last executing test programs: 23.235551655s ago: executing program 1 (id=1013): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x3c, r1, 0x917, 0x70bd28, 0x25dfdbff, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_FD={0x8}]}, 0x3c}, 0x1, 0x620b}, 0x0) 23.1646383s ago: executing program 1 (id=1016): r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) recvmmsg(r0, &(0x7f00000021c0), 0x5b, 0x40, 0x0) 23.128282476s ago: executing program 1 (id=1019): r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x201, @empty}, 0x1c) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0xe, 0x0, &(0x7f0000000900)) 23.076037211s ago: executing program 1 (id=1020): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x2000002, &(0x7f0000000340)={[{@shortad}, {@fileset={'fileset', 0x3d, 0x5}}, {@unhide}, {}, {@volume={'volume', 0x3d, 0x401}}, {@gid_ignore}, {@uid_forget}, {@anchor}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {}, {@noadinicb}]}, 0xa, 0xc36, &(0x7f0000001a40)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]}) 22.980624324s ago: executing program 1 (id=1026): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x22842, 0x14) write$P9_RSTATFS(r0, 0x0, 0x0) 22.543281492s ago: executing program 1 (id=1041): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000140)={0x2020}, 0x13df) lseek(r0, 0xfffffffffffffff5, 0x1) 22.444123364s ago: executing program 32 (id=1041): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000140)={0x2020}, 0x13df) lseek(r0, 0xfffffffffffffff5, 0x1) 14.859486443s ago: executing program 4 (id=1225): syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000300)={[{@grpjquota}, {@abort}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x4f4, &(0x7f0000000740)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x80) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000040)=@v2={0x2, @aes128, 0x3, '\x00', @c}) 14.742793485s ago: executing program 4 (id=1230): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(camellia-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="75bf344394090000006c0e58155c45491b", 0x11) 14.612796219s ago: executing program 4 (id=1233): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b80)=ANY=[@ANYBLOB="200000001200010a00000000fddbdf250a3f"], 0x20}}, 0x0) 14.58979825s ago: executing program 4 (id=1234): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x4c, r1, 0x511, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0xd769}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1000000}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bond\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40850}, 0x0) 14.557895722s ago: executing program 4 (id=1236): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$eJzskr9OAkEQxr+9O/5oFDWxooGC+KdQjkONnZbY29lI4ETiocKRKITijDEUFsbSJ+A1THwBLYwPQE1BrM2ZvZ3bLL6C+yvu2/l2ZnZ2c+d+208B+JkOajhEhIkMPhiDBSDHhDcxhD6TfpI+CcE75R2Rf0+a9Xv9JAC+nceKMC6qnud28gC+I09a/sGdgUnU6ms6qPHFKYAwDEPu1QGejgUlxwTQVnKyFrAaXSKUORYNsA6g2G1dF/1ef6vZqjbchnvpmOU9e8e2d53iWdNzbfFlyhF0FXDdBJBKQ8L3EwAeKJ7HLEwZjfbZHE5kbTJ+www9IExZayi1sTK8yrlSSsUx1sDHugmWFLcQdbEQXakCBpOCkqXMJ85KRxvbtSuvPgQDi8tGsGSP0hgJGThqUN4PsChaDallgbRCOiIdk+b+/DJWwL+PFG0EQBK31W63U+KPJFYsXjnSc5YD9cH4qS/G7OXeDGg0Go1Go9FoNBrNf+c3AAD//8PfdhM=") prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) 13.676106626s ago: executing program 4 (id=1261): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x28, r1, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x13}]}, 0x28}, 0x1, 0x0, 0x0, 0x20048800}, 0x40000) 6.13153345s ago: executing program 3 (id=1515): r0 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r0, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfb, 0x200000}, 0xc) getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000001100)=""/4096, &(0x7f0000000040)=0x1000) 6.107985014s ago: executing program 3 (id=1517): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockopt$rose(r0, 0x104, 0x6, 0x0, &(0x7f00000001c0)) 6.061951639s ago: executing program 3 (id=1518): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)={0x38, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x6}]}]}]}, 0x38}}, 0x0) 6.017114262s ago: executing program 3 (id=1520): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000580)='./file0\x00', 0x2000006, &(0x7f0000000440)={[{@uni_xlateno}, {@uni_xlateno}, {@utf8}, {@uni_xlate}, {@fat=@gid}, {@shortname_lower}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@shortname_mixed}, {@shortname_lower}, {@uni_xlateno}]}, 0x25, 0x365, &(0x7f0000000640)="$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") r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}) 5.916642896s ago: executing program 3 (id=1522): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000000152,iocharset=iso8859-1,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030372c646973636172642c00214b3cf244ea5fb7437f2c69f67a093e240a6e978fa4cd2d"], 0x1, 0x14fe, &(0x7f0000002a80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) ioctl$SIOCAX25ADDFWD(r0, 0x41009432, &(0x7f0000000180)={@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) 5.544438156s ago: executing program 3 (id=1534): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c460e02fab7ff7f00000000000002000300fffeffffdf020000000000004000000000000000030300ef0000000000000000080038000100040004000d00030000000080000000000000000000000700000000000000080000000000400005000000000000000204"], 0x78) ioctl$SNDCTL_SEQ_SYNC(r0, 0x5101) 5.526647076s ago: executing program 33 (id=1534): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c460e02fab7ff7f00000000000002000300fffeffffdf020000000000004000000000000000030300ef0000000000000000080038000100040004000d00030000000080000000000000000000000700000000000000080000000000400005000000000000000204"], 0x78) ioctl$SNDCTL_SEQ_SYNC(r0, 0x5101) 1.626850772s ago: executing program 6 (id=1535): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x15}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x78}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000) 1.560971247s ago: executing program 6 (id=1627): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x2c, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x80}}, 0x0) 1.491377405s ago: executing program 6 (id=1633): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pipe2$9p(&(0x7f0000000240), 0x0) pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 1.397145412s ago: executing program 6 (id=1639): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000080)=0x80) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) 1.35072308s ago: executing program 6 (id=1640): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8014}, 0x404c000) 1.314771517s ago: executing program 6 (id=1643): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000080)=0x3ff) write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) 952.645028ms ago: executing program 0 (id=1655): socket$nl_route(0x10, 0x3, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x1010000, &(0x7f0000000340)=ANY=[@ANYBLOB="757466383d312c696f636861727365743d6b6f69382d722c756e695f786c6174653d312c696f636861727365743d6370313235302c757466383d302c757466383d312c6e6f6e756d7461696c3d302c726f6469722c756e695f786c6174653d302c756e695f786c6174653d312c73686f72746e616d653d6c6f7765722c636f6465706167653d3737352c726f6469722c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7379735f696d6d757461626c652c6572726f72733d72656d6f756e742d726f2c006a53c76d73d40375c9e6219a"], 0x1, 0x36a, &(0x7f0000001840)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) 928.923175ms ago: executing program 0 (id=1656): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xc, {"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", 0x7c4}}, 0x1006) 906.575236ms ago: executing program 0 (id=1657): socket$kcm(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f260006d2688a84c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 801.894149ms ago: executing program 0 (id=1658): r0 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000540)="900000001c001f4d154a817393278bff0a80a57802000000e503740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e00a2c5fed0759cb068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cef7cff81d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000180)="900000001d001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 773.481261ms ago: executing program 0 (id=1660): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000000)=0xfffffffffffffe87) 739.011539ms ago: executing program 0 (id=1661): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x0, &(0x7f0000000080)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x3e, 0x0, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000100)=r0) 737.148332ms ago: executing program 2 (id=1662): r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000380)=0x2, 0x4) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000040)={{}, 0x6e}, 0x10) 707.687779ms ago: executing program 2 (id=1663): io_setup(0x66, &(0x7f0000000400)=0x0) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000100)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0xe, r1, &(0x7f0000000640)='-', 0x1}]) 633.431722ms ago: executing program 2 (id=1664): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x60, 0x16, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wlan0\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}], {0x14}}, 0x88}}, 0x0) 574.562363ms ago: executing program 2 (id=1665): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) connect$802154_dgram(r0, &(0x7f0000000080)={0x24, @short={0x2, 0x3, 0xaaa0}}, 0x14) 556.322591ms ago: executing program 2 (id=1666): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3, 0x16, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x0, 0xffffffff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls}, 0x94) madvise(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x64) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x9, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1804000008000000000000008000080085100000fdffffff95"], &(0x7f0000000040)='GPL\x00', 0xa, 0x1000, &(0x7f0000000cc0)=""/4096, 0x40f00, 0x4}, 0x94) 534.763185ms ago: executing program 2 (id=1667): r0 = semget$private(0x0, 0x4, 0x1bb) semop(r0, &(0x7f0000000340)=[{0x2, 0xffff, 0x1000}, {0x2, 0x8, 0x1000}], 0x2) semctl$GETPID(r0, 0x2, 0xb, 0x0) 113.291911ms ago: executing program 5 (id=1675): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/tty/ldiscs\x00', 0x0, 0x0) read$usbmon(r0, &(0x7f00000009c0)=""/30, 0x1e) pread64(r0, &(0x7f0000000140)=""/121, 0x79, 0x10000b5) 76.307997ms ago: executing program 5 (id=1676): r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) mmap$usbmon(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 58.270716ms ago: executing program 5 (id=1677): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000001600)={0x54, r1, 0x1, 0xfffffffd, 0x0, {0x26}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x51}, {0xc, 0x8f, 0xfffffffffffffffe}, {0xc}}]}, 0x54}}, 0x0) 37.843628ms ago: executing program 5 (id=1678): r0 = timerfd_create(0x0, 0x80000) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) timerfd_gettime(r0, 0x0) 21.415644ms ago: executing program 5 (id=1679): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000005c00), 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000005c40)=0x6) 0s ago: executing program 5 (id=1680): r0 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x1) write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '#! '}, {}]}, 0x10) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) kernel console output (not intermixed with test programs): device loop1 state M): cleaning free space cache v1 [ 54.644643][ T6550] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 54.774694][ T8626] loop3: detected capacity change from 0 to 256 [ 54.791509][ T8626] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d) [ 54.807443][ T8626] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff) [ 54.819032][ T8627] loop1: detected capacity change from 0 to 1024 [ 54.822952][ T8609] loop4: detected capacity change from 0 to 32768 [ 54.839695][ T8627] EXT4-fs (loop1): Test dummy encryption mode enabled [ 54.840046][ T8627] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 54.854180][ T8627] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.867006][ T8609] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.685 (8609) [ 54.871373][ T8609] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 54.871438][ T8609] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 54.898944][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.945802][ T8609] BTRFS info (device loop4): enabling ssd optimizations [ 54.947182][ T8609] BTRFS info (device loop4): turning on async discard [ 54.948586][ T8609] BTRFS info (device loop4): enabling free space tree [ 54.952003][ T8630] loop2: detected capacity change from 0 to 4096 [ 54.954886][ T8630] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 55.094438][ T6551] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 55.287637][ T8675] loop2: detected capacity change from 0 to 256 [ 55.294826][ T8675] exfat: Deprecated parameter 'namecase' [ 55.294873][ T8675] exfat: Deprecated parameter 'namecase' [ 55.294896][ T8675] exfat: Deprecated parameter 'utf8' [ 55.298590][ T8675] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 55.402999][ T8682] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 55.419633][ T8658] loop0: detected capacity change from 0 to 32768 [ 55.427427][ T8658] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.697 (8658) [ 55.439707][ T8658] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 55.439769][ T8658] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 55.439788][ T8658] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 55.482582][ T8658] BTRFS info (device loop0): rebuilding free space tree [ 55.489394][ T8693] mkiss: ax0: crc mode is auto. [ 55.522157][ T8658] BTRFS info (device loop0): disabling free space tree [ 55.522209][ T8658] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 55.522219][ T8658] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 55.523790][ T8658] BTRFS info (device loop0): enabling ssd optimizations [ 55.523800][ T8658] BTRFS info (device loop0): turning on async discard [ 55.523806][ T8658] BTRFS info (device loop0): enabling disk space caching [ 55.523812][ T8658] BTRFS info (device loop0): force clearing of disk cache [ 55.523819][ T8658] BTRFS info (device loop0): use zstd compression, level 3 [ 55.646749][ T8716] loop2: detected capacity change from 0 to 512 [ 