last executing test programs: 6m13.17914937s ago: executing program 3 (id=902): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=@ipv6_newrule={0x44, 0x20, 0x1, 0x0, 0x0, {0xa, 0x80, 0x14, 0x0, 0x7, 0x0, 0x0, 0x3}, [@FRA_SRC={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x44}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2}]}}}]}, 0x5c}}, 0x0) 6m12.315821018s ago: executing program 3 (id=906): r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 6m11.63757859s ago: executing program 3 (id=909): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockname(r0, 0x0, &(0x7f0000000380)) 6m10.765242422s ago: executing program 3 (id=912): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x4, &(0x7f0000000340)={[{@uid}, {@type={'type', 0x3d, "0142bc05"}}, {@type={'type', 0x3d, ' qs!'}}, {@barrier}, {@part={'part', 0x3d, 0x7}}, {@force}, {@gid}, {@nls={'nls', 0x3d, 'koi8-ru'}}, {@nobarrier}, {@creator={'creator', 0x3d, "ef6a7415"}}]}, 0xfc, 0x6e0, &(0x7f0000000580)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x167) mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x4880, 0x0) 6m9.082916869s ago: executing program 3 (id=917): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000030000004c00018038000400200001000a0000000000000000000000000000000000000000000001040000001400020002004e24ac14143500000000000000000d000100757e703a73"], 0x60}, 0x1, 0x0, 0x0, 0x8048001}, 0x0) 6m7.817435918s ago: executing program 3 (id=921): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{0x0, 0x300}, {&(0x7f0000000300)="359cb6", 0x3}], 0x2, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c000400"/44, @ANYRES32=0x0], 0x30}], 0x1, 0x0) 6m3.608676296s ago: executing program 32 (id=921): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{0x0, 0x300}, {&(0x7f0000000300)="359cb6", 0x3}], 0x2, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c000400"/44, @ANYRES32=0x0], 0x30}], 0x1, 0x0) 5m34.975908492s ago: executing program 4 (id=1005): socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r1, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) getpeername$packet(r0, 0x0, &(0x7f00000000c0)) 5m33.891279579s ago: executing program 4 (id=1009): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000280)={0xf0f022}) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x2, @win={{0x7, 0xc, 0x40, 0xe0fd}, 0x0, 0x2, 0x0, 0xc, 0x0, 0x2}}) 5m32.750487893s ago: executing program 4 (id=1013): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca4198914"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014) 5m31.91922096s ago: executing program 4 (id=1016): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0) mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0) 5m30.706621579s ago: executing program 4 (id=1020): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 5m29.517283573s ago: executing program 4 (id=1022): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0e000000040000000400000003"], 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, &(0x7f0000000180), &(0x7f00000004c0)=""/140}, 0x20) 5m25.690783405s ago: executing program 33 (id=1022): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0e000000040000000400000003"], 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, &(0x7f0000000180), &(0x7f00000004c0)=""/140}, 0x20) 2m43.055864234s ago: executing program 5 (id=1556): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x38, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x38}}, 0x0) 2m42.040238822s ago: executing program 5 (id=1561): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000100)={0x4, 0x0, 0x4, 0x0, 0x4002, 0xfdfd}) 2m40.977384453s ago: executing program 5 (id=1565): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000440)={0x2, 0xfffffffc, 0x6}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001600)={0x24, 0x12, 0xa01, 0x0, 0x0, {0x80}, [@nested={0x10, 0x2, 0x0, 0x1, [@nested={0xc, 0xa8, 0x0, 0x1, [@nested={0x4, 0x9a}, @nested={0x4, 0xf7}]}]}]}, 0x24}}, 0x40080) 2m40.041764571s ago: executing program 5 (id=1568): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nouid32}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}, {@nomblk_io_submit}, {@jqfmt_vfsv1}, {@auto_da_alloc}]}, 0xfa, 0x480, &(0x7f0000000300)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS7faHb3Zb9fJLZfZ6Z2X2e78w8O8/Ms7sBdKyB7CGJ+F9E/B4RfXn27hUG8qfbN6+M/X3zylgS1epbfyW19W7dvDJWrlq+bmeeqVaL/LY65V59N2J0amriYpEfmj3/wdDMpcsvTJ4fPTtxduLCyMmTx44e6DkxcrwpcWZx3dr38fT+vafeufbG2Olr7/2UpJHHHYviaJaBfOvW9XSzC2uzXQvSSXf22FvkDv4yv6TekUA7dUVEtrsqtfbfF12x/U6b6IvXPmtz9YANVK1Wq8t8Ks9VgftYEu2uAdAe5Yk+u/4tpxZ1PTaFGy/nF0BZ3LeLKV/SHWmeOFhZdH3bTAMRcXrun6+yKTboPgQAwELfZf2f5+v1/9J4OE/0ZA//L8ZQ+iPigYjYHREPRsSeiHgoorbuIxHx6BrLXzxCsrT/k16/5+BWIev/vVSMbd3d/0vLVfq7ityuWvyV5Mzk1MSRYpscjsq2M5PJxPAyZXz/6m9fNFq2sP+XTVn5ZV+wqMf17kU36MZHZ0fXE/NCNz6N2NddL/6kNi4Qxbje3ojYd49lTD7b3XDZyvEvo/Hbrlr164hn8v0/F4viLyUNxyeHXzwxcnyoN6YmjgyVR8VSP/969c1G5a8r/ibI9v+Ousf/nfj7k96ImUuXz9XGa2fWXsbVPz5veE2zxuP/1K7i+O9J3q7N6CkWfDQ6O3txOKIneX3p/JH5dyvz5fpZ/IcP1W//u2N+SzwWEfsj4kBEPJ5dFBZ1fyIinoyIQ8vE/+MrT72/9vhbM1aaxT++0v6Phft/7Ymucz98u3L8vRHRaP8fq6UOF3NW8/m32gquZ9sBAADAVpF/Bz5JB+fTyeBg/h3+PbEjnZqemX3uzPSHF8bz78r3RyUt73T1LbgfOlzcGy7zI4vyR4v7xl92ba/lB8emp8bbHTx0uJ1L2n+aZu0/82dXu2sHbLgmjKMBW5T2D51L+4fOlKzY/istqwvQes7/0Lnqtf9PGq49+M2GVgZoKed/6FyraP9z+VPjXgGwNTn/Q+fS/qEjNfxtfLqun/y3PPFv8X+GzX7ns5slwE2XiHRTVOP+T3Sv+s8sGiUqS9tytS9v/9mcbXVf1e5PJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgOb4LwAA//9RT+T0") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 2m37.762248063s ago: executing program 5 (id=1578): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0d030020000000000000130000004c0009"], 0x60}}, 0x0) 2m36.390004119s ago: executing program 5 (id=1583): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN={0x4, 0xa, 0x1}, @TCA_FQ_PIE_BYTEMODE={0x8, 0xb, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x82}, 0x2000c80c) 2m32.449193897s ago: executing program 34 (id=1583): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN={0x4, 0xa, 0x1}, @TCA_FQ_PIE_BYTEMODE={0x8, 0xb, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x82}, 0x2000c80c) 6.605901803s ago: executing program 6 (id=2057): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='devpts\x00', 0x10811, 0x0) syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000700)=ANY=[], 0x1, 0x0, 0x0) 5.700751501s ago: executing program 6 (id=2061): r0 = socket$tipc(0x1e, 0x2, 0x0) connect$tipc(r0, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x10) sendmmsg$inet(r0, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f00000056c0)=[{&(0x7f0000001240)="80349c0d9e8fcc9f44658138dc4a3c4ad42f918348474a5bc38ff0e0571fc22c8eb5cb22fdf30ced1a4c1ccb5e5b35fed7db48c1a8a7132adc5623d146ddfe2254dd2579b4284b53d1cea6206864473d31bdb00c9d1462458b678827e80c94d88099e7471a58b1463086f9cdd1ccc19fa2fc4a9dd5a56fe782d15e66648c7630f1aaa7e9820460c46e292dbb8fa6f6701048ff17f46097b1ee0750ed038f18b81b2ba014bf866062c9a6f88b5d07e13b7eddd968ba9c7a53609c7b61471a51fd85bceebc0a92b2cd7c45a7f4571e693abebc3c5ff16c8128d92476", 0xdb}, {&(0x7f0000000280)="5b4ea50f20d7212327afde5e7a457cde2dff791c69fbc3", 0x17}, {&(0x7f00000002c0)="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", 0x1e0}, {&(0x7f0000001440)="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", 0x1000}, {&(0x7f0000002440)="253c10cd0a56ebbb9e8b465670109c340c95f1d27d36cbeb7fa948545e9b18da346b70b5dc6ea12ad1a30e4f7038336f1af1d61b04de988f1755e9b3ba9919b2a4952ceda920a7f0e22dd239d4a74f2d1c854bc64f09f979aa3e9f5c25ff8ec189e5d809483583f648cd8870291200e428", 0x71}, {&(0x7f00000024c0)="2ba671ae8107530b978dd82841597ed8f4275ed9e6b9f7b73ee6324ddf688ad9d88125b82afd2e28aef7183086ce0dd4ee880fc56a2ca8b52ef8f5b5f3e475f49b0bcd201fe612703d680fdd1151dd32535b04d4697d472c7750d6c4c197162e9f872253b611b1ca20e79dcf40d1faf58a453f8db9a03fdd351b54ad4e77fa0fda7990bb281079ae7ba3994aef7380e1d6342305e2d12c57379fd12e784f48e4e832171df4576c8724e3bfd70ebc92fc11914c", 0xb3}, {&(0x7f00000025c0)="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", 0x67f}], 0x7}}], 0x1, 0x0) 5.599146066s ago: executing program 7 (id=2062): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) finit_module(0xffffffffffffffff, 0x0, 0x1) tgkill(0x0, 0x0, 0xf) 5.578222558s ago: executing program 1 (id=2063): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15) ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000140)={0x1, 0x0, 0x0, 0x400000, 0x14, "08000000080000000010000300"}) 5.178018359s ago: executing program 0 (id=2064): r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000300)={'dac02\x00', [0x2f7e, 0x5, 0xd09a, 0x3b, 0x3, 0xfffffffe, 0x20000004, 0x6, 0xffe, 0x9, 0xc, 0x7, 0x104, 0x3, 0xffff, 0x100006, 0x5, 0xa, 0x830, 0x30004, 0x10000, 0x400005, 0x800, 0x80000001, 0x402, 0x2, 0xffffff8b, 0x3, 0x4, 0x20005, 0x470f]}) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000100)={0x8000001, 0x0, 0x0, 0x0, 0x80000000}) 5.069851656s ago: executing program 2 (id=2065): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000005c0)={0x28, r1, 0x9, 0x3, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20048814}, 0x0) 4.92806521s ago: executing program 7 (id=2066): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0) mkdir(&(0x7f0000000240)='./file1/file1\x00', 0x0) 4.636112859s ago: executing program 1 (id=2067): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000800)={0x18, r1, 0x301, 0x0, 0x25dfdbfc, {0x24}, [@HEADER={0x4}]}, 0x18}}, 0x20000000) 4.525508586s ago: executing program 6 (id=2068): syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x1010c8a, &(0x7f0000000240)=ANY=[], 0x81, 0x1eb, &(0x7f0000005cc0)="$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") r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48) 4.289186975s ago: executing program 0 (id=2069): r0 = socket$l2tp6(0xa, 0x2, 0x73) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) connect$l2tp6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty, 0x0, 0x4}, 0x20) 4.180086694s ago: executing program 7 (id=2070): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0) ppoll(&(0x7f0000000000)=[{r0, 0x6200}], 0x1, 0x0, 0x0, 0x0) ioctl$TCXONC(r0, 0x540a, 0x3) 4.118011963s ago: executing program 2 (id=2071): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x1}, 0x10) write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000000000000000800040001000000", 0x24) 3.63339514s ago: executing program 1 (id=2072): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1000004, &(0x7f0000000040)=ANY=[@ANYBLOB='utf8=1,iocharset=1,uni_xlate=0,rodir,utf8=1,utf8=0,flush,uni_xlate=0,nonumtail=0,tz=UTC,codepage=1251,utf8=0,shortname=lower,iocharset=cp852,iocharset=koi8-ru,nonumtail=0,\x00'/188], 0x1, 0x380, &(0x7f0000000940)="$eJzs3U+IG1UYAPAvO9lNVtDdmygI0ZugS9ubXmyRLRT3ohL8g4jBblWSVdjgYnvodj0oHgWPevKmoAcP4lEERbx58GoFqYoH7a3Q0ifJZGbSJLvdIltZ/P2g5PG99733ZuaRTMPk7UvHo3t6Ps5cvnwpms1a1I8/fjyu1GI5sihciGkLM2IAwOFwJaX4O+Um65qzU2q3YVoAwAEafv6/EhGtWM4jb3+7V/vk0x8ADr3R//8X92pTfQ/QuLHijQObFgBwgKa+/3+gPl69MPxXhupjTwUAAIfV0889/8SJtYinWq1mxMa7W+2tdjxa1Z84E69FL9bjSCzFtYj8RqG4W0jp5Km11SOtVms7fluOdkTMjRLb+Z3CiWyY34ijsRTLo/zR3UZKKTv5xdrq0dZQRFzYHo4fG7Wtq/Pl+D/fEevVjUfRyfAl4tTa6rHWqIP2RpG/HbFTPagwmP9KLMWPL5fdpFQ8wbi2ev5oMekqf6vdiNPlWZh6EmKXRyMAAAAAAAAAAAAAAAAAAAAAAGB/Vlql5XL/nDR4zXfKWVmZUT/cHyfPH+0PtJPvD5QaKVL6662H2+9l+TY9xf5AE/vzZFs2EgQAAAAAAAAAAAAAAAAAAIBS/+xCdHq99c3+2XPd8cL2Zv/sXEQMIq9//9k3izHd5iaFej5EI6IcojUa9ly3k7KiccoiptOzweBF5JMvyxmPt2mURzFzGo3dq3q9O+//9cMqcl9W9Hy9apPF7APMxqbx2ETPG3flU7qVE1UWjo1HGtOjX0wpjUXeGU8//+JE42b0oxZRv/ULd647F2VkcXSOyzZpUPju0qv3FGe/83XKPfjQ0jMXP/j4j26nNxg5z1rY7F9L3U6taLyP0UfdpeElqNZGLfJCbXwl1Hfvp9nZuTHSyX7689l73/9hfychjUfeHKzniTZZfjifT6S/MFrYg2lOVC1W6fPFaV2fn7H4b1aYuKbXU0r1uGFtTBXu/uirT1P65fd9D1GZm3rbqP37dx4AAAAAAAAAAAAAAAAAAGBS9aPfIjL6se/8XlmPPHnwMwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA26f6+/9jhZ0LMRHZT+Hq9oysxvpmP2Lhvz5MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+5/4JAAD//0slWyw=") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) 3.468225781s ago: executing program 6 (id=2073): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x0, 0x0, 0x1000, 0x0, 0x1}, 0x48) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x28011, r0, 0x0) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000e47000/0x2000)=nil) 3.352797588s ago: executing program 2 (id=2074): r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000003000)=@abs={0x1, 0x0, 0xffffffff}, 0x6e) bind$unix(r0, &(0x7f0000003000)=@abs={0x1}, 0x6e) 3.238892844s ago: executing program 0 (id=2075): r0 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20088004, &(0x7f0000001280)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}, 0x2000007}, 0x1c) sendmmsg$inet6(r0, &(0x7f00000011c0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x9, @private2, 0x100}, 0x1c, 0x0, 0x0, &(0x7f0000000800)=ANY=[], 0x60}}], 0x1, 0x0) 2.506762221s ago: executing program 7 (id=2076): r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000080)=0x6e, 0x4) sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x2, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000002100)="0800a9fc0da6b30a", 0xffe3}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="30000000000000000000000007000000890704ac1414aa0011000000000000000000000001"], 0x30}, 0x0) 2.489487961s ago: executing program 6 (id=2077): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x200000, &(0x7f0000000f80), 0xfe, 0x54c, &(0x7f0000000400)="$eJzs3d9rW1UcAPDvTdv91nUwhvoghT04mUvX1h8TfJiPosOBvs/Q3pXRZBlNOtY6cHtwL77IEEQciH+A7z4O/wH/ioEOhoyiD75EbnrTZWvSZm22Zubzgduec+9Nzz0593t6Tk5CAhhaE9mPQsSrEfFtEnG47dho5Acn1s5bfXh9NtuSaDQ++yuJJN/XOj/Jfx/MM69ExG9fR5wsbCy3tryyUCqX08U8P1mvXJmsLa+culQpzafz6eXpmZkz78xMv//eu32r65vn//nh07sfnfnm+Or3v9w/cjuJs3EoP9Zejx240Z6ZiIn8ORmLs0+cONWHwgZJstsXwLaM5HE+FlkfcDhG8qgH/v++iogGMKQS8Q9DqjUOaM3t+zQPfmE8+HBtArSx/qNrr43Evubc6MBq8tjMKJvvjveh/KyMX/+8czvbon+vQwBs6cbNiDg9Orqx/0vy/m/7TvdwzpNl6P/g+bmbjX/e6jT+KayPf6LD+Odgh9jdjq3jv3C/D8V0lY3/Pug4/l1ftBofyXMvNcd8Y8nFS+U069tejogTMbY3y2+2nnNm9V6j27H28V+2ZeW3xoL5ddwf3fv4Y+ZK9dJO6tzuwc2I1zqOf5P19k86tH/2fJzvsYxj6Z3Xux3buv7PVuPniDc6tv+jFa1k8/XJyeb9MNm6Kzb6+9ax37uVv9v1z9r/wOb1H0/a12trT1/GT/v+Tbsd2+79vyf5vJnek++7VqrXF6ci9iSfbNw//eixrXzr/Kz+J45v3v91uv/3R8QXPdb/1tFbXU8dhPafe6r2f/rEvY+//LFb+b21/9vN1Il8Ty/9X68XuJPnDgAAAAAAAAZNISIORVIorqcLhWJx7f0dR+NAoVyt1U9erC5dnovmZ2XHY6zQWuk+3PZ+iKn8/bCt/PQT+ZmIOBIR343sb+aLs9Xy3G5XHgAAAAAAAAAAAAAAAAAAAAbEwS6f/8/8MbLbVwc8c77yG4bXlvHfj296AgaS//8wvMQ/DC/xD8NL/MPwEv8wvMQ/DC/xD8NL/AMAAAAAAAAAAAAAAAAAAAAAAAAAAEBfnT93Ltsaqw+vz2b5uavLSwvVq6fm0tpCsbI0W5ytLl4pzler8+W0OFutbPX3ytXqlanpWLo2WU9r9cna8sqFSnXpcv3CpUppPr2Qjj2XWgEAAAAAAAAAAAAAAAAAAMCLpba8slAql9NFCYltJUYH4zIk+pzY7Z4JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB75LwAA///MUDi3") setxattr$security_capability(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100), 0x0, 0x0, 0x1) llistxattr(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) 2.428605496s ago: executing program 0 (id=2078): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], 0x1, 0x21b, &(0x7f0000000300)="$eJzs2j+LHGUcB/DfnJHEC5dd8R8JiA9aqM2Q3doihyQgLiiaFaIgmXizuuy4e+wsBytirtLWl2AtlnaCpLS5xldgYXfNlSnEkWRjcnesxSHein4+zXzhmS88D8/w8BSz/9rXn44GdT4oZrGWZbF2JXbjbhbtWIs/7carL9/46fl3b7z/5mavd/WdlK5tXu90U0oXXvjxg8+/e/HO7Px731/44WzstT/cP+j+uvfs3sX9369/MqzTsE7jySwV6dZkMituVWXaGtajPKW3q7KoyzQc1+X0yPigmmxvz1Mx3tpY356WdZ2K8TyNynmaTdJsOk/Fx8VwnPI8Txvrwd/R//Zu08RB8/jNaJrmiW/i/J3Y+CVakT2ZsqeuZM/czJ7bzS4eNE1r1VPlH2H//98OHernIqqvdvo7/cVzMb45iGFUUcblaMVvce8zeWCRr73Ru3o53deOL6vbD/q3d/qPHe13ohXt5f3Oop+O9s/G+uF+N1rx9PJ+d2n/XLzy0qF+Hq34+aOYRBVbca/7qP9FJ6XX3+od61+6/x4AwH9Nnh5aen/L878aX/RPcD88dr86E5fOrHbtRNTzz0ZFVZVTQRCEh2HVJxOn4dGmr3omAAAAAAAAAAAAnMRp/E646jUCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/bn8EAAD//xrx1cI=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='.