ 244.564261][ T9551] netlink: 'syz.6.2101': attribute type 7 has an invalid length. [ 244.631900][ T9553] loop2: detected capacity change from 0 to 1024 [ 244.664794][ T9523] loop5: detected capacity change from 0 to 32768 [ 244.690614][ T9553] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 244.701153][ T9523] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.2090 (9523) [ 244.755969][ T9553] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 244.804736][ T9523] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 244.838669][ T9523] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 244.877541][ T4263] EXT4-fs (loop2): unmounting filesystem. [ 244.899294][ T9523] BTRFS info (device loop5): using free space tree [ 245.253190][ T9523] BTRFS info (device loop5): enabling ssd optimizations [ 245.369574][ T9580] loop2: detected capacity change from 0 to 4096 [ 245.431952][ T9580] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 245.540486][ T6252] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 246.066978][ T9605] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2117'. [ 247.244183][ T9617] loop6: detected capacity change from 0 to 32768 [ 247.277860][ T9617] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.2124 (9617) [ 247.310751][ T9650] loop0: detected capacity change from 0 to 2048 [ 247.353287][ T9617] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 247.373389][ T9617] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm [ 247.386819][ T9650] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 247.414342][ T9617] BTRFS info (device loop6): using free space tree [ 247.461120][ T9647] loop1: detected capacity change from 0 to 4096 [ 247.820471][ T9617] BTRFS info (device loop6): enabling ssd optimizations [ 248.131545][ T7448] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 248.427184][ T9694] tmpfs: Bad value for 'mpol' [ 248.700535][ T9704] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2158'. [ 248.734950][ T9704] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2158'. [ 248.755169][ T9707] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2159'. [ 248.938255][ T9710] xt_hashlimit: size too large, truncated to 1048576 [ 249.059988][ T9716] ieee802154 phy0 wpan0: encryption failed: -22 [ 249.270532][ T9720] loop1: detected capacity change from 0 to 1024 [ 249.312963][ T9720] EXT4-fs: Ignoring removed nomblk_io_submit option [ 249.400171][ T9720] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 249.601235][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 250.296322][ T9724] loop0: detected capacity change from 0 to 32768 [ 250.352975][ T9724] ERROR: (device loop0): dbAlloc: the hint is outside the map [ 250.352975][ T9724] [ 250.861261][ T7434] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 251.024463][ T9751] loop2: detected capacity change from 0 to 32768 [ 251.052613][ T7434] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 251.082619][ T7434] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 251.114214][ T7434] usb 6-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 251.124542][ T7434] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.147508][ T7434] usb 6-1: config 0 descriptor?? [ 251.562756][ T7434] Bluetooth: Can't get state to change to load configuration err [ 251.584318][ T7434] Bluetooth: Loading sysconfig file failed [ 251.605738][ T1308] read_mapping_page failed! [ 251.610296][ T1308] ERROR: (device loop0): txCommit: [ 251.610296][ T1308] [ 251.615512][ T7434] ath3k: probe of 6-1:0.0 failed with error -16 [ 251.635374][ T1308] jfs_write_inode: jfs_commit_inode failed! [ 251.641847][ T7434] usb 6-1: USB disconnect, device number 3 [ 251.661218][ T9751] XFS (loop2): Mounting V5 Filesystem [ 251.770225][ T9751] XFS (loop2): Ending clean mount [ 251.985793][ T4263] XFS (loop2): Unmounting Filesystem [ 252.884839][ T9782] loop5: detected capacity change from 0 to 4096 [ 253.040017][ T9794] loop2: detected capacity change from 0 to 128 [ 253.357989][ T27] audit: type=1326 audit(2000000020.130:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9799 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 253.455467][ T27] audit: type=1326 audit(2000000020.150:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9799 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 253.511273][ T27] audit: type=1326 audit(2000000020.150:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9799 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 253.601325][ T9806] loop0: detected capacity change from 0 to 1024 [ 253.615373][ T27] audit: type=1326 audit(2000000020.150:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9799 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 253.708882][ T7435] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 253.802597][ T9811] IPv6: Can't replace route, no match found [ 253.915505][ T7435] usb 2-1: Using ep0 maxpacket: 16 [ 253.927225][ T7435] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 253.957705][ T7435] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 253.985993][ T7435] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 254.007042][ T7435] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 254.050281][ T7435] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b [ 254.066314][ T9816] loop5: detected capacity change from 0 to 256 [ 254.087821][ T7435] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3 [ 254.119915][ T7435] usb 2-1: Product: syz [ 254.135168][ T7435] usb 2-1: Manufacturer: syz [ 254.154586][ T7435] usb 2-1: SerialNumber: syz [ 254.199081][ T7435] usb 2-1: config 0 descriptor?? [ 254.216982][ T7435] usb 2-1: NFC: intf ffff88802601d000 id ffffffff8dbec7c0 [ 254.447225][ T7435] usb 2-1: USB disconnect, device number 6 [ 255.372776][ T9853] loop1: detected capacity change from 0 to 512 [ 255.462433][ T9853] EXT4-fs (loop1): 1 truncate cleaned up [ 255.487295][ T9855] loop2: detected capacity change from 0 to 4096 [ 255.495845][ T9855] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512) [ 255.510903][ T9853] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 255.571659][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.578434][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.700885][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 256.070838][ T4760] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 256.228217][ T27] audit: type=1400 audit(2000000023.000:87): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name="#(%#{//(@\)//&@},['%%&\#*" pid=9881 comm="syz.6.2238" [ 256.255580][ T4760] usb 6-1: Using ep0 maxpacket: 8 [ 256.264850][ T4760] usb 6-1: config 179 has an invalid interface number: 65 but max is 0 [ 256.283396][ T4760] usb 6-1: config 179 has no interface number 0 [ 256.294380][ T4760] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 256.320630][ T4760] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 256.347702][ T4760] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 256.382143][ T4760] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 256.402614][ T4760] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 256.426403][ T4760] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 256.442423][ T4760] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.465819][ T9864] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 256.485809][ T27] audit: type=1400 audit(2000000023.260:88): apparmor="DENIED" operation="change_profile" info="label not found" error=-2 profile="unconfined" name=3A273A02 pid=9888 comm="syz.2.2241" [ 256.818833][ T9864] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4) [ 256.826087][ T9864] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 256.862608][ T9864] vhci_hcd vhci_hcd.0: Device attached [ 256.937503][ T9893] vhci_hcd: connection closed [ 256.953069][ T1308] vhci_hcd: stop threads [ 256.958674][ T4765] usb 6-1: USB disconnect, device number 4 [ 256.962743][ C0] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 256.962787][ C0] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 256.993292][ T1308] vhci_hcd: release socket [ 257.025613][ T1308] vhci_hcd: disconnect device [ 257.065417][ T7435] vhci_hcd: vhci_device speed not set [ 257.749895][ T4768] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 257.961537][ T4768] usb 2-1: Using ep0 maxpacket: 16 [ 257.974240][ T4768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 258.010857][ T4768] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 258.048790][ T4768] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 258.075379][ T4768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 258.115087][ T4768] usb 2-1: Product: syz [ 258.124026][ T4768] usb 2-1: Manufacturer: syz [ 258.144109][ T27] audit: type=1326 audit(2000000024.910:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9935 comm="syz.0.2263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 258.167610][ T4768] usb 2-1: SerialNumber: syz [ 258.185004][ T4768] r8152-cfgselector 2-1: config 0 descriptor?? [ 258.222626][ T27] audit: type=1326 audit(2000000024.910:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9935 comm="syz.0.2263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 258.244894][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.335426][ T27] audit: type=1326 audit(2000000024.940:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9935 comm="syz.0.2263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 258.387006][ T9939] loop6: detected capacity change from 0 to 4096 [ 258.390940][ T27] audit: type=1326 audit(2000000024.940:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9935 comm="syz.0.2263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 258.433685][ T4768] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 258.482160][ T27] audit: type=1326 audit(2000000024.940:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9935 comm="syz.0.2263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 258.525507][ T27] audit: type=1400 audit(2000000025.040:94): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name="#(%#{//(@\)//&@},['%%&\#*" pid=9937 comm="syz.2.2264" [ 258.545849][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.545903][ T9939] ntfs: volume version 3.1. [ 258.665977][ T4768] usb 2-1: USB disconnect, device number 7 [ 258.971093][ T9934] loop5: detected capacity change from 0 to 32768 [ 258.990789][ T9934] XFS: ikeep mount option is deprecated. [ 259.079030][ T9934] XFS (loop5): Mounting V5 Filesystem [ 259.175687][ T9946] loop0: detected capacity change from 0 to 32768 [ 259.227828][ T9946] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.2267 (9946) [ 259.258082][ T9934] XFS (loop5): Ending clean mount [ 259.278115][ T9934] XFS (loop5): Quotacheck needed: Please wait. [ 259.346615][ T9946] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 259.418563][ T9946] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 259.428114][ T9934] XFS (loop5): Quotacheck: Done. [ 259.444821][ T9946] BTRFS info (device loop0): using free space tree [ 259.510947][ T9972] loop6: detected capacity change from 0 to 64 [ 259.563703][ T6252] XFS (loop5): Unmounting Filesystem [ 259.895654][ T9946] BTRFS info (device loop0): enabling ssd optimizations [ 260.059255][ T9996] loop6: detected capacity change from 0 to 1024 [ 260.148646][ T9996] hfsplus: bad catalog entry type [ 260.202212][ T4260] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 260.711040][T10007] loop0: detected capacity change from 0 to 1024 [ 260.775548][ T7435] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 260.855521][ T9990] loop1: detected capacity change from 0 to 40427 [ 260.915032][ T9990] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 260.934271][ T9990] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 260.953990][ T46] hfsplus: b-tree write err: -5, ino 4 [ 260.967794][ T9990] F2FS-fs (loop1): build fault injection attr: rate: 17008, type: 0x3ffff [ 260.985528][ T7435] usb 3-1: Using ep0 maxpacket: 16 [ 261.002911][ T7435] usb 3-1: config 0 has an invalid interface number: 39 but max is 0 [ 261.026009][ T9990] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x6 [ 261.059105][ T7435] usb 3-1: config 0 has no interface number 0 [ 261.071303][ T9990] F2FS-fs (loop1): invalid crc value [ 261.093375][ T7435] usb 3-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=70.6d [ 261.114180][ T9990] F2FS-fs (loop1): Found nat_bits in checkpoint [ 261.129087][ T7435] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.174276][ T7435] usb 3-1: Product: syz [ 261.188743][ T7435] usb 3-1: Manufacturer: syz [ 261.193403][ T7435] usb 3-1: SerialNumber: syz [ 261.232195][ T7435] usb 3-1: config 0 descriptor?? [ 261.268465][ T7435] i2c-tiny-usb 3-1:0.39: version 70.6d found at bus 003 address 012 [ 261.332296][ T9990] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 261.348607][ T9990] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 261.512011][T10025] loop0: detected capacity change from 0 to 4096 [ 261.552373][T10025] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 261.628805][ T4250] syz-executor: attempt to access beyond end of device [ 261.628805][ T4250] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 261.677511][ T7435] (null): failure reading functionality [ 261.685516][T10025] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 261.693557][ T7435] i2c i2c-1: failure reading functionality [ 261.731174][ T7435] i2c i2c-1: connected i2c-tiny-usb device [ 261.759355][ T7435] usb 3-1: USB disconnect, device number 12 [ 262.448320][T10049] netlink: 'syz.5.2305': attribute type 10 has an invalid length. [ 262.487522][T10049] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.496631][T10049] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.578451][T10049] bridge0: port 2(bridge_slave_1) entered blocking state [ 262.586078][T10049] bridge0: port 2(bridge_slave_1) entered forwarding state [ 262.595986][T10049] bridge0: port 1(bridge_slave_0) entered blocking state [ 262.603145][T10049] bridge0: port 1(bridge_slave_0) entered forwarding state [ 262.647819][T10049] team0: Port device bridge0 added [ 262.972332][T10063] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2311'. [ 263.043281][T10039] loop0: detected capacity change from 0 to 32768 [ 263.167454][T10039] XFS (loop0): Mounting V5 Filesystem [ 263.279252][T10039] XFS (loop0): Ending clean mount [ 263.293283][T10068] loop6: detected capacity change from 0 to 4096 [ 263.345194][T10068] ntfs: (device loop6): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 263.413174][T10068] ntfs: (device loop6): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 263.475205][T10068] ntfs: (device loop6): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 263.488342][ T4260] XFS (loop0): Unmounting Filesystem [ 263.495348][ T4767] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 263.509937][T10068] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 263.532355][T10068] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 263.595956][T10068] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 263.604756][T10068] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 263.638430][T10068] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 263.651291][T10091] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2322'. [ 263.656373][T10068] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 263.665131][T10091] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2322'. [ 263.727393][ T4767] usb 3-1: Using ep0 maxpacket: 16 [ 263.736365][ T4767] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 263.746785][ T4767] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 263.749962][T10068] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 263.765401][ T4767] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 263.765433][ T4767] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 263.801554][T10068] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 263.841763][ T4767] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b [ 263.852057][T10068] ntfs: volume version 3.1. [ 263.856802][ T4767] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3 [ 263.877234][ T4767] usb 3-1: Product: syz [ 263.883046][ T4767] usb 3-1: Manufacturer: syz [ 263.911655][ T4767] usb 3-1: SerialNumber: syz [ 263.946391][ T4767] usb 3-1: config 0 descriptor?? [ 263.982885][ T4767] usb 3-1: NFC: intf ffff888052019000 id ffffffff8dbec7c0 [ 264.233648][ T4767] usb 3-1: USB disconnect, device number 13 [ 264.773671][T10117] cgroup: noprefix used incorrectly [ 265.098444][T10127] netlink: 'syz.1.2339': attribute type 32 has an invalid length. [ 265.180425][T10131] loop2: detected capacity change from 0 to 128 [ 265.187163][T10099] loop5: detected capacity change from 0 to 32768 [ 265.228090][T10131] EXT4-fs (loop2): Test dummy encryption mode enabled [ 265.311161][T10131] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 265.320728][T10131] ext4 filesystem being mounted at /448/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 265.390949][T10099] XFS (loop5): Mounting V5 Filesystem [ 265.551301][ T4263] EXT4-fs (loop2): unmounting filesystem. [ 265.609318][T10099] XFS (loop5): Ending clean mount [ 265.636828][T10099] XFS (loop5): Quotacheck needed: Please wait. [ 265.730616][T10099] XFS (loop5): Quotacheck: Done. [ 265.858524][T10163] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2352'. [ 265.884100][T10163] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2352'. [ 265.962679][ T6252] XFS (loop5): Unmounting Filesystem [ 266.393391][T10179] loop1: detected capacity change from 0 to 1024 [ 267.014525][T10191] loop6: detected capacity change from 0 to 1764 [ 267.170283][T10200] loop0: detected capacity change from 0 to 1024 [ 267.286406][T10200] hfsplus: bad catalog entry type [ 267.616906][T10212] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2376'. [ 267.664162][T10214] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2377'. [ 267.675559][ T4762] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 267.694137][T10214] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2377'. [ 267.785588][ T5463] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 267.793826][T10218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2379'. [ 267.836515][T10218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2379'. [ 267.868009][ T4762] usb 6-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a [ 267.885403][ T4255] Bluetooth: hci2: command 0x0406 tx timeout [ 267.891639][ T4762] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.909375][ T4762] usb 6-1: config 0 descriptor?? [ 267.926122][ T4762] gspca_main: sn9c2028-2.14.0 probing 0c45:8001 [ 267.965788][ T5463] usb 7-1: Using ep0 maxpacket: 32 [ 267.979506][ T5463] usb 7-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 268.008493][ T5463] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.037272][ T5463] usb 7-1: config 0 descriptor?? [ 268.048711][ T5463] gspca_main: sunplus-2.14.0 probing 041e:400b [ 268.167706][T10228] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2385'. [ 268.222798][T10228] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2385'. [ 268.268186][T10228] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2385'. [ 268.310687][T10228] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 268.343141][ T4762] gspca_sn9c2028: read1 error -71 [ 268.356413][ T4762] gspca_sn9c2028: read1 error -71 [ 268.383437][ T4762] sn9c2028: probe of 6-1:0.0 failed with error -71 [ 268.419850][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2387'. [ 268.420682][ T4762] usb 6-1: USB disconnect, device number 5 [ 268.455206][ T5463] gspca_sunplus: reg_w_riv err -71 [ 268.462037][ T5463] sunplus: probe of 7-1:0.0 failed with error -71 [ 268.499923][ T5463] usb 7-1: USB disconnect, device number 2 [ 268.623720][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 268.623738][ T27] audit: type=1326 audit(2000000035.390:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.0.2391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 268.681617][ T27] audit: type=1326 audit(2000000035.400:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.0.2391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 268.721776][T10239] loop2: detected capacity change from 0 to 4096 [ 268.730262][ T27] audit: type=1326 audit(2000000035.400:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.0.2391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac6b185d29 code=0x7ffc0000 [ 268.776644][T10239] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 