55.650201][ T8716] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 55.670515][ T8716] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 55.670646][ T8716] EXT4-fs (loop2): orphan cleanup on readonly fs [ 55.684193][ T8716] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.718: corrupted inode contents [ 55.688128][ T8716] EXT4-fs (loop2): Remounting filesystem read-only [ 55.689702][ T8716] EXT4-fs (loop2): 1 truncate cleaned up [ 55.690804][ T15] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 55.690828][ T15] Quota error (device loop2): write_blk: dquota write failed [ 55.690835][ T15] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 55.690841][ T15] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 55.690847][ T15] Quota error (device loop2): write_blk: dquota write failed [ 55.690852][ T15] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 55.690880][ T15] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 55.690886][ T15] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 55.690912][ T15] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 55.694998][ T8716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 55.731727][ T6564] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.760131][ T8724] loop1: detected capacity change from 0 to 128 [ 55.761759][ T8724] EXT4-fs: Ignoring removed nobh option [ 55.775854][ T8724] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 55.810471][ T8658] BTRFS info (device loop0 state M): setting nodatasum [ 55.811742][ T8658] BTRFS info (device loop0 state M): setting nodatacow [ 55.812880][ T8658] BTRFS info (device loop0 state M): turning on flush-on-commit [ 55.814084][ T8658] BTRFS info (device loop0 state M): force clearing of disk cache [ 55.815769][ T8658] BTRFS info (device loop0 state M): disabling disk space caching [ 55.817790][ T8658] BTRFS info (device loop0 state M): use no compression [ 55.819793][ T8658] BTRFS info (device loop0 state M): cleaning free space cache v1 [ 55.822877][ T6550] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 55.841839][ T8733] loop2: detected capacity change from 0 to 256 [ 55.845140][ T8733] exfat: Deprecated parameter 'namecase' [ 55.846043][ T8733] exfat: Bad value for 'namecase' [ 55.854730][ T6556] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 55.925333][ T8737] loop4: detected capacity change from 0 to 4096 [ 55.931239][ T8737] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 55.931269][ T8737] EXT4-fs (loop4): Test dummy encryption mode enabled [ 55.951771][ T8737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.983070][ T6551] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.042957][ T8748] loop3: detected capacity change from 0 to 256 [ 56.057501][ T8748] FAT-fs (loop3): Directory bread(block 64) failed [ 56.057551][ T8748] FAT-fs (loop3): Directory bread(block 65) failed [ 56.057588][ T8748] FAT-fs (loop3): Directory bread(block 66) failed [ 56.057605][ T8748] FAT-fs (loop3): Directory bread(block 67) failed [ 56.057637][ T8748] FAT-fs (loop3): Directory bread(block 68) failed [ 56.057649][ T8748] FAT-fs (loop3): Directory bread(block 69) failed [ 56.057672][ T8748] FAT-fs (loop3): Directory bread(block 70) failed [ 56.057683][ T8748] FAT-fs (loop3): Directory bread(block 71) failed [ 56.057717][ T8748] FAT-fs (loop3): Directory bread(block 72) failed [ 56.057728][ T8748] FAT-fs (loop3): Directory bread(block 73) failed [ 56.063238][ T8746] mkiss: ax0: crc mode is auto. [ 56.152619][ T8760] loop3: detected capacity change from 0 to 64 [ 56.229544][ T8770] overlay: Unknown parameter '\' [ 56.299386][ T8780] loop0: detected capacity change from 0 to 128 [ 56.321877][ T8780] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 56.343985][ T6556] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 56.557820][ T8816] loop4: detected capacity change from 0 to 256 [ 56.682219][ T8826] loop0: detected capacity change from 0 to 1024 [ 56.700509][ T8826] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 56.729092][ T6556] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 56.745927][ T8820] loop3: detected capacity change from 0 to 32768 [ 56.774319][ T8820] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 56.828987][ T6558] ocfs2: Unmounting device (7,3) on (node local) [ 57.135717][ T8800] loop1: detected capacity change from 0 to 131072 [ 57.144479][ T8844] loop2: detected capacity change from 0 to 40427 [ 57.147561][ T8844] F2FS-fs (loop2): Small segment_count (9 < 1 * 24) [ 57.147610][ T8844] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 57.160145][ T8800] F2FS-fs (loop1): Test dummy encryption mode enabled [ 57.163015][ T8800] F2FS-fs (loop1): invalid crc value [ 57.165398][ T8844] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 57.186973][ T8844] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 57.187010][ T8844] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 57.198443][ T8870] netlink: 12 bytes leftover after parsing attributes in process `syz.3.785'. [ 57.208200][ T8800] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 57.227495][ T8800] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 57.241882][ T8800] fscrypt: AES-256-XTS using implementation "xts-aes-ce" [ 57.258127][ T8865] loop4: detected capacity change from 0 to 32768 [ 57.268476][ T6564] syz-executor: attempt to access beyond end of device [ 57.268476][ T6564] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 57.270540][ T8865] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.795 (8865) [ 57.272971][ T6564] CPU: 1 UID: 0 PID: 6564 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 57.272989][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 57.272994][ T6564] Call trace: [ 57.272998][ T6564] show_stack+0x2c/0x3c (C) [ 57.273013][ T6564] __dump_stack+0x30/0x40 [ 57.273023][ T6564] dump_stack_lvl+0xd8/0x12c [ 57.273031][ T6564] dump_stack+0x1c/0x28 [ 57.273036][ T6564] f2fs_handle_critical_error+0x34c/0x4b8 [ 57.273045][ T6564] f2fs_stop_checkpoint+0x5c/0x70 [ 57.273051][ T6564] f2fs_write_end_io+0x768/0xa70 [ 57.273057][ T6564] bio_endio+0x858/0x894 [ 57.273063][ T6564] submit_bio_noacct+0xd64/0x186c [ 57.273069][ T6564] submit_bio+0x3b4/0x550 [ 57.273075][ T6564] f2fs_submit_write_bio+0x13c/0x324 [ 57.273081][ T6564] __submit_merged_bio+0x254/0x704 [ 57.273087][ T6564] __submit_merged_write_cond+0x23c/0x4ac [ 57.273093][ T6564] f2fs_write_data_pages+0x1d28/0x2634 [ 57.273099][ T6564] do_writepages+0x270/0x468 [ 57.273107][ T6564] filemap_fdatawrite+0x14c/0x1f4 [ 57.273112][ T6564] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 57.273117][ T6564] f2fs_write_checkpoint+0x70c/0x1c30 [ 57.273122][ T6564] kill_f2fs_super+0x228/0x594 [ 57.273128][ T6564] deactivate_locked_super+0xc4/0x12c [ 57.273135][ T6564] deactivate_super+0xe0/0x100 [ 57.273141][ T6564] cleanup_mnt+0x31c/0x3ac [ 57.273147][ T6564] __cleanup_mnt+0x20/0x30 [ 57.273153][ T6564] task_work_run+0x1dc/0x260 [ 57.273160][ T6564] exit_to_user_mode_loop+0xfc/0x178 [ 57.273166][ T6564] el0_svc+0x170/0x254 [ 57.273174][ T6564] el0t_64_sync_handler+0x84/0x12c [ 57.273180][ T6564] el0t_64_sync+0x198/0x19c [ 57.287234][ T8865] BTRFS info (device loop4): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 57.287293][ T8865] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm [ 57.287323][ T8865] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 57.304648][ T6564] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 57.342996][ T8865] BTRFS info (device loop4): rebuilding free space tree [ 57.357471][ T8865] BTRFS info (device loop4): disabling free space tree [ 57.357551][ T8865] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 57.357578][ T8865] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 57.367073][ T8865] BTRFS info (device loop4): enabling ssd optimizations [ 57.367100][ T8865] BTRFS info (device loop4): turning on async discard [ 57.367121][ T8865] BTRFS info (device loop4): enabling disk space caching [ 57.367132][ T8865] BTRFS info (device loop4): force clearing of disk cache [ 57.367143][ T8865] BTRFS info (device loop4): use zstd compression, level 3 [ 57.565564][ T8865] BTRFS info (device loop4 state M): setting nodatasum [ 57.565595][ T8865] BTRFS info (device loop4 state M): setting nodatacow [ 57.565617][ T8865] BTRFS info (device loop4 state M): turning on flush-on-commit [ 57.565631][ T8865] BTRFS info (device loop4 state M): force clearing of disk cache [ 57.565645][ T8865] BTRFS info (device loop4 state M): disabling disk space caching [ 57.565656][ T8865] BTRFS info (device loop4 state M): use no compression [ 57.565684][ T8865] BTRFS info (device loop4 state M): cleaning free space cache v1 [ 57.635659][ T8899] loop3: detected capacity change from 0 to 32768 [ 57.638736][ T8899] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.793 (8899) [ 57.645930][ T8899] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 57.646003][ T8899] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 57.646024][ T8899] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 57.655179][ T6551] BTRFS info (device loop4): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 57.718090][ T8899] BTRFS info (device loop3): rebuilding free space tree [ 57.723978][ T8899] BTRFS info (device loop3): disabling free space tree [ 57.724029][ T8899] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 57.724046][ T8899] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 57.727700][ T8899] BTRFS info (device loop3): setting nodatasum [ 57.727714][ T8899] BTRFS info (device loop3): allowing degraded mounts [ 57.727725][ T8899] BTRFS info (device loop3): turning on async discard [ 57.727731][ T8899] BTRFS info (device loop3): enabling disk space caching [ 57.727737][ T8899] BTRFS info (device loop3): force clearing of disk cache [ 57.727744][ T8899] BTRFS info (device loop3): force zlib compression, level 3 [ 57.766478][ T8920] bridge1: the hash_elasticity option has been deprecated and is always 16 [ 57.923219][ T8932] loop2: detected capacity change from 0 to 1024 [ 57.951530][ T6558] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 57.978140][ T8932] hfsplus: request for non-existent node 1280 in B*Tree [ 57.979900][ T8932] hfsplus: request for non-existent node 1280 in B*Tree [ 58.046727][ T8934] loop0: detected capacity change from 0 to 32768 [ 58.123648][ T15] hfsplus: b-tree write err: -5, ino 8 [ 58.348151][ T8955] loop4: detected capacity change from 0 to 4096 [ 58.359930][ T8956] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 58.388489][ T8943] loop3: detected capacity change from 0 to 32768 [ 58.390376][ T8943] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.806 (8943) [ 58.393750][ T8943] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 58.395540][ T8943] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 58.461938][ T8943] BTRFS info (device loop3): enabling ssd optimizations [ 58.463178][ T8943] BTRFS info (device loop3): turning on async discard [ 58.464302][ T8943] BTRFS info (device loop3): enabling free space tree [ 58.499347][ T6558] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 58.563817][ T8947] loop0: detected capacity change from 0 to 32768 [ 58.589757][ T8947] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.636419][ T8947] XFS (loop0): Ending clean mount [ 58.741198][ T8947] XFS (loop0): Metadata CRC error detected at xfs_rmapbt_read_verify+0x50/0xf0, xfs_rmapbt block 0x14 [ 58.741248][ T8947] XFS (loop0): Unmount and run xfs_repair [ 58.741255][ T8947] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 58.741264][ T8947] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 58.741272][ T8947] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 80 ................ [ 58.741279][ T8947] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 58.741284][ T8947] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 58.741289][ T8947] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 58.741295][ T8947] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 58.741300][ T8947] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 58.741306][ T8947] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 58.741313][ T8947] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1f8/0x380" at daddr 0x14 len 4 error 74 [ 58.749977][ T8947] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x4c8/0x964 (fs/xfs/xfs_trans_buf.c:311). Shutting down filesystem. [ 58.750004][ T8947] XFS (loop0): Please unmount the filesystem and rectify the problem(s) [ 58.754936][ T8982] loop2: detected capacity change from 0 to 32768 [ 58.805977][ T6556] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.832191][ T9006] loop4: detected capacity change from 0 to 32768 [ 58.848168][ T9014] loop3: detected capacity change from 0 to 64 [ 58.850555][ T9006] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 58.884666][ T9012] netlink: 24 bytes leftover after parsing attributes in process `syz.0.825'. [ 58.918477][ T9008] loop1: detected capacity change from 0 to 32768 [ 58.954425][ T6551] ocfs2: Unmounting device (7,4) on (node local) [ 58.957198][ T9008] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 58.971226][ T9008] (syz.1.823,9008,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214 [ 59.005662][ T6550] ocfs2: Unmounting device (7,1) on (node local) [ 59.041908][ T9032] netlink: 'syz.1.833': attribute type 1 has an invalid length. [ 59.143990][ T9048] loop0: detected capacity change from 0 to 2048 [ 59.158597][ T9048] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 59.188468][ T9050] usb usb6: usbfs: process 9050 (syz.4.843) did not claim interface 63 before use [ 59.230812][ T9036] loop3: detected capacity change from 0 to 40427 [ 59.236288][ T9036] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 59.236337][ T9036] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 59.324112][ T9036] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 59.330197][ T9036] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 59.330256][ T9036] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 59.337083][ T9044] loop1: detected capacity change from 0 to 32768 [ 59.367750][ T9036] process 'syz.3.836' launched './file2' with NULL argv: empty string added [ 59.369498][ T9044] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 59.392570][ T6558] syz-executor: attempt to access beyond end of device [ 59.392570][ T6558] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 59.392633][ T6558] CPU: 1 UID: 0 PID: 6558 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 