\x02\x00', 0x4) 2.350679286s ago: executing program 2 (id=2079): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88) fadvise64(r0, 0xffffeffffffffffa, 0x1, 0x4) 1.727148649s ago: executing program 7 (id=2080): r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10) listen(r0, 0xffffffff) 1.629773757s ago: executing program 1 (id=2081): socket$alg(0x26, 0x5, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}}) 1.491026559s ago: executing program 2 (id=2082): syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f00000000c0)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x29c, &(0x7f0000000840)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006) 1.394244496s ago: executing program 0 (id=2083): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000080)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f00000000c0)={0x0, 0x0, r1, r1, 0x0, 0x100, 0x0, 0x2, {0x9, 0x9, 0x9, 0x8000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x40000003, "0e19cd00000000caa3431c1d8bdffb38a310364ef87b48499c76277e5c2e3653"}}) 993.379081ms ago: executing program 7 (id=2084): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x269, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xc0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x81, 0x0, 0x7f}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000580)={0x2c, &(0x7f0000000340)=ANY=[@ANYBLOB="0025ac"], 0x0, 0x0, 0x0, 0x0}, 0x0) 916.771988ms ago: executing program 6 (id=2085): syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000000)='./file1\x00', 0x200210, &(0x7f0000000040)=ANY=[], 0x3, 0x62c, &(0x7f0000000640)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x104890, 0x0, 0x0, 0x0, &(0x7f0000000000)) rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='./bus\x00') 866.908813ms ago: executing program 1 (id=2086): mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00') pread64(r0, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000000) 476.905442ms ago: executing program 0 (id=2087): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x32b0838, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@uuid_off}]}) 93.823359ms ago: executing program 1 (id=2088): r0 = socket$kcm(0x11, 0x200000000000002, 0x300) setsockopt$sock_attach_bpf(r0, 0x107, 0x8, &(0x7f0000000000), 0x4) recvmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/222, 0xde}, 0x20) 0s ago: executing program 2 (id=2089): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000200000005000000180001801400020073797a5f74756e0000000000000000000c00038004000480"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x24000010) kernel console output (not intermixed with test programs): promiscuous mode [ 462.892288][ T3458] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 462.899883][ T3458] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 463.005215][ T3458] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 463.014597][ T3458] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 463.149521][ T3458] veth1_macvtap: left promiscuous mode [ 463.155687][ T3458] veth0_macvtap: left promiscuous mode [ 463.160341][ T8341] loop2: detected capacity change from 0 to 128 [ 463.161590][ T3458] veth1_vlan: left promiscuous mode [ 463.173906][ T3458] veth0_vlan: left promiscuous mode [ 463.699812][ T8341] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 463.843448][ T8341] ext4 filesystem being mounted at /203/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 464.051509][ T8349] syz.0.1028 uses obsolete (PF_INET,SOCK_PACKET) [ 464.164029][ T8341] EXT4-fs error (device loop2): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.2.1027: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1 [ 464.258890][ T8341] EXT4-fs (loop2): Remounting filesystem read-only [ 464.553609][ T3458] team0 (unregistering): Port device team_slave_1 removed [ 464.586463][ T3458] team0 (unregistering): Port device team_slave_0 removed [ 464.635048][ T5808] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 464.702182][ T5808] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 464.723601][ T5808] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 464.756185][ T5808] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 464.781581][ T5808] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 465.287190][ T5812] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 466.223601][ T8359] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 466.917539][ T5808] Bluetooth: hci2: command tx timeout [ 467.093294][ T8351] chnl_net:caif_netlink_parms(): no params data found [ 468.296100][ T8382] loop0: detected capacity change from 0 to 32768 [ 468.362485][ T8378] loop1: detected capacity change from 0 to 40427 [ 468.376721][ T8378] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 468.384835][ T8378] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 468.408679][ T8378] F2FS-fs (loop1): invalid crc_offset: 0 [ 468.423900][ T8378] F2FS-fs (loop1): invalid crc value [ 468.429545][ T8378] F2FS-fs (loop1): Failed to get valid F2FS checkpoint [ 468.772894][ T8382] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names,read_only [ 468.773093][ T8382] allowing incompatible features above 0.0: (unknown version) [ 468.773200][ T8382] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 468.821293][ T8382] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 468.830121][ T8382] bcachefs (loop0): initializing new filesystem [ 468.869502][ T8382] bcachefs (loop0): going read-write [ 469.023584][ T5808] Bluetooth: hci2: command tx timeout [ 469.164064][ T8382] bcachefs (loop0): marking superblocks [ 469.229674][ T8382] bcachefs (loop0): initializing freespace [ 469.265583][ T8382] bcachefs (loop0): done initializing freespace [ 469.288917][ T8382] bcachefs (loop0): reading snapshots table [ 469.295452][ T8382] bcachefs (loop0): reading snapshots done [ 469.413572][ T740] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 469.422854][ T740] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 469.509571][ T8382] bcachefs (loop0): loop0: Superblock write was silently dropped! (seq 0 expected 42) [ 469.595713][ T8382] bcachefs (loop0): going read-only [ 469.601208][ T8382] bcachefs (loop0): finished waiting for writes to stop [ 469.624165][ T8382] bcachefs (loop0): flushing journal and stopping allocators, journal seq 2 [ 469.797513][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 469.807392][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 469.853885][ T8382] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 2 [ 469.875766][ T8382] bcachefs (loop0): clean shutdown complete, journal seq 3 [ 469.885867][ T8382] bcachefs (loop0): marking filesystem clean [ 469.947199][ T8382] bcachefs (loop0): done starting filesystem [ 470.169868][ T8402] loop1: detected capacity change from 0 to 64 [ 470.371239][ T8382] syz.0.1034 (8382) used greatest stack depth: 1168 bytes left [ 470.388337][ T5803] bcachefs (loop0): shutting down [ 470.422587][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 470.596591][ T5803] bcachefs (loop0): shutdown complete [ 471.069256][ T5808] Bluetooth: hci2: command tx timeout [ 471.653738][ T8413] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1042'. [ 471.681155][ T8351] bridge0: port 1(bridge_slave_0) entered blocking state [ 471.689214][ T8351] bridge0: port 1(bridge_slave_0) entered disabled state [ 471.699701][ T8351] bridge_slave_0: entered allmulticast mode [ 471.718763][ T8351] bridge_slave_0: entered promiscuous mode [ 471.914545][ T8351] bridge0: port 2(bridge_slave_1) entered blocking state [ 471.922490][ T8351] bridge0: port 2(bridge_slave_1) entered disabled state [ 471.930655][ T8351] bridge_slave_1: entered allmulticast mode [ 471.942276][ T8351] bridge_slave_1: entered promiscuous mode [ 472.660454][ T8351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 472.810529][ T8351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 473.158713][ T5808] Bluetooth: hci2: command tx timeout [ 473.413876][ T8351] team0: Port device team_slave_0 added [ 473.530576][ T8351] team0: Port device team_slave_1 added [ 473.778153][ T8427] loop2: detected capacity change from 0 to 1024 [ 474.058354][ T8351] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 474.066378][ T8351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 474.092983][ T8351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 474.169310][ T8351] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 474.176776][ T8351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 474.203435][ T8351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 474.801221][ T8351] hsr_slave_0: entered promiscuous mode [ 474.812417][ T8351] hsr_slave_1: entered promiscuous mode [ 474.828964][ T8351] debugfs: 'hsr0' already exists in 'hsr' [ 474.835822][ T8351] Cannot create hsr debugfs directory [ 474.853333][ T3937] hfsplus: b-tree write err: -5, ino 4 [ 475.607552][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.614635][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 477.161647][ T8351] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 477.297213][ T8351] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 477.391188][ T8351] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 477.505032][ T8351] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 477.713762][ T8459] loop5: detected capacity change from 0 to 64 [ 478.219530][ T8462] pim6reg: entered allmulticast mode [ 479.628074][ T8465] loop0: detected capacity change from 0 to 32768 [ 479.850455][ T8465] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 479.898602][ T8351] 8021q: adding VLAN 0 to HW filter on device bond0 [ 480.258598][ T8351] 8021q: adding VLAN 0 to HW filter on device team0 [ 480.410118][ T4146] bridge0: port 1(bridge_slave_0) entered blocking state [ 480.417856][ T4146] bridge0: port 1(bridge_slave_0) entered forwarding state [ 480.494181][ T8465] XFS (loop0): Ending clean mount [ 480.627547][ T4146] bridge0: port 2(bridge_slave_1) entered blocking state [ 480.635754][ T4146] bridge0: port 2(bridge_slave_1) entered forwarding state [ 480.706601][ T5803] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 481.450581][ T8482] loop5: detected capacity change from 0 to 4096 [ 481.792873][ T8487] loop1: detected capacity change from 0 to 32768 [ 481.839351][ T8351] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 481.863254][ T8487] bcachefs (/dev/loop1): error reading default superblock: Unsupported superblock version_min 0.2: (unknown version) (min 0.9: (unknown version), max 1.28: inode_has_case_insensitive) [ 481.981271][ T8487] bcachefs (/dev/loop1): error validating superblock: Not a bcachefs superblock (got magic 00000000-0000-0000-0000-000000000000)Bad sb offset (got 288230376151715840, read from 4096) [ 482.000533][ T8487] bcachefs: bch2_fs_get_tree() error: invalid_sb_offset [ 482.174569][ T8492] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 483.249048][ T8496] loop0: detected capacity change from 0 to 2048 [ 483.547209][ T8496] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 483.944770][ T8496] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376) [ 485.469136][ T8351] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 485.671272][ T8511] loop1: detected capacity change from 0 to 32768 [ 485.760358][ T8511] bcachefs (/dev/loop1): error validating superblock: Invalid option block_size: must be a power of two [ 485.773244][ T8511] bcachefs: bch2_fs_get_tree() error: opt_parse_error [ 487.208237][ T5868] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 487.507544][ T5868] usb 2-1: config index 0 descriptor too short (expected 23569, got 27) [ 487.516495][ T5868] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 487.665273][ T5868] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 487.675005][ T5868] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 487.684206][ T5868] usb 2-1: Manufacturer: syz [ 487.826341][ T5868] usb 2-1: config 0 descriptor?? [ 488.525995][ T5868] rc_core: IR keymap rc-hauppauge not found [ 488.532384][ T5868] Registered IR keymap rc-empty [ 488.540595][ T5868] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 488.556691][ T5868] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input10 [ 488.803947][ T8549] rc rc0: two consecutive events of type space [ 489.013557][ T11] usb 2-1: USB disconnect, device number 5 [ 489.276716][ T8557] loop2: detected capacity change from 0 to 256 [ 489.822784][ T8557] FAT-fs (loop2): Directory bread(block 64) failed [ 489.829884][ T8557] FAT-fs (loop2): Directory bread(block 65) failed [ 489.837109][ T8557] FAT-fs (loop2): Directory bread(block 66) failed [ 489.844151][ T8557] FAT-fs (loop2): Directory bread(block 67) failed [ 489.851141][ T8557] FAT-fs (loop2): Directory bread(block 68) failed [ 489.858073][ T8557] FAT-fs (loop2): Directory bread(block 69) failed [ 489.865281][ T8557] FAT-fs (loop2): Directory bread(block 70) failed [ 489.872435][ T8557] FAT-fs (loop2): Directory bread(block 71) failed [ 489.879337][ T8557] FAT-fs (loop2): Directory bread(block 72) failed [ 489.886375][ T8557] FAT-fs (loop2): Directory bread(block 73) failed [ 490.029807][ T8351] veth0_vlan: entered promiscuous mode [ 490.193456][ T8351] veth1_vlan: entered promiscuous mode [ 490.895974][ T8351] veth0_macvtap: entered promiscuous mode [ 491.110053][ T8351] veth1_macvtap: entered promiscuous mode [ 491.502964][ T8351] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 491.676896][ T8351] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 491.845071][ T4601] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.937472][ T4601] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.005409][ T4601] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.108637][ T4601] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.993161][ T8589] loop5: detected capacity change from 0 to 128 [ 494.880037][ T8609] loop2: detected capacity change from 0 to 64 [ 495.140793][ T8609] Trying to free block not in datazone [ 495.151108][ T8609] Trying to free block not in datazone [ 495.574242][ T8616] loop0: detected capacity change from 0 to 1024 [ 497.056716][ T8621] loop5: detected capacity change from 0 to 40427 [ 497.157495][ T8621] F2FS-fs (loop5): invalid crc value [ 497.608392][ T8621] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 497.649810][ T8621] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4 [ 498.422304][ T5808] Bluetooth: hci3: command 0x0406 tx timeout [ 499.096170][ T8642] loop0: detected capacity change from 0 to 128 [ 499.143598][ T8642] ufs: You didn't specify the type of your ufs filesystem [ 499.143598][ T8642] [ 499.143598][ T8642] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 499.143598][ T8642] [ 499.143598][ T8642] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 499.299018][ T8642] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 499.438314][ T8642] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1112'. [ 500.422177][ T8654] loop0: detected capacity change from 0 to 512 [ 500.424481][ T8653] sp0: Synchronizing with TNC [ 500.520101][ T8654] EXT4-fs: Ignoring removed nobh option [ 500.657360][ T8652] loop1: detected capacity change from 0 to 1024 [ 500.752313][ T8654] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117 [ 500.903633][ T8654] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1115: invalid indirect mapped block 256 (level 1) [ 501.002766][ T8654] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1115: invalid indirect mapped block 2683928664 (level 1) [ 501.094197][ T8654] EXT4-fs (loop0): 1 truncate cleaned up [ 501.102863][ T8654] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 501.429401][ T8654] EXT4-fs error (device loop0): ext4_lookup:1787: inode #14: comm syz.0.1115: invalid fast symlink length 39 [ 501.563223][ T740] hfsplus: b-tree write err: -5, ino 4 [ 502.103284][ T8657] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0 [ 502.148786][ T8657] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0 [ 502.239174][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.265921][ T8666] loop1: detected capacity change from 0 to 512 [ 502.344399][ T8666] EXT4-fs: Ignoring removed nomblk_io_submit option [ 502.352298][ T8666] EXT4-fs: Ignoring removed bh option [ 502.594490][ T8666] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 502.618618][ T8666] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #11: comm syz.1.1117: corrupted inode contents [ 502.673921][ T8666] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #11: comm syz.1.1117: mark_inode_dirty error [ 502.753639][ T8666] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1117: invalid indirect mapped block 1 (level 1) [ 502.844656][ T8666] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #11: comm syz.1.1117: corrupted inode contents [ 502.948383][ T8666] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 502.992887][ T8666] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #11: comm syz.1.1117: corrupted inode contents [ 503.082806][ T8666] EXT4-fs error (device