268.827230][T10239] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 268.846896][T10239] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 268.863011][T10239] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 268.921164][T10239] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 268.944435][T10239] ntfs: volume version 3.1. [ 269.009055][T10239] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 269.015472][T10248] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2394'. [ 269.081210][T10239] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 269.185063][T10255] loop6: detected capacity change from 0 to 256 [ 269.198551][T10256] netlink: 'syz.0.2397': attribute type 3 has an invalid length. [ 269.223016][T10255] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 269.251999][T10256] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2397'. [ 269.331872][T10260] loop5: detected capacity change from 0 to 47 [ 269.374024][T10259] loop1: detected capacity change from 0 to 512 [ 269.444540][T10259] EXT4-fs: Ignoring removed i_version option [ 269.481080][T10259] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 269.610029][T10259] EXT4-fs (loop1): 1 truncate cleaned up [ 269.625383][T10259] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 269.932772][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 270.003121][T10274] loop2: detected capacity change from 0 to 8192 [ 270.067186][T10274] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 270.115537][T10274] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 270.124905][T10274] REISERFS (device loop2): using ordered data mode [ 270.132879][T10274] reiserfs: using flush barriers [ 270.139854][T10274] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 270.156601][T10274] REISERFS (device loop2): checking transaction log (loop2) [ 270.318027][T10274] REISERFS (device loop2): Using tea hash to sort names [ 270.335584][ T4762] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 270.344231][T10274] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 270.480627][T10294] loop6: detected capacity change from 0 to 256 [ 270.531128][T10294] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 270.545512][ T4762] usb 1-1: Using ep0 maxpacket: 32 [ 270.553451][ T4762] usb 1-1: unable to get BOS descriptor or descriptor too short [ 270.601755][ T4762] usb 1-1: config 128 has too many interfaces: 254, using maximum allowed: 32 [ 270.627679][ T4762] usb 1-1: config 128 descriptor has 1 excess byte, ignoring [ 270.664003][ T4762] usb 1-1: config 128 has 0 interfaces, different from the descriptor's value: 254 [ 270.694837][ T4762] usb 1-1: New USB device found, idVendor=046d, idProduct=08c7, bcdDevice=32.61 [ 270.730926][ T4762] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.753388][ T4762] usb 1-1: Product: syz [ 270.762905][ T4762] usb 1-1: Manufacturer: syz [ 270.773027][ T4762] usb 1-1: SerialNumber: syz [ 271.052551][ T5463] usb 1-1: USB disconnect, device number 10 [ 272.025651][T10342] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2439'. [ 272.034751][T10342] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2439'. [ 272.081254][T10342] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2439'. [ 272.205096][T10348] loop0: detected capacity change from 0 to 64 [ 272.298220][T10348] MINIX-fs: mounting file system with errors, running fsck is recommended [ 272.428923][T10356] netlink: 140 bytes leftover after parsing attributes in process `syz.6.2446'. [ 272.627322][T10362] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 273.311204][T10387] __nla_validate_parse: 1 callbacks suppressed [ 273.311224][T10387] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2460'. [ 273.359314][T10389] loop2: detected capacity change from 0 to 2048 [ 273.436841][T10389] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 273.859916][T10407] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 274.100126][T10419] loop6: detected capacity change from 0 to 256 [ 274.119501][T10419] exfat: Deprecated parameter 'utf8' [ 274.144032][T10419] exfat: Deprecated parameter 'namecase' [ 274.200447][T10419] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 274.684348][T10431] loop6: detected capacity change from 0 to 2048 [ 274.815580][T10431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 274.889341][T10441] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551614) [ 274.920136][T10441] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647 [ 275.390845][T10456] loop2: detected capacity change from 0 to 256 [ 275.451998][T10456] exfat: Deprecated parameter 'utf8' [ 275.494108][T10456] exfat: Deprecated parameter 'namecase' [ 275.522507][T10429] loop1: detected capacity change from 0 to 32768 [ 275.531752][T10455] loop5: detected capacity change from 0 to 4096 [ 275.537706][T10456] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 275.562804][T10429] (syz.1.2478,10429,0):ocfs2_read_blocks:239 ERROR: status = -12 [ 275.593384][T10429] (syz.1.2478,10429,0):ocfs2_map_slot_buffers:388 ERROR: status = -12 [ 275.624302][T10429] (syz.1.2478,10429,0):ocfs2_init_slot_info:426 ERROR: status = -12 [ 275.636986][T10455] __ntfs_error: 9 callbacks suppressed [ 275.637003][T10455] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 275.647438][T10429] (syz.1.2478,10429,0):ocfs2_initialize_super:2276 ERROR: status = -12 [ 275.689373][T10429] (syz.1.2478,10429,0):ocfs2_fill_super:1176 ERROR: status = -12 [ 275.702522][T10455] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 275.727256][T10455] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 275.750562][T10455] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 275.806688][T10455] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 275.882692][T10455] ntfs: volume version 3.1. [ 275.903174][T10455] ntfs: (device loop5): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 275.950147][T10455] ntfs: (device loop5): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 275.978187][T10466] loop0: detected capacity change from 0 to 256 [ 276.017393][T10455] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 276.073189][T10455] ntfs: (device loop5): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 276.115443][T10455] ntfs: (device loop5): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 276.120643][T10464] loop6: detected capacity change from 0 to 8192 [ 276.228986][T10464] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 276.346349][T10464] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal [ 276.346399][T10475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2501'. [ 276.357168][T10464] REISERFS (device loop6): using ordered data mode [ 276.372047][T10464] reiserfs: using flush barriers [ 276.378718][T10464] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 276.398985][T10464] REISERFS (device loop6): checking transaction log (loop6) [ 276.553102][T10477] loop1: detected capacity change from 0 to 256 [ 276.661872][T10477] FAT-fs (loop1): Directory bread(block 64) failed [ 276.685614][T10477] FAT-fs (loop1): Directory bread(block 65) failed [ 276.707611][T10464] REISERFS (device loop6): Using tea hash to sort names [ 276.713835][T10477] FAT-fs (loop1): Directory bread(block 66) failed [ 276.714993][T10464] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 276.735704][T10477] FAT-fs (loop1): Directory bread(block 67) failed [ 276.735827][T10477] FAT-fs (loop1): Directory bread(block 68) failed [ 276.735861][T10477] FAT-fs (loop1): Directory bread(block 69) failed [ 276.735941][T10477] FAT-fs (loop1): Directory bread(block 70) failed [ 276.735973][T10477] FAT-fs (loop1): Directory bread(block 71) failed [ 276.736048][T10477] FAT-fs (loop1): Directory bread(block 72) failed [ 276.776463][T10464] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage. [ 276.867207][T10477] FAT-fs (loop1): Directory bread(block 73) failed [ 277.144570][T10493] loop2: detected capacity change from 0 to 65 [ 277.149199][T10492] delete_channel: no stack [ 277.186624][T10496] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 277.190115][T10493] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway [ 277.618584][T10506] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2516'. [ 278.539390][T10539] CIFS mount error: No usable UNC path provided in device string! [ 278.539390][T10539] [ 278.552964][T10539] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 278.595391][ T7434] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 278.809957][ T7434] usb 3-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 278.831901][ T7434] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 278.873003][ T7434] usb 3-1: Product: syz [ 278.877526][ T7434] usb 3-1: Manufacturer: syz [ 278.899609][ T7434] usb 3-1: SerialNumber: syz [ 278.931129][ T7434] usb 3-1: config 0 descriptor?? [ 278.949284][ T7434] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 279.272130][T10557] loop1: detected capacity change from 0 to 4096 [ 279.321373][T10557] EXT4-fs (loop1): Test dummy encryption mode enabled [ 279.353732][ T7434] gspca_sunplus: reg_w_riv err -71 [ 279.359485][ T7434] sunplus: probe of 3-1:0.0 failed with error -71 [ 279.389141][T10557] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003] [ 279.398890][ T7434] usb 3-1: USB disconnect, device number 14 [ 279.435976][T10557] System zones: 0-5 [ 279.446224][T10564] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2544'. [ 279.499785][T10557] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 279.610567][T10550] loop6: detected capacity change from 0 to 32768 [ 279.688033][T10550] [ 279.688033][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.688033][T10550] [ 279.694229][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 279.794916][T10550] [ 279.794916][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.794916][T10550] [ 279.825581][T10550] [ 279.825581][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.825581][T10550] [ 279.855583][T10550] [ 279.855583][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.855583][T10550] [ 279.895682][T10550] [ 279.895682][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.895682][T10550] [ 279.919246][T10550] [ 279.919246][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.919246][T10550] [ 279.965628][T10550] [ 279.965628][T10550] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 279.965628][T10550] [ 280.055014][ T107] [ 280.055014][ T107] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 280.055014][ T107] [ 280.072719][T10577] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2549'. [ 280.106178][T10579] loop5: detected capacity change from 0 to 256 [ 280.171272][ T7448] [ 280.171272][ T7448] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 280.171272][ T7448] [ 280.191238][T10579] FAT-fs (loop5): Directory bread(block 64) failed [ 280.196058][ T7448] [ 280.196058][ T7448] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 280.196058][ T7448] [ 280.209197][T10579] FAT-fs (loop5): Directory bread(block 65) failed [ 280.234563][T10579] FAT-fs (loop5): Directory bread(block 66) failed [ 280.262066][T10579] FAT-fs (loop5): Directory bread(block 67) failed [ 280.287361][T10579] FAT-fs (loop5): Directory bread(block 68) failed [ 280.305826][T10579] FAT-fs (loop5): Directory bread(block 69) failed [ 280.312528][T10579] FAT-fs (loop5): Directory bread(block 70) failed [ 280.348743][T10579] FAT-fs (loop5): Directory bread(block 71) failed [ 280.350632][T10585] netlink: 'syz.2.2554': attribute type 1 has an invalid length. [ 280.389233][T10579] FAT-fs (loop5): Directory bread(block 72) failed [ 280.415957][T10579] FAT-fs (loop5): Directory bread(block 73) failed [ 280.553634][T10579] FAT-fs (loop5): error, invalid access to FAT (entry 0x00006c61) [ 280.701695][T10589] loop0: detected capacity change from 0 to 4096 [ 280.734319][T10589] EXT4-fs (loop0): Test dummy encryption mode enabled [ 280.759820][T10593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2559'. [ 280.771020][T10589] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003] [ 280.783701][T10589] System zones: 0-5 [ 280.815178][T10589] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 280.967666][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 281.246006][T10613] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2567'. [ 281.447813][T10619] loop0: detected capacity change from 0 to 512 [ 281.463898][T10623] __vm_enough_memory: pid: 10623, comm: syz.2.2571, no enough memory for the allocation [ 281.499986][T10619] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 281.559728][T10619] UDF-fs: Scanning with blocksize 512 failed [ 281.584279][T10619] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 281.645524][T10619] UDF-fs: Scanning with blocksize 1024 failed [ 281.665640][T10619] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 281.694358][T10619] UDF-fs: Scanning with blocksize 2048 failed [ 281.713986][T10619] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 281.780702][T10619] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 282.015389][ T7434] usb 3-1: new full-speed USB device number 15 using dummy_hcd [ 282.186759][T10643] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2582'. [ 282.217738][ T7434] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 282.256385][ T7434] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 282.287574][ T7434] usb 3-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66 [ 282.314712][ T7434] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 282.337427][ T7434] usb 3-1: Product: syz [ 282.341751][ T7434] usb 3-1: Manufacturer: syz [ 282.365458][ T7434] usb 3-1: SerialNumber: syz [ 282.381334][ T7434] usb 3-1: config 0 descriptor?? [ 282.432447][ T7434] snd-usb-audio: probe of 