59.392652][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 59.392661][ T6558] Call trace: [ 59.392666][ T6558] show_stack+0x2c/0x3c (C) [ 59.392686][ T6558] __dump_stack+0x30/0x40 [ 59.392695][ T6558] dump_stack_lvl+0xd8/0x12c [ 59.392706][ T6558] dump_stack+0x1c/0x28 [ 59.392712][ T6558] f2fs_handle_critical_error+0x34c/0x4b8 [ 59.392721][ T6558] f2fs_stop_checkpoint+0x5c/0x70 [ 59.392727][ T6558] f2fs_write_end_io+0x768/0xa70 [ 59.392735][ T6558] bio_endio+0x858/0x894 [ 59.392742][ T6558] submit_bio_noacct+0xd64/0x186c [ 59.392749][ T6558] submit_bio+0x3b4/0x550 [ 59.392755][ T6558] f2fs_submit_write_bio+0x13c/0x324 [ 59.392762][ T6558] __submit_merged_bio+0x254/0x704 [ 59.392768][ T6558] __submit_merged_write_cond+0x23c/0x4ac [ 59.392773][ T6558] f2fs_write_data_pages+0x1d28/0x2634 [ 59.392780][ T6558] do_writepages+0x270/0x468 [ 59.392788][ T6558] filemap_fdatawrite+0x14c/0x1f4 [ 59.392793][ T6558] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 59.392798][ T6558] f2fs_write_checkpoint+0x70c/0x1c30 [ 59.392803][ T6558] kill_f2fs_super+0x228/0x594 [ 59.392809][ T6558] deactivate_locked_super+0xc4/0x12c [ 59.392816][ T6558] deactivate_super+0xe0/0x100 [ 59.392822][ T6558] cleanup_mnt+0x31c/0x3ac [ 59.392828][ T6558] __cleanup_mnt+0x20/0x30 [ 59.392834][ T6558] task_work_run+0x1dc/0x260 [ 59.392840][ T6558] exit_to_user_mode_loop+0xfc/0x178 [ 59.392847][ T6558] el0_svc+0x170/0x254 [ 59.392854][ T6558] el0t_64_sync_handler+0x84/0x12c [ 59.392860][ T6558] el0t_64_sync+0x198/0x19c [ 59.392880][ T6558] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 59.454422][ T6550] ocfs2: Unmounting device (7,1) on (node local) [ 59.527825][ T9084] loop4: detected capacity change from 0 to 164 [ 59.561501][ T9084] rock: corrupted directory entry. extent=32, offset=0, size=65773 [ 59.589513][ T9088] random: crng reseeded on system resumption [ 59.595966][ T9090] loop0: detected capacity change from 0 to 64 [ 59.898660][ T9097] loop1: detected capacity change from 0 to 32768 [ 59.916710][ T9100] loop4: detected capacity change from 0 to 40427 [ 59.919786][ T9097] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 59.921599][ T9100] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 59.923111][ T9100] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 59.924627][ T9100] F2FS-fs (loop4): build fault injection rate: 18446 [ 59.931296][ T9100] F2FS-fs (loop4): invalid crc value [ 59.974123][ T9097] XFS (loop1): Ending clean mount [ 59.976915][ T9100] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 59.979852][ T9126] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 59.983857][ T9100] F2FS-fs (loop4): Start checkpoint disabled! [ 59.991130][ T9097] XFS (loop1): Quotacheck needed: Please wait. [ 59.996053][ T9100] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0 [ 60.000852][ T9100] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 60.000990][ T9100] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 60.008039][ T9097] XFS (loop1): Quotacheck: Done. [ 60.034471][ T9108] loop0: detected capacity change from 0 to 32768 [ 60.049952][ T9108] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 60.051739][ T9108] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 60.060557][ T9100] syz.4.867: attempt to access beyond end of device [ 60.060557][ T9100] loop4: rw=2049, sector=45096, nr_sectors = 136 limit=40427 [ 60.073999][ T9108] XFS (loop0): Ending clean mount [ 60.077498][ T9108] XFS (loop0): Quotacheck needed: Please wait. [ 60.097810][ T2260] kworker/u8:6: attempt to access beyond end of device [ 60.097810][ T2260] loop4: rw=2049, sector=45232, nr_sectors = 8 limit=40427 [ 60.101012][ T2260] CPU: 1 UID: 0 PID: 2260 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT [ 60.101039][ T2260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 60.101045][ T2260] Workqueue: writeback wb_workfn (flush-7:4) [ 60.101066][ T2260] Call trace: [ 60.101069][ T2260] show_stack+0x2c/0x3c (C) [ 60.101080][ T2260] __dump_stack+0x30/0x40 [ 60.101087][ T2260] dump_stack_lvl+0xd8/0x12c [ 60.101092][ T2260] dump_stack+0x1c/0x28 [ 60.101096][ T2260] f2fs_handle_critical_error+0x34c/0x4b8 [ 60.101105][ T2260] f2fs_stop_checkpoint+0x5c/0x70 [ 60.101111][ T2260] f2fs_write_end_io+0x768/0xa70 [ 60.101119][ T2260] bio_endio+0x858/0x894 [ 60.101125][ T2260] submit_bio_noacct+0xd64/0x186c [ 60.101132][ T2260] submit_bio+0x3b4/0x550 [ 60.101138][ T2260] f2fs_submit_write_bio+0x13c/0x324 [ 60.101144][ T2260] __submit_merged_bio+0x254/0x704 [ 60.101150][ T2260] __submit_merged_write_cond+0x23c/0x4ac [ 60.101156][ T2260] f2fs_write_data_pages+0x1d28/0x2634 [ 60.101162][ T2260] do_writepages+0x270/0x468 [ 60.101170][ T2260] __writeback_single_inode+0x15c/0x13e8 [ 60.101176][ T2260] writeback_sb_inodes+0x55c/0xe40 [ 60.101182][ T2260] wb_writeback+0x3cc/0xd70 [ 60.101187][ T2260] wb_workfn+0x338/0xdc0 [ 60.101192][ T2260] process_one_work+0x7e8/0x155c [ 60.101198][ T2260] worker_thread+0x958/0xed8 [ 60.101203][ T2260] kthread+0x5fc/0x75c [ 60.101210][ T2260] ret_from_fork+0x10/0x20 [ 60.126347][ T2260] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 60.144465][ T9108] XFS (loop0): Quotacheck: Done. [ 60.149496][ T6550] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 60.272118][ T6556] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 60.310189][ T9140] loop3: detected capacity change from 0 to 32768 [ 60.326513][ T9140] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.877 (9140) [ 60.341424][ T9140] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 60.341482][ T9140] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 60.380770][ T9140] BTRFS info (device loop3): rebuilding free space tree [ 60.392598][ T9140] BTRFS info (device loop3): disabling free space tree [ 60.392637][ T9140] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 60.392655][ T9140] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 60.393943][ T9140] BTRFS info (device loop3): enabling ssd optimizations [ 60.393952][ T9140] BTRFS info (device loop3): turning on async discard [ 60.393959][ T9140] BTRFS info (device loop3): force clearing of disk cache [ 60.393964][ T9140] BTRFS info (device loop3): enabling auto defrag [ 60.393970][ T9140] BTRFS info (device loop3): max_inline set to 4096 [ 60.434709][ T9174] loop0: detected capacity change from 0 to 4096 [ 60.459944][ T9179] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 60.481322][ T6558] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 60.600304][ T9181] loop1: detected capacity change from 0 to 32768 [ 60.690903][ T9181] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 60.739695][ T9181] XFS (loop1): Ending clean mount [ 60.832555][ T9219] loop0: detected capacity change from 0 to 40427 [ 60.833850][ T9181] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x50/0xf0, xfs_finobt block 0x20 [ 60.833886][ T9181] XFS (loop1): Unmount and run xfs_repair [ 60.833894][ T9181] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 60.833904][ T9181] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 60.833911][ T9181] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40 ....... .......@ [ 60.833916][ T9181] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a ...B..N....xv... [ 60.833922][ T9181] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37 .......F......@7 [ 60.833927][ T9181] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 60.833932][ T9181] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00 ................ [ 60.833937][ T9181] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 60.833942][ T9181] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 60.833950][ T9181] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1f8/0x380" at daddr 0x20 len 8 error 74 [ 60.850135][ T9219] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 60.851304][ T9219] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 60.884855][ T9219] F2FS-fs (loop0): invalid crc value [ 60.886830][ T6550] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 60.888198][ T6550] XFS (loop1): Uncorrected metadata errors detected; please run xfs_repair. [ 60.959132][ T9219] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 60.960299][ T9219] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 60.960309][ T9219] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 61.189385][ T9264] netlink: 8 bytes leftover after parsing attributes in process `syz.2.923'. [ 61.189418][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz.2.923'. [ 61.189449][ T9264] netlink: 'syz.2.923': attribute type 12 has an invalid length. [ 61.189461][ T9264] netlink: 'syz.2.923': attribute type 11 has an invalid length. [ 61.315404][ T9258] ptrace attach of "./syz-executor exec"[6551] was attempted by "  "[9258] [ 61.336115][ T9262] loop3: detected capacity change from 0 to 32768 [ 61.343622][ T9262] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 61.346710][ T9262] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 61.430460][ T6558] ocfs2: Unmounting device (7,3) on (node local) [ 61.459438][ T9269] loop0: detected capacity change from 0 to 32768 [ 61.692584][ T9311] loop3: detected capacity change from 0 to 256 [ 61.695537][ T9311] exfat: Deprecated parameter 'utf8' [ 61.695613][ T9311] exfat: Deprecated parameter 'namecase' [ 61.708580][ T9311] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 61.833203][ T9294] loop2: detected capacity change from 0 to 40427 [ 61.848359][ T9294] F2FS-fs (loop2): invalid crc value [ 61.889998][ T9294] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 61.895079][ T9294] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 61.904890][ T9331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.951'. [ 61.937392][ T6564] syz-executor: attempt to access beyond end of device [ 61.937392][ T6564] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 61.937448][ T6564] CPU: 0 UID: 0 PID: 6564 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 61.937458][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 61.937465][ T6564] Call trace: [ 61.937468][ T6564] show_stack+0x2c/0x3c (C) [ 61.937484][ T6564] __dump_stack+0x30/0x40 [ 61.937490][ T6564] dump_stack_lvl+0xd8/0x12c [ 61.937495][ T6564] dump_stack+0x1c/0x28 [ 61.937500][ T6564] f2fs_handle_critical_error+0x34c/0x4b8 [ 61.937508][ T6564] f2fs_stop_checkpoint+0x5c/0x70 [ 61.937513][ T6564] f2fs_write_end_io+0x768/0xa70 [ 61.937520][ T6564] bio_endio+0x858/0x894 [ 61.937526][ T6564] submit_bio_noacct+0xd64/0x186c [ 61.937532][ T6564] submit_bio+0x3b4/0x550 [ 61.937538][ T6564] f2fs_submit_write_bio+0x13c/0x324 [ 61.937544][ T6564] __submit_merged_bio+0x254/0x704 [ 61.937549][ T6564] __submit_merged_write_cond+0x23c/0x4ac [ 61.937555][ T6564] f2fs_write_data_pages+0x1d28/0x2634 [ 61.937561][ T6564] do_writepages+0x270/0x468 [ 61.937570][ T6564] filemap_fdatawrite+0x14c/0x1f4 [ 61.937574][ T6564] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 61.937580][ T6564] f2fs_write_checkpoint+0x70c/0x1c30 [ 61.937585][ T6564] kill_f2fs_super+0x228/0x594 [ 61.937591][ T6564] deactivate_locked_super+0xc4/0x12c [ 61.937597][ T6564] deactivate_super+0xe0/0x100 [ 61.937603][ T6564] cleanup_mnt+0x31c/0x3ac [ 61.937610][ T6564] __cleanup_mnt+0x20/0x30 [ 61.937616][ T6564] task_work_run+0x1dc/0x260 [ 61.937622][ T6564] exit_to_user_mode_loop+0xfc/0x178 [ 61.937629][ T6564] el0_svc+0x170/0x254 [ 61.937636][ T6564] el0t_64_sync_handler+0x84/0x12c [ 61.937642][ T6564] el0t_64_sync+0x198/0x19c [ 61.937649][ T6564] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 62.070795][ T9315] loop3: detected capacity change from 0 to 40427 [ 62.074017][ T9337] loop0: detected capacity change from 0 to 2048 [ 62.087957][ T9315] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 62.088005][ T9315] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 62.088520][ T9315] F2FS-fs (loop3): build fault injection rate: 18446 [ 62.092739][ T9315] F2FS-fs (loop3): invalid crc value [ 62.111892][ T9337] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 62.120874][ T9337] net_ratelimit: 44 callbacks suppressed [ 62.120921][ T9337] netlink: zone id is out of range [ 62.120954][ T9337] netlink: zone id is out of range [ 62.120959][ T9337] netlink: zone id is out of range [ 62.120964][ T9337] netlink: zone id is out of range [ 62.120968][ T9337] netlink: zone id is out of range [ 62.120972][ T9337] netlink: zone id is out of range [ 62.120977][ T9337] netlink: zone id is out of range [ 62.120981][ T9337] netlink: zone id is out of range [ 62.120985][ T9337] netlink: zone id is out of range [ 62.120990][ T9337] netlink: zone id is out of range [ 62.132022][ T9315] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 62.156520][ T9315] F2FS-fs (loop3): Start checkpoint disabled! [ 62.159963][ T9315] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0 [ 62.160360][ T9315] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 62.160368][ T9315] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 62.195019][ T9315] syz.3.944: attempt to access beyond end of device [ 62.195019][ T9315] loop3: rw=2049, sector=45096, nr_sectors = 136 limit=40427 [ 62.247540][ T2260] kworker/u8:6: attempt to access beyond end of device [ 62.247540][ T2260] loop3: rw=2049, sector=45232, nr_sectors = 8 limit=40427 [ 62.247604][ T2260] CPU: 0 UID: 0 PID: 2260 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT [ 62.247614][ T2260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 62.247619][ T2260] Workqueue: writeback wb_workfn (flush-7:3) [ 62.247634][ T2260] Call trace: [ 62.247636][ T2260] show_stack+0x2c/0x3c (C) [ 62.247645][ T2260] __dump_stack+0x30/0x40 [ 62.247650][ T2260] dump_stack_lvl+0xd8/0x12c [ 62.247655][ T2260] dump_stack+0x1c/0x28 [ 62.247660][ T2260] f2fs_handle_critical_error+0x34c/0x4b8 [ 62.247667][ T2260] f2fs_stop_checkpoint+0x5c/0x70 [ 62.247672][ T2260] f2fs_write_end_io+0x768/0xa70 [ 62.247679][ T2260] bio_endio+0x858/0x894 [ 62.247684][ T2260] submit_bio_noacct+0xd64/0x186c [ 62.247697][ T2260] submit_bio+0x3b4/0x550 [ 62.247705][ T2260] f2fs_submit_write_bio+0x13c/0x324 [ 62.247712][ T2260] __submit_merged_bio+0x254/0x704 [ 62.247719][ T2260] __submit_merged_write_cond+0x23c/0x4ac [ 62.247725][ T2260] f2fs_write_data_pages+0x1d28/0x2634 [ 62.247731][ T2260] do_writepages+0x270/0x468 [ 62.247739][ T2260] __writeback_single_inode+0x15c/0x13e8 [ 62.247745][ T2260] writeback_sb_inodes+0x55c/0xe40 [ 62.247750][ T2260] wb_writeback+0x3cc/0xd70 [ 62.247755][ T2260] wb_workfn+0x338/0xdc0 [ 62.247760][ T2260] process_one_work+0x7e8/0x155c [ 62.247765][ T2260] worker_thread+0x958/0xed8 [ 62.247770][ T2260] kthread+0x5fc/0x75c [ 62.247777][ T2260] ret_from_fork+0x10/0x20 [ 62.247784][ T2260] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 62.337706][ T9347] loop1: detected capacity change from 0 to 32768 [ 62.349786][ T9347] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.958 (9347) [ 62.370574][ T9347] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 62.370632][ T9347] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 62.385436][ T9347] BTRFS info (device loop1): enabling ssd optimizations [ 62.385470][ T9347] BTRFS info (device loop1): turning on async discard [ 62.385491][ T9347] BTRFS info (device loop1): enabling free space tree [ 62.403937][ T9347] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8) [ 62.460356][ T6550] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 62.630958][ T9410] loop4: detected capacity change from 0 to 1024 [ 62.713517][ T9421] netlink: 'syz.2.986': attribute type 2 has an invalid length. [ 62.715583][ T9421] netlink: 'syz.2.986': attribute type 1 has an invalid length. [ 62.975793][ T9477] loop2: detected capacity change from 0 to 256 [ 62.983069][ T9477] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 62.983512][ T9477] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 62.983520][ T9477] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 62.983526][ T9477] UDF-fs: Scanning with blocksize 512 failed [ 62.989707][ T9477] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 62.990449][ T9477] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 62.992993][ T9478] loop0: detected capacity change from 0 to 256 [ 63.007576][ T9475] loop3: detected capacity change from 0 to 2048 [ 63.033415][ T9478] FAT-fs (loop0): Directory bread(block 64) failed [ 63.033461][ T9478] FAT-fs (loop0): Directory bread(block 65) failed [ 63.033488][ T9478] FAT-fs (loop0): Directory bread(block 66) failed [ 63.033501][ T9478] FAT-fs (loop0): Directory bread(block 67) failed [ 63.033521][ T9478] FAT-fs (loop0): Directory bread(block 68) failed [ 63.033532][ T9478] FAT-fs (loop0): Directory bread(block 69) failed [ 63.033551][ T9478] FAT-fs (loop0): Directory bread(block 70) failed [ 63.033561][ T9478] FAT-fs (loop0): Directory bread(block 71) failed [ 63.033579][ T9478] FAT-fs (loop0): Directory bread(block 72) failed [ 63.033589][ T9478] FAT-fs (loop0): Directory bread(block 73) failed [ 63.045448][ T9483] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 63.109360][ T9488] loop1: detected capacity change from 0 to 2048 [ 63.116803][ T9488] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 63.139585][ T9488] overlayfs: upper fs needs to support d_type. [ 63.140454][ T9488] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 63.140468][ T9488] overlayfs: failed to set xattr on upper [ 63.140471][ T9488] overlayfs: ...falling back to redirect_dir=nofollow. [ 63.140475][ T9488] overlayfs: ...falling back to index=off. [ 63.140478][ T9488] overlayfs: ...falling back to uuid=null. [ 63.140482][ T9488] overlayfs: NFS export requires "index=on", falling back to nfs_export=off. [ 63.164362][ T6550] UDF-fs: error (device loop1): udf_read_inode: (ino 1440) failed !bh [ 63.164739][ T6550] UDF-fs: error (device loop1): udf_read_inode: (ino 1440) failed !bh [ 63.384579][ T9512] loop4: detected capacity change from 0 to 1024 [ 63.384954][ T9512] EXT4-fs: Ignoring removed bh option [ 63.435307][ T9512] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.474632][ T9518] loop3: detected capacity change from 0 to 4096 [ 63.489163][ T9522] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 63.552647][ T6551] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.845873][ T6145] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 63.851437][ T6145] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 63.853294][ T6145] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.860089][ T6145] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.874117][ T6145] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.930171][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.963764][ T9557] loop2: detected capacity change from 0 to 256 [ 63.980751][ T9557] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 63.985335][ T9557] exFAT-fs (loop2): start_clu is invalid cluster(0x400) [ 64.050777][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.151576][ T9573] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed. [ 64.172925][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.204240][ T9571] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.211973][ T9533] loop4: detected capacity change from 0 to 131072 [ 64.214941][ T9571] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.222564][ T9533] F2FS-fs (loop4): Test dummy encryption mode enabled [ 64.224311][ T9533] F2FS-fs (loop4): invalid crc value [ 64.240480][ T9581] loop0: detected capacity change from 0 to 512 [ 64.251188][ T9533] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 64.258703][ T9576] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.258767][ T9576] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.261802][ T9533] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 64.271734][ T9576] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.271783][ T9576] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.359352][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.372171][ T9586] vlan2: entered promiscuous mode [ 64.373103][ T9586] macvtap0: entered promiscuous mode [ 64.428676][ T9591] loop3: detected capacity change from 0 to 512 [ 64.455782][ T9543] chnl_net:caif_netlink_parms(): no params data found [ 64.472662][ T9600] loop2: detected capacity change from 0 to 1024 [ 64.481049][ T9591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 64.510274][ T9600] hfsplus: extend alloc file! (8192,512,17039360) [ 64.510306][ T2454] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.510431][ T2454] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.514505][ T24] cfg80211: failed to load regulatory.db [ 64.540321][ T6558] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.681969][ T9543] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.682034][ T9543] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.682129][ T9543] bridge_slave_0: entered allmulticast mode [ 64.694295][ T9543] bridge_slave_0: entered promiscuous mode [ 64.697109][ T12] bridge_slave_1: left allmulticast mode [ 64.697151][ T12] bridge_slave_1: left promiscuous mode [ 64.697997][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.710897][ T12] bridge_slave_0: left allmulticast mode [ 64.710933][ T12] bridge_slave_0: left promiscuous mode [ 64.711031][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.717806][ T9626] sctp: [Deprecated]: syz.4.1059 (pid 9626) Use of int in maxseg socket option. [ 64.717806][ T9626] Use struct sctp_assoc_value instead [ 64.761974][ T9630] loop3: detected capacity change from 0 to 64 [ 64.783355][ T9630] hfs: request for non-existent node 24 in B*Tree [ 64.783385][ T9630] hfs: request for non-existent node 24 in B*Tree [ 64.894434][ T24] kernel read not supported for file /vga_arbiter (pid: 24 comm: kworker/1:0) [ 65.009090][ T9645] loop3: detected capacity change from 0 to 40427 [ 65.018131][ T9645] F2FS-fs (loop3): invalid crc value [ 65.031146][ T9645] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 65.031438][ T9645] F2FS-fs (loop3): Start checkpoint disabled! [ 65.034091][ T9645] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0 [ 65.035388][ T9645] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 65.059294][ T2260] kworker/u8:6: attempt to access beyond end of device [ 65.059294][ T2260] loop3: rw=1, sector=45096, nr_sectors = 8 limit=40427 [ 65.059924][ T2260] kworker/u8:6: attempt to access beyond end of device [ 65.059924][ T2260] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 65.059953][ T2260] CPU: 0 UID: 0 PID: 2260 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT [ 65.059960][ T2260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 65.059965][ T2260] Workqueue: writeback wb_workfn (flush-7:3) [ 65.059980][ T2260] Call trace: [ 65.059982][ T2260] show_stack+0x2c/0x3c (C) [ 65.059991][ T2260] __dump_stack+0x30/0x40 [ 65.059997][ T2260] dump_stack_lvl+0xd8/0x12c [ 65.060001][ T2260] dump_stack+0x1c/0x28 [ 65.060006][ T2260] f2fs_handle_critical_error+0x34c/0x4b8 [ 65.060014][ T2260] f2fs_stop_checkpoint+0x5c/0x70 [ 65.060019][ T2260] f2fs_write_end_io+0x768/0xa70 [ 65.060025][ T2260] bio_endio+0x858/0x894 [ 65.060031][ T2260] submit_bio_noacct+0xd64/0x186c [ 65.060037][ T2260] submit_bio+0x3b4/0x550 [ 65.060043][ T2260] f2fs_submit_write_bio+0x13c/0x324 [ 65.060049][ T2260] __submit_merged_bio+0x254/0x704 [ 65.060055][ T2260] __submit_merged_write_cond+0x23c/0x4ac [ 65.060061][ T2260] f2fs_write_data_pages+0x1d28/0x2634 [ 65.060067][ T2260] do_writepages+0x270/0x468 [ 65.060074][ T2260] __writeback_single_inode+0x15c/0x13e8 [ 65.060080][ T2260] writeback_sb_inodes+0x55c/0xe40 [ 65.060085][ T2260] wb_writeback+0x3cc/0xd70 [ 65.060090][ T2260] wb_workfn+0x338/0xdc0 [ 65.060095][ T2260] process_one_work+0x7e8/0x155c [ 65.060101][ T2260] worker_thread+0x958/0xed8 [ 65.060106][ T2260] kthread+0x5fc/0x75c [ 65.060112][ T2260] ret_from_fork+0x10/0x20 [ 65.060119][ T2260] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 65.116631][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 65.151386][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 65.177614][ T12] bond0 (unregistering): Released all slaves [ 65.188385][ T9543] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.188458][ T9543] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.188606][ T9543] bridge_slave_1: entered allmulticast mode [ 65.189148][ T9543] bridge_slave_1: entered promiscuous mode [ 65.199500][ T9647] netlink: 'syz.4.1082': attribute type 1 has an invalid length. [ 65.215035][ T9543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.223432][ T9543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 65.291576][ T9543] team0: Port device team_slave_0 added [ 65.302416][ T9543] team0: Port device team_slave_1 added [ 65.428273][ T9681] loop4: detected capacity change from 0 to 256 [ 65.438031][ T9685] netlink: 'syz.2.1093': attribute type 23 has an invalid length. [ 65.451537][ T9543] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 65.452719][ T9543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 65.459015][ T9543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 65.461826][ T9543] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.466228][ T9543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 65.470743][ T9543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.476472][ T9681] FAT-fs (loop4): Directory bread(block 64) failed [ 65.476517][ T9681] FAT-fs (loop4): Directory bread(block 65) failed [ 65.476549][ T9681] FAT-fs (loop4): Directory bread(block 66) failed [ 65.476561][ T9681] FAT-fs (loop4): Directory bread(block 67) failed [ 65.476583][ T9681] FAT-fs (loop4): Directory bread(block 68) failed [ 65.476594][ T9681] FAT-fs (loop4): Directory bread(block 69) failed [ 65.476615][ T9681] FAT-fs (loop4): Directory bread(block 70) failed [ 65.476624][ T9681] FAT-fs (loop4): Directory bread(block 71) failed [ 65.476645][ T9681] FAT-fs (loop4): Directory bread(block 72) failed [ 65.476655][ T9681] FAT-fs (loop4): Directory bread(block 73) failed [ 65.571537][ T9543] hsr_slave_0: entered promiscuous mode [ 65.571918][ T9543] hsr_slave_1: entered promiscuous mode [ 65.572100][ T9543] debugfs: 'hsr0' already exists in 'hsr' [ 65.572110][ T9543] Cannot create hsr debugfs directory [ 65.655368][ T9702] loop3: detected capacity change from 0 to 256 [ 65.671333][ T9693] netlink: 'syz.4.1098': attribute type 8 has an invalid length. [ 65.674227][ T9702] FAT-fs (loop3): Directory bread(block 64) failed [ 65.675922][ T9702] FAT-fs (loop3): Directory bread(block 65) failed [ 65.677550][ T9702] FAT-fs (loop3): Directory bread(block 66) failed [ 65.678742][ T9702] FAT-fs (loop3): Directory bread(block 67) failed [ 65.679968][ T9702] FAT-fs (loop3): Directory bread(block 68) failed [ 65.681063][ T9702] FAT-fs (loop3): Directory bread(block 69) failed [ 65.682214][ T9702] FAT-fs (loop3): Directory bread(block 70) failed [ 65.683197][ T9702] FAT-fs (loop3): Directory bread(block 71) failed [ 65.684334][ T9702] FAT-fs (loop3): Directory bread(block 72) failed [ 65.685440][ T9702] FAT-fs (loop3): Directory bread(block 73) failed [ 65.859401][ T12] hsr_slave_0: left promiscuous mode [ 65.866362][ T12] hsr_slave_1: left promiscuous mode [ 65.866790][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 65.866821][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 65.880362][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 65.880397][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 65.910101][ T12] veth1_macvtap: left promiscuous mode [ 65.910186][ T12] veth0_macvtap: left promiscuous mode [ 65.911406][ T12] veth1_vlan: left promiscuous mode [ 65.911486][ T12] veth0_vlan: left promiscuous mode [ 65.946363][ T6145] Bluetooth: hci0: command tx timeout [ 65.998847][ T9713] loop0: detected capacity change from 0 to 32768 [ 66.004727][ T9713] (syz.0.1104,9713,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 66.004863][ T9713] (syz.0.1104,9713,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 66.010443][ T9713] JBD2: Ignoring recovery information on journal [ 66.030414][ T9713] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 66.049070][ T9747] loop3: detected capacity change from 0 to 256 [ 66.069542][ T9747] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 66.083837][ T6556] ocfs2: Unmounting device (7,0) on (node local) [ 66.360483][ T9751] loop3: detected capacity change from 0 to 40427 [ 66.366625][ T9751] F2FS-fs: heap/no_heap options were deprecated [ 66.370192][ T9751] F2FS-fs (loop3): invalid crc value [ 66.370306][ T9751] F2FS-fs (loop3): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root and reserve_node [ 66.393893][ T12] team0 (unregistering): Port device team_slave_1 removed [ 66.404857][ T9751] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 66.405333][ T9751] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 66.428626][ T12] team0 (unregistering): Port device team_slave_0 removed [ 66.492993][ T9749] loop0: detected capacity change from 0 to 131072 [ 66.505987][ T9749] F2FS-fs (loop0): Test dummy encryption mode enabled [ 66.508947][ T9749] F2FS-fs (loop0): invalid crc value [ 66.534541][ T9749] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 66.535369][ T9749] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 66.761779][ T9765] mmap: syz.3.1121 (9765) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 66.778597][ T9763] loop2: detected capacity change from 0 to 512 [ 66.839768][ T9763] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.883606][ T9543] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 66.927451][ T6564] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.929430][ T9543] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 66.985078][ T9543] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 67.000969][ T9543] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 67.074948][ T9818] netlink: 'syz.2.1135': attribute type 3 has an invalid length. [ 67.104436][ T9543] 8021q: adding VLAN 0 to HW filter on device bond0 [ 67.108979][ T9543] 8021q: adding VLAN 0 to HW filter on device team0 [ 67.113609][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.113666][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.126971][ T787] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.127022][ T787] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.132006][ T9543] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 67.133667][ T9543] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 67.193553][ T9823] loop3: detected capacity change from 0 to 1024 [ 67.220668][ T9813] loop4: detected capacity change from 0 to 32768 [ 67.284068][ T9543] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.289603][ T42] hfsplus: b-tree write err: -5, ino 8 [ 67.409800][ T9820] loop0: detected capacity change from 0 to 32768 [ 67.417382][ T9820] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1136 (9820) [ 67.425916][ T9820] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 67.425979][ T9820] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 67.549349][ T9820] BTRFS info (device loop0): enabling ssd optimizations [ 67.549390][ T9820] BTRFS info (device loop0): turning on async discard [ 67.549399][ T9820] BTRFS info (device loop0): enabling free space tree [ 67.569205][ T9543] veth0_vlan: entered promiscuous mode [ 67.572229][ T9543] veth1_vlan: entered promiscuous mode [ 67.606811][ T6556] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 67.634412][ T9543] veth0_macvtap: entered promiscuous mode [ 67.648031][ T9543] veth1_macvtap: entered promiscuous mode [ 67.654941][ T9543] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.655933][ T9543] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.747886][ T42] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.748015][ T42] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.748034][ T42] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.748052][ T42] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.772520][ T9847] loop4: detected capacity change from 0 to 32768 [ 67.783832][ T9847] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1140 (9847) [ 67.810682][ T9847] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 67.810749][ T9847] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm [ 67.869613][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.873590][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.925158][ T4167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.925189][ T4167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.955208][ T9847] BTRFS info (device loop4): enabling ssd optimizations [ 67.955240][ T9847] BTRFS info (device loop4): turning on async discard [ 67.955262][ T9847] BTRFS info (device loop4): enabling free space tree [ 68.029472][ T6145] Bluetooth: hci0: command tx timeout [ 68.036097][ T6551] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 68.069771][ T9853] loop2: detected capacity change from 0 to 131072 [ 68.074532][ T9853] F2FS-fs (loop2): invalid crc value [ 68.091503][ T9853] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 68.093975][ T9853] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 68.364943][ T9907] loop5: detected capacity change from 0 to 32768 [ 68.401347][ T9907] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1146 (9907) [ 68.413731][ T9907] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 68.413806][ T9907] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm [ 68.522242][ T9905] loop4: detected capacity change from 0 to 40427 [ 68.523883][ T9907] BTRFS info (device loop5): enabling ssd optimizations [ 68.523913][ T9907] BTRFS info (device loop5): turning on async discard [ 68.523926][ T9907] BTRFS info (device loop5): enabling free space tree [ 68.536590][ T9905] F2FS-fs: heap/no_heap options were deprecated [ 68.555212][ T9905] F2FS-fs (loop4): build fault injection rate: 19 [ 68.555246][ T9905] F2FS-fs (loop4): build fault injection type: 0x3bfe8c [ 68.558738][ T9905] F2FS-fs (loop4): invalid crc value [ 68.606798][ T9905] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac [ 68.611713][ T9857] loop3: detected capacity change from 0 to 131072 [ 68.613778][ T9543] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 68.615627][ T9857] F2FS-fs (loop3): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 68.625522][ T9857] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 68.635002][ T9905] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0 [ 68.677232][ T9905] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 68.680709][ T9857] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 68.684426][ T9905] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 68.691339][ T9857] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 68.691388][ T9857] F2FS-fs (loop3): Mounted with checkpoint version = 753bd00b [ 68.700239][ T9905] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x19c/0x868 [ 68.755759][ T6551] syz-executor: attempt to access beyond end of device [ 68.755759][ T6551] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 68.755811][ T6551] CPU: 0 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 68.755824][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 68.755830][ T6551] Call trace: [ 68.755833][ T6551] show_stack+0x2c/0x3c (C) [ 68.755849][ T6551] __dump_stack+0x30/0x40 [ 68.755856][ T6551] dump_stack_lvl+0xd8/0x12c [ 68.755861][ T6551] dump_stack+0x1c/0x28 [ 68.755866][ T6551] f2fs_handle_critical_error+0x34c/0x4b8 [ 68.755874][ T6551] f2fs_stop_checkpoint+0x5c/0x70 [ 68.755879][ T6551] f2fs_write_end_io+0x768/0xa70 [ 68.755886][ T6551] bio_endio+0x858/0x894 [ 68.755892][ T6551] submit_bio_noacct+0xd64/0x186c [ 68.755899][ T6551] submit_bio+0x3b4/0x550 [ 68.755904][ T6551] f2fs_submit_write_bio+0x13c/0x324 [ 68.755910][ T6551] __submit_merged_bio+0x254/0x704 [ 68.755916][ T6551] __submit_merged_write_cond+0x23c/0x4ac [ 68.755922][ T6551] f2fs_write_data_pages+0x1d28/0x2634 [ 68.755928][ T6551] do_writepages+0x270/0x468 [ 68.755937][ T6551] filemap_fdatawrite+0x14c/0x1f4 [ 68.755941][ T6551] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 68.755947][ T6551] f2fs_write_checkpoint+0x70c/0x1c30 [ 68.755952][ T6551] kill_f2fs_super+0x228/0x594 [ 68.755958][ T6551] deactivate_locked_super+0xc4/0x12c [ 68.755965][ T6551] deactivate_super+0xe0/0x100 [ 68.755971][ T6551] cleanup_mnt+0x31c/0x3ac [ 68.755978][ T6551] __cleanup_mnt+0x20/0x30 [ 68.755984][ T6551] task_work_run+0x1dc/0x260 [ 68.755990][ T6551] exit_to_user_mode_loop+0xfc/0x178 [ 68.755997][ T6551] el0_svc+0x170/0x254 [ 68.756004][ T6551] el0t_64_sync_handler+0x84/0x12c [ 68.756011][ T6551] el0t_64_sync+0x198/0x19c [ 68.756029][ T6551] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 68.932272][ T9937] loop2: detected capacity change from 0 to 32768 [ 68.943326][ T9937] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1147 (9937) [ 68.944414][ T9937] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 68.944449][ T9937] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 69.035267][ T9937] BTRFS info (device loop2): rebuilding free space tree [ 69.045732][ T9937] BTRFS info (device loop2): setting nodatasum [ 69.045765][ T9937] BTRFS info (device loop2): setting nodatacow [ 69.045787][ T9937] BTRFS info (device loop2): enabling ssd optimizations [ 69.045798][ T9937] BTRFS info (device loop2): turning on async discard [ 69.045807][ T9937] BTRFS info (device loop2): enabling free space tree [ 69.045816][ T9937] BTRFS info (device loop2): force clearing of disk cache [ 69.045825][ T9937] BTRFS info (device loop2): enabling auto defrag [ 69.045834][ T9937] BTRFS info (device loop2): max_inline set to 0 [ 69.111840][ T9878] loop0: detected capacity change from 0 to 262144 [ 69.113558][ T9939] loop5: detected capacity change from 0 to 65536 [ 69.115961][ T9878] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1144 (9878) [ 69.125135][ T9878] BTRFS info (device loop0): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 69.125203][ T9878] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 69.160629][ T42] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared) [ 69.161001][ T6564] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 69.195972][ T9939] XFS (loop5): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 69.279663][ T9878] BTRFS info (device loop0): enabling ssd optimizations [ 69.279702][ T9878] BTRFS info (device loop0): using spread ssd allocation scheme [ 69.279723][ T9878] BTRFS info (device loop0): turning on async discard [ 69.279734][ T9878] BTRFS info (device loop0): enabling free space tree [ 69.279745][ T9878] BTRFS info (device loop0): max_inline set to 0 [ 69.286351][ T9939] XFS (loop5): Ending clean mount [ 69.292149][ T9939] XFS (loop5): syz.5.1150 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported [ 69.342241][ T9543] XFS (loop5): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 69.348157][ T9878] BTRFS error (device loop0): unable to set label with more than 255 bytes [ 69.354187][ T9958] loop4: detected capacity change from 0 to 40427 [ 69.390780][ T6556] BTRFS info (device loop0): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 69.472676][ T9958] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 69.481124][ T9958] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 69.541152][T10008] netlink: 'syz.3.1162': attribute type 3 has an invalid length. [ 69.652241][ T6551] syz-executor: attempt to access beyond end of device [ 69.652241][ T6551] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 69.652302][ T6551] CPU: 1 UID: 0 PID: 6551 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 69.652313][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 69.652317][ T6551] Call trace: [ 69.652320][ T6551] show_stack+0x2c/0x3c (C) [ 69.652334][ T6551] __dump_stack+0x30/0x40 [ 69.652340][ T6551] dump_stack_lvl+0xd8/0x12c [ 69.652345][ T6551] dump_stack+0x1c/0x28 [ 69.652349][ T6551] f2fs_handle_critical_error+0x34c/0x4b8 [ 69.652357][ T6551] f2fs_stop_checkpoint+0x5c/0x70 [ 69.652362][ T6551] f2fs_write_end_io+0x768/0xa70 [ 69.652369][ T6551] bio_endio+0x858/0x894 [ 69.652375][ T6551] submit_bio_noacct+0xd64/0x186c [ 69.652381][ T6551] submit_bio+0x3b4/0x550 [ 69.652387][ T6551] f2fs_submit_write_bio+0x13c/0x324 [ 69.652393][ T6551] __submit_merged_bio+0x254/0x704 [ 69.652398][ T6551] __submit_merged_write_cond+0x23c/0x4ac [ 69.652404][ T6551] f2fs_write_data_pages+0x1d28/0x2634 [ 69.652411][ T6551] do_writepages+0x270/0x468 [ 69.652419][ T6551] filemap_fdatawrite+0x14c/0x1f4 [ 69.652423][ T6551] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 69.652429][ T6551] f2fs_write_checkpoint+0x70c/0x1c30 [ 69.652434][ T6551] kill_f2fs_super+0x228/0x594 [ 69.652440][ T6551] deactivate_locked_super+0xc4/0x12c [ 69.652447][ T6551] deactivate_super+0xe0/0x100 [ 69.652452][ T6551] cleanup_mnt+0x31c/0x3ac [ 69.652459][ T6551] __cleanup_mnt+0x20/0x30 [ 69.652465][ T6551] task_work_run+0x1dc/0x260 [ 69.652471][ T6551] exit_to_user_mode_loop+0xfc/0x178 [ 69.652478][ T6551] el0_svc+0x170/0x254 [ 69.652485][ T6551] el0t_64_sync_handler+0x84/0x12c [ 69.652491][ T6551] el0t_64_sync+0x198/0x19c [ 69.652499][ T6551] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 69.824425][T10014] loop2: detected capacity change from 0 to 32768 [ 69.833221][T10014] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1166 (10014) [ 69.886831][T10014] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 69.886907][T10014] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm [ 69.910844][T10048] loop3: detected capacity change from 0 to 512 [ 69.915402][T10048] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 69.949733][T10014] BTRFS info (device loop2): enabling ssd optimizations [ 69.949775][T10014] BTRFS info (device loop2): turning off barriers [ 69.949786][T10014] BTRFS info (device loop2): turning on async discard [ 69.949795][T10014] BTRFS info (device loop2): enabling free space tree [ 69.949804][T10014] BTRFS info (device loop2): use zlib compression, level 3 [ 70.117318][ T6145] Bluetooth: hci0: command tx timeout [ 70.132000][ T6564] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 70.169094][T10057] loop5: detected capacity change from 0 to 1024 [ 70.275203][ T42] hfsplus: b-tree write err: -5, ino 4 [ 70.380868][T10078] syz.5.1185 uses old SIOCAX25GETINFO [ 70.481293][T10085] netlink: 596 bytes leftover after parsing attributes in process `syz.2.1188'. [ 70.535134][T10089] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'. [ 70.538881][T10089] Zero length message leads to an empty skb [ 70.670192][T10103] loop3: detected capacity change from 0 to 1024 [ 70.709801][T10107] loop4: detected capacity change from 0 to 2048 [ 70.710534][T10107] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2362, location=2362 [ 70.732354][T10107] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 70.732925][T10107] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 70.733504][T10107] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 70.793436][T10111] loop3: detected capacity change from 0 to 512 [ 70.793822][T10111] msdos: Bad value for 'errors' [ 70.918866][T10119] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1206'. [ 70.924912][T10121] loop4: detected capacity change from 0 to 1024 [ 70.958765][ T42] hfsplus: b-tree write err: -5, ino 4 [ 71.061763][T10132] loop5: detected capacity change from 0 to 256 [ 71.064413][T10132] exfat: Deprecated parameter 'utf8' [ 71.069615][T10132] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 71.270831][T10150] loop2: detected capacity change from 0 to 4096 [ 71.285468][T10154] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 71.371291][T10161] loop4: detected capacity change