loop1): ext4_truncate:4666: inode #11: comm syz.1.1117: mark_inode_dirty error [ 503.192590][ T8666] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 503.290301][ T8666] EXT4-fs (loop1): 1 truncate cleaned up [ 503.298982][ T8666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 503.514440][ T8666] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 13: comm syz.1.1117: path /224/file0: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0 [ 503.569310][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 503.578670][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 503.961965][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 503.973071][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 504.130340][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.548843][ T8706] loop2: detected capacity change from 0 to 47 [ 509.683257][ T8738] loop6: detected capacity change from 0 to 512 [ 509.748462][ T8738] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 509.928980][ T8738] EXT4-fs (loop6): 1 truncate cleaned up [ 509.938788][ T8738] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 510.848373][ T8751] loop1: detected capacity change from 0 to 128 [ 510.875552][ T8351] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 510.963670][ T8751] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 511.130130][ T8751] hpfs: filesystem error: improperly stopped [ 511.137270][ T8751] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 511.145808][ T8751] hpfs: You really don't want any checks? You are crazy... [ 511.245871][ T8751] hpfs: hpfs_map_sector(): read error [ 511.252442][ T8751] hpfs: code page support is disabled [ 511.333257][ T8751] hpfs: hpfs_map_4sectors(): unaligned read [ 511.339670][ T8751] hpfs: hpfs_map_4sectors(): unaligned read [ 511.346264][ T8751] hpfs: filesystem error: unable to find root dir [ 511.492472][ T11] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 511.735794][ T11] usb 1-1: Using ep0 maxpacket: 8 [ 511.789878][ T11] usb 1-1: too many endpoints for config 0 interface 0 altsetting 2: 129, using maximum allowed: 30 [ 511.801373][ T11] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 136, changing to 11 [ 511.813129][ T11] usb 1-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 129 [ 511.834128][ T11] usb 1-1: config 0 interface 0 has no altsetting 0 [ 511.841155][ T11] usb 1-1: New USB device found, idVendor=0c70, idProduct=f003, bcdDevice= 0.00 [ 511.853524][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 512.170921][ T11] usb 1-1: config 0 descriptor?? [ 512.772541][ T11] aquacomputer_d5next 0003:0C70:F003.0005: unknown main item tag 0x0 [ 512.781038][ T11] aquacomputer_d5next 0003:0C70:F003.0005: unknown main item tag 0x0 [ 512.791053][ T11] aquacomputer_d5next 0003:0C70:F003.0005: unknown main item tag 0x0 [ 513.004641][ T11] aquacomputer_d5next 0003:0C70:F003.0005: hidraw0: USB HID v0.03 Device [HID 0c70:f003] on usb-dummy_hcd.0-1/input0 [ 513.144182][ T11] usb 1-1: USB disconnect, device number 7 [ 513.705899][ T8781] program syz.6.1153 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 514.596853][ T11] kernel write not supported for file /snd/seq (pid: 11 comm: kworker/0:1) [ 514.774211][ T8780] loop1: detected capacity change from 0 to 40427 [ 514.796390][ T8780] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(2) [ 514.806231][ T8780] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 514.826538][ T8780] F2FS-fs (loop1): Invalid segment/section count (31768 != 24 * 1) [ 514.834923][ T8780] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 514.927431][ T8788] loop5: detected capacity change from 0 to 1024 [ 515.078816][ T8788] EXT4-fs: Ignoring removed mblk_io_submit option [ 515.086516][ T8788] EXT4-fs: inline encryption not supported [ 515.374495][ T8788] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 515.590718][ T8793] loop6: detected capacity change from 0 to 256 [ 515.625199][ T8788] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c842e018, mo2=0000] [ 515.665499][ T8793] exfat: Deprecated parameter 'namecase' [ 515.779947][ T8788] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.1156: bad orphan inode 11 [ 515.872270][ T8788] ext4_test_bit(bit=10, block=4) = 1 [ 515.877808][ T8788] is_bad_inode(inode)=0 [ 515.882526][ T8788] NEXT_ORPHAN(inode)=3254779904 [ 515.887564][ T8788] max_ino=32 [ 515.890928][ T8788] i_nlink=0 [ 515.975777][ T8791] fido_id[8791]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 516.023018][ T8788] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.1156: lblock 2 mapped to illegal pblock 2 (length 1) [ 516.065733][ T8793] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 516.080211][ T8788] Quota error (device loop5): qtree_write_dquot: dquota write failed [ 516.089094][ T8788] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.1156: lblock 0 mapped to illegal pblock 48 (length 1) [ 516.143397][ T8800] RDS: rds_bind could not find a transport for ::4000:0:20:0, load rds_tcp or rds_rdma? [ 516.288519][ T8788] Quota error (device loop5): v2_write_file_info: Can't write info structure [ 516.297921][ T8788] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1156: Failed to acquire dquot type 0 [ 516.356456][ T8788] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 516.412309][ T8788] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.1156: mark_inode_dirty error [ 516.522918][ T8788] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 516.545219][ T8788] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 516.704122][ T8788] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #2: block 16: comm syz.5.1156: lblock 0 mapped to illegal pblock 16 (length 1) [ 517.223541][ T8811] loop2: detected capacity change from 0 to 16 [ 517.273305][ T8050] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.413216][ T8050] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 517.484474][ T8050] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 517.626100][ T8050] EXT4-fs error (device loop5): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error [ 518.204486][ T8819] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1167'. [ 518.822187][ T5871] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 519.082639][ T5871] usb 3-1: config 0 interface 0 has no altsetting 0 [ 519.097238][ T5871] usb 3-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 519.109706][ T5871] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 519.164141][ T8831] loop0: detected capacity change from 0 to 64 [ 519.225277][ T5871] usb 3-1: config 0 descriptor?? [ 519.402151][ T30] audit: type=1800 audit(1757544514.029:35): pid=8831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1171" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 519.754388][ T5871] zeroplus 0003:0C12:0005.0006: item fetching failed at offset 0/3 [ 519.827515][ T5871] zeroplus 0003:0C12:0005.0006: parse failed [ 519.835544][ T5871] zeroplus 0003:0C12:0005.0006: probe with driver zeroplus failed with error -22 [ 519.980395][ T5871] usb 3-1: USB disconnect, device number 6 [ 525.591078][ T8911] loop1: detected capacity change from 0 to 128 [ 525.693144][ T8911] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 525.781336][ T8911] hpfs: filesystem error: improperly stopped [ 525.788151][ T8911] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 525.796620][ T8911] hpfs: You really don't want any checks? You are crazy... [ 525.932767][ T8911] hpfs: hpfs_map_sector(): read error [ 525.938867][ T8911] hpfs: code page support is disabled [ 526.007668][ T8911] hpfs: hpfs_map_4sectors(): unaligned read [ 526.044433][ T8911] hpfs: hpfs_map_4sectors(): unaligned read [ 526.060039][ T8911] hpfs: filesystem error: unable to find root dir [ 526.136857][ T8920] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 526.147008][ T8920] overlayfs: missing 'lowerdir' [ 527.146568][ T8923] loop0: detected capacity change from 0 to 4096 [ 527.196233][ T8933] loop5: detected capacity change from 0 to 256 [ 527.248620][ T8933] exfat: Deprecated parameter 'namecase' [ 527.255290][ T8933] exfat: Deprecated parameter 'namecase' [ 527.345184][ T8923] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 527.636988][ T8923] EXT4-fs error (device loop0): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.0.1206: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 527.675423][ T8933] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xec4b13f1, utbl_chksum : 0xe619d30d) [ 527.754189][ T8923] EXT4-fs error (device loop0): ext4_get_first_dir_block:3552: inode #12: comm syz.0.1206: directory missing '..' [ 528.046888][ T8941] loop6: detected capacity change from 0 to 1024 [ 528.190996][ T8946] veth1_macvtap: left promiscuous mode [ 528.206932][ T8946] macsec0: entered promiscuous mode [ 528.215643][ T8946] macsec0: entered allmulticast mode [ 528.317891][ T8947] veth1_macvtap: entered promiscuous mode [ 528.324617][ T8947] veth1_macvtap: entered allmulticast mode [ 528.332278][ T8947] macsec0: left promiscuous mode [ 528.338434][ T8947] macsec0: left allmulticast mode [ 528.344248][ T8947] veth1_macvtap: left allmulticast mode [ 528.583485][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 530.429239][ T8967] loop2: detected capacity change from 0 to 512 [ 530.566914][ T8967] EXT4-fs (loop2): orphan cleanup on readonly fs [ 530.582853][ T8967] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1223: iget: bad extended attribute block 1 [ 530.608290][ T8967] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1223: couldn't read orphan inode 15 (err -117) [ 530.670734][ T5808] Bluetooth: hci1: command 0x0406 tx timeout [ 530.684610][ T8967] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 531.364603][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 531.616161][ T8985] netlink: 'syz.0.1228': attribute type 4 has an invalid length. [ 531.624914][ T8985] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1228'. [ 531.926183][ T8991] loop5: detected capacity change from 0 to 256 [ 532.143256][ T8991] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 198, start 00000040) [ 532.154628][ T8991] FAT-fs (loop5): Filesystem has been set read-only [ 532.274628][ T8991] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000040) [ 533.677905][ T9004] loop0: detected capacity change from 0 to 256 [ 536.328716][ T9030] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1247'. [ 537.125419][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 537.132661][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 537.763840][ T9039] loop5: detected capacity change from 0 to 32768 [ 538.119460][ T9047] loop1: detected capacity change from 0 to 512 [ 538.193206][ T9039] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 538.292586][ T9049] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 538.299385][ T9049] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 538.307904][ T9049] vhci_hcd vhci_hcd.0: Device attached [ 538.437315][ T8050] ocfs2: Unmounting device (7,5) on (node local) [ 538.475856][ T9052] vhci_hcd: connection closed [ 538.502256][ T4146] vhci_hcd: stop threads [ 538.511493][ T4146] vhci_hcd: release socket [ 538.517198][ T4146] vhci_hcd: disconnect device [ 538.522859][ T5868] vhci_hcd: vhci_device speed not set [ 538.756962][ T9047] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 538.770361][ T9047] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 539.645478][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 539.697905][ T9060] loop5: detected capacity change from 0 to 512 [ 539.973850][ T9060] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 540.083855][ T9060] EXT4-fs (loop5): 1 truncate cleaned up [ 540.092483][ T9060] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 540.314297][ T9060] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 541.039041][ T8050] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.752831][ T11] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 542.957749][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1270'. [ 543.023371][ T11] usb 1-1: Using ep0 maxpacket: 8 [ 543.107751][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1270'. [ 543.126891][ T11] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 543.135864][ T11] usb 1-1: config 179 has no interface number 0 [ 543.142864][ T11] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 543.162142][ T11] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 543.176219][ T11] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 543.187857][ T11] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 543.199922][ T11] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 543.213721][ T11] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 543.223357][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 543.228103][ T9091] loop1: detected capacity change from 0 to 32768 [ 543.279899][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1270'. [ 543.382623][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1270'. [ 543.558229][ T9091] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,compression=gzip,journal_flush_disabled,recovery_pass_last=check_topology,nojournal_transaction_names,read_only,no_data_io [ 543.558413][ T9091] allowing incompatible features above 0.0: (unknown version) [ 543.558521][ T9091] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 543.604714][ T9091] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 543.618671][ T9091] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 543.622140][ T5871] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 543.628567][ T9091] bcachefs (loop1): Version upgrade required: [ 543.628567][ T9091] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 543.628567][ T9091] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 543.628567][ T9091] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 543.782158][ T9092] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 543.958472][ T9091] bcachefs (loop1): btree node read error at btree alloc level 0/0 [ 543.958591][ T9091] u64s 11 type btree_ptr_v2 283673999966207:U64_MAX:U32_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 543.958726][ T9091] loop1 node offset 0/24 bset u64s 0: incorrect max key SPOS_MAX [ 543.958818][ T9091] loop1 btree validate error [ 543.958897][ T9091] flagging btree alloc lost data [ 543.958982][ T9091] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 543.959081][ T9091] ret btree_node_read_err_bad_node [ 544.012973][ T5871] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 544.015042][ T9091] bcachefs (loop1): error reading btree root btree=alloc level=0: btree_node_read_error, fixing [ 544.020132][ T5871] usb 3-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00 [ 544.052508][ T5871] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 544.215954][ T9091] bcachefs (loop1): check_topology... [ 544.224001][ T5871] usb 3-1: config 0 descriptor?? [ 544.275593][ T9091] done [ 544.282397][ T9091] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean [ 544.360732][ T9091] bcachefs (loop1): done starting filesystem [ 544.599415][ T5868] usb 1-1: USB disconnect, device number 8 [ 544.601911][ C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 544.615551][ C0] dummy_hcd dummy_hcd.0: timer fired with no URBs pending? [ 544.667020][ T5805] bcachefs (loop1): shutting down [ 544.853590][ T9105] loop6: detected capacity change from 0 to 1024 [ 544.860814][ T5871] itetech 0003:258A:6A88.0007: item fetching failed at offset 5/7 [ 544.880301][ T5805] bcachefs (loop1): shutdown complete [ 544.962638][ T5871] itetech 0003:258A:6A88.0007: probe with driver itetech failed with error -22 [ 545.064830][ T5871] usb 3-1: USB disconnect, device number 7 [ 545.398961][ T9108] netlink: 332 bytes leftover after parsing attributes in process `syz.5.1276'. [ 545.418408][ T9108] netlink: 'syz.5.1276': attribute type 9 has an invalid length. [ 545.429426][ T9108] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1276'. [ 545.438955][ T9108] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1276'. [ 548.228748][ T9116] loop2: detected capacity change from 0 to 32768 [ 548.239248][ T9116] gfs2: statfs_percent mount option requires a numeric argument between 0 and 100 [ 548.305552][ T9120] loop0: detected capacity change from 0 to 1024 [ 549.327161][ T4601] hfsplus: b-tree write err: -5, ino 4 [ 549.717110][ T9132] loop2: detected capacity change from 0 to 16 [ 550.088757][ T9132] erofs (device loop2): mounted with root inode @ nid 36. [ 550.664255][ T9137] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1286'. [ 550.999333][ T9135] loop5: detected capacity change from 0 to 32768 [ 551.070873][ T9135] ocfs2: Slot 0 on device (7,5) was already allocated to this node! [ 551.088329][ T9135] (syz.5.1287,9135,1):ocfs2_journal_init:961 ERROR: Journal file size (0) is too small! [ 551.098638][ T9135] (syz.5.1287,9135,1):ocfs2_check_volume:2347 ERROR: Could not initialize journal! [ 551.108418][ T9135] (syz.5.1287,9135,1):ocfs2_check_volume:2432 ERROR: status = -22 [ 551.117637][ T9135] (syz.5.1287,9135,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 551.129355][ T9135] (syz.5.1287,9135,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 551.944165][ T5871] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 552.302547][ T5871] usb 7-1: unable to get BOS descriptor or descriptor too short [ 552.387966][ T5871] usb 7-1: config 6 has an invalid interface number: 158 but max is 0 [ 552.397564][ T5871] usb 7-1: config 6 has no interface number 0 [ 552.404484][ T5871] usb 7-1: config 6 interface 158 has no altsetting 0 [ 553.173403][ T5871] usb 7-1: New USB device found, idVendor=0bda, idProduct=0140, bcdDevice=da.29 [ 553.186271][ T5871] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 553.202205][ T5871] usb 7-1: Product: syz [ 553.206617][ T5871] usb 7-1: Manufacturer: syz [ 553.211471][ T5871] usb 7-1: SerialNumber: syz [ 554.342767][ T9155] loop0: detected capacity change from 0 to 512 [ 554.597651][ T9155] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 554.606795][ T9155] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 554.665454][ T5808] Bluetooth: hci4: command 0x0406 tx timeout [ 554.772727][ T5868] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 554.799164][ T9155] System zones: 0-1, 15-15, 18-18, 34-34 [ 554.897227][ T9155] EXT4-fs (loop0): orphan cleanup on readonly fs [ 554.904756][ T9155] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 554.914993][ T9155] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 554.938697][ T9155] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 555.015903][ T9155] EXT4-fs (loop0): 1 truncate cleaned up [ 555.024579][ T9155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 555.153279][ T5868] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 555.167676][ T5868] usb 6-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00 [ 555.177442][ T5868] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 555.457476][ T5868] usb 6-1: config 0 descriptor?? [ 556.107291][ T5868] waltop 0003:172F:0502.0008: unknown main item tag 0x0 [ 556.115144][ T5868] waltop 0003:172F:0502.0008: item fetching failed at offset 4/5 [ 556.168806][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.244616][ T5868] waltop 0003:172F:0502.0008: probe with driver waltop failed with error -22 [ 556.449493][ T5871] rtsx_usb 7-1:6.158: probe with driver rtsx_usb failed with error -71 [ 556.452444][ T5868] usb 6-1: USB disconnect, device number 2 [ 556.677499][ T5871] usb 7-1: USB disconnect, device number 2 [ 557.021964][ T11] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 557.322275][ T11] usb 1-1: Using ep0 maxpacket: 16 [ 557.381463][ T11] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 557.405622][ T11] usb 1-1: config 0 has no interface number 0 [ 557.415233][ T11] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 557.429782][ T11] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 557.440121][ T11] usb 1-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 557.449677][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 557.850859][ T11] usb 1-1: config 0 descriptor?? [ 558.793678][ T11] uclogic 0003:28BD:0071.0009: failed retrieving string descriptor #100: -71 [ 558.808976][ T11] uclogic 0003:28BD:0071.0009: failed retrieving pen parameters: -71 [ 558.830795][ T11] uclogic 0003:28BD:0071.0009: pen probing failed: -71 [ 558.831272][ T9187] loop1: detected capacity change from 0 to 32768 [ 558.843955][ T11] uclogic 0003:28BD:0071.0009: failed probing parameters: -71 [ 558.852979][ T11] uclogic 0003:28BD:0071.0009: probe with driver uclogic failed with error -71 [ 558.949216][ T9187] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section replicas: invalid device 1 in entry (unknown data_type 122): 119/246 [0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 5 5 6 7 8 9 9 10 11 14 24 27 31 35 43 47 47 51 56 65 80 89 96 102 128 132 172 173 174 179 205 222 235 245] [ 558.949216][ T9187] replicas (size 64): [ 558.949216][ T9187] (unknown data_type 122): 119/246 [43 0 222 65 89 132 205 31 174 173 5 172 235 128 0 0 0 0 0 0 0 0 0 0 1 8 0 0 0 179 245 51 102 0 0 0 0 0 0 14 96 0 0 0 0 0 0 0 0 0 0 0 0 5 0 0 0 9 0 0 0 9 0 0 0 0 0 0 0 7 0 0 0 0 0 0 0 24 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 80 0 0 0 10 0 0 0 0 0 0 0 0 0 0 0 56 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 [ 558.950416][ T9187] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry [ 559.456184][ T11] usb 1-1: USB disconnect, device number 9 [ 559.979170][ T9195] loop2: detected capacity change from 0 to 512 [ 560.309882][ T9195] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 560.323457][ T9195] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 560.567841][ T9195] EXT4-fs error (device loop2): ext4_readdir:264: inode #12: block 32: comm syz.2.1305: path /269/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=12, rec_len=106, size=2048 fake=1 [ 561.502311][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.466826][ T9212] loop5: detected capacity change from 0 to 40427 [ 562.528356][ T9212] F2FS-fs (loop5): build fault injection rate: 14 [ 562.540432][ T9212] F2FS-fs (loop5): build fault injection type: 0x3 [ 562.553200][ T9212] F2FS-fs (loop5): invalid crc value [ 562.559338][ T9226] capability: warning: `syz.1.1315' uses 32-bit capabilities (legacy support in use) [ 562.595206][ T9212] F2FS-fs (loop5): inject kmalloc in f2fs_kmalloc of f2fs_fill_super+0x78b6/0xa750 [ 562.616660][ T9212] F2FS-fs (loop5): Failed to initialize F2FS segment manager (-12) [ 564.496282][ T9245] loop5: detected capacity change from 0 to 1024 [ 564.959269][ T9245] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. leaving read-only. [ 565.554094][ T9252] loop6: detected capacity change from 0 to 2048 [ 565.585034][ T11] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 565.802115][ T11] usb 2-1: Using ep0 maxpacket: 32 [ 565.837249][ T9252] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 565.853833][ T9252] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 565.880883][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 565.903095][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 565.916006][ T11] usb 2-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 565.928829][ T11] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 566.078510][ T11] usb 2-1: config 0 descriptor?? [ 566.141282][ T9262] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 566.144035][ T9252] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #16: comm syz.6.1324: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0) [ 566.546296][ T11] isku 0003:1E7D:319C.000A: ignoring exceeding usage max [ 566.647814][ T11] isku 0003:1E7D:319C.000A: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.1-1/input0 [ 566.778539][ T11] usb 2-1: USB disconnect, device number 6 [ 566.806238][ T8351] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 566.854265][ T9270] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1329'. [ 567.136080][ T9273] loop5: detected capacity change from 0 to 512 [ 567.186001][ T9273] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 567.482576][ T9273] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 567.496126][ T9273] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 567.735344][ T11] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 567.792613][ T30] audit: type=1800 audit(1757544562.429:36): pid=9273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1330" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 567.793582][ T9283] EXT4-fs error (device loop5): __ext4_new_inode:1279: comm syz.5.1330: failed to insert inode 16: doubly allocated? [ 568.025734][ T11] usb 7-1: Using ep0 maxpacket: 32 [ 568.088823][ T11] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 568.103337][ T11] usb 7-1: New USB device found, idVendor=9022, idProduct=d662, bcdDevice=b3.0e [ 568.112976][ T11] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 568.163232][ T9288] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1333'. [ 568.260823][ T11] usb 7-1: config 0 descriptor?? [ 568.362745][ T11] dvb-usb: found a 'TeVii S662' in warm state. [ 568.369136][ T11] dw2102: su3000_power_ctrl: 1, initialized 0 [ 568.375670][ T11] dvb-usb: bulk message failed: -22 (2/0) [ 568.584631][ T11] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 568.607580][ T9279] dvb-usb: bulk message failed: -22 (4/0) [ 568.618548][ T9279] dw2102: i2c transfer failed. [ 568.631451][ T8050] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.683164][ T11] dvbdev: DVB: registering new adapter (TeVii S662) [ 568.690078][ T11] usb 7-1: media controller created [ 568.698939][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.708005][ T11] dw2102: i2c transfer failed. [ 568.713294][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.719208][ T11] dw2102: i2c transfer failed. [ 568.727567][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.733631][ T11] dw2102: i2c transfer failed. [ 568.738559][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.744812][ T11] dw2102: i2c transfer failed. [ 568.761800][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.777343][ T11] dw2102: i2c transfer failed. [ 568.782797][ T11] dvb-usb: bulk message failed: -22 (6/0) [ 568.788714][ T11] dw2102: i2c transfer failed. [ 568.797101][ T11] dvb-usb: MAC address: 02:02:02:02:02:02 [ 569.129327][ T11] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 569.174797][ T9295] loop1: detected capacity change from 0 to 2048 [ 569.239634][ T9295] NILFS (loop1): bad btree root (ino=6): level = 5, flags = 0xbd, nchildren = 0 [ 569.249237][ T9295] NILFS (loop1): ifile inode (checkpoint number=2) corrupted [ 569.257499][ T9295] NILFS (loop1): error -5 while loading last checkpoint (checkpoint number=2) [ 569.340435][ T9294] loop2: detected capacity change from 0 to 256 [ 569.654776][ T11] dvb-usb: bulk message failed: -22 (3/0) [ 569.660876][ T11] dw2102: command 0x0e transfer failed. [ 569.670248][ T11] dvb-usb: bulk message failed: -22 (3/0) [ 569.688330][ T11] dw2102: command 0x0e transfer failed. [ 569.795966][ T9294] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 570.017262][ T11] dvb-usb: bulk message failed: -22 (3/0) [ 570.023592][ T11] dw2102: command 0x0e transfer failed. [ 570.029393][ T11] dvb-usb: bulk message failed: -22 (3/0) [ 570.038836][ T11] dw2102: command 0x0e transfer failed. [ 570.045076][ T11] dvb-usb: bulk message failed: -22 (1/0) [ 570.050995][ T11] dw2102: command 0x51 transfer failed. [ 570.057475][ T11] dvb-usb: bulk message failed: -22 (5/0) [ 570.066691][ T11] dw2102: i2c probe for address 0x68 failed. [ 570.073107][ T11] dvb-usb: bulk message failed: -22 (5/0) [ 570.079015][ T11] dw2102: i2c probe for address 0x69 failed. [ 570.097054][ T11] dvb-usb: bulk message failed: -22 (5/0) [ 570.109510][ T11] dw2102: i2c probe for address 0x6a failed. [ 570.115993][ T11] dw2102: probing for demodulator failed. Is the external power switched on? [ 570.125123][ T11] dvb-usb: no frontend was attached by 'TeVii S662' [ 571.322297][ T11] rc_core: IR keymap rc-tt-1500 not found [ 571.328341][ T11] Registered IR keymap rc-empty [ 571.337271][ T11] rc rc0: TeVii S662 as /devices/platform/dummy_hcd.6/usb7/7-1/rc/rc0 [ 571.353709][ T11] input: TeVii S662 as /devices/platform/dummy_hcd.6/usb7/7-1/rc/rc0/input11 [ 571.430631][ T9318] loop0: detected capacity change from 0 to 512 [ 571.509899][ T11] dvb-usb: schedule remote query interval to 250 msecs. [ 571.533190][ T11] dw2102: su3000_power_ctrl: 0, initialized 1 [ 571.539589][ T11] dvb-usb: TeVii S662 successfully initialized and connected. [ 571.598180][ T9318] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e042c118, mo2=0002] [ 571.727080][ T9318] System zones: 1-12 [ 571.779238][ T11] usb 7-1: USB disconnect, device number 3 [ 571.805391][ T9318] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1346: corrupted in-inode xattr: e_value size too large [ 571.910989][ T9318] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1346: couldn't read orphan inode 15 (err -117) [ 571.973686][ T9318] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 572.668271][ T11] dvb-usb: TeVii S662 successfully deinitialized and disconnected. [ 572.692586][ T9325] loop1: detected capacity change from 0 to 2364 [ 573.145939][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 573.223051][ T5808] Bluetooth: hci2: command tx timeout [ 573.448833][ T9335] loop2: detected capacity change from 0 to 64 [ 573.554318][ T9335] syz.2.1351: attempt to access beyond end of device [ 573.554318][ T9335] loop2: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 573.577662][ T9335] Buffer I/O error on dev loop2, logical block 512, async page read [ 573.592438][ T9335] syz.2.1351: attempt to access beyond end of device [ 573.592438][ T9335] loop2: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 573.606406][ T9335] Buffer I/O error on dev loop2, logical block 56576, async page read [ 575.528307][ T9352] No control pipe specified [ 575.640553][ T9348] fido_id[9348]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 575.743281][ T9354] loop0: detected capacity change from 0 to 24 [ 575.862928][ T9354] romfs: bad initial checksum on dev loop0. [ 578.650162][ T9382] loop0: detected capacity change from 0 to 1024 [ 579.727779][ T3937] hfsplus: b-tree write err: -5, ino 4 [ 580.366593][ T9397] loop6: detected capacity change from 0 to 64 [ 580.633682][ T9401] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1377'. [ 580.982896][ T9392] loop5: detected capacity change from 0 to 4096 [ 581.852278][ T11] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 582.252283][ T11] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 582.261927][ T11] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 582.277754][ T11] usb 1-1: Product: syz [ 582.288035][ T11] usb 1-1: Manufacturer: syz [ 582.295622][ T11] usb 1-1: SerialNumber: syz [ 582.623110][ T11] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 582.909906][ T9] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 583.670736][ T9173] usb 1-1: USB disconnect, device number 10 [ 583.725377][ C0] dummy_hcd dummy_hcd.0: timer fired with no URBs pending? [ 584.032983][ T9] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 584.040845][ T9] ath9k_htc: Failed to initialize the device [ 584.139742][ T9173] usb 1-1: ath9k_htc: USB layer deinitialized [ 585.415787][ T9] IPVS: starting estimator thread 0... [ 585.526411][ T9439] IPVS: using max 192 ests per chain, 9600 per kthread [ 585.743385][ T9431] loop1: detected capacity change from 0 to 4096 [ 585.901833][ T9441] loop5: detected capacity change from 0 to 256 [ 585.975590][ T9445] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 587.084279][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1399'. [ 587.642130][ T9454] loop5: detected capacity change from 0 to 4096 [ 587.723036][ T9454] NILFS (loop5): invalid segment: Checksum error in segment payload [ 587.731323][ T9454] NILFS (loop5): trying rollback from an earlier position [ 587.767888][ T9460] loop1: detected capacity change from 0 to 16 [ 587.880091][ T9460] erofs (device loop1): mounted with root inode @ nid 36. [ 587.889027][ T9454] NILFS (loop5): recovery complete [ 587.986928][ T9465] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 588.106976][ T9460] erofs (device loop1): readahead error at folio 6 @ nid 36 [ 588.115206][ T9460] erofs (device loop1): readahead error at folio 4 @ nid 36 [ 588.123866][ T9460] syz.1.1400: attempt to access beyond end of device [ 588.123866][ T9460] loop1: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 588.138966][ T9460] syz.1.1400: attempt to access beyond end of device [ 588.138966][ T9460] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 588.153672][ T9460] syz.1.1400: attempt to access beyond end of device [ 588.153672][ T9460] loop1: rw=524288, sector=376, nr_sectors = 16 limit=16 [ 588.268906][ T9460] erofs (device loop1): invalid de[0].nameoff 0 @ nid 36 [ 588.861168][ T9463] loop2: detected capacity change from 0 to 4096 [ 589.172858][ T9463] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 589.375347][ T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 589.550050][ T9463] ntfs3(loop2): ino=1a, mi_enum_attr [ 589.556282][ T9463] ntfs3(loop2): ino=1a, mi_enum_attr [ 589.562310][ T9463] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 589.583111][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 589.733013][ T9] usb 7-1: New USB device found, idVendor=0d49, idProduct=7000, bcdDevice=26.2f [ 589.733194][ T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 589.733339][ T9] usb 7-1: Product: syz [ 589.733452][ T9] usb 7-1: Manufacturer: syz [ 589.733570][ T9] usb 7-1: SerialNumber: syz [ 589.740746][ T9] usb 7-1: config 0 descriptor?? [ 590.061149][ T9] ums-onetouch 7-1:0.0: USB Mass Storage device detected [ 590.379175][ T9] usb 7-1: USB disconnect, device number 4 [ 590.514730][ T9482] loop1: detected capacity change from 0 to 256 [ 590.570402][ T9482] FAT-fs (loop1): Invalid FSINFO signature: 0x0ffffff8, 0x00000000 (sector = 33) [ 590.584412][ T9482] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start df000002) [ 590.595852][ T9482] FAT-fs (loop1): Filesystem has been set read-only [ 592.797533][ T9497] loop6: detected capacity change from 0 to 2048 [ 592.903530][ T9497] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 592.914347][ T9497] NILFS (loop6): mounting unchecked fs [ 593.245964][ T9497] NILFS (loop6): recovery complete [ 593.289449][ T9506] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 593.306386][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 593.579442][ T9507] loop1: detected capacity change from 0 to 1024 [ 594.090280][ T9513] loop2: detected capacity change from 0 to 1024 [ 594.163914][ T9511] loop0: detected capacity change from 0 to 1024 [ 594.331594][ T9513] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 594.387301][ T3013] hfsplus: b-tree write err: -5, ino 4 [ 594.527139][ T9513] EXT4-fs error (device loop2): empty_inline_dir:1760: inode #12: block 7: comm syz.2.1424: bad entry in directory: inode out of bounds - offset=4, inode=150994957, rec_len=16, size=60 fake=0 [ 594.649562][ T9513] EXT4-fs warning (device loop2): empty_inline_dir:1767: bad inline directory (dir #12) - inode 150994957, rec_len 16, name_len 5inline size 60 [ 595.162423][ T9516] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 479: padding at end of block bitmap is not set [ 595.313388][ T36] hfsplus: b-tree write err: -5, ino 4 [ 595.479278][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 595.551347][ T9522] loop5: detected capacity change from 0 to 1024 [ 596.259206][ T9529] loop2: detected capacity change from 0 to 1024 [ 596.396817][ T9529] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 596.471264][ T3937] hfsplus: b-tree write err: -5, ino 4 [ 596.513792][ T9529] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 596.579778][ T9529] EXT4-fs (loop2): orphan cleanup on readonly fs [ 596.587219][ T9529] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1431: Freeing blocks not in datazone - block = 0, count = 4096 [ 596.787600][ T9529] EXT4-fs (loop2): 1 orphan inode deleted [ 596.862906][ T9529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 597.194800][ T9529] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1431: bg 0: block 10: padding at end of block bitmap is not set [ 597.720386][ T9541] loop1: detected capacity change from 0 to 64 [ 598.002615][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.475277][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 598.486239][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 598.981232][ T9543] loop6: detected capacity change from 0 to 4096 [ 599.130502][ T9553] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1442'. [ 599.159834][ T9555] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 600.275507][ T9563] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 600.285397][ T9563] isofs_fill_super: bread failed, dev=loop1, iso_blknum=16, block=32 [ 601.528965][ T9574] loop5: detected capacity change from 0 to 1024 [ 601.791902][ T30] audit: type=1800 audit(1757544596.436:37): pid=9574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1452" name="file1" dev="loop5" ino=25 res=0 errno=0 [ 603.285196][ T9173] IPVS: starting estimator thread 0... [ 603.424767][ T9599] IPVS: using max 192 ests per chain, 9600 per kthread [ 603.806031][ T9605] loop5: detected capacity change from 0 to 256 [ 605.202373][ T30] audit: type=1326 audit(1757544599.846:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.2.1474" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbd8a78eba9 code=0x0 [ 605.585810][ T9627] netlink: 'syz.1.1476': attribute type 1 has an invalid length. [ 606.423616][ T9631] loop6: detected capacity change from 0 to 1024 [ 606.688549][ T9631] hfsplus: bad catalog entry type [ 607.334821][ T4146] hfsplus: b-tree write err: -5, ino 4 [ 607.854688][ T9645] loop6: detected capacity change from 0 to 256 [ 607.874618][ T9643] loop5: detected capacity change from 0 to 1024 [ 607.902545][ T9646] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1484'. [ 607.915282][ T9646] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1484'. [ 608.442834][ T9645] FAT-fs (loop6): Directory bread(block 64) failed [ 608.449655][ T9645] FAT-fs (loop6): Directory bread(block 65) failed [ 608.457341][ T9645] FAT-fs (loop6): Directory bread(block 66) failed [ 608.465464][ T9645] FAT-fs (loop6): Directory bread(block 67) failed [ 608.473577][ T9645] FAT-fs (loop6): Directory bread(block 68) failed [ 608.480334][ T9645] FAT-fs (loop6): Directory bread(block 69) failed [ 608.490055][ T9645] FAT-fs (loop6): Directory bread(block 70) failed [ 608.497939][ T9645] FAT-fs (loop6): Directory bread(block 71) failed [ 608.505278][ T9645] FAT-fs (loop6): Directory bread(block 72) failed [ 608.512227][ T9645] FAT-fs (loop6): Directory bread(block 73) failed [ 608.935807][ T57] hfsplus: b-tree write err: -5, ino 4 [ 611.526763][ T5808] Bluetooth: hci2: unexpected subevent 0x01 length: 37 > 18 [ 611.542527][ T5808] Bluetooth: hci2: unexpected subevent 0x01 length: 0 < 18 [ 611.783694][ T9689] loop5: detected capacity change from 0 to 128 [ 611.855649][ T9689] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only [ 611.886406][ T9689] hpfs: filesystem error: improperly stopped [ 611.895666][ T9689] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 611.907073][ T9689] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories [ 611.917777][ T9689] hpfs: filesystem error: dir band size mismatch: dir_band_start==7b318cc2, dir_band_end==7b318cc3, n_dir_band==00000003 [ 612.512704][ T9694] loop2: detected capacity change from 0 to 1024 [ 612.557587][ T9694] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 612.702595][ T9694] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 612.723651][ T9694] EXT4-fs (loop2): orphan cleanup on readonly fs [ 612.761584][ T9694] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1505: Freeing blocks not in datazone - block = 0, count = 4096 [ 612.786822][ T9694] EXT4-fs (loop2): 1 orphan inode deleted [ 612.795289][ T9694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 612.915708][ T9694] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 16: comm syz.2.1505: path /308/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 612.958676][ T9694] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 17: comm syz.2.1505: path /308/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 613.086358][ T9694] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 18: comm syz.2.1505: path /308/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 613.292383][ T9694] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 19: comm syz.2.1505: path /308/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 613.386002][ T9694] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 20: comm syz.2.1505: path /308/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 613.628226][ T5811] Bluetooth: hci2: command tx timeout [ 613.685573][ T9705] loop5: detected capacity change from 0 to 512 [ 613.846251][ T9705] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 613.855537][ T9705] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 613.900886][ T9705] EXT4-fs (loop5): orphan cleanup on readonly fs [ 613.985462][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 614.003263][ T9705] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #13: comm syz.5.1509: iget: bad i_size value: 12154761577498 [ 614.086453][ T9705] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1509: couldn't read orphan inode 13 (err -117) [ 614.259329][ T9705] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 614.457897][ T9705] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.1509: dx entry: limit 65535 != root limit 120 [ 614.474205][ T9705] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.1509: Corrupt directory, running e2fsck is recommended [ 614.666229][ T9705] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz.5.1509: path /100/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 614.806099][ T9714] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1514'. [ 615.219781][ T30] audit: type=1326 audit(1757544609.836:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.256571][ T30] audit: type=1326 audit(1757544609.906:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.289618][ T30] audit: type=1326 audit(1757544609.906:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.318283][ T30] audit: type=1326 audit(1757544609.926:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.352130][ T30] audit: type=1326 audit(1757544609.936:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.382802][ T30] audit: type=1326 audit(1757544609.946:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.409194][ T30] audit: type=1326 audit(1757544609.946:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.0.1515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 615.545135][ T8050] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 616.150297][ T9711] loop2: detected capacity change from 0 to 4096 [ 617.305442][ T4085] ntfs3(loop2): ino=5, mi_enum_attr [ 618.997643][ T9752] loop5: detected capacity change from 0 to 16 [ 619.058711][ T9752] erofs (device loop5): mounted with root inode @ nid 36. [ 622.226523][ T9780] loop5: detected capacity change from 0 to 256 [ 622.327912][ T9780] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 622.592866][ T9783] loop1: detected capacity change from 0 to 512 [ 622.736847][ T9783] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 622.975842][ T9783] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.1545: bad orphan inode 131083 [ 623.029612][ T9783] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 623.331999][ T30] audit: type=1800 audit(1757544617.966:46): pid=9783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1545" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 624.304906][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 627.041326][ T9820] loop6: detected capacity change from 0 to 256 [ 627.365786][ T9820] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 627.675873][ T9816] loop1: detected capacity change from 0 to 4096 [ 627.868628][ T9828] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 627.967171][ T9829] loop2: detected capacity change from 0 to 8 [ 628.242905][ T9829] SQUASHFS error: Failed to read block 0x4e8: -5 [ 628.253669][ T9829] SQUASHFS error: Failed to read block 0x4de: -5 [ 628.260915][ T9829] SQUASHFS error: Failed to read block 0x4de: -5 [ 628.269109][ T9829] SQUASHFS error: Failed to read block 0x4de: -5 [ 628.286244][ T30] audit: type=1800 audit(1757544622.926:47): pid=9829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1566" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 628.327284][ T9816] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.' [ 628.403500][ T9816] Remounting filesystem read-only [ 629.013718][ T9835] loop5: detected capacity change from 0 to 512 [ 629.058607][ T9835] EXT4-fs: Ignoring removed orlov option [ 629.078207][ T9835] EXT4-fs: Ignoring removed nomblk_io_submit option [ 629.186132][ T9835] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 629.309521][ T9835] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042e118, mo2=0002] [ 629.470905][ T9835] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.1568: corrupted in-inode xattr: e_value size too large [ 629.555935][ T9835] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1568: couldn't read orphan inode 15 (err -117) [ 629.685175][ T9835] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 629.829089][ T9846] netlink: 'syz.6.1572': attribute type 28 has an invalid length. [ 630.049473][ T9835] overlayfs: upper fs needs to support d_type. [ 630.380129][ T9849] loop2: detected capacity change from 0 to 64 [ 630.590387][ T9849] Trying to free block not in datazone [ 630.599841][ T9849] Trying to free block not in datazone [ 630.614267][ T9849] Trying to free block not in datazone [ 630.620030][ T9849] Trying to free block not in datazone [ 630.632037][ T9849] Trying to free block not in datazone [ 630.637990][ T9849] Trying to free block not in datazone [ 630.763992][ T9849] Trying to free block not in datazone [ 630.769679][ T9849] Trying to free block not in datazone [ 630.778818][ T9849] Trying to free block not in datazone [ 630.785094][ T9849] Trying to free block not in datazone [ 630.898229][ T8050] EXT4-fs error (device loop5): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39 [ 630.956193][ T8050] EXT4-fs error (device loop5): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39 [ 631.482789][ T9858] loop1: detected capacity change from 0 to 512 [ 631.542612][ T9858] EXT4-fs: Ignoring removed i_version option [ 631.740574][ T9858] EXT4-fs (loop1): 1 orphan inode deleted [ 631.750301][ T9858] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 631.938017][ T8050] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 631.962297][ T8491] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.203814][ T8491] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.530943][ T8491] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.687370][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 632.728629][ T9869] loop0: detected capacity change from 0 to 512 [ 632.878062][ T8491] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.898232][ T9869] EXT4-fs (loop0): Test dummy encryption mode enabled [ 632.958109][ T9869] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 633.019141][ T9869] EXT4-fs (loop0): Errors on filesystem, clearing orphan list. [ 633.029635][ T9869] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 633.373768][ T9874] netlink: 'syz.1.1586': attribute type 3 has an invalid length. [ 633.832897][ T8491] bridge_slave_1: left allmulticast mode [ 633.838806][ T8491] bridge_slave_1: left promiscuous mode [ 633.845981][ T8491] bridge0: port 2(bridge_slave_1) entered disabled state [ 633.889410][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 633.928538][ T8491] bridge_slave_0: left allmulticast mode [ 633.935248][ T8491] bridge_slave_0: left promiscuous mode [ 633.942306][ T8491] bridge0: port 1(bridge_slave_0) entered disabled state [ 634.753973][ T8491] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 634.805469][ T8491] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 634.854328][ T8491] bond0 (unregistering): Released all slaves [ 635.616165][ T8491] hsr_slave_0: left promiscuous mode [ 635.652707][ T8491] hsr_slave_1: left promiscuous mode [ 635.661183][ T8491] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 635.669606][ T8491] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 635.725164][ T8491] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 635.734421][ T8491] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 635.840680][ T8491] veth1_macvtap: left promiscuous mode [ 635.846758][ T8491] veth0_macvtap: left promiscuous mode [ 635.853452][ T8491] veth1_vlan: left