last executing test programs: 39.267531438s ago: executing program 0: socket$netlink(0x10, 0x3, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/ip6_flowlabel\x00') ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5}]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000140)="1760ba4100b004ee6765360fc76c9b0766b9800000c00f326635002000000f309df30fc775fe0f01c2640f06660f3806b43900", 0x33}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x200}) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 37.771415819s ago: executing program 0: syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) r1 = creat(&(0x7f0000000240)='./bus\x00', 0x0) pwritev2(r1, &(0x7f00000015c0)=[{&(0x7f00000002c0)='\f', 0x1}], 0x1, 0xfffff, 0x0, 0x0) fallocate(r0, 0x100000003, 0x0, 0x2811fffd) 37.234202462s ago: executing program 3: r0 = socket(0x1e, 0x1, 0x0) connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10) recvmmsg(r0, &(0x7f0000001ec0)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)=""/64, 0x40}], 0x1, &(0x7f0000000540)=""/27, 0x1b}}], 0x1, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000100), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0) write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[], 0x2000011a) 35.23387197s ago: executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0) syz_io_uring_setup(0x6422, &(0x7f0000000140)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, 0x0, 0x0) 34.807397199s ago: executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x1000882, &(0x7f00000003c0)=ANY=[@ANYRES16, @ANYRES32, @ANYRESHEX, @ANYRES32, @ANYRES32, @ANYRESDEC, @ANYRES32, @ANYRESDEC, @ANYBLOB="1cbb2cdd171d492deb19cb4b50f57fe03514acd1d4c838e2c6f896f71319f9927bb900ea7fd140c59552b18fd7fa112f3255fd02c04423cea65c50f3f1131a9644733abcb0218bbfab259417ec021df71f9bd9568e390396358819c94ed2351551a96eeff9b964e5f961027ae3a3a71b49c7364d5ebe1d6525c6437993d4082972d57be58928184da45cbf987f0a13f648dc9a6621c8392b2f1fedc71c85812425a68ba4edb0552df5b8e74af9249846923776c821deddd2f02d473b436ba514df04522dddad1cb5e75766d125d5eafcc652fbd3deaac0bf7eaf7ed8a586d36bffdb2f61bced8a3fd75f66c8eca0de326c41a8993c3ef39131"], 0x10, 0xc34, &(0x7f0000001080)="$eJzs3U9sHNd9B/DfGy5F0m4rJk5Uu42LTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmFoSJNXIbtowvfTQQ4Ci6CEnAq1RIEUDoymKHtnWBZKLD4VPPREtbARFD2wRIKeAxcy+FVf/LMkkJcr+fGzqOzv73sx7M+MZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxO+8cvb48+lhtwIAeJDOT3/1+AnPfwD4RLng//8BAAAAAAAAAAAAAOCgS1HEE5Fi6fxWmq0+dw2fa3euXpuZmLx9tZFU1Ryoypc/w8+fOHnqSy+Mn+7lh9ffa0/Fa9MXztZfXryytNxaWWnN12c67bnF+dY9b2G39W82Vh2A+pXXr85furRSP/HcyRu+vjb6wdDjR0bPjD9z7Ole2ZmJycnpvjK1wY+891vcaYTHoSjiWKR49vs/Ts2IKGL3x+Iu185+G6k6MVZ1YmZisurIQrvZWS2/nOodiCKi3lep0TtGD+Bc7EojYq1sftngsbJ700vN5ebFhVZ9qrm82l5tL3amUre1ZX/qUcTpFLEeEZtDt25uMIqoRYrvHt5KFyNioHccvlgNDL5zO4p97OM9KNtZH4xYLx6Bc3aADUURr0aKn7xTxFx5zPJPfCHi1TL/MeKtMl+KSOWFcSri/eo6GnnILWcv1KKIPyvP/5mtNF/dD3r3lXNfq3+lc2mxr2zvvvLIPx8epAN+bxqOIprVHX8rffTf7AAAAAAAAAAAAAAAAACw10aiiKcixSv//gfVuOKoxqUfPjP+u6M/3z9m/Mm7bKcs+1xErBX3Nib3UB5CPJWmUnrIY4k/yYajiD/K4/++/bAbAwAAAAAAAAAAAAAAAAAA8IlWxHuR4sV3j6b16J9TvN25XL/QvLjQnRW2N/dvb8707e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjluvnbOSczbmWcz3nRs7NnHFA5u4FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPg4KaKIn0WK73xjK0WKiEbEbHRzY6hXBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4mIZSET+IFPXfa1xfV4uIVP3bdbT85VQ0DpX56WiMl/lSNM7mbFZZa3z7IbSf3RlMRfwoUgwNv339hOfzP9j9dP0yiLe+ufPpl2rdHOh9OfrB0ONHDp8Zn/yVJ++0nG7XgLFz7c7Va/WZicnJ6b7Vtbz3T/etG837Lfam60TEyhtvvt5cWGgtW/hkLNS6C7XY0y2PROztBvduodZdyPereOjtucNC42A0Y2chqnv/be/ZfGyUz//3I8VvvvsfvQd+7/n/c91P15/w8dM/3nn+v3jzhvbp+f9E37oX8+9GBmsRw6tXlgaPRAyvvPHmsfaV5uXW5Vbn1PHjXx4f//LJ44OHIoYvtRdafUu7PlQAAAAAAAAAAAAAAAAAD1Yq4rcjRfNHW6keEdeq8VqjZ8afOfb0QAxU461uGLf12vSFs/WXF68sLbdWVlrz9ZlOe25xvnWvuxuuhnvNTEzuS2fuamSf2z8y/PLi0hvL7cu/v3rb7x8bPntxZXW5OXf7r2MkiohG/5qxqsEzE5NVoxfazU5VdWqPBmYOpiL+M1LMnaqnz+d1efxfGe8N9pXtH/+/1re+Wt6n8X+fumk/KRXx00jxG3/+ZHy+audjccsxy+X+OlKMnf5cLheHynK9NnTfK9AdGViW/d9I8fc/u7Fsr+9P7JR9/v6O7sFXnv/DkeIHf/q9+NW87sb3P+yM/+w//4/dvKF9Ov+f6Vv32A3vK9h118nn/1ikeOmJt+PX8roPe/9HEdvb29+KOJoLX38/xz6d/8/2rRuN7n5/fe+6DwAAAAAAAAAA8MgaTEX8TaR4erKWXsjr7uXv/83fvKF9+vtfv9i3bv4BzVe064MKAAAAAAfEYCrivUhxefXt62Oo+8Z/3zj+87d25l6fSDd9W/053y9U7w3Yyz//6zea9zu7+24DAAAAAAAAAAAAAAAAAADAgZJSES/k+dRn7zKf+kakeOW/n83l0pGyXG8e+NHq1+Hzi51jZxcWFueaq82LC6369FJzrlXW/Uyk2Pqrz+W6RTW/em+++e4c78PbvbnYlyPF5N/2ynbnYu/NTd6dD7w7F3tZ9lOR4r/+7sayvXmsP7tT9kRZ9i8jxdf/6fZlj+yUPVmW/V6k+OHX672yj5Vle+9H7b6TdLgWC63n5hYXbnkVKgAAAAAAAAAAAAAAAAAAANyvwVTEn0SK/7myHmt52H+e/783A3+tV/atb/bN93+Ta9U8/6PV/P93Wv4o8/+P7llPAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg0ZGiiDcjxdL5rbQxVH7uGj7X7ly9NjMxeftqI6mqOVCVL3+Gnz9x8tSXXhg/3csPr7/XnorXpi+crb+8eGVpubWy0pqvz3Tac4vzrXvewm7r7xy6rrHqANSvvH51/tKllfqJ507e8PW10Q+GHj8yemb8mWNP98rOTExOTveVqQ3ex97vq3E7DkURfxEpnv3+j9M/D0UUsftjcZdrZ7+NVJ0YqzoxMzFZdWSh3eysll9O9Q5EEVHvq9ToHaMHcC52pRGxVja/bPBY2b3ppeZy8+JCqz7VXF5tr7YXO1Op29qyP/Uo4nSKWI+IzaFbNzcYRbweKb57eCv9y1DEQO84fPH89FePn7hzO4p97OM9KNtZH4xYLx6Bc3aADUUR/xApfvLO0fjXoYhadH/iCxGv9hd8KSKVF8apiPdvcx3xaKpFEf9Xnv8zW+mdofJ+0LuvnPta/SudS4t9ZXv3lYP0fNi+/2txZA92e+8O+L1pOIr4YXXH30r/5r9rAAAAAAAAAAAAAAAAgAOkiF+OFC++ezRV44Ovjyludy7XLzQvLnSH9fXG/tUj/rDM7e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjVsX29va3uvVruX7OtZzrtYiirJ8/b+aMAzJ2DwAAAAAAAAAAAAAAAAAA+Hgpqn9SfOcbW6maS7URMRvd3DAf6Mfe/wcAAP//3sf+xA==") 34.385075995s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100), 0xff, 0x490, &(0x7f0000000f40)="$eJzs3M9vFFUcAPDvTLf8VFoRf4AkVtHY+KOlBZSDHjSaeNBEowc81rYQZKGG1kQI0WIMHg2Jd+PRxL/Akyejnky8eNC7ISFKTAAvrpndmba77lT6cxf380kW3tt5M+99++btvr632wB61lD2TxJxR0T8EhEDjWxzgaHGfzeuXZi8ee3CZBK12hu/J/Vy169dmCyKFuftzDPDaUT6cZJX0mz23PlTE9Xq9Nk8Pzp3+t3R2XPnnzp5euLE9InpM+NHjx4+NPbM0+NHms47sso4s/iu7/tgZv/el9+6/Orksctvf/9V1t40P740jvUylAX+R62u9dij611Zh/1dW4wzqXS6NdyqvojIuqu/Pv4Hoi8WO28gXvqoo40DNlT2mr21/PB8DfgfS6LTLQA6o3ijz37/zR/9mzT16ApXn2/8ApTFfiN/NI5UFtYGNvIHMhQRx+b/+jx7RMs6RK3NugEAwFp9k81/nmya/+XzjzTuXVJuV743NBgRd0XE7oi4OyL2RMQ9EfWy90XE/Susv3Vr6N/7MOmVVQV2i7L537P53lbz/K+Y/cVgX567sx5/f3L8ZHX6YP4zGY7+rVl+rN3Fi0u8+NOnZfUvnf9lj6z+Yi6YX+RKpWWBbmpibmK9JqVXL0bsq7SLP1nYCUgiYm9E7FvZpXcViZOPf7m/rNB/x7+Mddhnqn0R8Vij/+ejJf5Csvz+5Oi2qE4fHG3cFX1t6vjhx0uvldW/pvjXQdb/O5rv/5YSA38mS/drZ1dex6VfPyndW62s8v7fkrxZ39Pdkj/3/sTc3NmxiC3JK/V80/Pji+cW+aJ8Fv/wgfbjf3d+Thb/AxGxP+LnYtg9mPfdQxHxcEQcWCb+71545J2yY93Q/1NtX/8W7v/B5v5feaLv1Ldfl9XfGn+S5xdLZP1/uJ4azp+pv/7ltpdct7w52/ISq72bAQAA4PaT1j8bn6QjC+k0HRlpfIZ/T+xIqzOzc08cn3nvzFTjM/SD0Z8W658DS9ZDx5L5/IqN/Hi+VlwcP5SvG3/Wtz1Jojo9MjlTnepw7NDrdpaM/8xv7RazI+K5TW0hsKF8Xwt6V+v4TzvUDmDzef+H3mX8Q+8y/qF3FeP/9SXPfdhSpmQvALjNef+H3mX8Q+9aGP8XO9sOYPN5/4ee1O5L8sXfOFjDV/7XlKgs8+39Lk0Uq6Pd0p5TSURsbBWRdkekpYnI/4hFt7Rn5YmbtVWeXllmdN9qojOvRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOvtnwAAAP//aP7lHQ==") r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0) ftruncate(r0, 0x7) sendfile(r0, r1, 0x0, 0x1000000201005) 34.310308537s ago: executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x20000000}, 0x4, r1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) 34.051520652s ago: executing program 4: r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2) write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0x920) 33.884791606s ago: executing program 2: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0) 33.541646011s ago: executing program 2: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r0, 0x0) accept4(r0, 0x0, 0x0, 0x0) timer_create(0x0, 0x0, &(0x7f0000000000)) pipe(&(0x7f0000000140)) creat(0x0, 0x88) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000001000a00000800040001000000", 0x24) syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './cgroup.cpu/cgroup.procs\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000100)=ANY=[]) setpriority(0x2, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) 33.531210774s ago: executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000500000010"]) 33.007868678s ago: executing program 4: syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./bus\x00', 0x2218050, &(0x7f0000000140)=ANY=[], 0x1, 0x1528, &(0x7f0000001800)="$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") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) 32.956504036s ago: executing program 2: open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x204092, &(0x7f0000000000), 0x6, 0x50d, &(0x7f00000006c0)="$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") ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"}) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r1, 0x0, 0x0) 32.781279796s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000b60000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000100), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x20000000}) 32.775904549s ago: executing program 3: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e7", 0x4b}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) socket$inet(0x2, 0x4000000000000001, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0}, 0x90) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='syzkaller\x00'}, 0x90) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r3, r2, 0x16, 0x0, @val=@tcx={@prog_fd}}, 0x40) r4 = socket$kcm(0xa, 0x6, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r4, 0x10d, 0xb, &(0x7f0000000000)=r5, 0x4) r6 = socket(0x2, 0x2, 0x1) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={0x0, 0xffeb}}, 0x0) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000000000000003"], 0x1c) setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc) 32.470074178s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xc, 0x4, 0x2, 0x0, 0x1}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xa0}}]}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90) 32.381193299s ago: executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001c40)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_police={0x6c, 0x2, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x1}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf0}}, 0x0) 32.251239529s ago: executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000380)=@framed={{}, [@printk={@lu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='block_plug\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r1, &(0x7f0000000000), 0x248800) 32.031807225s ago: executing program 3: r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0) 31.942312772s ago: executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100), 0xff, 0x490, &(0x7f0000000f40)="$eJzs3M9vFFUcAPDvTLf8VFoRf4AkVtHY+KOlBZSDHjSaeNBEowc81rYQZKGG1kQI0WIMHg2Jd+PRxL/Akyejnky8eNC7ISFKTAAvrpndmba77lT6cxf380kW3tt5M+99++btvr632wB61lD2TxJxR0T8EhEDjWxzgaHGfzeuXZi8ee3CZBK12hu/J/Vy169dmCyKFuftzDPDaUT6cZJX0mz23PlTE9Xq9Nk8Pzp3+t3R2XPnnzp5euLE9InpM+NHjx4+NPbM0+NHms47sso4s/iu7/tgZv/el9+6/Orksctvf/9V1t40P740jvUylAX+R62u9dij611Zh/1dW4wzqXS6NdyqvojIuqu/Pv4Hoi8WO28gXvqoo40DNlT2mr21/PB8DfgfS6LTLQA6o3ijz37/zR/9mzT16ApXn2/8ApTFfiN/NI5UFtYGNvIHMhQRx+b/+jx7RMs6RK3NugEAwFp9k81/nmya/+XzjzTuXVJuV743NBgRd0XE7oi4OyL2RMQ9EfWy90XE/Susv3Vr6N/7MOmVVQV2i7L537P53lbz/K+Y/cVgX567sx5/f3L8ZHX6YP4zGY7+rVl+rN3Fi0u8+NOnZfUvnf9lj6z+Yi6YX+RKpWWBbmpibmK9JqVXL0bsq7SLP1nYCUgiYm9E7FvZpXcViZOPf7m/rNB/x7+Mddhnqn0R8Vij/+ejJf5Csvz+5Oi2qE4fHG3cFX1t6vjhx0uvldW/pvjXQdb/O5rv/5YSA38mS/drZ1dex6VfPyndW62s8v7fkrxZ39Pdkj/3/sTc3NmxiC3JK/V80/Pji+cW+aJ8Fv/wgfbjf3d+Thb/AxGxP+LnYtg9mPfdQxHxcEQcWCb+71545J2yY93Q/1NtX/8W7v/B5v5feaLv1Ldfl9XfGn+S5xdLZP1/uJ4azp+pv/7ltpdct7w52/ISq72bAQAA4PaT1j8bn6QjC+k0HRlpfIZ/T+xIqzOzc08cn3nvzFTjM/SD0Z8W658DS9ZDx5L5/IqN/Hi+VlwcP5SvG3/Wtz1Jojo9MjlTnepw7NDrdpaM/8xv7RazI+K5TW0hsKF8Xwt6V+v4TzvUDmDzef+H3mX8Q+8y/qF3FeP/9SXPfdhSpmQvALjNef+H3mX8Q+9aGP8XO9sOYPN5/4ee1O5L8sXfOFjDV/7XlKgs8+39Lk0Uq6Pd0p5TSURsbBWRdkekpYnI/4hFt7Rn5YmbtVWeXllmdN9qojOvRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOvtnwAAAP//aP7lHQ==") r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0) ftruncate(r0, 0x7) sendfile(r0, r1, 0x0, 0x1000000201005) 31.794607794s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)={0x38, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16e4}]]}, 0x38}}, 0x0) 31.535133527s ago: executing program 1: r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) sendto$inet6(r1, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 31.349892158s ago: executing program 4: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r0, 0x0) accept4(r0, 0x0, 0x0, 0x0) timer_create(0x0, 0x0, &(0x7f0000000000)) pipe(&(0x7f0000000140)) creat(0x0, 0x88) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000001000a00000800040001000000", 0x24) syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './cgroup.cpu/cgroup.procs\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000100)=ANY=[]) setpriority(0x2, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) 30.346508148s ago: executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000500000010"]) 30.032244156s ago: executing program 1: r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000b80)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x53}]}, @TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}]}}]}, 0xa4}}, 0x0) 2.346470445s ago: executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x4b44, 0x0) 1.996930076s ago: executing program 3: syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./bus\x00', 0x2218050, &(0x7f0000000140)=ANY=[], 0x1, 0x1528, &(0x7f0000001800)="$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") mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) 1.767103616s ago: executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) unshare(0x2040400) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000580)='./file0\x00', 0x0, 0x223216, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r1 = open(&(0x7f0000000a40)='./bus\x00', 0x141a42, 0x0) sendfile(r1, r0, 0x0, 0x100801701) 1.306647817s ago: executing program 4: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e7", 0x4b}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) socket$inet(0x2, 0x4000000000000001, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0}, 0x90) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='syzkaller\x00'}, 0x90) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r3, r2, 0x16, 0x0, @val=@tcx={@prog_fd}}, 0x40) r4 = socket$kcm(0xa, 0x6, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r4, 0x10d, 0xb, &(0x7f0000000000)=r5, 0x4) r6 = socket(0x2, 0x2, 0x1) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={0x0, 0xffeb}}, 0x0) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000000000000003"], 0x1c) setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc) 0s ago: executing program 1: openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0}) pselect6(0x40, &(0x7f0000000140)={0x10}, 0x0, 0x0, 0x0, 0x0) write$ppp(r0, &(0x7f0000000200)="bc72", 0x2) kernel console output (not intermixed with test programs): 121.624246][ T6432] FAT-fs (loop4): Directory bread(block 67) failed [ 121.644230][ T6432] FAT-fs (loop4): Directory bread(block 68) failed [ 121.660447][ T6432] FAT-fs (loop4): Directory bread(block 69) failed [ 121.687299][ T6405] loop2: detected capacity change from 0 to 32768 [ 121.688321][ T6432] FAT-fs (loop4): Directory bread(block 70) failed [ 121.758276][ T6432] FAT-fs (loop4): Directory bread(block 71) failed [ 121.779972][ T6432] FAT-fs (loop4): Directory bread(block 72) failed [ 121.864338][ T6432] FAT-fs (loop4): Directory bread(block 73) failed [ 121.930185][ T6405] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 121.941871][ T6432] syz-executor.4: attempt to access beyond end of device [ 121.941871][ T6432] loop4: rw=0, sector=1160, nr_sectors = 4 limit=256 [ 122.189802][ T6405] XFS (loop2): Ending clean mount [ 122.274196][ T6405] XFS (loop2): Quotacheck needed: Please wait. [ 122.390210][ T6430] loop1: detected capacity change from 0 to 32768 [ 122.402944][ T6430] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6430) [ 122.423170][ T6430] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 122.444449][ T6430] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 122.457934][ T6405] XFS (loop2): Quotacheck: Done. [ 122.468387][ T6430] BTRFS info (device loop1): using free-space-tree [ 122.537937][ T6426] loop3: detected capacity change from 0 to 32768 [ 122.688746][ T6441] syz-executor.0 (6441) used greatest stack depth: 18352 bytes left [ 122.751142][ T5437] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 122.940953][ T6426] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 122.984753][ T6426] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 123.048046][ T6467] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 123.148591][ T5441] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 123.206930][ T6426] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 123.256060][ T5179] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 123.265015][ T5179] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 123.450919][ T5179] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 185ms [ 123.481740][ T5179] gfs2: fsid=syz:syz.0: jid=0: Done [ 123.497620][ T6426] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 123.621355][ T6475] loop2: detected capacity change from 0 to 4096 [ 123.638047][ T6475] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 123.778102][ T6475] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 123.817360][ T6475] ntfs3: loop2: Failed to load $Extend (-22). [ 123.842946][ T6475] ntfs3: loop2: Failed to initialize $Extend. [ 124.288548][ T6494] loop2: detected capacity change from 0 to 64 [ 124.348791][ T29] audit: type=1800 audit(1717310955.003:29): pid=6494 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 124.579520][ T6502] ufs: You didn't specify the type of your ufs filesystem [ 124.579520][ T6502] [ 124.579520][ T6502] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 124.579520][ T6502] [ 124.579520][ T6502] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 124.656597][ T6497] ebtables: ebtables: counters copy to user failed while replacing table [ 124.680514][ T6502] ufs: ufstype=old is supported read-only [ 124.688274][ T6502] syz-executor.2: attempt to access beyond end of device [ 124.688274][ T6502] loop2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 125.063881][ T6482] loop1: detected capacity change from 0 to 32768 [ 125.098719][ T6482] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6482) [ 125.173091][ T6482] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 125.213072][ T6482] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 125.236124][ T6488] loop4: detected capacity change from 0 to 32768 [ 125.308584][ T6488] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 125.497603][ T6532] trusted_key: encrypted_key: hex blob is missing [ 125.503255][ T6482] BTRFS info (device loop1): rebuilding free space tree [ 125.521978][ T6490] loop0: detected capacity change from 0 to 32768 [ 125.590353][ T6488] XFS (loop4): Ending clean mount [ 125.617924][ T6482] BTRFS info (device loop1): disabling free space tree [ 125.624619][ T6488] XFS (loop4): Quotacheck needed: Please wait. [ 125.640608][ T6482] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 125.687695][ T6482] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 125.739034][ T6488] XFS (loop4): Quotacheck: Done. [ 125.742061][ T6536] loop3: detected capacity change from 0 to 2048 [ 125.796740][ T6536] loop3: p1 < > p4 [ 125.809611][ T6536] loop3: p4 size 8388608 extends beyond EOD, truncated [ 125.954953][ T6536] __loop_clr_fd: partition scan of loop3 failed (rc=-16) [ 125.961660][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 125.989351][ T5390] I/O error, dev loop3, sector 256 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 126.035109][ T6539] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.035831][ T5390] I/O error, dev loop3, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.047674][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.084358][ T5233] Buffer I/O error on dev loop3p1, logical block 0, async page read [ 126.123369][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.129126][ T5390] Buffer I/O error on dev loop3p4, logical block 32, async page read [ 126.148494][ T5233] Buffer I/O error on dev loop3p1, logical block 0, async page read [ 126.157860][ T6539] Buffer I/O error on dev loop3p4, logical block 0, lost async page write [ 126.184204][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.193399][ T5233] Buffer I/O error on dev loop3p1, logical block 0, async page read [ 126.211884][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.222613][ T5233] Buffer I/O error on dev loop3p1, logical block 0, async page read [ 126.230276][ T5097] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 126.252890][ T5233] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.296178][ T5233] Buffer I/O error on dev loop3p1, logical block 0, async page read [ 126.397921][ T1021] I/O error, dev loop3, sector 8 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 126.410487][ T1021] Buffer I/O error on dev loop3p4, logical block 1, lost async page write [ 126.422122][ T1021] Buffer I/O error on dev loop3p4, logical block 2, lost async page write [ 126.432373][ T1021] Buffer I/O error on dev loop3p4, logical block 3, lost async page write [ 126.548679][ T5441] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 126.747543][ T6506] loop2: detected capacity change from 0 to 32768 [ 126.775824][ T5115] udevd[5115]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 126.792784][ T6506] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (6506) [ 126.854965][ T6506] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 126.887921][ T6506] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 126.927964][ T6506] BTRFS info (device loop2): using free-space-tree [ 127.362161][ T6573] loop4: detected capacity change from 0 to 256 [ 127.368313][ T6574] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 127.416757][ T6573] exfat: Deprecated parameter 'utf8' [ 127.422134][ T6573] exfat: Deprecated parameter 'namecase' [ 127.507272][ T6573] exfat: Deprecated parameter 'namecase' [ 127.513064][ T6573] exfat: Deprecated parameter 'utf8' [ 127.555495][ T6573] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 127.598151][ T6570] loop1: detected capacity change from 0 to 4096 [ 127.620336][ T5437] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 127.626398][ T6570] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 127.736499][ T6570] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 127.752642][ T6570] ntfs3: loop1: Failed to load $Extend (-22). [ 127.760243][ T6570] ntfs3: loop1: Failed to initialize $Extend. [ 128.696844][ T6583] ieee802154 phy0 wpan0: encryption failed: -22 [ 128.930129][ T6593] loop1: detected capacity change from 0 to 64 [ 129.146126][ T5149] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 129.353476][ T5149] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 129.375126][ T5149] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 129.396786][ T5149] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 129.424400][ T5149] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 129.448442][ T5149] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.481400][ T5149] usb 5-1: config 0 descriptor?? [ 129.573595][ T6586] loop2: detected capacity change from 0 to 32768 [ 129.621141][ T6586] add_index: next_index = 0. Resetting! [ 129.632114][ T6586] non-latin1 character 0x3ff found in JFS file name [ 129.645199][ T6586] mount with iocharset=utf8 to access [ 129.692703][ T6587] loop0: detected capacity change from 0 to 32768 [ 129.714623][ T6587] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6587) [ 129.758258][ T6587] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 129.821619][ T6587] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 129.956108][ T5149] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 129.968346][ T5149] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 129.983676][ T6620] loop3: detected capacity change from 0 to 256 [ 130.000417][ T5149] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 130.103417][ T6620] exfat: Deprecated parameter 'utf8' [ 130.139682][ T6587] BTRFS info (device loop0): rebuilding free space tree [ 130.154389][ T6620] exfat: Deprecated parameter 'namecase' [ 130.160186][ T6620] exfat: Deprecated parameter 'namecase' [ 130.206248][ T6620] exfat: Deprecated parameter 'utf8' [ 130.218801][ T6587] BTRFS info (device loop0): disabling free space tree [ 130.237122][ T6587] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 130.262546][ T6587] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 130.283838][ T6620] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 130.397372][ T5149] usb 5-1: USB disconnect, device number 2 [ 130.436859][ T6625] loop2: detected capacity change from 0 to 512 [ 130.544850][ T6625] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 130.569982][ T6625] ext4 filesystem being mounted at /root/syzkaller-testdir2157002006/syzkaller.deESif/29/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 130.647606][ T5100] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 130.663122][ T6625] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents [ 130.813702][ T6625] EXT4-fs error (device loop2): ext4_dirty_inode:5935: inode #2: comm syz-executor.2: mark_inode_dirty error [ 130.846301][ T6625] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents [ 130.894270][ T6625] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz-executor.2: mark_inode_dirty error [ 131.077085][ T29] audit: type=1804 audit(1717310961.753:30): pid=6625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2157002006/syzkaller.deESif/29/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 131.193880][ T29] audit: type=1804 audit(1717310961.803:31): pid=6625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2157002006/syzkaller.deESif/29/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 131.237348][ T6634] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 131.251084][ T6634] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 131.379218][ T5437] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.541521][ T6637] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 131.630809][ T6639] loop4: detected capacity change from 0 to 2048 [ 131.756427][ T6641] loop2: detected capacity change from 0 to 4096 [ 131.793744][ T6641] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 131.823518][ T6644] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 131.863820][ T6630] loop3: detected capacity change from 0 to 32768 [ 131.883964][ T6639] syz-executor.4: attempt to access beyond end of device [ 131.883964][ T6639] loop4: rw=0, sector=343245196361800, nr_sectors = 2 limit=2048 [ 131.897140][ T6630] btrfs: Deprecated parameter 'usebackuproot' [ 131.936756][ T6639] NILFS (loop4): I/O error reading meta-data file (ino=6, block-offset=1) [ 131.940034][ T6630] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 131.965787][ T6641] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 131.984343][ T6641] ntfs3: loop2: Failed to load $Extend (-22). [ 131.990838][ T6641] ntfs3: loop2: Failed to initialize $Extend. [ 131.998401][ T6630] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (6630) [ 132.020630][ T6643] loop0: detected capacity change from 0 to 4096 [ 132.068704][ T6643] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 132.081167][ T6630] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 132.112587][ T6630] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 132.240293][ T6643] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 132.280070][ T6643] ntfs3: loop0: Failed to load $Extend (-22). [ 132.316884][ T6630] BTRFS info (device loop3): rebuilding free space tree [ 132.339455][ T6643] ntfs3: loop0: Failed to initialize $Extend. [ 132.391542][ T6630] BTRFS info (device loop3): disabling free space tree [ 132.428834][ T6630] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 132.458589][ T6630] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 132.499994][ T6667] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 133.572338][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.585465][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.775736][ T5108] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 133.876914][ T6682] loop2: detected capacity change from 0 to 512 [ 134.077039][ T6682] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.160522][ T6682] ext4 filesystem being mounted at /root/syzkaller-testdir2157002006/syzkaller.deESif/34/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 134.289867][ T6690] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. [ 134.335694][ T6682] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents [ 134.383456][ T6682] EXT4-fs error (device loop2): ext4_dirty_inode:5935: inode #2: comm syz-executor.2: mark_inode_dirty error [ 134.412401][ T6682] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz-executor.2: corrupted inode contents [ 134.478448][ T6682] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz-executor.2: mark_inode_dirty error [ 134.763330][ T29] audit: type=1804 audit(1717310965.433:32): pid=6703 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2157002006/syzkaller.deESif/34/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 134.833301][ T58] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 134.928685][ T29] audit: type=1804 audit(1717310965.473:33): pid=6703 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2157002006/syzkaller.deESif/34/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 135.074153][ T58] usb 2-1: Using ep0 maxpacket: 16 [ 135.098500][ T58] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 135.138980][ T5437] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.149372][ T58] usb 2-1: config 0 has no interface number 0 [ 135.178127][ T58] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 135.242468][ T58] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 135.302325][ T58] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 135.327195][ T58] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 135.337957][ T58] usb 2-1: Product: syz [ 135.342326][ T58] usb 2-1: SerialNumber: syz [ 135.360238][ T58] usb 2-1: config 0 descriptor?? [ 135.377735][ T58] cm109 2-1:0.8: invalid payload size 0, expected 4 [ 135.418426][ T58] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input7 [ 135.526903][ T6711] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 135.716498][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 136.115835][ T6720] xt_TPROXY: Can be used only with -p tcp or -p udp [ 136.356983][ T6728] loop4: detected capacity change from 0 to 2048 [ 136.392390][ T6732] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.489324][ T6728] syz-executor.4: attempt to access beyond end of device [ 136.489324][ T6728] loop4: rw=0, sector=343245196361800, nr_sectors = 2 limit=2048 [ 136.489422][ T6728] NILFS (loop4): I/O error reading meta-data file (ino=6, block-offset=1) [ 136.648339][ T6735] loop3: detected capacity change from 0 to 4096 [ 136.723808][ T6742] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.730277][ T6741] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 