from 0 to 512 [ 71.375299][T10161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 71.380718][T10161] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.1225: invalid block [ 71.383212][T10161] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1225: invalid indirect mapped block 4294967295 (level 1) [ 71.385550][T10161] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1225: invalid indirect mapped block 4294967295 (level 1) [ 71.386945][T10161] EXT4-fs (loop4): 2 truncates cleaned up [ 71.387389][T10161] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.415892][T10161] EXT4-fs warning (device loop4): ext4_empty_dir:3089: inode #2: comm syz.4.1225: directory missing '.' [ 71.461312][ T6551] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.658241][T10191] loop4: detected capacity change from 0 to 8 [ 71.761430][T10204] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'. [ 71.761595][T10195] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'. [ 71.843701][T10212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1244'. [ 71.843739][T10212] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1244'. [ 71.844014][T10212] netlink: 'syz.3.1244': attribute type 6 has an invalid length. [ 71.844036][T10212] netlink: 'syz.3.1244': attribute type 5 has an invalid length. [ 71.887908][T10169] loop5: detected capacity change from 0 to 65536 [ 71.900837][T10169] XFS (loop5): Mounting V5 filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5 in no-recovery mode. Filesystem will be inconsistent. [ 71.917095][T10226] netlink: 'syz.3.1248': attribute type 4 has an invalid length. [ 71.918584][T10225] loop0: detected capacity change from 0 to 64 [ 71.975631][ T9543] XFS (loop5): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5 [ 72.024975][T10232] netlink: 'syz.3.1252': attribute type 1 has an invalid length. [ 72.186616][ T6145] Bluetooth: hci0: command tx timeout [ 72.211598][T10228] loop2: detected capacity change from 0 to 32768 [ 72.450648][T10249] loop3: detected capacity change from 0 to 32768 [ 72.457133][T10249] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 72.476818][T10240] loop0: detected capacity change from 0 to 32768 [ 72.477206][T10240] btrfs: Deprecated parameter 'usebackuproot' [ 72.477219][T10240] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 72.480830][T10240] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1255 (10240) [ 72.502679][T10240] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 72.502826][T10240] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 72.504982][T10249] XFS (loop3): Ending clean mount [ 72.506462][T10249] XFS (loop3): Quotacheck needed: Please wait. [ 72.533619][ T15] BTRFS warning (device loop0): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 72.533745][T10240] BTRFS error (device loop0): failed to load root extent [ 72.533769][T10240] BTRFS warning (device loop0): try to load backup roots slot 1 [ 72.533887][ T15] BTRFS warning (device loop0): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 72.533932][T10240] BTRFS warning (device loop0): couldn't read tree root [ 72.533943][T10240] BTRFS warning (device loop0): try to load backup roots slot 2 [ 72.534028][ T15] BTRFS error (device loop0): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 72.535644][T10249] XFS (loop3): Quotacheck: Done. [ 72.536101][T10240] BTRFS warning (device loop0): couldn't read tree root [ 72.536117][T10240] BTRFS warning (device loop0): try to load backup roots slot 3 [ 72.542115][T10240] BTRFS info (device loop0): rebuilding free space tree [ 72.568110][T10240] BTRFS info (device loop0): checking UUID tree [ 72.569271][T10240] BTRFS info (device loop0): setting nodatasum [ 72.569322][T10240] BTRFS info (device loop0): setting nodatacow [ 72.569342][T10240] BTRFS info (device loop0): enabling ssd optimizations [ 72.569359][T10240] BTRFS info (device loop0): turning off barriers [ 72.569375][T10240] BTRFS info (device loop0): turning on sync discard [ 72.569387][T10240] BTRFS info (device loop0): enabling free space tree [ 72.569397][T10240] BTRFS info (device loop0): force clearing of disk cache [ 72.569407][T10240] BTRFS info (device loop0): trying to use backup root at mount time [ 72.569419][T10240] BTRFS info (device loop0): max_inline set to 0 [ 72.580042][ T6558] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 72.716481][ T6556] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 72.720092][T10282] tmpfs: Cannot change global quota limit on remount [ 72.782357][T10290] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 72.874271][T10298] loop0: detected capacity change from 0 to 1024 [ 72.888200][T10298] hfsplus: bad catalog entry type [ 72.911156][ T12] hfsplus: b-tree write err: -5, ino 4 [ 72.953941][T10310] loop2: detected capacity change from 0 to 64 [ 72.955749][T10307] loop0: detected capacity change from 0 to 2048 [ 73.085794][T10323] loop5: detected capacity change from 0 to 47 [ 73.129852][T10314] loop2: detected capacity change from 0 to 32768 [ 73.180272][T10331] netlink: 'syz.5.1287': attribute type 2 has an invalid length. [ 73.190210][T10333] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1289'. [ 73.438843][T10339] loop2: detected capacity change from 0 to 40427 [ 73.453333][T10339] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 73.453374][T10339] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 73.456528][T10339] F2FS-fs (loop2): invalid crc value [ 73.487512][T10339] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 73.493830][T10339] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 73.493865][T10339] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 73.578196][T10355] loop5: detected capacity change from 0 to 256 [ 73.592203][T10355] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d) [ 73.609013][T10355] exFAT-fs (loop5): valid_size(562949953421322) is greater than size(10) [ 73.614241][T10341] loop3: detected capacity change from 0 to 65536 [ 73.623036][T10341] XFS (loop3): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 73.634888][T10327] loop0: detected capacity change from 0 to 131072 [ 73.644044][T10327] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 73.644089][T10327] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 73.655343][T10341] XFS (loop3): Ending clean mount [ 73.658821][T10341] XFS (loop3): Quotacheck needed: Please wait. [ 73.664399][T10327] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 73.671727][T10327] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 73.672999][T10327] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 73.685999][T10341] XFS (loop3): Quotacheck: Done. [ 73.723211][ T6558] XFS (loop3): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 73.752618][T10369] ieee802154 phy0 wpan0: encryption failed: -22 [ 73.862580][T10380] loop3: detected capacity change from 0 to 1024 [ 74.143687][T10410] netlink: 'syz.2.1319': attribute type 83 has an invalid length. [ 74.230943][T10402] loop3: detected capacity change from 0 to 32768 [ 74.233665][T10418] loop2: detected capacity change from 0 to 1024 [ 74.258272][T10418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.262844][T10402] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1315 (10402) [ 74.266117][T10402] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 74.267112][T10402] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 74.271011][T10402] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 74.289329][ T6564] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.341838][T10445] loop0: detected capacity change from 0 to 512 [ 74.345471][T10402] BTRFS info (device loop3): rebuilding free space tree [ 74.355813][T10445] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 74.358553][T10445] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 74.361468][T10445] EXT4-fs (loop0): 1 truncate cleaned up [ 74.362951][T10402] BTRFS info (device loop3): disabling free space tree [ 74.367032][T10402] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 74.367081][T10402] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 74.372876][T10402] BTRFS info (device loop3): enabling ssd optimizations [ 74.374018][T10402] BTRFS info (device loop3): enabling disk space caching [ 74.375342][T10402] BTRFS info (device loop3): force clearing of disk cache [ 74.377142][T10402] BTRFS info (device loop3): enabling auto defrag [ 74.377165][T10402] BTRFS info (device loop3): max_inline set to 0 [ 74.381479][T10445] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.396797][T10445] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 4: comm syz.0.1327: lblock 0 mapped to illegal pblock 4 (length 1) [ 74.398070][T10445] EXT4-fs (loop0): Remounting filesystem read-only [ 74.418301][ T6556] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.437970][ T12] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared) [ 74.442317][ T6558] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 74.497534][T10459] hfsplus: unable to find HFS+ superblock [ 74.705019][T10482] loop0: detected capacity change from 0 to 4096 [ 74.706945][T10482] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 74.717267][T10482] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 74.766243][ T9] kernel read not supported for file /vcs (pid: 9 comm: kworker/0:0) [ 74.810335][T10492] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1348'. [ 74.810429][T10492] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1348'. [ 74.925374][T10509] loop3: detected capacity change from 0 to 4096 [ 74.933361][T10510] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 74.968921][T10512] binder: 10511:10512 got transaction to invalid handle, 1 [ 74.974300][T10512] binder: 10511:10512 cannot find target node [ 74.975798][T10512] binder: 10511:10512 transaction call to 0:0 failed 1/29201/-22, code 0 size 0-0 line 3232 [ 75.070260][T10526] netlink: 'syz.5.1364': attribute type 11 has an invalid length. [ 75.202689][T10540] loop0: detected capacity change from 0 to 4096 [ 75.236664][T10540] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 75.300077][ T6556] ntfs3(loop0): ino=9, ntfs_sync_fs failed, -22. [ 75.379989][T10541] loop3: detected capacity change from 0 to 32768 [ 75.391129][T10541] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 75.440883][T10541] XFS (loop3): Ending clean mount [ 75.441960][T10541] XFS (loop3): Quotacheck needed: Please wait. [ 75.466556][T10541] XFS (loop3): Quotacheck: Done. [ 75.511924][T10530] loop2: detected capacity change from 0 to 131072 [ 75.514851][ T6558] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 75.520194][T10530] F2FS-fs (loop2): Wrong NAT boundary, start(2560) end(5) blocks(1024) [ 75.520262][T10530] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 75.532344][T10563] loop0: detected capacity change from 0 to 2048 [ 75.560888][T10563] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 75.571721][T10530] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 75.577604][T10530] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 75.577633][T10530] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b [ 76.033494][T10594] loop3: detected capacity change from 0 to 32768 [ 76.065977][T10594] ea_get: invalid extended attribute [ 76.066010][T10594] 0000000076d2055c: 03 00 00 ... [ 76.176736][T10602] loop3: detected capacity change from 0 to 512 [ 76.185196][T10590] loop5: detected capacity change from 0 to 65536 [ 76.195704][T10602] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6). [ 76.195846][T10602] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 76.207660][T10602] EXT4-fs (loop3): mount failed [ 76.228882][T10590] XFS (loop5): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 76.243835][T10590] XFS (loop5): Ending clean mount [ 76.244424][T10590] XFS (loop5): Quotacheck needed: Please wait. [ 76.249937][T10598] loop2: detected capacity change from 0 to 32768 [ 76.251576][T10598] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1393 (10598) [ 76.255187][T10598] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 76.255384][T10598] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm [ 76.255408][T10598] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 76.276991][T10590] XFS (loop5): Quotacheck: Done. [ 76.320403][T10598] BTRFS info (device loop2): rebuilding free space tree [ 76.322109][ T9543] XFS (loop5): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 76.325214][T10598] BTRFS info (device loop2): disabling free space tree [ 76.326232][T10598] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 76.326248][T10598] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 76.339161][T10598] BTRFS info (device loop2): enabling ssd optimizations [ 76.339194][T10598] BTRFS info (device loop2): turning on async discard [ 76.339204][T10598] BTRFS info (device loop2): enabling disk space caching [ 76.339213][T10598] BTRFS info (device loop2): force clearing of disk cache [ 76.339222][T10598] BTRFS info (device loop2): use zstd compression, level 3 [ 76.403085][ T6564] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 76.450423][T10641] Bluetooth: MGMT ver 1.23 [ 76.489950][T10649] loop5: detected capacity change from 0 to 128 [ 76.886205][T10681] loop5: detected capacity change from 0 to 40427 [ 76.918438][T10681] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 76.919266][T10681] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 76.934379][ T9543] syz-executor: attempt to access beyond end of device [ 76.934379][ T9543] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 76.934439][ T9543] CPU: 0 UID: 0 PID: 9543 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 76.934449][ T9543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 76.934454][ T9543] Call trace: [ 76.934457][ T9543] show_stack+0x2c/0x3c (C) [ 76.934471][ T9543] __dump_stack+0x30/0x40 [ 76.934477][ T9543] dump_stack_lvl+0xd8/0x12c [ 76.934482][ T9543] dump_stack+0x1c/0x28 [ 76.934487][ T9543] f2fs_handle_critical_error+0x34c/0x4b8 [ 76.934495][ T9543] f2fs_stop_checkpoint+0x5c/0x70 [ 76.934500][ T9543] f2fs_write_end_io+0x768/0xa70 [ 76.934507][ T9543] bio_endio+0x858/0x894 [ 76.934512][ T9543] submit_bio_noacct+0xd64/0x186c [ 76.934519][ T9543] submit_bio+0x3b4/0x550 [ 76.934525][ T9543] f2fs_submit_write_bio+0x13c/0x324 [ 76.934531][ T9543] __submit_merged_bio+0x254/0x704 [ 76.934537][ T9543] __submit_merged_write_cond+0x23c/0x4ac [ 76.934543][ T9543] f2fs_write_data_pages+0x1d28/0x2634 [ 76.934549][ T9543] do_writepages+0x270/0x468 [ 76.934558][ T9543] filemap_fdatawrite+0x14c/0x1f4 [ 76.934562][ T9543] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 76.934568][ T9543] f2fs_write_checkpoint+0x70c/0x1c30 [ 76.934573][ T9543] kill_f2fs_super+0x228/0x594 [ 76.934579][ T9543] deactivate_locked_super+0xc4/0x12c [ 76.934586][ T9543] deactivate_super+0xe0/0x100 [ 76.934592][ T9543] cleanup_mnt+0x31c/0x3ac [ 76.934598][ T9543] __cleanup_mnt+0x20/0x30 [ 76.934605][ T9543] task_work_run+0x1dc/0x260 [ 76.934611][ T9543] exit_to_user_mode_loop+0xfc/0x178 [ 76.934618][ T9543] el0_svc+0x170/0x254 [ 76.934625][ T9543] el0t_64_sync_handler+0x84/0x12c [ 76.934631][ T9543] el0t_64_sync+0x198/0x19c [ 76.934639][ T9543] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 77.110494][T10712] loop0: detected capacity change from 0 to 256 [ 77.110988][T10712] exfat: Deprecated parameter 'utf8' [ 77.111004][T10712] exfat: Deprecated parameter 'namecase' [ 77.111028][T10712] exfat: Deprecated parameter 'namecase' [ 77.111036][T10712] exfat: Deprecated parameter 'utf8' [ 77.121724][T10712] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d) [ 77.386740][ T6145] Bluetooth: hci2: command 0x0406 tx timeout [ 77.394438][T10727] loop0: detected capacity change from 0 to 32768 [ 77.397217][T10727] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1434 (10727) [ 77.407402][T10727] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 77.408189][T10727] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 77.440166][T10727] BTRFS info (device loop0): rebuilding free space tree [ 77.448671][T10727] BTRFS info (device loop0): disabling free space tree [ 77.448816][T10727] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 77.449979][T10727] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 77.457659][T10727] BTRFS info (device loop0): setting nodatasum [ 77.457696][T10727] BTRFS info (device loop0): setting nodatacow [ 77.457715][T10727] BTRFS info (device loop0): enabling ssd optimizations [ 77.457723][T10727] BTRFS info (device loop0): using spread ssd allocation scheme [ 77.457731][T10727] BTRFS info (device loop0): turning off barriers [ 77.457737][T10727] BTRFS info (device loop0): force clearing of disk cache [ 77.534534][ T6556] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 77.602621][T10785] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1453'. [ 77.649410][T10787] loop2: detected capacity change from 0 to 256 [ 77.685538][T10787] FAT-fs (loop2): Directory bread(block 64) failed [ 77.685584][T10787] FAT-fs (loop2): Directory bread(block 65) failed [ 77.685612][T10787] FAT-fs (loop2): Directory bread(block 66) failed [ 77.685625][T10787] FAT-fs (loop2): Directory bread(block 67) failed [ 77.685648][T10787] FAT-fs (loop2): Directory bread(block 68) failed [ 77.685658][T10787] FAT-fs (loop2): Directory bread(block 69) failed [ 77.685679][T10787] FAT-fs (loop2): Directory bread(block 70) failed [ 77.685693][T10787] FAT-fs (loop2): Directory bread(block 71) failed [ 77.685716][T10787] FAT-fs (loop2): Directory bread(block 72) failed [ 77.685726][T10787] FAT-fs (loop2): Directory bread(block 73) failed [ 77.724357][T10783] loop0: detected capacity change from 0 to 32768 [ 77.727427][T10783] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1451 (10783) [ 77.727899][T10791] kernel profiling enabled (shift: 7) [ 77.735563][T10783] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 77.735648][T10783] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 77.781621][T10783] BTRFS info (device loop0): setting nodatasum [ 77.782726][T10783] BTRFS info (device loop0): enabling ssd optimizations [ 77.783878][T10783] BTRFS info (device loop0): disabling tree log [ 77.784957][T10783] BTRFS info (device loop0): turning on sync discard [ 77.786067][T10783] BTRFS info (device loop0): enabling free space tree [ 77.787644][T10783] BTRFS info (device loop0): max_inline set to 0 [ 77.859815][ T6556] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 77.872497][T10818] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1460'. [ 78.027204][T10817] loop3: detected capacity change from 0 to 32768 [ 78.031171][T10817] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1461 (10817) [ 78.040336][T10817] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 78.040399][T10817] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 78.060810][T10833] loop2: detected capacity change from 0 to 128 [ 78.078299][T10833] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 78.100428][T10824] loop0: detected capacity change from 0 to 32768 [ 78.105410][T10824] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1464 (10824) [ 78.107324][T10817] BTRFS info (device loop3): rebuilding free space tree [ 78.111832][T10824] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 78.111917][T10824] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 78.122656][T10817] BTRFS info (device loop3): disabling free space tree [ 78.122712][T10817] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 78.122723][T10817] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 78.129073][T10817] BTRFS info (device loop3): setting nodatasum [ 78.129104][T10817] BTRFS info (device loop3): setting nodatacow [ 78.129113][T10817] BTRFS info (device loop3): enabling ssd optimizations [ 78.129120][T10817] BTRFS info (device loop3): using spread ssd allocation scheme [ 78.129126][T10817] BTRFS info (device loop3): turning off barriers [ 78.129132][T10817] BTRFS info (device loop3): force clearing of disk cache [ 78.147445][ T6564] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 78.185083][T10824] BTRFS info (device loop0): enabling ssd optimizations [ 78.185120][T10824] BTRFS info (device loop0): turning on async discard [ 78.185129][T10824] BTRFS info (device loop0): enabling free space tree [ 78.241440][ T6558] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 78.294124][ T6556] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 78.331371][T10876] loop5: detected capacity change from 0 to 128 [ 78.352645][T10876] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 78.425908][T10886] sp0: Synchronizing with TNC [ 78.478163][ T9543] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 78.549320][T10896] loop3: detected capacity change from 0 to 128 [ 78.717931][T10910] loop0: detected capacity change from 0 to 256 [ 78.739554][T10910] FAT-fs (loop0): Directory bread(block 64) failed [ 78.739591][T10910] FAT-fs (loop0): Directory bread(block 65) failed [ 78.739613][T10910] FAT-fs (loop0): Directory bread(block 66) failed [ 78.739624][T10910] FAT-fs (loop0): Directory bread(block 67) failed [ 78.739643][T10910] FAT-fs (loop0): Directory bread(block 68) failed [ 78.739653][T10910] FAT-fs (loop0): Directory bread(block 69) failed [ 78.739673][T10910] FAT-fs (loop0): Directory bread(block 70) failed [ 78.739682][T10910] FAT-fs (loop0): Directory bread(block 71) failed [ 78.739708][T10910] FAT-fs (loop0): Directory bread(block 72) failed [ 78.739718][T10910] FAT-fs (loop0): Directory bread(block 73) failed [ 78.768382][T10912] loop3: detected capacity change from 0 to 512 [ 78.770045][T10912] EXT4-fs: Ignoring removed bh option [ 78.773248][T10912] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 78.797994][T10912] EXT4-fs (loop3): 1 truncate cleaned up [ 78.798537][T10912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.848533][T10919] loop0: detected capacity change from 0 to 256 [ 78.873211][ T6558] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.873968][T10919] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbbba8adb, utbl_chksum : 0xe619d30d) [ 79.352305][T10936] loop3: detected capacity change from 0 to 65536 [ 79.363515][T10936] XFS (loop3): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 79.392884][T10936] XFS (loop3): Ending clean mount [ 79.393521][T10936] XFS (loop3): Quotacheck needed: Please wait. [ 79.426521][T10936] XFS (loop3): Quotacheck: Done. [ 79.441829][ T6558] XFS (loop3): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 79.543281][T10957] loop2: detected capacity change from 0 to 32768 [ 79.598069][T10957] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 79.640476][T10957] (syz.2.1508,10957,1):ocfs2_verify_group_and_input:435 ERROR: add group's clusters overflow. [ 79.642652][T10957] (syz.2.1508,10957,1):ocfs2_group_add:511 ERROR: status = -22 [ 79.657054][T10979] loop0: detected capacity change from 0 to 8 [ 79.677293][ T6564] ocfs2: Unmounting device (7,2) on (node local) [ 79.682911][T10901] loop5: detected capacity change from 0 to 262144 [ 79.685708][T10981] loop3: detected capacity change from 0 to 256 [ 79.689300][T10901] F2FS-fs (loop5): invalid crc value [ 79.713849][T10901] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 79.717241][T10901] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4 [ 79.719186][T10987] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1500'. [ 79.721895][T10981] FAT-fs (loop3): Directory bread(block 64) failed [ 79.721936][T10981] FAT-fs (loop3): Directory bread(block 65) failed [ 79.721969][T10981] FAT-fs (loop3): Directory bread(block 66) failed [ 79.721980][T10981] FAT-fs (loop3): Directory bread(block 67) failed [ 79.722000][T10981] FAT-fs (loop3): Directory bread(block 68) failed [ 79.722009][T10981] FAT-fs (loop3): Directory bread(block 69) failed [ 79.722029][T10981] FAT-fs (loop3): Directory bread(block 70) failed [ 79.722039][T10981] FAT-fs (loop3): Directory bread(block 71) failed [ 79.722079][T10981] FAT-fs (loop3): Directory bread(block 72) failed [ 79.722089][T10981] FAT-fs (loop3): Directory bread(block 73) failed [ 79.746009][T10989] loop0: detected capacity change from 0 to 1024 [ 80.072050][ T2260] hfsplus: b-tree write err: -5, ino 4 [ 80.179781][T11025] loop3: detected capacity change from 0 to 256 [ 80.190679][T11025] FAT-fs (loop3): Directory bread(block 64) failed [ 80.190722][T11025] FAT-fs (loop3): Directory bread(block 65) failed [ 80.190746][T11025] FAT-fs (loop3): Directory bread(block 66) failed [ 80.190759][T11025] FAT-fs (loop3): Directory bread(block 67) failed [ 80.190781][T11025] FAT-fs (loop3): Directory bread(block 68) failed [ 80.190792][T11025] FAT-fs (loop3): Directory bread(block 69) failed [ 80.190812][T11025] FAT-fs (loop3): Directory bread(block 70) failed [ 80.190822][T11025] FAT-fs (loop3): Directory bread(block 71) failed [ 80.190841][T11025] FAT-fs (loop3): Directory bread(block 72) failed [ 80.190851][T11025] FAT-fs (loop3): Directory bread(block 73) failed [ 80.272521][ T6558] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 80.272553][ T6558] FAT-fs (loop3): Filesystem has been set read-only [ 80.289394][T11015] loop0: detected capacity change from 0 to 32768 [ 80.306799][T11015] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 80.316570][T11015] XFS (loop0): Ending clean mount [ 80.330179][T11015] XFS (loop0): Quotacheck needed: Please wait. [ 80.363535][T11015] XFS (loop0): Quotacheck: Done. [ 80.407058][ T6556] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 80.551520][T11053] loop0: detected capacity change from 0 to 4096 [ 80.553357][T11053] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 80.558956][T11053] ntfs3(loop0): ino=19, mi_enum_attr [ 80.579608][T11053] ntfs3(loop0): ino=5, "/" indx_read [ 80.579695][T11053] ntfs3(loop0): ino=5, "/" ntfs_readdir [ 80.721962][ T6145] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.724415][ T6145] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.725952][ T6145] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.729065][ T6145] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.732939][ T6145] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.748621][T11072] loop5: detected capacity change from 0 to 1024 [ 80.749030][T11072] EXT4-fs: Ignoring removed orlov option [ 80.771162][T11072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.800291][ T9543] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.828046][ T15] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.830412][T11082] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1542'. [ 80.923571][T11095] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1545'. [ 80.966466][T11098] fuse: Bad value for 'user_id' [ 80.966501][T11098] fuse: Bad value for 'user_id' [ 81.032316][ T15] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.162436][T11100] loop2: detected capacity change from 0 to 32768 [ 81.166940][T11100] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1548 (11100) [ 81.176492][T11100] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 81.176550][T11100] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 81.179145][ T15] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.233131][T11100] BTRFS info (device loop2): enabling ssd optimizations [ 81.233169][T11100] BTRFS info (device loop2): turning on async discard [ 81.233190][T11100] BTRFS info (device loop2): enabling free space tree [ 81.254911][T11113] loop0: detected capacity change from 0 to 32768 [ 81.256923][T11113] BTRFS info: device /dev/loop0 (7:0) using temp-fsid 383d1cc8-23a5-484c-a461-6010c9ebbf4c [ 81.256967][T11113] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1554 (11113) [ 81.259563][T11113] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 81.259603][T11113] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 81.278417][T11134] loop5: detected capacity change from 0 to 256 [ 81.282466][ T15] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.294057][T11113] BTRFS info (device loop0): enabling ssd optimizations [ 81.294091][T11113] BTRFS info (device loop0): turning on async discard [ 81.294112][T11113] BTRFS info (device loop0): enabling free space tree [ 81.326906][T11069] chnl_net:caif_netlink_parms(): no params data found [ 81.335814][T11134] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe4da1f51, utbl_chksum : 0xe619d30d) [ 81.345718][ T6556] BTRFS info (device loop0): last unmount of filesystem 383d1cc8-23a5-484c-a461-6010c9ebbf4c [ 81.357304][ T6564] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 81.540924][T11160] [U] [ 81.548562][T11069] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.548602][T11069] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.548670][T11069] bridge_slave_0: entered allmulticast mode [ 81.549161][T11069] bridge_slave_0: entered promiscuous mode [ 81.596404][T11069] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.596453][T11069] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.596606][T11069] bridge_slave_1: entered allmulticast mode [ 81.597096][T11069] bridge_slave_1: entered promiscuous mode [ 81.682483][T11069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.683453][T11069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.725151][T11171] loop0: detected capacity change from 0 to 32768 [ 81.726035][T11069] team0: Port device team_slave_0 added [ 81.732229][T11171] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1565 (11171) [ 81.738430][T11069] team0: Port device team_slave_1 added [ 81.739062][ T15] bridge_slave_1: left allmulticast mode [ 81.739078][ T15] bridge_slave_1: left promiscuous mode [ 81.739170][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.743177][ T15] bridge_slave_0: left allmulticast mode [ 81.744369][ T15] bridge_slave_0: left promiscuous mode [ 81.744503][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.756523][T11171] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 81.756608][T11171] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 81.840182][T11171] BTRFS info (device loop0): rebuilding free space tree [ 81.853764][T11171] BTRFS info (device loop0): disabling free space tree [ 81.855038][T11171] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 81.857655][T11171] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 81.863028][T11171] BTRFS info (device loop0): enabling ssd optimizations [ 81.864287][T11171] BTRFS info (device loop0): turning on async discard [ 81.865516][T11171] BTRFS info (device loop0): force clearing of disk cache [ 81.867250][T11171] BTRFS info (device loop0): enabling auto defrag [ 81.868484][T11171] BTRFS info (device loop0): max_inline set to 4096 [ 81.921572][ T6556] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 81.950203][T11177] loop2: detected capacity change from 0 to 32768 [ 82.010316][T11177] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 82.029945][T11177] XFS (loop2): Ending clean mount [ 82.031668][T11177] XFS (loop2): Quotacheck needed: Please wait. [ 82.058375][T11177] XFS (loop2): Quotacheck: Done. [ 82.124307][ T6564] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 82.190865][T11228] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1574'. [ 82.192671][T11228] block nbd0: not configured, cannot reconfigure [ 82.252526][ T15] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 82.277650][ T15] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 82.287461][ T15] bond0 (unregistering): Released all slaves [ 82.298481][T11226] netlink: 'syz.0.1573': attribute type 3 has an invalid length. [ 82.298529][T11226] netlink: 666 bytes leftover after parsing attributes in process `syz.0.1573'. [ 82.333173][T11069] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.333207][T11069] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.333220][T11069] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.333737][T11069] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.333743][T11069] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.333753][T11069] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.343679][T11236] [U] zͻi[27| [ 82.343709][T11236] [U] BswAerOU]~A`1eX!j5i5y2ڂ_S"qh$6\P[2*/Wb_$0A7 Xۖ(wc# =g< [ 82.343724][T11236] [U] Iwub:lEeiBHk^VI|ȥ\xd [ 82.343734][T11236] [U] |KIH;F~{Iӎ=Mkq%hd9!@a*lz~`E=[>meLhc`'u~+ۤmͷLXX舂i 'j3e=:3/C_81(FW [ 82.343749][T11236] [U] 8)X)YvxRĻbmbN@ox;JD, [ 82.343752][T11236] [U] *Cn3v7KEXgt_3 [ 82.343755][T11236] [U] D/QazҬEHgE1$_ks=R@ [ 82.343759][T11236] [U] ϼcEv @ [ 82.343761][T11236] [U] a% [ 82.343766][T11236] [U] @cÏ_-ƱZ&<Z9ah_L@bKÈs3JJ5D;wWˆUuyLbҳ53ż{4XRQrH=M"/@ opS~{Pӡ~i*T~W)Q~ȵ_ߜͬz~Vq۪` [ 82.343772][T11236] [U] f1p3 [ 82.343774][T11236] [U] N0[L;a_l&kMC [ 82.343777][T11236] [U] r6w^gP$u4~GCߚpkFtw~@L1 [ 82.343784][T11236] [U] :K!:Y咑;Rdma9tbt= Ҫ+sS i-YJc (ґx|]k|_V҉T8MNi׎ͪY΃zAM"ev3KěO0q]^)?ס8ⅴS ܝXeݢ%4 [ 82.343802][T11236] [U] u΍iRUߎeْ\L;4LrW<Os$00000000640f7458(4096) [ 84.317734][T11401] cramfs: Error -3 while decompressing! [ 84.317741][T11401] cramfs: 00000000d3d6ca78(26)->00000000b4a6e783(4096) [ 84.317754][T11401] cramfs: Error -3 while decompressing! [ 84.317758][T11401] cramfs: 0000000023695240(16)->000000004ba1e49b(4096) [ 84.317780][T11401] cramfs: Error -5 while decompressing! [ 84.317784][T11401] cramfs: 00000000206706ce(26)->00000000640f7458(4096) [ 84.382628][T11069] veth0_vlan: entered promiscuous mode [ 84.384733][T11069] veth1_vlan: entered promiscuous mode [ 84.393828][T11069] veth0_macvtap: entered promiscuous mode [ 84.397142][T11069] veth1_macvtap: entered promiscuous mode [ 84.401483][T11069] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.403869][T11069] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.414132][ T4167] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.414641][ T4167] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.414657][ T4167] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.414669][ T4167] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.471320][ T697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.471359][ T697] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.500907][ T697] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.500964][ T697] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.808184][T11456] loop0: detected capacity change from 0 to 256 [ 84.809830][T11456] exfat: Deprecated parameter 'utf8' [ 84.814336][T11456] exfat: Deprecated parameter 'namecase' [ 84.822519][T11456] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 84.826333][ T6552] Bluetooth: hci3: command tx timeout [ 85.092015][T11479] loop0: detected capacity change from 0 to 32768 [ 85.184782][T11487] delete_channel: no stack [ 85.199811][T11490] loop0: detected capacity change from 0 to 256 [ 85.219286][T11490] FAT-fs (loop0): Directory bread(block 64) failed [ 85.219322][T11490] FAT-fs (loop0): Directory bread(block 65) failed [ 85.219358][T11490] FAT-fs (loop0): Directory bread(block 66) failed [ 85.219373][T11490] FAT-fs (loop0): Directory bread(block 67) failed [ 85.219414][T11490] FAT-fs (loop0): Directory bread(block 68) failed [ 85.219428][T11490] FAT-fs (loop0): Directory bread(block 69) failed [ 85.219450][T11490] FAT-fs (loop0): Directory bread(block 70) failed [ 85.219463][T11490] FAT-fs (loop0): Directory bread(block 71) failed [ 85.219485][T11490] FAT-fs (loop0): Directory bread(block 72) failed [ 85.219498][T11490] FAT-fs (loop0): Directory bread(block 73) failed [ 85.395118][T11496] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1658'. [ 85.419429][T11498] loop2: detected capacity change from 0 to 256 [ 85.429316][T11498] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 85.637835][T11514] Injecting memory failure for pfn 0x1396ea at process virtual address 0x20001000 [ 85.639766][T11514] Memory failure: 0x1396ea: Sending SIGBUS to syz.2.1666:11514 due to hardware memory corruption [ 85.639833][T11514] Memory failure: 0x1396ea: recovery action for dirty LRU page: Recovered [ 85.639868][T11514] Injecting memory failure for pfn 0x20b05a at process virtual address 0x20002000 [ 85.640063][T11514] Memory failure: 0x20b05a: Sending SIGBUS to syz.2.1666:11514 due to hardware memory corruption [ 85.640084][T11514] Memory failure: 0x20b05a: recovery action for already poisoned page: Failed [ 85.862719][T11520] loop5: detected capacity change from 0 to 512 [ 85.875942][T11520] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 85.875978][T11520] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 85.876723][T11520] EXT4-fs (loop5): orphan cleanup on readonly fs [ 85.877425][T11520] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #13: comm syz.5.1668: iget: bad i_size value: 12154761577498 [ 85.877640][T11520] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1668: couldn't read orphan inode 13 (err -117) [ 85.878198][T11520] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 85.885106][T11520] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.1668: dx entry: limit 65535 != root limit 120 [ 85.885129][T11520] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.1668: Corrupt directory, running e2fsck is recommended [ 85.893463][ T9543] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.965580][ T31] audit: type=1400 audit(85.930:2): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=6191 comm="udevd" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 85.965627][ T31] audit: type=1400 audit(85.930:3): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=6191 comm="udevd" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 85.977770][ T31] audit: type=1400 audit(85.950:4): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=23 comm="ksoftirqd/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 85.985426][ T31] audit: type=1400 audit(85.950:5): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.000746][ T31] audit: type=1400 audit(85.970:6): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=11530 comm="syz.5.1673" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.034430][ T31] audit: type=1400 audit(86.000:7): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.034474][ T31] audit: type=1400 audit(86.000:8): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.055347][ T31] audit: type=1400 audit(86.020:9): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.055580][ T31] audit: type=1400 audit(86.020:10): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.074199][ T31] audit: type=1400 audit(86.040:11): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9543 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 86.916343][ T6552] Bluetooth: hci3: command tx timeout [ 88.987061][ T6552] Bluetooth: hci3: command tx timeout [ 92.026366][ C0] net_ratelimit: 56 callbacks suppressed [ 92.026408][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 92.747335][ T31] kauditd_printk_skb: 22 callbacks suppressed [ 92.747369][ T31] audit: type=1400 audit(92.720:34): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 93.118086][ T31] audit: type=1400 audit(93.090:35): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 99.708514][ T31] audit: type=1400 audit(99.680:36): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=697 comm="kworker/u8:4" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 100.286097][ T31] audit: type=1400 audit(100.250:37): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 113.789591][ T31] audit: type=1400 audit(113.760:38): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 114.622172][ T31] audit: type=1400 audit(114.590:39): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 125.947434][ T2454] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.947478][ T2454] ieee802154 phy1 wpan1: encryption failed: -22 [ 141.308295][ T31] audit: type=1400 audit(141.280:40): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 143.806107][ T31] audit: type=1400 audit(143.770:41): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 158.746219][ T6145] Bluetooth: hci1: command 0x0406 tx timeout [ 158.746289][ T6145] Bluetooth: hci2: command 0x0406 tx timeout [ 179.226666][ T6559] Bluetooth: hci4: command 0x0405 tx timeout [ 187.387441][ T2454] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.387503][ T2454] ieee802154 phy1 wpan1: encryption failed: -22 [ 189.466489][ T6559] Bluetooth: hci0: command 0x0406 tx timeout [ 197.628454][ T31] audit: type=1400 audit(197.600:42): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 201.150146][ T31] audit: type=1400 audit(201.120:43): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.239 dest=52366 netif=enp0s0 [ 204.826693][ T6559] Bluetooth: hci3: command 0x0406 tx timeout [ 235.396335][ ** replaying previous printk message ** [ 235.396335][ T32] INFO: task syz-executor:6551 blocked for more than 143 seconds. [ 235.396367][ T32] Not tainted syzkaller #0 [ 235.396382][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 235.396390][ T32] task:syz-executor state:D stack:0 pid:6551 tgid:6551 ppid:1 task_flags:0x400140 flags:0x00000011 [ 235.396404][ T32] Call trace: [ 235.396407][ T32] __switch_to+0x418/0x87c (T) [ 235.396423][ T32] __schedule+0x13b0/0x2864 [ 235.396429][ T32] schedule+0xb4/0x230 [ 235.396435][ T32] io_schedule+0x84/0xf0 [ 235.396441][ T32] folio_wait_bit_common+0x56c/0x9e0 [ 235.396448][ T32] __filemap_get_folio+0x1ec/0xc38 [ 235.396454][ T32] truncate_inode_pages_range+0x38c/0xe18 [ 235.396461][ T32] truncate_inode_pages_final+0x8c/0xbc [ 235.396467][ T32] evict+0x420/0x928 [ 235.396473][ T32] evict_inodes+0x638/0x6d0 [ 235.396480][ T32] generic_shutdown_super+0xa0/0x2b8 [ 235.396487][ T32] kill_block_super+0x44/0x90 [ 235.396494][ T32] deactivate_locked_super+0xc4/0x12c [ 235.396501][ T32] deactivate_super+0xe0/0x100 [ 235.396507][ T32] cleanup_mnt+0x31c/0x3ac [ 235.396514][ T32] __cleanup_mnt+0x20/0x30 [ 235.396521][ T32] task_work_run+0x1dc/0x260 [ 235.396529][ T32] exit_to_user_mode_loop+0xfc/0x178 [ 235.396536][ T32] el0_svc+0x170/0x254 [ 235.396543][ T32] el0t_64_sync_handler+0x84/0x12c [ 235.396550][ T32] el0t_64_sync+0x198/0x19c [ 235.396580][ T32] [ 235.396580][ T32] Showing all locks held in the system: [ 235.396584][ T32] 3 locks held by kworker/u8:0/12: [ 235.396590][ T32] 1 lock held by khungtaskd/32: [ 235.396593][ T32] #0: ffff80008f76b660 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 235.396615][ T32] 2 locks held by pr/ttyAMA-1/43: [ 235.396625][ T32] 2 locks held by getty/6333: [ 235.396629][ T32] #0: ffff0000d79900a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 235.396647][ T32] #1: ffff80009bb2e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x34c/0xfa4 [ 235.396667][ T32] 1 lock held by syz-executor/6551: [ 235.396671][ T32] #0: ffff0000d092a0e0 (&type->s_umount_key#97){+.+.}-{4:4}, at: deactivate_super+0xd8/0x100 [ 235.396696][ T32] [ 235.396699][ T32] ============================================= [ 235.396699][ T32] [ 235.396703][ T32] Kernel panic - not syncing: hung_task: blocked tasks [ 235.427681][ T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 235.428878][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 235.430243][ T32] Call trace: [ 235.430677][ T32] show_stack+0x2c/0x3c (C) [ 235.431303][ T32] __dump_stack+0x30/0x40 [ 235.431890][ T32] dump_stack_lvl+0x30/0x12c [ 235.432498][ T32] dump_stack+0x1c/0x28 [ 235.433054][ T32] vpanic+0x22c/0x6c0 [ 235.433607][ T32] vpanic+0x0/0x6c0 [ 235.434114][ T32] hung_task_panic+0x0/0x2c [ 235.434763][ T32] kthread+0x5fc/0x75c [ 235.435354][ T32] ret_from_fork+0x10/0x20 [ 235.435982][ T32] SMP: stopping secondary CPUs [ 235.436635][ T32] Kernel Offset: disabled [ 235.437211][ T32] CPU features: 0x100000,0001e000,42702281,5427fea7 [ 235.438098][ T32] Memory Limit: none [ 235.707120][ T32] Rebooting in 86400 seconds..