promiscuous mode [ 635.859043][ T8491] veth0_vlan: left promiscuous mode [ 637.554934][ T9890] loop1: detected capacity change from 0 to 4096 [ 638.141040][ T8491] team0 (unregistering): Port device team_slave_1 removed [ 638.258291][ T8491] team0 (unregistering): Port device team_slave_0 removed [ 638.649236][ T5808] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 638.667295][ T5808] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 638.677409][ T5808] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 638.760660][ T5808] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 638.937455][ T5808] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 639.587542][ T9913] loop0: detected capacity change from 0 to 256 [ 639.809369][ T9913] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 640.649749][ T9922] loop1: detected capacity change from 0 to 64 [ 640.784153][ T9922] syz.1.1599: attempt to access beyond end of device [ 640.784153][ T9922] loop1: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 640.802115][ T9922] Buffer I/O error on dev loop1, logical block 134217734, async page read [ 641.034579][ T9906] chnl_net:caif_netlink_parms(): no params data found [ 641.073417][ T5808] Bluetooth: hci4: command tx timeout [ 642.300563][ T30] audit: type=1326 audit(1757544636.936:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 642.522710][ T30] audit: type=1326 audit(1757544637.036:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fc54b58d417 code=0x7ffc0000 [ 642.543803][ T9944] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1607'. [ 642.549289][ T30] audit: type=1326 audit(1757544637.036:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 642.581231][ T30] audit: type=1326 audit(1757544637.076:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 642.613460][ T30] audit: type=1326 audit(1757544637.106:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 642.642343][ T30] audit: type=1326 audit(1757544637.106:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 642.668485][ T30] audit: type=1326 audit(1757544637.106:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.0.1606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc54b58eba9 code=0x7ffc0000 [ 643.151240][ T5808] Bluetooth: hci4: command tx timeout [ 644.157984][ T9906] bridge0: port 1(bridge_slave_0) entered blocking state [ 644.167222][ T9906] bridge0: port 1(bridge_slave_0) entered disabled state [ 644.175245][ T9906] bridge_slave_0: entered allmulticast mode [ 644.185404][ T9906] bridge_slave_0: entered promiscuous mode [ 644.346480][ T9954] loop0: detected capacity change from 0 to 4096 [ 644.426605][ T9906] bridge0: port 2(bridge_slave_1) entered blocking state [ 644.434468][ T9906] bridge0: port 2(bridge_slave_1) entered disabled state [ 644.442468][ T9906] bridge_slave_1: entered allmulticast mode [ 644.453309][ T9906] bridge_slave_1: entered promiscuous mode [ 644.742967][ T5808] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 644.752262][ T5808] Bluetooth: hci2: Injecting HCI hardware error event [ 644.760227][ T5808] Bluetooth: hci2: hardware error 0x00 [ 644.955405][ T9906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 645.059491][ T9906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 645.227033][ T9966] Bluetooth: hci4: command tx timeout [ 645.571000][ T9906] team0: Port device team_slave_0 added [ 645.627485][ T9906] team0: Port device team_slave_1 added [ 645.980840][ T9906] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 645.989269][ T9906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 646.019746][ T9906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 646.191581][ T9906] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 646.203956][ T9906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 646.235021][ T9906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 646.729948][ T9984] program syz.0.1617 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 646.795711][ T9986] overlay: Unknown parameter '\ÿ' [ 646.984739][ T5808] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 647.302426][ T5808] Bluetooth: hci4: command tx timeout [ 647.344852][ T9906] hsr_slave_0: entered promiscuous mode [ 647.359579][ T9906] hsr_slave_1: entered promiscuous mode [ 647.550949][ T9906] debugfs: 'hsr0' already exists in 'hsr' [ 647.557075][ T9906] Cannot create hsr debugfs directory [ 650.254458][ T9906] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 650.339381][ T9906] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 650.533582][ T9906] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 650.656768][ T9906] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 651.482831][T10012] loop6: detected capacity change from 0 to 32768 [ 651.502884][T10012] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1627 (10012) [ 651.557443][T10012] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 651.569190][T10012] BTRFS error (device loop6): unsupported checksum algorithm: 4 [ 651.578329][T10012] BTRFS error (device loop6): open_ctree failed: -22 [ 653.432322][T10020] loop2: detected capacity change from 0 to 32768 [ 653.588051][T10020] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=snapshots_read,nojournal_transaction_names,noexcl,read_only,no_data_io [ 653.588246][T10020] allowing incompatible features above 0.0: (unknown version) [ 653.588354][T10020] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 653.636920][T10020] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 653.653832][T10020] bcachefs (loop2): invalid journal entry, version=1.7: mi_btree_bitmap type=data_usage in superblock: invalid journal entry usage: bad size, fixing [ 653.676514][T10020] bcachefs (loop2): invalid journal entry, version=1.7: mi_btree_bitmap type=usage in superblock: invalid journal entry usage: bad size, fixing [ 653.693418][T10020] bcachefs (loop2): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 653.710016][T10020] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 653.719971][T10020] bcachefs (loop2): Version upgrade required: [ 653.719971][T10020] Version upgrade from 0.27: fragmentation_lru to 1.7: mi_btree_bitmap incomplete [ 653.719971][T10020] Doing incompatible version upgrade from 0.27: fragmentation_lru to 1.28: inode_has_case_insensitive [ 653.719971][T10020] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 654.232675][T10020] bcachefs (loop2): btree node read error at btree backpointers level 0/0 [ 654.232796][T10020] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0 [ 654.232929][T10020] loop2 node offset 0/24 bset u64s 0: checksum error, type none: got should be [ 654.233032][T10020] loop2 btree validate error [ 654.233108][T10020] flagging btree backpointers lost data [ 654.233194][T10020] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 654.233298][T10020] ret fsck_errors_not_fixed [ 654.234904][ T9906] 8021q: adding VLAN 0 to HW filter on device bond0 [ 654.246173][T10020] bcachefs (loop2): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing [ 654.344258][T10020] bcachefs (loop2): check_topology... done [ 654.385221][T10020] bcachefs (loop2): accounting_read... done [ 654.437351][T10020] bcachefs (loop2): alloc_read... done [ 654.500857][T10020] bcachefs (loop2): snapshots_read... done [ 654.535470][T10020] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean [ 654.570344][T10020] bcachefs (loop2): done starting filesystem [ 654.850488][ T9906] 8021q: adding VLAN 0 to HW filter on device team0 [ 654.883372][ T5812] bcachefs (loop2): shutting down [ 655.090434][ T4085] bridge0: port 1(bridge_slave_0) entered blocking state [ 655.098217][ T4085] bridge0: port 1(bridge_slave_0) entered forwarding state [ 655.207214][ T5812] bcachefs (loop2): shutdown complete [ 655.328186][ T4085] bridge0: port 2(bridge_slave_1) entered blocking state [ 655.335924][ T4085] bridge0: port 2(bridge_slave_1) entered forwarding state [ 655.948070][ T9906] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 656.218169][T10035] loop1: detected capacity change from 0 to 512 [ 656.467594][T10035] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 656.480897][T10035] ext4 filesystem being mounted at /327/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 656.818942][T10035] EXT4-fs error (device loop1): ext4_get_first_dir_block:3529: inode #12: comm syz.1.1635: Attempting to read directory block (0) that is past i_size (3) [ 657.310474][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.137566][ T9906] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 659.260247][T10059] loop1: detected capacity change from 0 to 4096 [ 659.316514][T10059] EXT4-fs: Ignoring removed mblk_io_submit option [ 659.421141][T10059] EXT4-fs (loop1): Test dummy encryption mode enabled [ 659.573346][T10059] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 659.932361][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 659.939052][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 660.297296][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.574764][T10068] xt_l2tp: unknown flags: 10 [ 661.293124][T10076] loop2: detected capacity change from 0 to 128 [ 661.345413][T10076] EXT4-fs: Ignoring removed nomblk_io_submit option [ 661.391361][T10076] EXT4-fs (loop2): Test dummy encryption mode enabled [ 661.537556][T10076] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 661.721838][T10076] ext4 filesystem being mounted at /338/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 661.835139][T10081] loop0: detected capacity change from 0 to 512 [ 662.475723][T10074] loop6: detected capacity change from 0 to 4096 [ 662.496702][ T5812] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 663.471550][T10094] bridge_slave_0: default FDB implementation only supports local addresses [ 663.610833][ T9906] veth0_vlan: entered promiscuous mode [ 663.883059][ T9906] veth1_vlan: entered promiscuous mode [ 664.544933][ T9906] veth0_macvtap: entered promiscuous mode [ 664.629924][ T9906] veth1_macvtap: entered promiscuous mode [ 664.875687][T10102] loop2: detected capacity change from 0 to 512 [ 665.029272][T10102] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 665.069449][ T9906] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 665.191267][ T9906] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 665.246133][T10102] EXT4-fs (loop2): 1 truncate cleaned up [ 665.254464][T10102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 665.386759][ T57] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 665.439247][ T57] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 665.490192][ T57] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 665.643960][ T4601] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 666.245787][T10105] loop1: detected capacity change from 0 to 4096 [ 666.318514][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 666.538869][T10105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 666.580134][T10118] loop2: detected capacity change from 0 to 512 [ 666.663924][T10118] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 666.686925][T10120] xt_l2tp: missing protocol rule (udp|l2tpip) [ 666.879128][T10118] EXT4-fs error (device loop2): ext4_xattr_set_entry:1660: inode #2: comm syz.2.1657: corrupted xattr entries [ 667.087173][ T5868] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 667.332456][ T5868] usb 1-1: Using ep0 maxpacket: 8 [ 667.393763][ T5868] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 667.485806][ T5868] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 667.496474][ T5868] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 667.505201][ T5868] usb 1-1: Product: syz [ 667.509605][ T5868] usb 1-1: Manufacturer: syz [ 667.514599][ T5868] usb 1-1: SerialNumber: syz [ 667.605459][ T5812] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 667.693724][ T5805] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 668.074733][ T5868] usb 1-1: Handspring Visor / Palm OS: No valid connect info available [ 668.085401][ T5868] usb 1-1: Handspring Visor / Palm OS: port 205, is for unknown use [ 668.094684][ T5868] usb 1-1: Handspring Visor / Palm OS: port 113, is for unknown use [ 668.104371][ T5868] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2 [ 668.278859][ T5868] visor 1-1:1.0: Handspring Visor / Palm OS converter detected [ 668.367644][ T5868] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 668.539039][ T5868] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 668.695227][ T5868] usb 1-1: USB disconnect, device number 11 [ 668.784366][ T5868] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 668.875623][ T5868] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 668.888694][ T5868] visor 1-1:1.0: device disconnected [ 671.428892][T10156] loop1: detected capacity change from 0 to 8 [ 671.803637][T10152] loop0: detected capacity change from 0 to 4096 [ 672.001932][T10162] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 672.158042][T10152] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 672.209966][T10152] Remounting filesystem read-only [ 672.950462][T10170] loop1: detected capacity change from 0 to 128 [ 673.112592][T10170] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 673.335074][T10170] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 673.668759][T10170] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only [ 673.678957][T10170] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null. [ 674.730268][ T30] audit: type=1326 audit(1757544669.356:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10182 comm="syz.0.1675" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc54b58eba9 code=0x0 [ 677.027189][T10204] loop0: detected capacity change from 0 to 128 [ 677.155643][T10204] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 677.213557][T10204] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 678.024240][ T4146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 678.032497][ T4146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 678.320300][ T740] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 678.328982][ T740] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 678.443305][ T5803] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 681.777350][T10250] loop7: detected capacity change from 0 to 512 [ 681.840432][T10245] loop1: detected capacity change from 0 to 2048 [ 681.870945][T10250] EXT4-fs: Ignoring removed oldalloc option [ 681.963781][T10250] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 682.063479][T10250] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended [ 682.092716][T10250] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a856c02c, mo2=0102] [ 682.118481][T10245] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 682.126685][T10245] UDF-fs: Scanning with blocksize 512 failed [ 682.156913][T10250] System zones: 0-2, 18-18, 34-34 [ 682.226384][T10250] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.1701: iget: bad i_size value: 360287970189639680 [ 682.287499][T10250] EXT4-fs (loop7): Remounting filesystem read-only [ 682.297484][T10250] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 682.472260][T10245] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 683.194753][ T9906] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 685.498362][T10290] ALSA: mixer_oss: invalid OSS volume 'DIG¨TAL1' [ 686.387100][T10293] loop7: detected capacity change from 0 to 4096 [ 686.689216][T10301] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1719'. [ 686.698957][T10301] nbd: must specify at least one socket [ 686.839209][T10293] ntfs3(loop7): ino=1a, mi_enum_attr [ 686.845761][T10293] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 689.314444][T10322] loop0: detected capacity change from 0 to 128 [ 689.439373][T10324] loop7: detected capacity change from 0 to 512 [ 689.861444][T10324] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 689.875157][T10324] ext4 filesystem being mounted at /8/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 690.370149][T10324] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #2: block 3: comm syz.7.1728: lblock 8 mapped to illegal pblock 3 (length 26) [ 690.499957][T10324] EXT4-fs (loop7): Remounting filesystem read-only [ 690.943253][T10335] netlink: 1256 bytes leftover after parsing attributes in process `syz.6.1730'. [ 690.956485][T10335] net_ratelimit: 44 callbacks suppressed [ 