136.988431][ T5115] blk_print_req_error: 260 callbacks suppressed [ 136.988449][ T5115] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 138.018788][ T6750] loop0: detected capacity change from 0 to 512 [ 138.106501][ T6750] EXT4-fs (sda1): changing journal_checksum during remount not supported; ignoring [ 138.106565][ T6750] EXT4-fs (sda1): re-mounted 5941fea2-f5fa-4b4e-b5ef-9af118b27b95 r/w. Quota mode: journalled. [ 138.231675][ T6750] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.0'. [ 138.799487][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.806989][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.814224][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.821471][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.828632][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.828980][ T6759] mmap: syz-executor.0 (6759): VmData 37380096 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 138.835817][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.855724][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.862834][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.869930][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.877043][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 138.914479][ T58] usb 2-1: USB disconnect, device number 3 [ 138.914579][ C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 139.056491][ T58] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 139.159315][ T6744] loop4: detected capacity change from 0 to 32768 [ 139.767590][ T29] audit: type=1326 audit(1717310970.443:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 139.868951][ T29] audit: type=1326 audit(1717310970.463:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.064975][ T29] audit: type=1326 audit(1717310970.483:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.822698][ T29] audit: type=1326 audit(1717310970.483:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.845157][ T29] audit: type=1326 audit(1717310970.483:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.903092][ T29] audit: type=1326 audit(1717310970.513:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.944252][ T29] audit: type=1326 audit(1717310970.513:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 140.980297][ T29] audit: type=1326 audit(1717310970.513:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 141.021774][ T29] audit: type=1326 audit(1717310970.513:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6770 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd2507cee9 code=0x7ffc0000 [ 141.211912][ T6782] loop0: detected capacity change from 0 to 512 [ 141.281720][ T6782] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: casefold flag without casefold feature [ 141.301390][ T6782] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 141.345131][ T6782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.466158][ T5100] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.574227][ T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 141.797900][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 141.822778][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 141.865534][ T6800] loop1: detected capacity change from 0 to 128 [ 141.874185][ T9] usb 4-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00 [ 141.883264][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 141.904874][ T6800] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 141.945276][ T9] usb 4-1: config 0 descriptor?? [ 141.947240][ T6800] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 143.152584][ T9] magicmouse 0003:05AC:0269.0002: hidraw0: USB HID v0.00 Device [HID 05ac:0269] on usb-dummy_hcd.3-1/input0 [ 143.245966][ T5179] usb 4-1: USB disconnect, device number 3 [ 143.557333][ T58] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 143.612537][ T6797] loop4: detected capacity change from 0 to 40427 [ 143.652238][ T6797] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 143.660142][ T6797] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 143.685517][ T6797] F2FS-fs (loop4): invalid crc value [ 143.714257][ T6797] F2FS-fs (loop4): Found nat_bits in checkpoint [ 143.767163][ T58] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 520 [ 143.780157][ T58] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 143.810544][ T6797] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 143.821616][ T6817] fuse: Invalid rootmode [ 143.825822][ T6797] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 143.830141][ T58] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 143.867731][ T29] audit: type=1804 audit(1717310974.533:43): pid=6817 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir2108614124/syzkaller.fmW4GS/33/file0" dev="sda1" ino=1965 res=1 errno=0 [ 143.870529][ T58] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 143.948825][ T58] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 143.962712][ T58] usb 3-1: SerialNumber: syz [ 144.010706][ T6808] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 144.029030][ T6808] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 144.126718][ T5097] syz-executor.4: attempt to access beyond end of device [ 144.126718][ T5097] loop4: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 144.133938][ T6810] loop0: detected capacity change from 0 to 32768 [ 144.164774][ T5097] syz-executor.4: attempt to access beyond end of device [ 144.164774][ T5097] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 144.211430][ T6810] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6810) [ 144.240489][ T5097] syz-executor.4: attempt to access beyond end of device [ 144.240489][ T5097] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 144.275014][ T6810] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 144.298928][ T5097] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 144.310576][ T6808] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 144.324224][ T6810] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 144.332906][ T6810] BTRFS info (device loop0): using free-space-tree [ 144.351963][ T6808] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 144.610510][ T58] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -71 [ 144.668702][ T58] usb 3-1: USB disconnect, device number 2 [ 144.747692][ T5100] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 144.960943][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 144.960960][ T29] audit: type=1326 audit(1717310975.633:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.083809][ T29] audit: type=1326 audit(1717310975.663:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.174314][ T29] audit: type=1326 audit(1717310975.663:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.205793][ T29] audit: type=1326 audit(1717310975.663:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.283564][ T29] audit: type=1326 audit(1717310975.673:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.343130][ T5731] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.353939][ T29] audit: type=1326 audit(1717310975.673:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.382681][ T29] audit: type=1326 audit(1717310975.673:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4a7cee9 code=0x7ffc0000 [ 145.412265][ T29] audit: type=1326 audit(1717310975.673:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23c4a7a667 code=0x7ffc0000 [ 145.435983][ T29] audit: type=1326 audit(1717310975.673:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f23c4a40329 code=0x7ffc0000 [ 145.458199][ T29] audit: type=1326 audit(1717310975.673:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6844 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23c4a7a667 code=0x7ffc0000 [ 145.498587][ T5731] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.585289][ T5731] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.651952][ T5731] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.874638][ T5731] bridge_slave_1: left allmulticast mode [ 145.887432][ T5731] bridge_slave_1: left promiscuous mode [ 145.909650][ T5731] bridge0: port 2(bridge_slave_1) entered disabled state [ 145.928845][ T5731] bridge_slave_0: left allmulticast mode [ 145.947507][ T5731] bridge_slave_0: left promiscuous mode [ 145.960237][ T5731] bridge0: port 1(bridge_slave_0) entered disabled state [ 146.392134][ T4478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 146.407067][ T4478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 146.416682][ T4478] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 146.425297][ T4478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 146.433036][ T4478] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 146.440577][ T4478] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 146.908615][ T6859] loop3: detected capacity change from 0 to 40427 [ 146.950361][ T6859] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 146.984187][ T6859] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 147.032356][ T6859] F2FS-fs (loop3): Found nat_bits in checkpoint [ 147.049058][ T6854] loop2: detected capacity change from 0 to 32768 [ 147.094191][ T5731] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 147.109741][ T6856] loop1: detected capacity change from 0 to 40427 [ 147.119589][ T5731] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 147.134609][ T6854] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 147.150087][ T5731] bond0 (unregistering): Released all slaves [ 147.163626][ T6856] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 147.176729][ T6859] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 147.184759][ T6859] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 147.193019][ T6856] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 147.233604][ T6856] F2FS-fs (loop1): invalid crc value [ 147.320335][ T6854] XFS (loop2): Ending clean mount [ 147.332535][ T6854] XFS (loop2): Quotacheck needed: Please wait. [ 147.411264][ T6856] F2FS-fs (loop1): Found nat_bits in checkpoint [ 147.448029][ T6854] XFS (loop2): Quotacheck: Done. [ 147.522459][ T6886] ptrace attach of "/root/syz-executor.0 exec"[5100] was attempted by ""[6886] [ 147.625060][ T6886] loop0: detected capacity change from 0 to 1024 [ 148.124231][ T5437] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 148.252010][ T6856] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 148.300568][ T6856] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 148.544668][ T4478] Bluetooth: hci0: command tx timeout [ 148.617042][ T5441] syz-executor.1: attempt to access beyond end of device [ 148.617042][ T5441] loop1: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 148.646548][ T5441] syz-executor.1: attempt to access beyond end of device [ 148.646548][ T5441] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 148.699702][ T6864] chnl_net:caif_netlink_parms(): no params data found [ 148.716599][ T5441] syz-executor.1: attempt to access beyond end of device [ 148.716599][ T5441] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 148.741136][ T5441] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 148.790242][ T5731] hsr_slave_0: left promiscuous mode [ 148.804504][ T5731] hsr_slave_1: left promiscuous mode [ 148.812841][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 148.825119][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 148.838247][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 148.850827][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 148.872892][ T5731] veth1_macvtap: left promiscuous mode [ 148.879009][ T5731] veth0_macvtap: left promiscuous mode [ 148.885192][ T5731] veth1_vlan: left promiscuous mode [ 148.891330][ T5731] veth0_vlan: left promiscuous mode [ 148.912454][ T6895] fuse: Invalid rootmode [ 149.570597][ T5731] team0 (unregistering): Port device team_slave_1 removed [ 149.621957][ T5731] team0 (unregistering): Port device team_slave_0 removed [ 149.674511][ T5150] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 149.894235][ T5150] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 520 [ 149.915108][ T5150] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 149.940628][ T5150] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 149.966025][ T5150] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 149.977420][ T5150] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 149.985668][ T5150] usb 4-1: SerialNumber: syz [ 150.002923][ T6901] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 150.020348][ T6901] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 150.217974][ T6864] bridge0: port 1(bridge_slave_0) entered blocking state [ 150.225654][ T6864] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.235950][ T6864] bridge_slave_0: entered allmulticast mode [ 150.243899][ T6864] bridge_slave_0: entered promiscuous mode [ 150.256399][ T6864] bridge0: port 2(bridge_slave_1) entered blocking state [ 150.263985][ T6901] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 150.272086][ T6901] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 150.280107][ T6864] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.290317][ T6864] bridge_slave_1: entered allmulticast mode [ 150.313799][ T6864] bridge_slave_1: entered promiscuous mode [ 150.403466][ T6864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 150.446422][ T6864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 150.505774][ T5150] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -71 [ 150.554451][ T5150] usb 4-1: USB disconnect, device number 4 [ 150.624262][ T4478] Bluetooth: hci0: command tx timeout [ 150.653902][ T6864] team0: Port device team_slave_0 added [ 150.673369][ T6864] team0: Port device team_slave_1 added [ 150.709435][ T6864] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 150.716684][ T6864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 150.748178][ T6864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 150.761381][ T6864] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 150.768542][ T6864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 150.794945][ T6864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 150.838522][ T6864] hsr_slave_0: entered promiscuous mode [ 150.845494][ T6864] hsr_slave_1: entered promiscuous mode [ 150.976111][ T5731] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.096582][ T6914] loop2: detected capacity change from 0 to 2048 [ 151.119003][ T5731] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.143531][ T6914] udf: Unknown parameter '0xffffffffffffffff' [ 151.235130][ T5731] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.342162][ T5107] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 151.356079][ T5107] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 151.366031][ T5107] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 151.376099][ T6920] loop0: detected capacity change from 0 to 256 [ 151.385042][ T5107] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 151.393173][ T5107] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 151.400949][ T5107] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 151.479878][ T6920] FAT-fs (loop0): Directory bread(block 64) failed [ 151.489490][ T6920] FAT-fs (loop0): Directory bread(block 65) failed [ 151.498617][ T6920] FAT-fs (loop0): Directory bread(block 66) failed [ 151.519888][ T6920] FAT-fs (loop0): Directory bread(block 67) failed [ 151.562131][ T6920] FAT-fs (loop0): Directory bread(block 68) failed [ 151.595390][ T6920] FAT-fs (loop0): Directory bread(block 69) failed [ 151.614466][ T6920] FAT-fs (loop0): Directory bread(block 70) failed [ 151.621992][ T6920] FAT-fs (loop0): Directory