3-1:0.0 failed with error -22 [ 282.644131][ T7434] usb 3-1: USB disconnect, device number 15 [ 282.924012][T10670] ipt_CLUSTERIP: bad local_nodes[0] 0 [ 283.246060][T10673] loop6: detected capacity change from 0 to 8192 [ 283.292222][T10673] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 283.324400][T10673] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal [ 283.385887][T10673] REISERFS (device loop6): using ordered data mode [ 283.425543][T10673] reiserfs: using flush barriers [ 283.442074][T10673] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 283.525775][T10673] REISERFS (device loop6): checking transaction log (loop6) [ 283.655045][T10659] loop1: detected capacity change from 0 to 40427 [ 283.690620][T10659] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 283.709705][T10659] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 283.762147][T10659] F2FS-fs (loop1): invalid crc value [ 283.787360][T10673] REISERFS (device loop6): Using tea hash to sort names [ 283.794659][T10673] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage. [ 283.832970][T10659] F2FS-fs (loop1): Found nat_bits in checkpoint [ 283.892721][T10699] loop2: detected capacity change from 0 to 256 [ 284.054366][T10659] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 284.074650][T10659] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 284.484051][ T4506] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 284.519335][ T4506] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 284.549726][T10716] loop2: detected capacity change from 0 to 64 [ 284.716568][T10718] syz.6.2616 uses obsolete (PF_INET,SOCK_PACKET) [ 285.173873][T10728] loop2: detected capacity change from 0 to 256 [ 285.411324][T10709] loop5: detected capacity change from 0 to 32768 [ 285.460307][T10709] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.2612 (10709) [ 285.485651][T10737] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2615'. [ 285.497157][T10709] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 285.515011][T10709] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 285.544285][T10709] BTRFS info (device loop5): use no compression [ 285.606895][T10709] BTRFS info (device loop5): turning on flush-on-commit [ 285.664520][T10709] BTRFS info (device loop5): turning on sync discard [ 285.699805][T10709] BTRFS info (device loop5): force clearing of disk cache [ 285.731745][T10709] BTRFS info (device loop5): enabling auto defrag [ 285.758521][T10709] BTRFS info (device loop5): using free space tree [ 285.866360][T10752] loop2: detected capacity change from 0 to 2048 [ 285.964711][T10752] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 286.098571][T10766] loop0: detected capacity change from 0 to 4096 [ 286.161963][T10766] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 286.202263][T10709] BTRFS info (device loop5): enabling ssd optimizations [ 286.203866][T10775] netlink: 'syz.6.2634': attribute type 10 has an invalid length. [ 286.224348][T10709] BTRFS info (device loop5): rebuilding free space tree [ 286.267397][T10775] team0: Cannot enslave team device to itself [ 286.359627][T10766] ntfs3: loop0: failed to convert "c46c" to cp1250 [ 286.594026][ T6252] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 286.799730][T10790] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2642'. [ 287.305776][T10801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2646'. [ 287.355560][T10801] netlink: zone id is out of range [ 287.385422][T10801] netlink: zone id is out of range [ 287.390590][T10801] netlink: zone id is out of range [ 287.455384][T10801] netlink: zone id is out of range [ 287.630013][T10810] loop0: detected capacity change from 0 to 2048 [ 287.913666][T10822] No such timeout policy "syz0" [ 287.999830][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 287.999847][ T27] audit: type=1326 audit(2000000054.770:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10825 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 288.035395][ T4759] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 288.074719][ T27] audit: type=1326 audit(2000000054.800:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10825 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 288.197552][ T27] audit: type=1326 audit(2000000054.800:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10825 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 288.225931][ T4759] usb 1-1: Using ep0 maxpacket: 16 [ 288.238056][ T4759] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 288.264615][ T4759] usb 1-1: config 0 has no interface number 0 [ 288.281348][ T27] audit: type=1326 audit(2000000054.800:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10825 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595dd85d29 code=0x7ffc0000 [ 288.290200][T10833] netlink: 168 bytes leftover after parsing attributes in process `syz.6.2663'. [ 288.325857][ T4759] usb 1-1: config 0 interface 2 altsetting 0 endpoint 0xC has invalid maxpacket 37835, setting to 1024 [ 288.336687][T10836] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2664'. [ 288.365535][ T4759] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1024 [ 288.404340][ T4759] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 288.423623][ T4759] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 288.447716][ T4759] usb 1-1: Product: syz [ 288.451968][ T4759] usb 1-1: SerialNumber: syz [ 288.464704][T10840] loop2: detected capacity change from 0 to 64 [ 288.487308][ T4759] usb 1-1: config 0 descriptor?? [ 288.511958][T10810] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 288.726688][T10846] loop1: detected capacity change from 0 to 512 [ 288.748025][ T4759] usb 1-1: invalid MIDI in EP 0 [ 288.824134][T10846] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 288.856182][T10846] ext4 filesystem being mounted at /568/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 288.941630][T10857] loop2: detected capacity change from 0 to 1024 [ 288.982460][ T4759] snd-usb-audio: probe of 1-1:0.2 failed with error -22 [ 289.023193][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 289.029874][T10857] hfsplus: can't free extent [ 289.054836][ T4759] usb 1-1: USB disconnect, device number 11 [ 289.105897][ T4242] udevd[4242]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 289.285415][ T4346] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 289.359101][T10864] loop2: detected capacity change from 0 to 4096 [ 289.445723][T10864] NILFS (loop2): invalid segment: Checksum error in segment payload [ 289.462978][T10864] NILFS (loop2): trying rollback from an earlier position [ 289.505494][ T4346] usb 6-1: Using ep0 maxpacket: 32 [ 289.512936][ T4346] usb 6-1: config 0 has an invalid interface number: 35 but max is 0 [ 289.535324][ T4346] usb 6-1: config 0 has no interface number 0 [ 289.539179][T10864] NILFS (loop2): recovery