690.956573][T10335] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 691.085414][ T9906] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 693.405582][ T9] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 693.647203][ T9] usb 2-1: config 0 has an invalid interface number: 56 but max is 0 [ 693.656773][ T9] usb 2-1: config 0 has no interface number 0 [ 693.871400][ T9] usb 2-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76 [ 693.893015][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 693.901482][ T9] usb 2-1: Product: syz [ 693.911501][ T9] usb 2-1: Manufacturer: syz [ 693.918710][ T9] usb 2-1: SerialNumber: syz [ 694.075920][ T9] usb 2-1: config 0 descriptor?? [ 694.450462][ T9] peak_usb 2-1:0.56: PEAK-System PCAN-USB X6 v210 fw v181.217.3 (2 channels) [ 694.630973][T10374] program syz.7.1746 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 694.679776][ T9] peak_usb 2-1:0.56 can0: sending command failure: -8 [ 694.687447][ T9] peak_usb 2-1:0.56 can0: sending command failure: -8 [ 694.695202][ T9] peak_usb 2-1:0.56 can0: sending command failure: -8 [ 694.948083][ T9] peak_usb 2-1:0.56: probe with driver peak_usb failed with error -8 [ 695.077895][ T9] usb 2-1: USB disconnect, device number 7 [ 698.364635][T10413] loop7: detected capacity change from 0 to 64 [ 698.425387][ T9] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 698.715577][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 698.727123][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 698.737431][ T9] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 698.754013][ T9] usb 3-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00 [ 698.767995][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 699.032792][ T9] usb 3-1: config 0 descriptor?? [ 699.643435][T10426] loop7: detected capacity change from 0 to 128 [ 699.669556][ T9] hid (null): invalid report_size -150992896 [ 699.710449][ T9] hid-multitouch 0003:0EEF:72D0.000B: invalid report_size -150992896 [ 699.732009][ T9] hid-multitouch 0003:0EEF:72D0.000B: item 0 4 1 7 parsing failed [ 699.754157][T10426] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 699.814056][ T9] hid-multitouch 0003:0EEF:72D0.000B: probe with driver hid-multitouch failed with error -22 [ 699.826797][T10426] hpfs: filesystem error: improperly stopped [ 699.826931][T10426] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 699.827051][T10426] hpfs: You really don't want any checks? You are crazy... [ 699.827580][T10426] hpfs: hpfs_map_sector(): read error [ 699.827649][T10426] hpfs: code page support is disabled [ 699.852248][T10426] hpfs: hpfs_map_4sectors(): unaligned read [ 700.050665][ T9] usb 3-1: USB disconnect, device number 8 [ 700.088729][T10426] hpfs: hpfs_map_4sectors(): unaligned read [ 700.096022][T10426] hpfs: filesystem error: unable to find root dir [ 700.224827][T10426] hpfs: hpfs_map_4sectors(): unaligned read [ 700.265963][T10426] hpfs: hpfs_map_sector(): read error [ 700.399906][T10430] loop6: detected capacity change from 0 to 128 [ 700.628019][T10430] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 700.754250][T10430] ext4 filesystem being mounted at /132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 700.824280][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 700.891005][T10436] program syz.0.1769 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 701.688909][ T30] audit: type=1326 audit(1757544696.296:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 701.945673][ T30] audit: type=1326 audit(1757544696.446:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 701.969649][ T30] audit: type=1326 audit(1757544696.446:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 701.995607][ T30] audit: type=1326 audit(1757544696.446:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.034186][ T30] audit: type=1326 audit(1757544696.476:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.059210][ T30] audit: type=1326 audit(1757544696.476:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.092045][ T30] audit: type=1326 audit(1757544696.476:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.120399][ T30] audit: type=1326 audit(1757544696.476:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.146603][ T30] audit: type=1326 audit(1757544696.556:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.169417][ T30] audit: type=1326 audit(1757544696.556:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10440 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f477838eba9 code=0x7ff00000 [ 702.606514][ T8351] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 705.572949][T10480] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1784'. [ 708.404531][T10511] program syz.7.1797 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 708.786649][T10519] loop0: detected capacity change from 0 to 256 [ 708.845276][ T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 708.883386][ T9172] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 708.904457][T10519] FAT-fs (loop0): Directory bread(block 1285) failed [ 709.032336][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 709.054398][T10519] FAT-fs (loop0): Directory bread(block 1285) failed [ 709.062313][T10519] FAT-fs (loop0): FAT read failed (blocknr 1281) [ 709.133862][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 709.156689][ T9] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1b25, bcdDevice= 0.00 [ 709.168424][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 709.169041][ T9172] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 709.188191][ T9172] usb 2-1: New USB device found, idVendor=1038, idProduct=12c2, bcdDevice= 0.00 [ 709.197826][ T9172] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 709.305820][ T9172] usb 2-1: config 0 descriptor?? [ 709.509867][ T9] usb 3-1: config 0 descriptor?? [ 709.943432][ T9172] steelseries 0003:1038:12C2.000C: unknown main item tag 0x3 [ 709.951282][ T9172] steelseries 0003:1038:12C2.000C: item fetching failed at offset 5/7 [ 710.184916][ T9172] steelseries 0003:1038:12C2.000C: probe with driver steelseries failed with error -22 [ 710.303158][ T9172] usb 2-1: USB disconnect, device number 8 [ 710.324648][ T9] hid-corsair-void 0003:1B1C:1B25.000D: unknown main item tag 0x2 [ 710.482520][ T9] hid-corsair-void 0003:1B1C:1B25.000D: hidraw0: USB HID v0.09 Device [HID 1b1c:1b25] on usb-dummy_hcd.2-1/input0 [ 710.567059][ T9] usb 3-1: USB disconnect, device number 9 [ 710.602841][ T11] hid-corsair-void 0003:1B1C:1B25.000D: failed to request firmware (reason: -19) [ 710.660562][ T11] hid-corsair-void 0003:1B1C:1B25.000D: failed to request battery (reason: -19) [ 712.146392][T10544] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1807'. [ 712.160039][T10543] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 713.116430][T10537] fido_id[10537]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 713.189055][T10542] loop0: detected capacity change from 0 to 32768 [ 713.231262][T10542] (syz.0.1809,10542,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 713.248899][T10542] (syz.0.1809,10542,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 2, possibly corrupt fs? [ 713.249114][T10542] (syz.0.1809,10542,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 713.278051][T10542] (syz.0.1809,10542,0):ocfs2_initialize_super:2198 ERROR: status = -22 [ 713.287303][T10542] (syz.0.1809,10542,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 714.809895][T10562] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1816'. [ 715.948549][T10573] loop0: detected capacity change from 0 to 1024 [ 716.167656][T10568] loop6: detected capacity change from 0 to 1024 [ 716.346118][T10573] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 716.359207][T10573] ext4 filesystem being mounted at /385/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 716.460274][T10583] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 716.779386][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 716.779478][ T30] audit: type=1800 audit(1757544711.396:80): pid=10573 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1820" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 716.977135][T10573] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.1820: lblock 1 mapped to illegal pblock 1 (length 15) [ 717.194150][T10573] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117 [ 717.212217][T10573] EXT4-fs (loop0): This should not happen!! Data will be lost [ 717.212217][T10573] [ 717.458621][T10587] loop7: detected capacity change from 0 to 1764 [ 717.995884][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 718.538154][ T8491] hfsplus: b-tree write err: -5, ino 4 [ 718.918803][T10599] loop0: detected capacity change from 0 to 8 [ 718.965174][T10599] squashfs: Unknown parameter 'å½öô²ˆ^;Vf(øOvû«Ì;‡þáAýöÚ†~ÃïòͶm‹ºÞ†PL°6D' [ 718.985963][ T9172] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 719.198015][T10599] loop0: detected capacity change from 0 to 256 [ 719.223192][ T9172] usb 2-1: Using ep0 maxpacket: 32 [ 719.293000][ T9172] usb 2-1: config 0 has an invalid interface number: 51 but max is 0 [ 719.301517][ T9172] usb 2-1: config 0 has no interface number 0 [ 719.399804][ T9172] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 719.410181][ T9172] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 719.418720][ T9172] usb 2-1: Product: syz [ 719.423280][ T9172] usb 2-1: Manufacturer: syz [ 719.428105][ T9172] usb 2-1: SerialNumber: syz [ 719.610878][T10599] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 719.641321][ T9172] usb 2-1: config 0 descriptor?? [ 719.710313][ T9172] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 720.085329][ T9172] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 720.187361][ T9] usb 7-1: new full-speed USB device number 5 using dummy_hcd [ 720.196869][ T9172] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 720.489040][ C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 720.494620][ T11] usb 2-1: USB disconnect, device number 9 [ 720.638813][ T11] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 720.661125][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 720.673439][ T9] usb 7-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00 [ 720.686699][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 720.804833][ T9] usb 7-1: config 0 descriptor?? [ 720.818450][T10605] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 720.850408][ T11] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 720.866394][ T11] quatech2 2-1:0.51: device disconnected [ 721.355485][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 721.362935][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 721.419334][T10610] loop0: detected capacity change from 0 to 1024 [ 721.767964][ T9] ryos 0003:1E7D:3138.000E: unknown main item tag 0x4 [ 721.962641][ T9] ryos 0003:1E7D:3138.000E: hidraw0: USB HID v1.01 Device [HID 1e7d:3138] on usb-dummy_hcd.6-1/input0 [ 722.164566][ T9] usb 7-1: USB disconnect, device number 5 [ 722.344814][T10616] loop1: detected capacity change from 0 to 64 [ 723.350684][T10617] fido_id[10617]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory [ 723.960094][T10629] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1844'. [ 724.343942][T10634] bond0: option resend_igmp: invalid value (18446744072910471168) [ 724.352661][T10634] bond0: option resend_igmp: allowed values 0 - 255 [ 725.896729][T10649] loop6: detected capacity change from 0 to 16 [ 726.080823][T10649] erofs (device loop6): mounted with root inode @ nid 36. [ 726.520869][T10652] loop0: detected capacity change from 0 to 512 [ 726.852765][T10652] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1855: bg 0: block 288: padding at end of block bitmap is not set [ 726.943154][T10652] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 727.128694][T10652] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.1855: attempt to clear invalid blocks 1024 len 1 [ 727.353042][T10652] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1855: invalid indirect mapped block 1819239214 (level 0) [ 727.477831][T10652] EXT4-fs (loop0): 1 truncate cleaned up [ 727.490268][T10652] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 728.103039][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 728.933189][ T5165] udevd[5165]: worker [7692] terminated by signal 33 (Unknown signal 33) [ 729.003028][ T5165] udevd[5165]: worker [7692] failed while handling '/devices/virtual/block/loop7' [ 731.198738][T10698] loop2: detected capacity change from 0 to 1024 [ 732.017500][ T4146] hfsplus: b-tree write err: -5, ino 4 [ 732.994614][T10716] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1883'. [ 735.502669][ T9172] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 735.678651][ T5808] Bluetooth: hci4: Malformed HCI Event [ 735.752671][ T9172] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 735.763459][ T9172] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 735.779608][ T9172] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 735.932479][ T9172] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 735.943039][ T9172] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 735.951305][ T9172] usb 2-1: Product: syz [ 735.955947][ T9172] usb 2-1: Manufacturer: syz [ 735.960763][ T9172] usb 2-1: SerialNumber: syz [ 736.156148][ T9172] usb 2-1: config 0 descriptor?? [ 736.173228][T10737] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 736.181077][T10737] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 736.353154][ T9172] usb 2-1: ucan: probing device on interface #0 [ 736.942055][ T9172] ucan 2-1:0.0: probe with driver ucan failed with error -71 [ 737.080202][ T9172] usb 2-1: USB disconnect, device number 10 [ 737.473390][T10751] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1902'. [ 737.621269][T10753] tipc: Started in network mode [ 737.626864][T10753] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711 [ 737.640185][T10753] tipc: Enabled bearer , priority 10 [ 738.022632][ T9172] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 738.177153][T10757] loop6: detected capacity change from 0 to 1024 [ 738.317983][ T9172] usb 3-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 738.330484][ T9172] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 738.340020][ T9172] usb 3-1: Product: syz [ 738.344820][ T9172] usb 3-1: Manufacturer: syz [ 738.350006][ T9172] usb 3-1: SerialNumber: syz [ 738.394986][ T9172] usb 3-1: config 0 descriptor?? [ 738.415238][ T9172] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 738.462094][T10757] hfsplus: invalid btree flag [ 738.467907][T10757] hfsplus: failed to load catalog file [ 738.752591][ T9] tipc: Node number set to 4269801514 [ 738.886856][T10757] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1901'. [ 739.432393][ T9172] gspca_sq905c: sq905c_command: usb_control_msg failed (-71) [ 739.440342][ T9172] sq905c 3-1:0.0: probe with driver sq905c failed with error -71 [ 739.592180][ T9172] usb 3-1: USB disconnect, device number 10 [ 740.600633][T10771] loop0: detected capacity change from 0 to 1024 [ 741.365632][T10780] loop7: detected capacity change from 0 to 1764 [ 741.545378][T10780] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 742.914087][T10792] loop6: detected capacity change from 0 to 128 [ 743.426733][T10792] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 743.525356][T10791] loop2: detected capacity change from 0 to 32768 [ 743.560126][T10791] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section journal: duplicate journal buckets 1 [ 743.560126][T10791] journal (size 40): [ 743.560126][T10791] Buckets: 1 7 24 1 [ 743.560126][T10791] [ 743.583595][T10791] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal [ 743.816238][T10792] hpfs: filesystem error: improperly stopped [ 743.822992][T10792] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 743.831360][T10792] hpfs: You really don't want any checks? You are crazy... [ 744.358409][T10792] hpfs: hpfs_map_sector(): read error [ 744.368082][T10792] hpfs: code page support is disabled [ 744.602933][T10792] hpfs: hpfs_map_4sectors(): unaligned read [ 744.609363][T10792] hpfs: hpfs_map_4sectors(): unaligned read [ 744.616095][T10792] hpfs: filesystem error: unable to find root dir [ 746.253035][T10817] ip6tnl0: Master is either lo or non-ether device [ 746.386103][T10816] loop6: detected capacity change from 0 to 1024 [ 