bread(block 71) failed [ 151.623883][ T5731] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.629117][ T6920] FAT-fs (loop0): Directory bread(block 72) failed [ 151.658367][ T6920] FAT-fs (loop0): Directory bread(block 73) failed [ 151.733102][ T6923] ptrace attach of "/root/syz-executor.3 exec"[5108] was attempted by ""[6923] [ 151.819194][ T6923] loop3: detected capacity change from 0 to 1024 [ 152.535893][ T5731] bridge_slave_1: left allmulticast mode [ 152.542078][ T5731] bridge_slave_1: left promiscuous mode [ 152.548734][ T5731] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.569500][ T5731] bridge_slave_0: left allmulticast mode [ 152.576004][ T5731] bridge_slave_0: left promiscuous mode [ 152.582294][ T5731] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.704393][ T4478] Bluetooth: hci0: command tx timeout [ 153.108237][ T5731] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 153.144801][ T5731] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 153.158026][ T5731] bond0 (unregistering): Released all slaves [ 153.296830][ T6925] loop2: detected capacity change from 0 to 40427 [ 153.339996][ T6925] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 153.355423][ T6925] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 153.386779][ T6925] F2FS-fs (loop2): invalid crc value [ 153.409295][ T6925] F2FS-fs (loop2): Found nat_bits in checkpoint [ 153.524738][ T6864] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 153.547479][ T6864] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 153.598674][ T4478] Bluetooth: hci1: command tx timeout [ 153.614322][ T6864] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 153.649954][ T6864] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 153.668991][ T6925] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 153.695422][ T6925] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 153.911508][ T5731] hsr_slave_0: left promiscuous mode [ 153.923834][ T5731] hsr_slave_1: left promiscuous mode [ 153.931065][ T5437] syz-executor.2: attempt to access beyond end of device [ 153.931065][ T5437] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 153.946237][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 153.953681][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 153.961018][ T5437] syz-executor.2: attempt to access beyond end of device [ 153.961018][ T5437] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 153.976795][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 153.985385][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 154.066955][ T5731] veth1_macvtap: left promiscuous mode [ 154.086603][ T5731] veth0_macvtap: left promiscuous mode [ 154.094673][ T5731] veth1_vlan: left promiscuous mode [ 154.097077][ T5437] syz-executor.2: attempt to access beyond end of device [ 154.097077][ T5437] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 154.100109][ T5731] veth0_vlan: left promiscuous mode [ 154.126354][ T5437] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 154.209981][ T6931] loop3: detected capacity change from 0 to 32768 [ 154.455501][ T6931] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 154.488654][ T6931] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 154.586475][ T6931] bcachefs (loop3): alloc_read... done [ 154.600428][ T6931] bcachefs (loop3): stripes_read... done [ 154.607999][ T6931] bcachefs (loop3): snapshots_read... done [ 154.642560][ T6931] bcachefs (loop3): journal_replay... done [ 154.651502][ T6931] bcachefs (loop3): resume_logged_ops... done [ 154.658331][ T6931] bcachefs (loop3): going read-write [ 154.708620][ T6931] bcachefs (loop3): done starting filesystem [ 154.784316][ T4478] Bluetooth: hci0: command tx timeout [ 154.812599][ T5108] bcachefs (loop3): shutting down [ 154.832835][ T5108] bcachefs (loop3): going read-only [ 154.845790][ T5108] bcachefs (loop3): finished waiting for writes to stop [ 154.881729][ T5108] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10 [ 154.898621][ T5108] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 154.928116][ T5108] bcachefs (loop3): shutdown complete, journal seq 11 [ 154.937551][ T5108] bcachefs (loop3): marking filesystem clean [ 154.984540][ T5108] bcachefs (loop3): shutdown complete [ 155.175951][ T5731] team0 (unregistering): Port device team_slave_1 removed [ 155.269973][ T5731] team0 (unregistering): Port device team_slave_0 removed [ 155.670594][ T5107] Bluetooth: hci1: command tx timeout [ 155.926168][ T6956] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 155.955364][ T6918] chnl_net:caif_netlink_parms(): no params data found [ 156.101070][ T6918] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.108372][ T6918] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.116429][ T6918] bridge_slave_0: entered allmulticast mode [ 156.123666][ T6918] bridge_slave_0: entered promiscuous mode [ 156.133641][ T6918] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.144169][ T6918] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.151395][ T6918] bridge_slave_1: entered allmulticast mode [ 156.165611][ T6918] bridge_slave_1: entered promiscuous mode [ 156.277364][ T6918] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 156.300318][ T6966] loop3: detected capacity change from 0 to 2048 [ 156.317944][ T6918] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 156.329672][ T6966] udf: Unknown parameter '0xffffffffffffffff' [ 156.431917][ T6918] team0: Port device team_slave_0 added [ 156.450391][ T6918] team0: Port device team_slave_1 added [ 156.561127][ T6918] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 156.578457][ T6918] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.642151][ T6918] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 156.657433][ T6918] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 156.672854][ T6918] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.724313][ T6918] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 156.751623][ T6864] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.884647][ T5731] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 156.991925][ T6864] 8021q: adding VLAN 0 to HW filter on device team0 [ 157.000251][ T4478] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 157.012798][ T4478] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 157.023628][ T4478] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 157.033768][ T4478] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 157.053115][ T4478] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 157.060642][ T4478] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 157.084627][ T5731] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.111684][ T6975] ipip0: entered promiscuous mode [ 157.121391][ T6918] hsr_slave_0: entered promiscuous mode [ 157.131660][ T6918] hsr_slave_1: entered promiscuous mode [ 157.139208][ T6918] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 157.157151][ T6918] Cannot create hsr debugfs directory [ 157.167511][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.174640][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.197670][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.204873][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.262060][ T5731] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.290896][ T6981] loop3: detected capacity change from 0 to 2048 [ 157.319634][ T6981] EXT4-fs: Ignoring removed orlov option [ 157.377252][ T6981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.432514][ T5731] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.509963][ T6981] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 157.574898][ T6981] EXT4-fs (loop3): Remounting filesystem read-only [ 157.665721][ T5108] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.744392][ T4478] Bluetooth: hci1: command tx timeout [ 157.922066][ T5731] bridge_slave_1: left allmulticast mode [ 157.929579][ T5731] bridge_slave_1: left promiscuous mode [ 157.942879][ T5731] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.972158][ T5731] bridge_slave_0: left allmulticast mode [ 157.978489][ T5731] bridge_slave_0: left promiscuous mode [ 157.987227][ T5731] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.468598][ T5731] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 158.486308][ T5731] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 158.529786][ T5731] bond0 (unregistering): Released all slaves [ 158.840078][ T6991] loop3: detected capacity change from 0 to 32768 [ 158.969656][ T5731] hsr_slave_0: left promiscuous mode [ 158.993716][ T5731] hsr_slave_1: left promiscuous mode [ 159.013832][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 159.023417][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 159.029352][ T6991] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 159.045988][ T5731] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 159.053421][ T5731] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 159.058655][ T6991] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 159.084862][ T5731] veth1_macvtap: left promiscuous mode [ 159.090547][ T5731] veth0_macvtap: left promiscuous mode [ 159.097136][ T5731] veth1_vlan: left promiscuous mode [ 159.102612][ T5731] veth0_vlan: left promiscuous mode [ 159.107085][ T6991] bcachefs (loop3): alloc_read... done [ 159.108916][ T4478] Bluetooth: hci3: command tx timeout [ 159.122494][ T6991] bcachefs (loop3): stripes_read... done [ 159.132368][ T6991] bcachefs (loop3): snapshots_read... done [ 159.149029][ T6991] bcachefs (loop3): journal_replay... done [ 159.158592][ T6991] bcachefs (loop3): resume_logged_ops... done [ 159.169012][ T6991] bcachefs (loop3): going read-write [ 159.184858][ T6991] bcachefs (loop3): done starting filesystem [ 159.351657][ T5108] bcachefs (loop3): shutting down [ 159.357538][ T5108] bcachefs (loop3): going read-only [ 159.362830][ T5108] bcachefs (loop3): finished waiting for writes to stop [ 159.379514][ T5108] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10 [ 159.392291][ T5108] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 159.410818][ T5108] bcachefs (loop3): shutdown complete, journal seq 11 [ 159.423848][ T5108] bcachefs (loop3): marking filesystem clean [ 159.454962][ T5108] bcachefs (loop3): shutdown complete [ 159.774245][ T7010] loop0: detected capacity change from 0 to 32768 [ 159.807901][ T7010] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7010) [ 159.830184][ T4478] Bluetooth: hci1: command tx timeout [ 159.875979][ T7010] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 159.890621][ T7010] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 159.899672][ T7010] BTRFS info (device loop0): disk space caching is enabled [ 159.958393][ T7010] BTRFS info (device loop0): rebuilding free space tree [ 159.987565][ T7010] BTRFS info (device loop0): disabling free space tree [ 159.996133][ T7010] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 160.006466][ T7010] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 160.050496][ T5731] team0 (unregistering): Port device team_slave_1 removed [ 160.140251][ T5731] team0 (unregistering): Port device team_slave_0 removed [ 160.285472][ T7028] BTRFS info (device loop0 state M): max_inline set to 2 [ 160.475802][ T5100] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 160.811604][ T6864] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 160.830805][ T6976] chnl_net:caif_netlink_parms(): no params data found [ 161.166820][ T6976] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.179941][ T6976] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.188023][ T4478] Bluetooth: hci3: command tx timeout [ 161.195405][ T6976] bridge_slave_0: entered allmulticast mode [ 161.202752][ T6976] bridge_slave_0: entered promiscuous mode [ 161.213867][ T6976] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.222468][ T6976] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.230042][ T6976] bridge_slave_1: entered allmulticast mode [ 161.240994][ T6976] bridge_slave_1: entered promiscuous mode [ 161.248130][ T7046] loop3: detected capacity change from 0 to 164 [ 161.258283][ T6918] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 161.278696][ T7046] iso9660: Unknown parameter '00000000000000000000' [ 161.288507][ T6918] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 161.328187][ T7048] loop0: detected capacity change from 0 to 2048 [ 161.355341][ T6918] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 161.371518][ T7048] udf: Unknown parameter '0xffffffffffffffff' [ 161.373912][ T6918] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 161.436959][ T6976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 161.458883][ T6976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 161.542767][ T6976] team0: Port device team_slave_0 added [ 161.567000][ T6976] team0: Port device team_slave_1 added [ 161.648964][ T6976] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 161.658085][ T6976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 161.686342][ T6976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 161.699185][ T6976] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 161.710777][ T6976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 161.738299][ T6976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 161.761535][ T6864] veth0_vlan: entered promiscuous mode [ 161.807772][ T6976] hsr_slave_0: entered promiscuous mode [ 161.815028][ T6976] hsr_slave_1: entered promiscuous mode [ 161.821096][ T6976] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 161.828915][ T6976] Cannot create hsr debugfs directory [ 161.840470][ T6864] veth1_vlan: entered promiscuous mode [ 162.027168][ T6864] veth0_macvtap: entered promiscuous mode [ 162.038617][ T6918] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.049669][ T6864] veth1_macvtap: entered promiscuous mode [ 162.112566][ T6918] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.123334][ T6864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 162.152066][ T6864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 162.163319][ T6864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 162.174370][ T6864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 162.185767][ T6864] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 162.196473][ T6864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 162.208417][ T6864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 162.219651][ T6864] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 162.230583][ T6864] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 162.241761][ T6864] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 162.265411][ T784] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.272493][ T784] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.291888][ T6864] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.300881][ T6864] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.310529][ T6864] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.324207][ T6864] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.348859][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.356060][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.471473][ T7053] loop3: detected capacity change from 0 to 128 [ 162.566147][ T5149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 162.594562][ T5149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 162.625911][ T7053] syz-executor.3: attempt to access beyond end of device [ 162.625911][ T7053] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 162.676955][ T7053] buffer_io_error: 257 callbacks suppressed [ 162.676972][ T7053] Buffer I/O error on dev loop3, logical block 3245768, async page read [ 162.689846][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 162.719508][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 162.725011][ T7053] syz-executor.3: attempt to access beyond end of device [ 162.725011][ T7053] loop3: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 162.758262][ T6976] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 162.789509][ T7053] Buffer I/O error on dev loop3, logical block 8833403, async page read [ 162.806633][ T6976] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 162.823252][ T6976] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 162.831148][ T7053] syz-executor.3: attempt to access beyond end of device [ 162.831148][ T7053] loop3: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 162.850328][ T6976] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 162.901844][ T7053] Buffer I/O error on dev loop3, logical block 13269809, async page read [ 162.942174][ T7053] syz-executor.3: attempt to access beyond end of device [ 162.942174][ T7053] loop3: rw=0, sector=16147212, nr_sectors = 2 limit=128 [ 162.995257][ T7053] Buffer I/O error on dev loop3, logical block 8073606, async page read [ 163.029470][ T6918] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 163.034602][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.034602][ T7053] loop3: rw=0, sector=6491542, nr_sectors = 2 limit=128 [ 163.071949][ T7053] Buffer I/O error on dev loop3, logical block 3245771, async page read [ 163.132257][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.132257][ T7053] loop3: rw=0, sector=17668342, nr_sectors = 2 limit=128 [ 163.189130][ T7053] Buffer I/O error on dev loop3, logical block 8834171, async page read [ 163.207295][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.207295][ T7053] loop3: rw=0, sector=26932834, nr_sectors = 2 limit=128 [ 163.226593][ T7053] Buffer I/O error on dev loop3, logical block 13466417, async page read [ 163.265782][ T4478] Bluetooth: hci3: command tx timeout [ 163.277009][ T6918] veth0_vlan: entered promiscuous mode [ 163.281186][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.281186][ T7053] loop3: rw=0, sector=16147212, nr_sectors = 2 limit=128 [ 163.297721][ T7053] Buffer I/O error on dev loop3, logical block 8073606, async page read [ 163.309008][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.309008][ T7053] loop3: rw=0, sector=6491548, nr_sectors = 2 limit=128 [ 163.322028][ T7061] serio: Serial port pts0 [ 163.323037][ T7053] Buffer I/O error on dev loop3, logical block 3245774, async page read [ 163.335892][ T7053] syz-executor.3: attempt to access beyond end of device [ 163.335892][ T7053] loop3: rw=0, sector=17669878, nr_sectors = 2 limit=128 [ 163.351980][ T7053] Buffer I/O error on dev loop3, logical block 8834939, async page read [ 163.361057][ T6918] veth1_vlan: entered promiscuous mode [ 163.391263][ T6976] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.471633][ T6976] 8021q: adding VLAN 0 to HW filter on device team0 [ 163.542441][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.549646][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.573903][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.581155][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.610504][ T6918] veth0_macvtap: entered promiscuous mode [ 163.659403][ T6918] veth1_macvtap: entered promiscuous mode [ 163.723748][ T6976] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 163.757813][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.771691][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.798127][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.821170][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.849994][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.869349][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.881363][ T6918] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 163.919589][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.944343][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.970205][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.981942][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.002859][ T6918] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.020650][ T6918] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.032755][ T6918] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 164.066740][ T6918] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.087078][ T6918] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.118576][ T6918] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.139700][ T6918] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.230125][ T7074] loop4: detected capacity change from 0 to 256 [ 164.339351][ T7074] FAT-fs (loop4): Directory bread(block 64) failed [ 164.360057][ T7074] FAT-fs (loop4): Directory bread(block 65) failed [ 164.368360][ T6976] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.379199][ T7074] FAT-fs (loop4): Directory bread(block 66) failed [ 164.390797][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 164.400323][ T7074] FAT-fs (loop4): Directory bread(block 67) failed [ 164.409451][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 164.415739][ T7074] FAT-fs (loop4): Directory bread(block 68) failed [ 164.424726][ T7074] FAT-fs (loop4): Directory bread(block 69) failed [ 164.443320][ T7074] FAT-fs (loop4): Directory bread(block 70) failed [ 164.459711][ T7074] FAT-fs (loop4): Directory bread(block 71) failed [ 164.478037][ T7074] FAT-fs (loop4): Directory bread(block 72) failed [ 164.492513][ T7074] FAT-fs (loop4): Directory bread(block 73) failed [ 164.542415][ T5179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 164.563047][ T6976] veth0_vlan: entered promiscuous mode [ 164.570944][ T5179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 164.671614][ T6976] veth1_vlan: entered promiscuous mode [ 164.795343][ T6976] veth0_macvtap: entered promiscuous mode [ 164.816890][ T6976] veth1_macvtap: entered promiscuous mode [ 164.873412][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.910273][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.940762][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.971771][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.999229][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.026968][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.057267][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.087777][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.126683][ T6976] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 165.167909][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.214373][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.239231][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.259458][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.280830][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.319508][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.329517][ T6976] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.344165][ T4478] Bluetooth: hci3: command tx timeout [ 165.377558][ T6976] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.419455][ T6976] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 165.439183][ T6976] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.474114][ T6976] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.482879][ T6976] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.497192][ T6976] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.735291][ T5731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 165.743126][ T5731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 165.836103][ T5147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 165.843971][ T5147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 167.184648][ T5147] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 167.280944][ T7108] loop2: detected capacity change from 0 to 4096 [ 167.320643][ T7108] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 167.360397][ T7108] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 167.387141][ T5147] usb 5-1: config index 0 descriptor too short (expected 109, got 27) [ 167.404393][ T5147] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 167.447026][ T5147] usb 5-1: config 0 has no interfaces? [ 167.468778][ T5147] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29 [ 167.494355][ T5147] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16 [ 167.502665][ T5147] usb 5-1: Manufacturer: syz [ 167.534077][ T5147] usb 5-1: SerialNumber: syz [ 167.543060][ T5147] usb 5-1: config 0 descriptor?? [ 167.773531][ T5147] usb 5-1: USB disconnect, device number 3 [ 168.589170][ T7129] netlink: 'syz-executor.1': attribute type 2 has an invalid length. [ 169.450779][ T7140] loop1: detected capacity change from 0 to 4096 [ 169.517788][ T7140] NILFS (loop1): invalid segment: Checksum error in segment payload [ 169.535119][ T7141] loop4: detected capacity change from 0 to 4096 [ 169.541558][ T7140] NILFS (loop1): trying rollback from an earlier position [ 169.609491][ T7140] NILFS (loop1): recovery complete [ 169.628803][ T7147] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 169.703627][ T29] kauditd_printk_skb: 39 callbacks suppressed [ 169.703643][ T29] audit: type=1800 audit(1717311000.373:94): pid=7140 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=12 res=0 errno=0 [ 169.913637][ T29] audit: type=1800 audit(1717311000.583:95): pid=7149 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=12 res=0 errno=0 [ 170.345777][ T7144] loop2: detected capacity change from 0 to 32768 [ 170.408066][ T7152] loop4: detected capacity change from 0 to 512 [ 170.474195][ T7152] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 170.484420][ T7152] UDF-fs: Scanning with blocksize 512 failed [ 170.517937][ T7152] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 170.533634][ T7144] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 170.548832][ T7152] UDF-fs: Scanning with blocksize 1024 failed [ 170.559490][ T7152] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 170.574595][ T7152] UDF-fs: Scanning with blocksize 2048 failed [ 170.581143][ T7144] bcachefs (loop2): recovering from clean shutdown, journal seq 8 [ 170.596623][ T7152] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 170.625544][ T7152] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 170.792592][ T7144] bcachefs (loop2): alloc_read... done [ 170.834157][ T7144] bcachefs (loop2): stripes_read... done [ 170.842221][ T7144] bcachefs (loop2): snapshots_read... done [ 170.853442][ T7144] bcachefs (loop2): journal_replay... done [ 170.860051][ T7144] bcachefs (loop2): resume_logged_ops... done [ 170.868095][ T7144] bcachefs (loop2): going read-write [ 171.089087][ T7144] bcachefs (loop2): done starting filesystem [ 171.725681][ T29] audit: type=1800 audit(1717311002.403:96): pid=7144 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=4102 res=0 errno=0 [ 171.771415][ T29] audit: type=1800 audit(1717311002.423:97): pid=7144 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=4102 res=0 errno=0 [ 172.233977][ T7144] syz-executor.2 (7144) used greatest stack depth: 14416 bytes left [ 172.390148][ T6976] bcachefs (loop2): shutting down [ 172.406307][ T6976] bcachefs (loop2): going read-only [ 172.421893][ T6976] bcachefs (loop2): finished waiting for writes to stop [ 172.466809][ T6976] bcachefs (loop2): flushing journal and stopping allocators, journal seq 10 [ 172.584148][ T6976] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 12 [ 172.630315][ T6976] bcachefs (loop2): shutdown complete, journal seq 13 [ 172.666309][ T6976] bcachefs (loop2): marking filesystem clean [ 172.788780][ T6976] bcachefs (loop2): shutdown complete [ 173.401919][ T7182] loop1: detected capacity change from 0 to 32768 [ 173.740484][ T7182] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,journal_flush_delay=1311720,journal_reclaim_delay=1000,nocow [ 173.794228][ T7182] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 173.853203][ T7198] netlink: 'syz-executor.4': attribute type 2 has an invalid length. [ 173.894367][ T7182] bcachefs (loop1): alloc_read... done [ 173.903295][ T7182] bcachefs (loop1): stripes_read... done [ 173.923009][ T7182] bcachefs (loop1): snapshots_read... done [ 173.933980][ T7182] bcachefs (loop1): journal_replay... done [ 173.943318][ T7182] bcachefs (loop1): resume_logged_ops... done [ 173.952647][ T7182] bcachefs (loop1): going read-write [ 173.967356][ T7182] bcachefs (loop1): done starting filesystem [ 174.161201][ T7204] batadv0: entered promiscuous mode [ 174.176734][ T6918] bcachefs (loop1): shutting down [ 174.183032][ T6918] bcachefs (loop1): going read-only [ 174.189822][ T7204] batadv0: left promiscuous mode [ 174.203809][ T6918] bcachefs (loop1): finished waiting for writes to stop [ 174.217072][ T6918] bcachefs (loop1): flushing journal and stopping allocators, journal seq 10 [ 174.247446][ T6918] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 10 [ 174.278326][ T6918] bcachefs (loop1): shutdown complete, journal seq 11 [ 174.286315][ T6918] bcachefs (loop1): marking filesystem clean [ 174.335601][ T6918] bcachefs (loop1): shutdown complete [ 176.110955][ T7208] loop4: detected capacity change from 0 to 32768 [ 176.199956][ T7208] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 176.271363][ T7208] XFS (loop4): Ending clean mount [ 176.287356][ T7208] XFS (loop4): Quotacheck needed: Please wait. [ 176.380295][ T7208] XFS (loop4): Quotacheck: Done. [ 176.698452][ T6864] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 177.036189][ T29] audit: type=1326 audit(1717311007.713:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7245 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2d5987cee9 code=0x0 [ 177.610081][ T7253] loop1: detected capacity change from 0 to 1024 [ 177.632289][ T7244] loop0: detected capacity change from 0 to 32768 [ 177.767675][ T7244] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 177.792379][ T7244] bcachefs (loop0): recovering from clean shutdown, journal seq 8 [ 177.815859][ T7244] bcachefs (loop0): alloc_read... done [ 177.822793][ T7244] bcachefs (loop0): stripes_read... done [ 177.829010][ T7244] bcachefs (loop0): snapshots_read... done [ 177.837730][ T35] hfsplus: b-tree write err: -5, ino 4 [ 177.843645][ T7244] bcachefs (loop0): journal_replay... done [ 177.849792][ T7244] bcachefs (loop0): resume_logged_ops... done [ 177.865577][ T7244] bcachefs (loop0): going read-write [ 177.893335][ T7244] bcachefs (loop0): done starting filesystem [ 177.922510][ T7263] team0: Port device ip6gretap0 added [ 177.949675][ T7263] bridge0: port 3(team0) entered blocking state [ 177.957088][ T7263] bridge0: port 3(team0) entered disabled state [ 177.964952][ T7263] team0: entered allmulticast mode [ 177.970349][ T7263] team_slave_0: entered allmulticast mode [ 177.978829][ T7263] team_slave_1: entered allmulticast mode [ 178.015895][ T7263] ip6gretap0: entered allmulticast mode [ 178.032814][ T7263] team0: entered promiscuous mode [ 178.038751][ T7263] team_slave_0: entered promiscuous mode [ 178.049141][ T7263] team_slave_1: entered promiscuous mode [ 178.064680][ T7263] ip6gretap0: entered promiscuous mode [ 178.096148][ T7263] bridge0: port 3(team0) entered blocking state [ 178.102925][ T7263] bridge0: port 3(team0) entered forwarding state [ 178.229367][ T7270] loop2: detected capacity change from 0 to 1024 [ 178.269725][ T5100] bcachefs (loop0): shutting down [ 178.284875][ T5100] bcachefs (loop0): going read-only [ 178.314476][ T5100] bcachefs (loop0): finished waiting for writes to stop [ 178.338524][ T5100] bcachefs (loop0): flushing journal and stopping allocators, journal seq 9 [ 178.419108][ T5100] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 11 [ 178.442520][ T5100] bcachefs (loop0): shutdown complete, journal seq 12 [ 178.450887][ T5100] bcachefs (loop0): marking filesystem clean [ 178.490141][ T35] hfsplus: b-tree write err: -5, ino 4 [ 178.499383][ T5100] bcachefs (loop0): shutdown complete [ 178.612812][ T7273] loop4: detected capacity change from 0 to 4096 [ 178.657057][ T7273] NILFS (loop4): invalid segment: Checksum error in segment payload [ 178.681929][ T7273] NILFS (loop4): trying rollback from an earlier position [ 178.727114][ T7273] NILFS (loop4): recovery complete [ 178.748016][ T7276] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 178.830834][ T29] audit: type=1800 audit(1717311009.503:99): pid=7273 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=12 res=0 errno=0 [ 178.907364][ T7279] input: syz0 as /devices/virtual/input/input8 [ 179.016573][ T29] audit: type=1800 audit(1717311009.683:100): pid=7273 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=12 res=0 errno=0 [ 179.585331][ T7282] loop2: detected capacity change from 0 to 1024 [ 179.687269][ T7275] loop1: detected capacity change from 0 to 32768 [ 179.887615][ T7275] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 180.751807][ T7275] XFS (loop1): Ending clean mount [ 180.761051][ T5715] hfsplus: b-tree write err: -5, ino 4 [ 180.798466][ T7275] XFS (loop1): Quotacheck needed: Please wait. [ 180.890442][ T7275] XFS (loop1): Quotacheck: Done. [ 181.147892][ T6918] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 181.876548][ T7314] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 182.121329][ T7305] loop0: detected capacity change from 0 to 40427 [ 182.153435][ T7305] F2FS-fs (loop0): Wrong secs_per_zone / total_sections (67108865, 24) [ 182.169474][ T7305] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 182.205336][ T7305] F2FS-fs (loop0): invalid crc value [ 182.239284][ T7305] F2FS-fs (loop0): Found nat_bits in checkpoint [ 182.361530][ T7305] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 182.376149][ T7305] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 182.496731][ T7305] syz-executor.0: attempt to access beyond end of device [ 182.496731][ T7305] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 182.623589][ T7305] syz-executor.0: attempt to access beyond end of device [ 182.623589][ T7305] loop0: rw=2049, sector=77824, nr_sectors = 976 limit=40427 [ 182.829642][ T5100] syz-executor.0: attempt to access beyond end of device [ 182.829642][ T5100] loop0: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 182.896521][ T5100] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 183.779267][ T7330] loop4: detected capacity change from 0 to 32768 [ 183.813245][ T7336] Process accounting resumed [ 183.888210][ T7330] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 183.980697][ T7330] XFS (loop4): Ending clean mount [ 184.085606][ T5147] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 184.117773][ T5147] XFS (loop4): Unmount and run xfs_repair [ 184.131250][ T5147] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 184.154214][ T5147] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 184.184324][ T5147] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 184.204542][ T5147] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 184.227287][ T5147] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 184.249683][ T5147] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 184.278664][ T5147] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 184.293278][ T5147] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 184.311091][ T5147] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 184.323478][ T7330] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 184.372323][ T7330] XFS (loop4): page discard on page ffffea0001293600, inode 0x429, pos 0. [ 184.797718][ T7353] loop0: detected capacity change from 0 to 4096 [ 184.835255][ T7353] NILFS (loop0): invalid segment: Checksum error in segment payload [ 184.854192][ T7353] NILFS (loop0): trying rollback from an earlier position [ 184.913253][ T7353] NILFS (loop0): recovery complete [ 184.923756][ T7358] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 185.075039][ T29] audit: type=1800 audit(1717311015.723:101): pid=7353 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=12 res=0 errno=0 [ 185.331164][ T29] audit: type=1800 audit(1717311016.003:102): pid=7353 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=12 res=0 errno=0 [ 185.371983][ T5109] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 185.380885][ T5109] Bluetooth: hci0: Injecting HCI hardware error event [ 185.393930][ T5103] Bluetooth: hci0: hardware error 0x00 [ 186.067029][ T7364] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 186.096447][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 186.139190][ T5179] XFS (loop4): Unmount and run xfs_repair [ 186.161289][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 186.170501][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 186.191715][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 186.202588][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 186.217649][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 186.230003][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 186.247552][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.249642][ T7367] loop1: detected capacity change from 0 to 64 [ 186.259869][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.280160][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.291166][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 186.315377][ T5731] XFS (loop4): page discard on page ffffea0001293600, inode 0x429, pos 0. [ 186.336483][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 186.359316][ T5179] XFS (loop4): Unmount and run xfs_repair [ 186.367690][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 186.380926][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 186.392491][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 186.408443][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 186.419799][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 186.432673][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 186.445713][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.464317][ T5109] Bluetooth: hci4: command 0x0406 tx timeout [ 186.470468][ T5109] Bluetooth: hci2: command 0x0406 tx timeout [ 186.486568][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.514080][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.527835][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 186.539525][ T5731] XFS (loop4): page discard on page ffffea0001298600, inode 0x429, pos 65536. [ 186.562938][ T8] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 186.569340][ T7370] netlink: 'syz-executor.2': attribute type 11 has an invalid length. [ 186.582890][ T7370] netlink: 211132 bytes leftover after parsing attributes in process `syz-executor.2'. [ 186.604122][ T8] XFS (loop4): Unmount and run xfs_repair [ 186.611341][ T8] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 186.639732][ T8] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 186.666323][ T8] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 186.688991][ T7371] loop0: detected capacity change from 0 to 1024 [ 186.714141][ T8] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 186.723039][ T8] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 186.758941][ T8] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 186.774126][ T8] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.783011][ T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.828604][ T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 186.851651][ T7373] loop2: detected capacity change from 0 to 64 [ 186.866032][ T7371] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 186.874914][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 186.896952][ T7371] overlayfs: failed to set xattr on upper [ 186.903440][ T5731] XFS (loop4): page discard on page ffffea00011dad00, inode 0x429, pos 212992. [ 186.920582][ T7371] overlayfs: ...falling back to redirect_dir=nofollow. [ 186.930506][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 186.948944][ T7371] overlayfs: ...falling back to index=off. [ 186.960001][ T5179] XFS (loop4): Unmount and run xfs_repair [ 186.968725][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 186.980242][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 186.992092][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 187.010545][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 187.014052][ T7371] overlayfs: ...falling back to uuid=null. [ 187.021266][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 187.048029][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 187.058686][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.072649][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.083324][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.101051][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 187.157404][ T5731] XFS (loop4): page discard on page ffffea00011dfc00, inode 0x429, pos 229376. [ 187.181485][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 187.204497][ T5179] XFS (loop4): Unmount and run xfs_repair [ 187.210401][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 187.223811][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 187.240848][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 187.250203][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 187.262527][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 187.278643][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 187.289820][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.307129][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.328886][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.343006][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 187.362559][ T5731] XFS (loop4): page discard on page ffffea00011dfd00, inode 0x429, pos 245760. [ 187.381613][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 187.400855][ T5179] XFS (loop4): Unmount and run xfs_repair [ 187.431265][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 187.446497][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 187.455992][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 187.468759][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 187.479394][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 187.489598][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 187.503264][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.515959][ T5103] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 187.531678][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.562751][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.583169][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 187.620582][ T5731] XFS (loop4): page discard on page ffffea00011cae00, inode 0x429, pos 262144. [ 187.661865][ T5147] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 187.691340][ T5147] XFS (loop4): Unmount and run xfs_repair [ 187.701915][ T5147] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 187.729559][ T5147] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 187.764094][ T5147] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 187.773048][ T5147] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 187.790474][ T5147] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 187.809137][ T5147] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 187.834091][ T5147] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.843040][ T5147] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.871340][ T5147] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 187.896246][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 187.944733][ T5731] XFS (loop4): page discard on page ffffea00012ae380, inode 0x429, pos 278528. [ 187.959130][ T7380] tipc: Can't bind to reserved service type 0 [ 187.974478][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 188.014129][ T5179] XFS (loop4): Unmount and run xfs_repair [ 188.020742][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 188.041912][ T7374] loop0: detected capacity change from 0 to 32768 [ 188.051865][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 188.073923][ T7374] jfs: Unrecognized mount option "˙˙˙˙˙˙˙˙˙˙" or missing value [ 188.082702][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 188.098697][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 188.110399][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 188.133124][ T7381] loop2: detected capacity change from 0 to 4096 [ 188.141716][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 188.174374][ T7381] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 188.179293][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.206444][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.227507][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.247288][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 188.290268][ T7381] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 188.306737][ T5731] XFS (loop4): page discard on page ffffea00012ae400, inode 0x429, pos 286720. [ 188.339276][ T5179] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x41/0xd0, xfs_bnobt block 0x8 [ 188.372355][ T5179] XFS (loop4): Unmount and run xfs_repair [ 188.391362][ T5179] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 188.412077][ T5179] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff AB3B............ [ 188.439335][ T5179] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 188.452828][ T5179] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab ..*.w.B.......K. [ 188.462221][ T5179] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01 ....[.O......... [ 188.489677][ T5179] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00 ...6............ [ 188.517712][ T5179] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.536419][ T5179] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.546553][ T5179] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 188.558060][ T5731] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x8 len 8 error 74 [ 188.570400][ T5731] XFS (loop4): page discard on page ffffea0001290400, inode 0x429, pos 294912. [ 188.594624][ T6864] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 188.608563][ T6864] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair. [ 188.658578][ T7386] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 188.671076][ T7386] overlayfs: missing 'lowerdir' [ 189.892594][ T7404] netlink: 'syz-executor.1': attribute type 11 has an invalid length. [ 189.935518][ T7404] netlink: 211132 bytes leftover after parsing attributes in process `syz-executor.1'. [ 190.109043][ T7408] loop2: detected capacity change from 0 to 64 [ 190.154417][ T7408] hfs: get root inode failed [ 190.173748][ T7409] loop0: detected capacity change from 0 to 64 [ 190.527807][ T7413] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 190.572106][ T7399] loop4: detected capacity change from 0 to 32768 [ 190.768886][ T7421] loop1: detected capacity change from 0 to 16 [ 190.778545][ T7399] bcachefs (loop4): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 190.805300][ T7399] bcachefs (loop4): recovering from clean shutdown, journal seq 8 [ 190.866718][ T7421] erofs: (device loop1): mounted with root inode @ nid 36. [ 190.894871][ T7399] bcachefs (loop4): alloc_read... done [ 190.906376][ T7399] bcachefs (loop4): stripes_read... done [ 190.933639][ T7399] bcachefs (loop4): snapshots_read... done [ 190.957581][ T7399] bcachefs (loop4): journal_replay... done [ 190.972959][ T7399] bcachefs (loop4): resume_logged_ops... done [ 191.003574][ T7399] bcachefs (loop4): going read-write [ 191.041139][ T7399] bcachefs (loop4): done starting filesystem [ 191.097330][ T29] audit: type=1800 audit(1717311021.763:103): pid=7399 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=4102 res=0 errno=0 [ 191.248785][ T7399] syz-executor.4 (7399) used greatest stack depth: 13968 bytes left [ 191.316175][ T7427] loop2: detected capacity change from 0 to 1024 [ 191.332907][ T6864] bcachefs (loop4): shutting down [ 191.343975][ T6864] bcachefs (loop4): going read-only [ 191.350013][ T6864] bcachefs (loop4): finished waiting for writes to stop [ 191.358509][ T6864] bcachefs (loop4): flushing journal and stopping allocators, journal seq 10 [ 191.396076][ T6864] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 12 [ 191.417525][ T7427] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 191.427631][ T7427] overlayfs: failed to set xattr on upper [ 191.436122][ T7427] overlayfs: ...falling back to redirect_dir=nofollow. [ 191.439525][ T6864] bcachefs (loop4): shutdown complete, journal seq 13 [ 191.443071][ T7427] overlayfs: ...falling back to index=off. [ 191.443083][ T7427] overlayfs: ...falling back to uuid=null. [ 191.508872][ T6864] bcachefs (loop4): marking filesystem clean [ 191.640969][ T6864] bcachefs (loop4): shutdown complete [ 191.696200][ T7429] loop1: detected capacity change from 0 to 4096 [ 191.730652][ T7429] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 191.844125][ T7429] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 191.957544][ T7433] loop0: detected capacity change from 0 to 1024 [ 191.998896][ T7433] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 192.100066][ T7433] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0 [ 192.180513][ T7433] Quota error (device loop0): write_blk: dquota write failed [ 192.244103][ T7433] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 192.302165][ T7433] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 0 [ 192.401237][ T7433] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz-executor.0: Freeing blocks not in datazone - block = 0, count = 4096 [ 192.480115][ T7433] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz-executor.0: Invalid inode bitmap blk 0 in block_group 0 [ 192.494600][ T51] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 192.531105][ T7433] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem [ 192.534110][ T51] EXT4-fs error (device loop0): ext4_release_dquot:6883: comm kworker/u8:3: Failed to release dquot type 0 [ 192.572214][ T7433] EXT4-fs (loop0): 1 orphan inode deleted [ 192.613619][ T7433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.628423][ T7427] loop2: detected capacity change from 0 to 32768 [ 192.651947][ T7427] jfs: Unrecognized mount option "˙˙˙˙˙˙˙˙˙˙" or missing value [ 192.752004][ T7433] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 192.785455][ T5107] Bluetooth: hci2: unexpected event for opcode 0x0c05 [ 192.874218][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 193.087369][ T5103] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 193.099412][ T5103] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 193.116125][ T5103] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 193.136304][ T5103] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 193.149426][ T5103] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 193.161819][ T5103] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 193.531416][ T7437] loop1: detected capacity change from 0 to 32768 [ 193.585501][ T7437] btrfs: Deprecated parameter 'usebackuproot' [ 193.600666][ T7437] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 193.632593][ T7437] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7437) [ 193.645075][ T7443] chnl_net:caif_netlink_parms(): no params data found [ 193.702163][ T7437] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 193.758378][ T7437] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 193.785507][ T7437] BTRFS info (device loop1): using free-space-tree [ 193.944621][ T7443] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.965119][ T7443] bridge0: port 1(bridge_slave_0) entered disabled state [ 193.972594][ T7443] bridge_slave_0: entered allmulticast mode [ 193.991799][ T7443] bridge_slave_0: entered promiscuous mode [ 193.998205][ T29] audit: type=1804 audit(1717311024.653:104): pid=7465 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3252543127/syzkaller.nARGVT/31/bus" dev="sda1" ino=1958 res=1 errno=0 [ 194.027623][ T7443] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.034977][ T29] audit: type=1804 audit(1717311024.703:105): pid=7465 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir3252543127/syzkaller.nARGVT/31/bus" dev="sda1" ino=1958 res=1 errno=0 [ 194.059799][ T7443] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.068075][ T7443] bridge_slave_1: entered allmulticast mode [ 194.076023][ T7443] bridge_slave_1: entered promiscuous mode [ 194.081956][ T29] audit: type=1804 audit(1717311024.753:106): pid=7465 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3252543127/syzkaller.nARGVT/31/bus" dev="sda1" ino=1958 res=1 errno=0 [ 194.135970][ T7465] Invalid ELF header magic: != ELF [ 194.144570][ T7437] btrfs: Deprecated parameter 'usebackuproot' [ 194.180251][ T7437] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 194.225373][ T7437] BTRFS info (device loop1 state M): rebuilding free space tree [ 194.239088][ T7443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 194.295427][ T7443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 194.349222][ T7437] BTRFS info (device loop1 state M): force clearing of disk cache [ 194.357636][ T7437] BTRFS info (device loop1 state M): trying to use backup root at mount time [ 194.372386][ T5100] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.432437][ T7443] team0: Port device team_slave_0 added [ 194.500345][ T7443] team0: Port device team_slave_1 added [ 194.511378][ T7445] loop4: detected capacity change from 0 to 40427 [ 194.586531][ T7445] F2FS-fs (loop4): Wrong secs_per_zone / total_sections (67108865, 24) [ 194.596678][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 194.603786][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.642867][ T7445] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 194.656652][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.663118][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.670789][ T6918] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 194.672525][ T7443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 194.691129][ T7445] F2FS-fs (loop4): invalid crc value [ 194.698361][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 194.705727][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.732514][ T7443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 194.762200][ T7445] F2FS-fs (loop4): Found nat_bits in checkpoint [ 194.930310][ T7443] hsr_slave_0: entered promiscuous mode [ 194.947836][ T7443] hsr_slave_1: entered promiscuous mode [ 194.965094][ T7478] loop0: detected capacity change from 0 to 16 [ 194.984340][ T7445] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 194.991886][ T7443] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 195.010037][ T7445] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 195.018432][ T7478] erofs: (device loop0): mounted with root inode @ nid 36. [ 195.034093][ T7443] Cannot create hsr debugfs directory [ 195.169881][ T7445] syz-executor.4: attempt to access beyond end of device [ 195.169881][ T7445] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 195.219150][ T5103] Bluetooth: hci5: command tx timeout [ 195.360973][ T7445] syz-executor.4: attempt to access beyond end of device [ 195.360973][ T7445] loop4: rw=2049, sector=77824, nr_sectors = 976 limit=40427 [ 195.675134][ T6864] syz-executor.4: attempt to access beyond end of device [ 195.675134][ T6864] loop4: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 195.735081][ T6864] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 195.788112][ T7443] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.036663][ T7443] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.203750][ T7443] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 196.243224][ T7480] loop2: detected capacity change from 0 to 32768 [ 196.366805][ T7491] loop0: detected capacity change from 0 to 256 [ 196.446537][ T7491] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 196.561033][ T29] audit: type=1800 audit(1717311027.213:107): pid=7491 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=1048629 res=0 errno=0 [ 196.766792][ T7491] syz-executor.0: attempt to access beyond end of device [ 196.766792][ T7491] loop0: rw=0, sector=256, nr_sectors = 8 limit=256 [ 197.097339][ T7443] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 197.264229][ T5103] Bluetooth: hci5: command tx timeout [ 197.330777][ T7480] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 197.350111][ T7480] bcachefs (loop2): recovering from clean shutdown, journal seq 8 [ 197.422193][ T7480] bcachefs (loop2): alloc_read... done [ 197.441194][ T7480] bcachefs (loop2): stripes_read... done [ 197.458662][ T7480] bcachefs (loop2): snapshots_read... done [ 197.482936][ T7483] loop1: detected capacity change from 0 to 32768 [ 197.498232][ T7480] bcachefs (loop2): journal_replay... done [ 197.531664][ T7480] bcachefs (loop2): resume_logged_ops... done [ 197.545337][ T7443] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 197.562050][ T7480] bcachefs (loop2): going read-write [ 197.584540][ T7480] bcachefs (loop2): done starting filesystem [ 197.611830][ T7443] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 197.679047][ T7483] bcachefs (a46a46fb-710c-4d8a-8a40-d337fbcdfe7d): filesystem UUID already open [ 197.704379][ T7483] bcachefs (a46a46fb-710c-4d8a-8a40-d337fbcdfe7d): shutdown complete [ 197.708223][ T7443] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 197.737121][ T29] audit: type=1800 audit(1717311028.413:108): pid=7480 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=4102 res=0 errno=0 [ 197.797253][ T7443] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 198.126450][ T6976] bcachefs (loop2): shutting down [ 198.159493][ T6976] bcachefs (loop2): going read-only [ 198.184714][ T6976] bcachefs (loop2): finished waiting for writes to stop [ 198.235313][ T6976] bcachefs (loop2): flushing journal and stopping allocators, journal seq 11 [ 198.258339][ T29] audit: type=1800 audit(1717311028.933:109): pid=7483 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 198.302644][ T6976] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 12 [ 198.325846][ T7443] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.343958][ T6976] bcachefs (loop2): shutdown complete, journal seq 13 [ 198.357803][ T6976] bcachefs (loop2): marking filesystem clean [ 198.420108][ T7443] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.477701][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.484910][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.501686][ T6976] bcachefs (loop2): shutdown complete [ 198.537729][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.544956][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 199.226979][ T7443] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.239715][ T7513] loop4: detected capacity change from 0 to 32768 [ 199.347686][ T5107] Bluetooth: hci5: command tx timeout [ 199.487133][ T7443] veth0_vlan: entered promiscuous mode [ 199.532490][ T7443] veth1_vlan: entered promiscuous mode [ 199.676907][ T7443] veth0_macvtap: entered promiscuous mode [ 199.717746][ T7443] veth1_macvtap: entered promiscuous mode [ 199.792019][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.822159][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 199.841081][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.859142][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 199.873166][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.892266][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 199.912227][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.933086][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 199.950420][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 199.969605][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.006684][ T7541] Process accounting resumed [ 200.007948][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.052102][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.078871][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.116005][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.138596][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.160802][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.190298][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.226992][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.264950][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.291048][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.320490][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.358910][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 200.403084][ T7443] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.414994][ T7443] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.424682][ T7443] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.437754][ T7443] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.762008][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.790442][ T7554] loop0: detected capacity change from 0 to 1024 [ 200.814725][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.892201][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.914495][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.068419][ T7554] EXT4-fs: Ignoring removed orlov option [ 201.083528][ T7554] EXT4-fs (loop0): Test dummy encryption mode enabled [ 201.105724][ T7554] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 201.158674][ T7554] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.435138][ T5107] Bluetooth: hci5: command tx timeout [ 202.892901][ T7554] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 203.072666][ T5100] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.690634][ T7559] loop1: detected capacity change from 0 to 32768 [ 203.719560][ T7559] XFS: noikeep mount option is deprecated. [ 203.733952][ T7563] loop4: detected capacity change from 0 to 32768 [ 203.751663][ T7559] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 203.769266][ T7563] XFS: noikeep mount option is deprecated. [ 203.822023][ T7583] loop0: detected capacity change from 0 to 2048 [ 203.869424][ T7583] udf: Unknown parameter '˙˙˙˙˙˙0xffffffffffffffff˙˙˙˙˙˙˙˙18446744073709551615˙˙˙˙18446744073709551615»' [ 203.883377][ T7563] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 203.915741][ T7559] XFS (loop1): Ending clean mount [ 203.936085][ T7559] XFS (loop1): Quotacheck needed: Please wait. [ 204.030963][ T7559] XFS (loop1): Quotacheck: Done. [ 204.044256][ T7563] XFS (loop4): Ending clean mount [ 204.072909][ T7563] XFS (loop4): Quotacheck needed: Please wait. [ 204.129315][ T7563] XFS (loop4): Quotacheck: Done. [ 204.189783][ T6918] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 204.308373][ T6864] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 205.147427][ T7613] qrtr: Invalid version 0 [ 205.469167][ T7620] loop4: detected