complete [ 289.544186][ T4346] usb 6-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 289.575205][ T4346] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.583277][T10868] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 289.632541][ T4346] usb 6-1: Product: syz [ 289.647056][ T4346] usb 6-1: Manufacturer: syz [ 289.651703][ T4346] usb 6-1: SerialNumber: syz [ 289.696198][ T4346] usb 6-1: config 0 descriptor?? [ 290.124717][ T4346] radio-si470x 6-1:0.35: si470x_get_report: usb_control_msg returned -71 [ 290.144360][ T4346] radio-si470x: probe of 6-1:0.35 failed with error -5 [ 290.222721][ T4346] radio-raremono 6-1:0.35: this is not Thanko's Raremono. [ 290.265358][ T4346] usb 6-1: USB disconnect, device number 6 [ 290.290836][T10861] loop6: detected capacity change from 0 to 32768 [ 290.317090][T10861] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop6 scanned by syz.6.2675 (10861) [ 290.365112][T10861] BTRFS info (device loop6): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 290.405568][T10861] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm [ 290.428177][T10861] BTRFS info (device loop6): enabling ssd optimizations [ 290.459519][T10861] BTRFS info (device loop6): not using ssd optimizations [ 290.487109][T10861] BTRFS info (device loop6): turning off barriers [ 290.534301][T10861] BTRFS info (device loop6): using free space tree [ 291.055996][ T7448] BTRFS info (device loop6): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 291.066079][T10923] loop5: detected capacity change from 0 to 8 [ 291.073588][T10923] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 291.203592][T10923] cramfs: Error -3 while decompressing! [ 291.268987][T10923] cramfs: ffffffff974e6568(26)->ffff8880528c8000(4096) [ 291.295503][T10923] cramfs: Error -5 while decompressing! [ 291.311411][T10923] cramfs: ffffffff974e6582(26)->ffff88806964f000(4096) [ 291.355916][T10923] cramfs: Error -3 while decompressing! [ 291.377553][T10923] cramfs: ffffffff974e659c(16)->ffff88804eb87000(4096) [ 291.415064][T10923] cramfs: Error -3 while decompressing! [ 291.445610][T10923] cramfs: ffffffff974e6568(26)->ffff8880528c8000(4096) [ 291.460211][ T27] audit: type=1800 audit(2000000058.230:108): pid=10923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2695" name="file2" dev="loop5" ino=348 res=0 errno=0 [ 291.494000][T10933] loop2: detected capacity change from 0 to 2048 [ 291.629472][T10933] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 292.016238][ T27] audit: type=1326 audit(2000000058.790:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.1.2710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 292.105373][ T27] audit: type=1326 audit(2000000058.810:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.1.2710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 292.184165][ T27] audit: type=1326 audit(2000000058.810:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.1.2710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 292.256919][ T27] audit: type=1326 audit(2000000058.810:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.1.2710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acef85d29 code=0x7ffc0000 [ 293.079752][T10946] loop5: detected capacity change from 0 to 32768 [ 293.799255][T11002] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2736'. [ 293.999416][T10984] loop2: detected capacity change from 0 to 32768 [ 294.020108][T11010] loop6: detected capacity change from 0 to 256 [ 294.045955][T10984] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.2726 (10984) [ 294.099870][T10984] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 294.115463][T10984] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 294.150864][T10984] BTRFS info (device loop2): force zlib compression, level 3 [ 294.172651][T10984] BTRFS info (device loop2): force clearing of disk cache [ 294.205435][T10984] BTRFS info (device loop2): setting nodatasum [ 294.211751][T10984] BTRFS info (device loop2): use zlib compression, level 3 [ 294.255412][T10984] BTRFS info (device loop2): allowing degraded mounts [ 294.281941][T10984] BTRFS info (device loop2): enabling disk space caching [ 294.299554][T10984] BTRFS info (device loop2): disk space caching is enabled [ 294.546258][T11018] loop1: detected capacity change from 0 to 8192 [ 294.555894][T11018] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 294.582348][T11018] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 294.631779][T11018] REISERFS (device loop1): using ordered data mode [ 294.673947][T11045] loop5: detected capacity change from 0 to 128 [ 294.680614][T10984] BTRFS info (device loop2): enabling ssd optimizations [ 294.740530][T11018] reiserfs: using flush barriers [ 294.751548][T10984] BTRFS info (device loop2): rebuilding free space tree [ 294.789402][T10984] BTRFS info (device loop2): disabling free space tree [ 294.793227][T11018] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 294.811114][T10984] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 294.854404][T10984] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 294.866480][T11018] REISERFS (device loop1): checking transaction log (loop1) [ 294.915712][T11018] REISERFS (device loop1): Using r5 hash to sort names [ 294.981134][T11053] loop6: detected capacity change from 0 to 256 [ 294.986085][T11018] reiserfs: enabling write barrier flush mode [ 295.019034][T10984] BTRFS info (device loop2): balance: start -f -sprofiles=data|metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800 [ 295.047382][T11018] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 295.123430][T11018] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 295.142490][T11053] FAT-fs (loop6): Directory bread(block 64) failed [ 295.164666][T11018] REISERFS (device loop1): Remounting filesystem read-only [ 295.172614][T10984] BTRFS info (device loop2): relocating block group 1048576 flags system [ 295.183273][T11053] FAT-fs (loop6): Directory bread(block 65) failed [ 295.213048][T11053] FAT-fs (loop6): Directory bread(block 66) failed [ 295.235883][T11018] REISERFS error (device loop1): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 295.244398][T11053] FAT-fs (loop6): Directory bread(block 67) failed [ 295.290609][T11018] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 295.311966][T11053] FAT-fs (loop6): Directory bread(block 68) failed [ 295.370982][T11018] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 295.375825][T11053] FAT-fs (loop6): Directory bread(block 69) failed [ 295.398644][T11053] FAT-fs (loop6): Directory bread(block 70) failed [ 295.405231][T11053] FAT-fs (loop6): Directory bread(block 71) failed [ 295.431559][T11053] FAT-fs (loop6): Directory bread(block 72) failed [ 295.445811][T11053] FAT-fs (loop6): Directory bread(block 73) failed [ 295.450233][T11018] REISERFS error (device loop1): zam-7001 reiserfs_find_entry: io error [ 295.481349][T10984] BTRFS info (device loop2): balance: ended with status: 0 [ 295.492465][T11018] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 295.555616][T11018] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 295.588959][T11018] REISERFS error (device loop1): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 295.660787][ T4263] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 295.673617][T11018] REISERFS warning (device loop1): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 295.700619][T11065] netlink: 'syz.5.2757': attribute type 5 has an invalid length. [ 295.710596][T11065] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2757'. [ 296.084561][ T4250] ------------[ cut here ]------------ [ 296.090489][ T4250] kernel BUG at fs/reiserfs/journal.c:1916! [ 296.145632][ T4250] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 296.151769][ T4250] CPU: 0 PID: 4250 Comm: syz-executor Not tainted 6.1.124-syzkaller #0 [ 296.160014][ T4250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 296.170090][ T4250] RIP: 0010:do_journal_release+0x4c1/0x4d0 [ 296.175922][ T4250] Code: fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 30 fd ff ff 48 89 df e8 de 2a b3 ff e9 23 fd ff ff e8 64 9e 83 08 e8 bf 94 5b ff <0f> 0b e8 b8 94 5b ff 0f 0b 66 0f 1f 44 00 00 41 57 41 56 53 49 89 [ 296.195541][ T4250] RSP: 0018:ffffc90003c27ae0 EFLAGS: 00010293 [ 296.201614][ T4250] RAX: ffffffff822f0741 RBX: 0000000000000000 RCX: ffff88801bbe5940 [ 296.209599][ T4250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 296.217577][ T4250] RBP: ffffc90003c27bd8 R08: ffffffff822f03dd R09: ffffc90003c27b20 [ 296.225549][ T4250] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 296.233522][ T4250] R13: ffff88807dfe4000 R14: 1ffff92000784f60 R15: 1ffff1100fbfc8cf [ 296.241496][ T4250] FS: 000055559302b500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 296.250425][ T4250] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 296.257007][ T4250] CR2: 0000001b2d91fffc CR3: 000000005c441000 CR4: 00000000003506f0 [ 296.264988][ T4250] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 296.272959][ T4250] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 296.280931][ T4250] Call Trace: [ 296.284209][ T4250] [ 296.287139][ T4250] ? __die_body+0x5e/0xa0 [ 296.291480][ T4250] ? die+0x83/0xb0 [ 296.295210][ T4250] ? do_trap+0x11e/0x350 [ 296.299461][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.304667][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.309875][ T4250] ? do_error_trap+0x13d/0x1e0 [ 296.314649][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.319863][ T4250] ? do_int3+0x30/0x30 [ 296.323935][ T4250] ? report_bug+0x3e0/0x500 [ 296.328443][ T4250] ? rcu_is_watching+0x11/0xb0 [ 296.333209][ T4250] ? handle_invalid_op+0x2c/0x40 [ 296.338151][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.343358][ T4250] ? exc_invalid_op+0x2f/0x40 [ 296.348042][ T4250] ? asm_exc_invalid_op+0x16/0x20 [ 296.353077][ T4250] ? do_journal_release+0x15d/0x4d0 [ 296.358285][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.363491][ T4250] ? do_journal_release+0x4c1/0x4d0 [ 296.368701][ T4250] ? journal_release+0x30/0x30 [ 296.373480][ T4250] journal_release+0x1b/0x30 [ 296.378082][ T4250] reiserfs_put_super+0x237/0x4b0 [ 296.383110][ T4250] ? hook_inode_free_security+0xa0/0xa0 [ 296.388662][ T4250] ? reiserfs_dirty_inode+0x240/0x240 [ 296.394044][ T4250] ? fscrypt_destroy_keyring+0x282/0x2a0 [ 296.399695][ T4250] ? reiserfs_dirty_inode+0x240/0x240 [ 296.405090][ T4250] generic_shutdown_super+0x130/0x340 [ 296.410484][ T4250] kill_block_super+0x7a/0xe0 [ 296.415188][ T4250] deactivate_locked_super+0xa0/0x110 [ 296.420583][ T4250] cleanup_mnt+0x490/0x520 [ 296.425014][ T4250] ? lockdep_hardirqs_on+0x94/0x130 [ 296.430227][ T4250] task_work_run+0x246/0x300 [ 296.434835][ T4250] ? task_work_cancel+0x2e0/0x2e0 [ 296.439872][ T4250] ? exit_to_user_mode_loop+0x39/0x100 [ 296.445337][ T4250] exit_to_user_mode_loop+0xde/0x100 [ 296.450628][ T4250] exit_to_user_mode_prepare+0xb1/0x140 [ 296.456176][ T4250] syscall_exit_to_user_mode+0x60/0x270 [ 296.461729][ T4250] do_syscall_64+0x47/0xb0 [ 296.466152][ T4250] ? clear_bhb_loop+0x45/0xa0 [ 296.470829][ T4250] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 296.476732][ T4250] RIP: 0033:0x7f5acef87057 [ 296.481160][ T4250] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 296.500767][ T4250] RSP: 002b:00007ffeb33c6d68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 296.509186][ T4250] RAX: 0000000000000000 RBX: 00007f5acf0018f4 RCX: 00007f5acef87057 [ 296.517160][ T4250] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeb33c6e20 [ 296.525127][ T4250] RBP: 00007ffeb33c6e20 R08: 0000000000000000 R09: 0000000000000000 [ 296.533099][ T4250] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeb33c7ea0 [ 296.541070][ T4250] R13: 00007f5acf0018f4 R14: 00007ffeb33c7ee0 R15: 000000000000024d [ 296.549052][ T4250] [ 296.552069][ T4250] Modules linked in: [ 296.579621][T11076] loop6: detected capacity change from 0 to 256 [ 296.617849][T11076] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 296.637666][T11076] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 296.649139][T11076] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 296.672743][ T27] audit: type=1800 audit(2000000063.440:113): pid=11076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2760" name="file1" dev="loop6" ino=1048641 res=0 errno=0 [ 296.695930][ T4250] ---[ end trace 0000000000000000 ]--- [ 296.701444][ T4250] RIP: 0010:do_journal_release+0x4c1/0x4d0 [ 296.707625][ T4250] Code: fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 30 fd ff ff 48 89 df e8 de 2a b3 ff e9 23 fd ff ff e8 64 9e 83 08 e8 bf 94 5b ff <0f> 0b e8 b8 94 5b ff 0f 0b 66 0f 1f 44 00 00 41 57 41 56 53 49 89 [ 296.727742][ T4250] RSP: 0018:ffffc90003c27ae0 EFLAGS: 00010293 [ 296.733846][ T4250] RAX: ffffffff822f0741 RBX: 0000000000000000 RCX: ffff88801bbe5940 [ 296.741957][ T4250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 296.750459][ T4250] RBP: ffffc90003c27bd8 R08: ffffffff822f03dd R09: ffffc90003c27b20 [ 296.758533][ T4250] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 296.769261][ T4250] R13: ffff88807dfe4000 R14: 1ffff92000784f60 R15: 1ffff1100fbfc8cf [ 296.779304][ T4250] FS: 000055559302b500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 296.790079][ T4250] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 296.797384][ T4250] CR2: 00007fb4c2547ab8 CR3: 000000005c441000 CR4: 00000000003506e0 [ 296.805603][ T4250] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 296.813691][ T4250] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 296.821743][ T4250] Kernel panic - not syncing: Fatal exception [ 296.828150][ T4250] Kernel Offset: disabled [ 296.832475][ T4250] Rebooting in 86400 seconds..