747.583906][T10831] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1940'. [ 747.593486][T10831] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1940'. [ 748.372346][ T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 748.574958][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 748.626256][ T9] usb 3-1: too many endpoints for config 0 interface 0 altsetting 250: 255, using maximum allowed: 30 [ 748.638135][ T9] usb 3-1: config 0 interface 0 altsetting 250 has 1 endpoint descriptor, different from the interface descriptor's value: 255 [ 748.655268][ T9] usb 3-1: config 0 interface 0 has no altsetting 0 [ 748.662363][ T9] usb 3-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00 [ 748.678617][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 748.960987][ T9] usb 3-1: config 0 descriptor?? [ 749.654466][ T9] gt683r_led 0003:1770:FF00.000F: hidraw0: USB HID vf4.f6 Device [HID 1770:ff00] on usb-dummy_hcd.2-1/input0 [ 749.849766][ T9] usb 3-1: USB disconnect, device number 11 [ 749.871305][ T11] gt683r_led 0003:1770:FF00.000F: failed to send set report request: -19 [ 750.501246][T10859] loop1: detected capacity change from 0 to 256 [ 750.712419][ T30] audit: type=1800 audit(1757544745.346:81): pid=10859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1952" name="file1" dev="loop1" ino=1048683 res=0 errno=0 [ 750.742776][T10859] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 750.752152][T10859] FAT-fs (loop1): Filesystem has been set read-only [ 751.718904][T10868] loop7: detected capacity change from 0 to 64 [ 751.976834][T10872] loop2: detected capacity change from 0 to 64 [ 753.200418][T10880] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1962'. [ 753.247460][T10883] Zero length message leads to an empty skb [ 753.409730][T10886] loop2: detected capacity change from 0 to 256 [ 753.535113][T10886] exfat: Deprecated parameter 'namecase' [ 753.541090][T10886] exfat: Deprecated parameter 'utf8' [ 753.753349][T10886] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012366, chksum : 0x6ab66362, utbl_chksum : 0xe619d30d) [ 756.138388][T10900] loop6: detected capacity change from 0 to 32768 [ 756.160875][T10900] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1970 (10900) [ 756.188027][T10900] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 756.200115][T10900] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm [ 756.212670][T10900] BTRFS warning (device loop6): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 756.853715][T10900] BTRFS info (device loop6): rebuilding free space tree [ 756.946439][T10900] BTRFS info (device loop6): disabling free space tree [ 756.953972][T10900] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 756.972641][T10900] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 757.046470][T10900] BTRFS info (device loop6): enabling ssd optimizations [ 757.057352][T10900] BTRFS info (device loop6): enabling disk space caching [ 757.072162][T10900] BTRFS info (device loop6): force clearing of disk cache [ 757.079547][T10900] BTRFS info (device loop6): enabling auto defrag [ 757.092156][T10900] BTRFS info (device loop6): max_inline set to 4096 [ 757.875079][ T8351] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 758.176420][T10928] loop7: detected capacity change from 0 to 32768 [ 758.233043][T10928] bcachefs (/dev/loop7): error validating superblock: Invalid superblock layout: superblocks overlap [ 758.233043][T10928] (sb 1 ends at 67584 next starts at 30720 [ 758.250811][T10928] bcachefs: bch2_fs_get_tree() error: invalid_sb_layout_superblocks_overlap [ 760.631037][T10943] fido_id[10943]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 761.271083][T10953] loop0: detected capacity change from 0 to 512 [ 761.473545][T10953] EXT4-fs: Ignoring removed oldalloc option [ 761.590441][T10953] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 761.958784][T10953] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #11: comm syz.0.1990: corrupted in-inode xattr: invalid ea_ino [ 762.231766][T10952] loop1: detected capacity change from 0 to 32768 [ 762.317678][T10953] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1990: couldn't read orphan inode 11 (err -117) [ 762.525347][T10952] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,background_compression=lz4,wide_macs,no_splitbrain_check,recovery_pass_last=accounting_read,nojournal_transaction_names,read_only,version_upgrade=incompatible,no_data_io [ 762.525563][T10952] allowing incompatible features above 0.0: (unknown version) [ 762.525670][T10952] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 762.558326][T10953] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 762.565161][T10952] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 762.616586][T10952] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=data_usage in superblock: invalid journal entry usage: bad size, shutting down [ 762.616729][T10952] error not marked as autofix and not in fsck [ 762.616813][T10952] run fsck, and forward to devs so error can be marked for self-healing [ 762.616905][T10952] emergency read only at seq 0 [ 762.661518][T10952] bcachefs (loop1): error in recovery: fsck_errors_not_fixed [ 762.672802][T10952] bcachefs (loop1): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed [ 762.682669][T10952] bcachefs (loop1): shutting down [ 762.725545][T10952] bcachefs (loop1): shutdown complete [ 763.811024][T10952] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed [ 764.409941][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 764.463338][ T9966] Bluetooth: hci4: command 0x0405 tx timeout [ 764.487155][T10964] loop7: detected capacity change from 0 to 32768 [ 764.503915][T10964] (syz.7.1994,10964,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 764.522534][T10964] (syz.7.1994,10964,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 764.685425][T10964] (syz.7.1994,10964,1):ocfs2_verify_userspace_stack:858 ERROR: cluster stack passed to mount, but this filesystem does not support it [ 764.706325][T10964] (syz.7.1994,10964,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 766.530936][T10978] loop1: detected capacity change from 0 to 256 [ 770.857720][T11013] pimreg: entered allmulticast mode [ 770.915745][T11016] loop7: detected capacity change from 0 to 128 [ 771.238074][T11016] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 771.376006][T11016] ext4 filesystem being mounted at /86/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 771.648801][T11016] EXT4-fs warning (device loop7): ext4_dirblock_csum_verify:375: inode #2: comm syz.7.2017: No space for directory leaf checksum. Please run e2fsck -D. [ 771.668294][T11016] EXT4-fs error (device loop7): __ext4_find_entry:1626: inode #2: comm syz.7.2017: checksumming directory block 0 [ 772.195296][ T9906] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 776.149255][T11062] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2036'. [ 776.178466][T11060] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2036'. [ 776.756256][T11067] netlink: 44 bytes leftover after parsing attributes in process `syz.7.2038'. [ 776.765749][T11067] netlink: 68 bytes leftover after parsing attributes in process `syz.7.2038'. [ 777.231051][T11071] loop0: detected capacity change from 0 to 512 [ 777.386465][T11073] loop2: detected capacity change from 0 to 256 [ 777.420609][T11071] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 777.575081][T11073] exfat: Deprecated parameter 'namecase' [ 777.583066][T11073] exfat: Deprecated parameter 'utf8' [ 777.708546][T11071] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 777.724577][T11071] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #11: comm syz.0.2039: corrupted inode contents [ 777.901462][T11071] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #11: comm syz.0.2039: mark_inode_dirty error [ 777.909952][T11073] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 778.019231][T11071] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2039: invalid indirect mapped block 1 (level 1) [ 778.066974][T11071] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #11: comm syz.0.2039: corrupted inode contents [ 778.211199][T11071] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 778.329011][T11071] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #11: comm syz.0.2039: corrupted inode contents [ 778.365108][T11071] EXT4-fs error (device loop0): ext4_truncate:4666: inode #11: comm syz.0.2039: mark_inode_dirty error [ 778.504437][T11071] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 778.658278][T11071] EXT4-fs (loop0): 1 truncate cleaned up [ 778.667574][T11071] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 778.970433][T11085] loop6: detected capacity change from 0 to 1024 [ 779.116564][T11085] EXT4-fs: Ignoring removed bh option [ 779.362258][T11085] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 779.892933][ T5803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 780.405217][ T8351] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 782.805731][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 782.812739][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 784.465856][T11141] loop6: detected capacity change from 0 to 64 [ 785.332950][T11150] loop1: detected capacity change from 0 to 256 [ 785.797037][T11150] FAT-fs (loop1): Directory bread(block 64) failed [ 785.804188][T11150] FAT-fs (loop1): Directory bread(block 65) failed [ 785.811123][T11150] FAT-fs (loop1): Directory bread(block 66) failed [ 785.821326][T11150] FAT-fs (loop1): Directory bread(block 67) failed [ 785.828703][T11150] FAT-fs (loop1): Directory bread(block 68) failed [ 785.835642][T11150] FAT-fs (loop1): Directory bread(block 69) failed [ 785.854357][T11150] FAT-fs (loop1): Directory bread(block 70) failed [ 785.861145][T11150] FAT-fs (loop1): Directory bread(block 71) failed [ 785.870674][T11150] FAT-fs (loop1): Directory bread(block 72) failed [ 785.880934][T11150] FAT-fs (loop1): Directory bread(block 73) failed [ 786.395922][T11163] loop0: detected capacity change from 0 to 128 [ 786.665126][T11161] loop6: detected capacity change from 0 to 1024 [ 786.944074][T11161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 787.502206][T11174] loop2: detected capacity change from 0 to 64 [ 787.629952][ T8351] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 788.321482][T11181] loop6: detected capacity change from 0 to 1024 [ 788.441294][T11183] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 788.636400][T11181] ===================================================== [ 788.647014][T11181] BUG: KMSAN: uninit-value in hfsplus_delete_cat+0x1195/0x13d0 [ 788.655605][T11181] hfsplus_delete_cat+0x1195/0x13d0 [ 788.661110][T11181] hfsplus_rmdir+0x13c/0x310 [ 788.666350][T11181] hfsplus_rename+0xf9/0x2f0 [ 788.671181][T11181] vfs_rename+0x1f51/0x2530 [ 788.679643][T11181] do_renameat2+0x1484/0x1a50 [ 788.685147][T11181] __x64_sys_rename+0xd7/0x140 [ 788.690171][T11181] x64_sys_call+0x269/0x3e20 [ 788.695325][T11181] do_syscall_64+0xd9/0x210 [ 788.700089][T11181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.712764][T11181] [ 788.716818][T11181] Uninit was stored to memory at: [ 788.722363][T11181] hfsplus_create_cat+0x18fb/0x1910 [ 788.727790][T11181] hfsplus_mknod+0x208/0x560 [ 788.736151][T11181] hfsplus_mkdir+0x5a/0x80 [ 788.740826][T11181] vfs_mkdir+0x4ea/0x850 [ 788.745898][T11181] do_mkdirat+0x41a/0xf30 [ 788.750853][T11181] __x64_sys_mkdirat+0xc1/0x140 [ 788.756700][T11181] x64_sys_call+0x338/0x3e20 [ 788.766935][T11181] do_syscall_64+0xd9/0x210 [ 788.772363][T11181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.778548][T11181] [ 788.781037][T11181] Uninit was created at: [ 788.786500][T11181] __alloc_frozen_pages_noprof+0x689/0xf00 [ 788.795944][T11181] alloc_pages_mpol+0x328/0x860 [ 788.801101][T11181] alloc_frozen_pages_noprof+0xf7/0x200 [ 788.811149][T11181] allocate_slab+0x24d/0x1220 [ 788.817179][T11181] ___slab_alloc+0xff3/0x3470 [ 788.825419][T11181] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 788.831940][T11181] hfsplus_alloc_inode+0x5a/0xd0 [ 788.837095][T11181] alloc_inode+0x8a/0x4a0 [ 788.841877][T11181] iget_locked+0x239/0x12d0 [ 788.846628][T11181] hfsplus_iget+0x5c/0xb80 [ 788.851288][T11181] hfsplus_btree_open+0x128/0x1cf0 [ 788.860082][T11181] hfsplus_fill_super+0x1161/0x2730 [ 788.865730][T11181] get_tree_bdev_flags+0x6e6/0x920 [ 788.871180][T11181] get_tree_bdev+0x38/0x50 [ 788.875998][T11181] hfsplus_get_tree+0x35/0x40 [ 788.880860][T11181] vfs_get_tree+0xb3/0x5c0 [ 788.889037][T11181] do_new_mount+0x733/0x1420 [ 788.894163][T11181] path_mount+0x6db/0x1e90 [ 788.898900][T11181] __se_sys_mount+0x6eb/0x7d0 [ 788.904129][T11181] __x64_sys_mount+0xe4/0x150 [ 788.909073][T11181] x64_sys_call+0x3604/0x3e20 [ 788.922076][T11181] do_syscall_64+0xd9/0x210 [ 788.927055][T11181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.933465][T11181] [ 788.936449][T11181] CPU: 1 UID: 0 PID: 11181 Comm: syz.6.2085 Not tainted syzkaller #0 PREEMPT(none) [ 788.949941][T11181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 788.960723][T11181] ===================================================== [ 788.968197][T11181] Disabling lock debugging due to kernel taint [ 788.977829][T11181] Kernel panic - not syncing: kmsan.panic set ... [ 788.984420][T11181] CPU: 1 UID: 0 PID: 11181 Comm: syz.6.2085 Tainted: G B syzkaller #0 PREEMPT(none) [ 788.995924][T11181] Tainted: [B]=BAD_PAGE [ 789.000623][T11181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 789.010921][T11181] Call Trace: [ 789.014398][T11181] [ 789.017454][T11181] __dump_stack+0x26/0x30 [ 789.022126][T11181] dump_stack_lvl+0x53/0x270 [ 789.027254][T11181] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 789.033296][T11181] dump_stack+0x1e/0x25 [ 789.037673][T11181] vpanic+0x361/0xc50 [ 789.041969][T11181] panic+0x15d/0x160 [ 789.046127][T11181] kmsan_report+0x31c/0x320 [ 789.050841][T11181] ? __msan_warning+0x1b/0x30 [ 789.055779][T11181] ? hfsplus_delete_cat+0x1195/0x13d0 [ 789.061399][T11181] ? hfsplus_rmdir+0x13c/0x310 [ 789.066457][T11181] ? hfsplus_rename+0xf9/0x2f0 [ 789.071536][T11181] ? vfs_rename+0x1f51/0x2530 [ 789.076439][T11181] ? do_renameat2+0x1484/0x1a50 [ 789.081604][T11181] ? __x64_sys_rename+0xd7/0x140 [ 789.086868][T11181] ? x64_sys_call+0x269/0x3e20 [ 789.091858][T11181] ? do_syscall_64+0xd9/0x210 [ 789.096790][T11181] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 789.103239][T11181] ? kmsan_get_metadata+0xfb/0x160 [ 789.108642][T11181] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 789.114765][T11181] ? hfsplus_bnode_dump+0x50a/0x560 [ 789.120318][T11181] ? kmsan_get_metadata+0xfb/0x160 [ 789.125745][T11181] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 789.131781][T11181] ? hfsplus_brec_remove+0x92f/0xa60 [ 789.137338][T11181] ? kmsan_get_metadata+0xfb/0x160 [ 789.142672][T11181] __msan_warning+0x1b/0x30 [ 789.147471][T11181] hfsplus_delete_cat+0x1195/0x13d0 [ 789.153005][T11181] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 789.159125][T11181] ? kmsan_get_metadata+0xfb/0x160 [ 789.164479][T11181] hfsplus_rmdir+0x13c/0x310 [ 789.169318][T11181] hfsplus_rename+0xf9/0x2f0 [ 789.174119][T11181] ? __pfx_hfsplus_rename+0x10/0x10 [ 789.179538][T11181] vfs_rename+0x1f51/0x2530 [ 789.184354][T11181] do_renameat2+0x1484/0x1a50 [ 789.189339][T11181] __x64_sys_rename+0xd7/0x140 [ 789.194558][T11181] x64_sys_call+0x269/0x3e20 [ 789.199479][T11181] do_syscall_64+0xd9/0x210 [ 789.204294][T11181] ? irqentry_exit+0x16/0x60 [ 789.209110][T11181] ? clear_bhb_loop+0x40/0x90 [ 789.213998][T11181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 789.220086][T11181] RIP: 0033:0x7f7a0c38eba9 [ 789.224790][T11181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 789.244889][T11181] RSP: 002b:00007f7a0d24d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 789.253595][T11181] RAX: ffffffffffffffda RBX: 00007f7a0c5d5fa0 RCX: 00007f7a0c38eba9 [ 789.261729][T11181] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000200000000140 [ 789.270030][T11181] RBP: 00007f7a0c411e19 R08: 0000000000000000 R09: 0000000000000000 [ 789.278149][T11181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 789.286427][T11181] R13: 00007f7a0c5d6038 R14: 00007f7a0c5d5fa0 R15: 00007ffd6b15bf68 [ 789.294600][T11181] [ 789.297935][T11181] Kernel Offset: disabled [ 789.302497][T11181] Rebooting in 86400 seconds..