capacity change from 0 to 256 [ 205.524163][ T7620] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 205.553603][ T7620] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 205.653153][ T7622] loop2: detected capacity change from 0 to 512 [ 205.716678][ T7622] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 205.804208][ T7622] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #17: comm syz-executor.2: iget: bad i_size value: -6917529027641081756 [ 205.855899][ T7622] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 17 (err -117) [ 205.903504][ T7622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.004161][ T7622] loop2: detected capacity change from 512 to 0 [ 206.020964][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.020964][ T7622] loop2: rw=12288, sector=24, nr_sectors = 8 limit=0 [ 206.055395][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.055395][ T7622] loop2: rw=524288, sector=280, nr_sectors = 8 limit=0 [ 206.084732][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.084732][ T7622] loop2: rw=12288, sector=272, nr_sectors = 8 limit=0 [ 206.109489][ T7622] EXT4-fs error (device loop2): ext4_get_inode_loc:4495: inode #2: block 34: comm syz-executor.2: unable to read itable block [ 206.145297][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.145297][ T7622] loop2: rw=133121, sector=0, nr_sectors = 8 limit=0 [ 206.175024][ T7622] Buffer I/O error on dev loop2, logical block 0, lost sync page write [ 206.186861][ T7622] EXT4-fs (loop2): I/O error while writing superblock [ 206.202154][ T7622] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5731: IO failure [ 206.224743][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.224743][ T7622] loop2: rw=133121, sector=0, nr_sectors = 8 limit=0 [ 206.254134][ T7622] Buffer I/O error on dev loop2, logical block 0, lost sync page write [ 206.274594][ T7622] EXT4-fs (loop2): I/O error while writing superblock [ 206.291888][ T7622] EXT4-fs error (device loop2): ext4_dirty_inode:5935: inode #2: comm syz-executor.2: mark_inode_dirty error [ 206.315102][ T7622] syz-executor.2: attempt to access beyond end of device [ 206.315102][ T7622] loop2: rw=133121, sector=0, nr_sectors = 8 limit=0 [ 206.353949][ T7622] Buffer I/O error on dev loop2, logical block 0, lost sync page write [ 206.363389][ T7622] EXT4-fs (loop2): I/O error while writing superblock [ 206.542785][ T7638] loop4: detected capacity change from 0 to 512 [ 206.587870][ T5702] kworker/u8:9: attempt to access beyond end of device [ 206.587870][ T5702] loop2: rw=524288, sector=280, nr_sectors = 8 limit=0 [ 206.620747][ T7638] EXT4-fs (loop4): 1 truncate cleaned up [ 206.651781][ T7638] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 206.679698][ T5702] kworker/u8:9: attempt to access beyond end of device [ 206.679698][ T5702] loop2: rw=12288, sector=272, nr_sectors = 8 limit=0 [ 206.721540][ T5702] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4480: inode #2: block 34: comm kworker/u8:9: unable to read itable block [ 206.780149][ T5702] kworker/u8:9: attempt to access beyond end of device [ 206.780149][ T5702] loop2: rw=133121, sector=0, nr_sectors = 8 limit=0 [ 206.805960][ T5702] Buffer I/O error on dev loop2, logical block 0, lost sync page write [ 206.855017][ T5702] EXT4-fs (loop2): I/O error while writing superblock [ 206.870875][ T6976] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.883918][ T6976] syz-executor.2: attempt to access beyond end of device [ 206.883918][ T6976] loop2: rw=133121, sector=0, nr_sectors = 8 limit=0 [ 206.918352][ T6976] Buffer I/O error on dev loop2, logical block 0, lost sync page write [ 206.920068][ T6864] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.939700][ T6976] EXT4-fs (loop2): I/O error while writing superblock [ 207.000179][ T7625] Buffer I/O error on dev loop2, logical block 8, lost sync page write [ 236.655595][ T5103] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 236.674363][ T5103] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 236.683302][ T5103] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 236.695314][ T5103] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 236.704683][ T5103] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 236.712018][ T5103] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 237.063678][ T5107] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 237.077027][ T5107] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 237.094415][ T5107] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 237.144443][ T5107] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 237.153445][ T5107] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 237.171083][ T5107] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 237.454680][ T5107] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 237.464797][ T5107] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 237.475473][ T5107] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 237.505194][ T5107] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 237.515192][ T5107] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 237.523874][ T5107] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 237.774992][ T5103] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 237.795139][ T5103] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 237.803179][ T5103] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 237.815690][ T5103] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 237.823389][ T5103] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 237.831062][ T5103] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 238.785184][ T5107] Bluetooth: hci6: command tx timeout [ 238.802458][ T5107] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 238.822906][ T5107] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 238.831229][ T5107] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 238.839553][ T5107] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 238.848672][ T5107] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 238.865486][ T5107] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 239.274438][ T5103] Bluetooth: hci7: command tx timeout [ 239.584152][ T5103] Bluetooth: hci8: command tx timeout [ 239.904697][ T5103] Bluetooth: hci9: command tx timeout [ 240.864137][ T5103] Bluetooth: hci6: command tx timeout [ 240.944404][ T5103] Bluetooth: hci10: command tx timeout [ 241.344100][ T5103] Bluetooth: hci7: command tx timeout [ 241.664097][ T5103] Bluetooth: hci8: command tx timeout [ 241.984459][ T5103] Bluetooth: hci9: command tx timeout [ 242.944700][ T5103] Bluetooth: hci6: command tx timeout [ 243.024492][ T5103] Bluetooth: hci10: command tx timeout [ 243.424442][ T5103] Bluetooth: hci7: command tx timeout [ 243.744164][ T5103] Bluetooth: hci8: command tx timeout [ 244.064085][ T5103] Bluetooth: hci9: command tx timeout [ 245.024198][ T5103] Bluetooth: hci6: command tx timeout [ 245.104323][ T5103] Bluetooth: hci10: command tx timeout [ 245.512277][ T5103] Bluetooth: hci7: command tx timeout [ 245.824210][ T5103] Bluetooth: hci8: command tx timeout [ 246.144241][ T5103] Bluetooth: hci9: command tx timeout [ 247.186175][ T5103] Bluetooth: hci10: command tx timeout [ 256.068133][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.076583][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 278.624187][ T5107] Bluetooth: hci1: command 0x0406 tx timeout [ 283.750641][ T5103] Bluetooth: hci3: command 0x0406 tx timeout [ 301.955618][ T5107] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 301.968106][ T5107] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 301.984288][ T5107] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 302.034423][ T5107] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 302.042206][ T5107] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 302.051167][ T5107] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 302.164338][ T5107] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 302.191690][ T5107] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 302.204483][ T5107] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 302.216492][ T5107] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 302.230905][ T5107] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 302.244282][ T5107] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 302.341740][ T5107] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 302.358682][ T5107] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 302.367311][ T5107] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 302.375739][ T5107] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 302.383516][ T5107] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 302.394220][ T5107] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 302.727317][ T5107] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 302.744508][ T5107] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 302.759590][ T5107] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 302.768919][ T5107] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 302.794488][ T5107] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 302.803344][ T5107] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 303.963354][ T5107] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 303.976080][ T5107] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 303.985315][ T5107] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 303.993425][ T5107] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 304.002282][ T5107] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 304.014234][ T5107] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 304.144117][ T5103] Bluetooth: hci11: command tx timeout [ 304.304381][ T5103] Bluetooth: hci12: command tx timeout [ 304.464137][ T5103] Bluetooth: hci13: command tx timeout [ 304.864137][ T5103] Bluetooth: hci14: command tx timeout [ 306.064326][ T5103] Bluetooth: hci15: command tx timeout [ 306.224168][ T5103] Bluetooth: hci11: command tx timeout [ 306.384307][ T5103] Bluetooth: hci12: command tx timeout [ 306.544219][ T5103] Bluetooth: hci13: command tx timeout [ 306.944082][ T5103] Bluetooth: hci14: command tx timeout [ 308.144996][ T5103] Bluetooth: hci15: command tx timeout [ 308.305987][ T5103] Bluetooth: hci11: command tx timeout [ 308.464351][ T5103] Bluetooth: hci12: command tx timeout [ 308.624127][ T5103] Bluetooth: hci13: command tx timeout [ 309.024993][ T5103] Bluetooth: hci14: command tx timeout [ 310.224126][ T5103] Bluetooth: hci15: command tx timeout [ 310.384119][ T5103] Bluetooth: hci11: command tx timeout [ 310.544310][ T5103] Bluetooth: hci12: command tx timeout [ 310.704088][ T5103] Bluetooth: hci13: command tx timeout [ 311.104109][ T5103] Bluetooth: hci14: command tx timeout [ 312.304042][ T5103] Bluetooth: hci15: command tx timeout [ 317.517964][ T1249] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.524439][ T1249] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.584211][ T5103] Bluetooth: hci5: command 0x0406 tx timeout [ 360.551970][ T5109] Bluetooth: hci8: command 0x0406 tx timeout [ 360.551991][ T53] Bluetooth: hci9: command 0x0406 tx timeout [ 360.552051][ T5101] Bluetooth: hci6: command 0x0406 tx timeout [ 360.558273][ T53] Bluetooth: hci7: command 0x0406 tx timeout [ 365.504383][ T30] INFO: task syz-executor.3:7641 blocked for more than 143 seconds. [ 365.512412][ T30] Not tainted 6.10.0-rc1-syzkaller-00304-g83814698cf48 #0 [ 365.543977][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. 2024/06/02 06:53:16 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 365.552691][ T30] task:syz-executor.3 state:D stack:28528 pid:7641 tgid:7640 ppid:7443 flags:0x00004006 [ 365.596666][ T30] Call Trace: [ 365.600005][ T30] [ 365.602957][ T30] __schedule+0x1796/0x49d0 [ 365.624016][ T30] ? __pfx___schedule+0x10/0x10 [ 365.628929][ T30] ? __pfx_lock_release+0x10/0x10 [ 365.644327][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 365.650116][ T30] ? schedule+0x90/0x320 [ 365.668150][ T5103] Bluetooth: hci10: command 0x0406 tx timeout [ 365.675900][ T30] schedule+0x14b/0x320 [ 365.680105][ T30] schedule_preempt_disabled+0x13/0x30 [ 365.687468][ T30] __mutex_lock+0x6a4/0xd70 [ 365.692017][ T30] ? __mutex_lock+0x527/0xd70 [ 365.697221][ T30] ? ip_mroute_setsockopt+0x15b/0x1190 [ 365.702716][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 365.711185][ T30] ip_mroute_setsockopt+0x15b/0x1190 [ 365.716876][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 365.721954][ T30] ? __pfx_ip_mroute_setsockopt+0x10/0x10 [ 365.728262][ T30] ? finish_task_switch+0x1e5/0x870 [ 365.733507][ T30] ? mark_lock+0x9a/0x350 [ 365.738384][ T30] do_ip_setsockopt+0x129f/0x3cd0 [ 365.743460][ T30] ? __pfx_do_ip_setsockopt+0x10/0x10 [ 365.749431][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 365.754819][ T30] ip_setsockopt+0x63/0x100 [ 365.759347][ T30] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 365.765717][ T30] do_sock_setsockopt+0x3af/0x720 [ 365.770778][ T30] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 365.776822][ T30] ? __fget_files+0x29/0x470 [ 365.781445][ T30] ? __fget_files+0x3f6/0x470 [ 365.787838][ T30] __sys_setsockopt+0x1ae/0x250 [ 365.792732][ T30] __x64_sys_setsockopt+0xb5/0xd0 [ 365.798243][ T30] do_syscall_64+0xf3/0x230 [ 365.802771][ T30] ? clear_bhb_loop+0x35/0x90 [ 365.808662][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.821672][ T30] RIP: 0033:0x7f75cf67cee9 [ 365.826435][ T30] RSP: 002b:00007f75d03730c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 365.835181][ T30] RAX: ffffffffffffffda RBX: 00007f75cf7b3fa0 RCX: 00007f75cf67cee9 [ 365.843258][ T30] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003 [ 365.851330][ T30] RBP: 00007f75cf6c947f R08: 0000000000000000 R09: 0000000000000000 [ 365.873985][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.881992][ T30] R13: 000000000000000b R14: 00007f75cf7b3fa0 R15: 00007ffc5fd25768 [ 365.905302][ T30] [ 365.910308][ T30] INFO: task syz-executor.2:7646 blocked for more than 143 seconds. [ 365.933981][ T30] Not tainted 6.10.0-rc1-syzkaller-00304-g83814698cf48 #0 [ 365.941648][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 365.984092][ T30] task:syz-executor.2 state:D stack:26112 pid:7646 tgid:7645 ppid:6976 flags:0x00000006 [ 366.016007][ T30] Call Trace: [ 366.019338][ T30] [ 366.022284][ T30] __schedule+0x1796/0x49d0 [ 366.040827][ T30] ? __pfx___schedule+0x10/0x10 [ 366.050002][ T30] ? __pfx_lock_release+0x10/0x10 [ 366.064589][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 366.070107][ T30] ? schedule+0x90/0x320 [ 366.083999][ T30] schedule+0x14b/0x320 [ 366.088293][ T30] schedule_preempt_disabled+0x13/0x30 [ 366.104429][ T30] __mutex_lock+0x6a4/0xd70 [ 366.108980][ T30] ? __mutex_lock+0x527/0xd70 [ 366.113674][ T30] ? nl80211_pre_doit+0x5f/0x8b0 [ 366.144472][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 366.149929][ T30] ? __nla_parse+0x40/0x60 [ 366.172757][ T30] nl80211_pre_doit+0x5f/0x8b0 [ 366.177930][ T30] genl_rcv_msg+0xaaa/0xec0 [ 366.182468][ T30] ? mark_lock+0x9a/0x350 [ 366.204877][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 366.209991][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 366.224281][ T30] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 366.229703][ T30] ? __pfx_nl80211_set_wiphy+0x10/0x10 [ 366.244401][ T30] ? __pfx_nl80211_post_doit+0x10/0x10 [ 366.249992][ T30] ? __pfx___might_resched+0x10/0x10 [ 366.274004][ T30] netlink_rcv_skb+0x1e3/0x430 [ 366.278823][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 366.283863][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [