last executing test programs: 543.748433ms ago: executing program 3 (id=2183): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_to_hsr\x00'}, 0x18) 495.602121ms ago: executing program 3 (id=2188): r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r0, 0x107, 0xf, 0x0, 0x0) 426.130998ms ago: executing program 3 (id=2193): r0 = socket$inet_icmp(0x2, 0x2, 0x1) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000080)=0xf, 0x4) 385.22367ms ago: executing program 3 (id=2196): r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[@sndinfo={0x20, 0x84, 0x2, {0x8, 0x2, 0x0, 0x2f3}}, @sndinfo={0x20, 0x84, 0x2, {0x5, 0x8200, 0x8001, 0x10001}}], 0x40, 0x80}, 0x20000010) 384.042033ms ago: executing program 4 (id=2197): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000e1ff00000000000000008500000053000000850000007d00000095"], &(0x7f0000000080)='GPL\x00', 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9092dc1b6dbe9ab5becdcc777", 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 369.826809ms ago: executing program 0 (id=2198): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000480)={[{@nojournal_checksum}, {@noblock_validity}, {@discard}, {@errors_remount}, {@jqfmt_vfsv0, 0x0}, {@nouid32}, {@noload}, {@nodiscard}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x7}}, {@init_itable}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@bh}, {@data_err_abort}, {@resgid}], [{@audit}, {@subj_user={'subj_user', 0x3d, 'audit'}}], 0x2c}, 0xa, 0x525, &(0x7f0000000bc0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) 360.505157ms ago: executing program 2 (id=2199): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="940000000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400ff0100000000000000000000000000010c000280040001"], 0x94}}, 0x0) 329.766746ms ago: executing program 1 (id=2200): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f40)={'vlan0\x00', &(0x7f0000000e40)=@ethtool_drvinfo={0x3, "ad2d53b155f55222074ac545b0b526834451f5c63771cddd30b1de1aee81de2a", "7d774b76543d114ff4f834b12824ddf275fb358a215c8846835ae47ff6ba2758", "07ffda7e8037293db8c178f1f44bc1156e55e87a9c45eef2eef7630542683565", "70df1710d3518991326dbd966869e5a5a02f091c53bc8045071241d866110bdb", "c6eda83fa7ff6dedb263ae5efc60938baa18c9acce190528f7c8b31464be1e81", "183f19e71e9d6d962ac4a674"}}) 328.801999ms ago: executing program 3 (id=2201): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5) 318.201296ms ago: executing program 1 (id=2202): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) writev(r0, &(0x7f0000000100)=[{0x0, 0x2}, {&(0x7f0000000440)='Q', 0x1}], 0x2) 307.76429ms ago: executing program 2 (id=2203): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0xc8, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x13}}, {0x14, 0x4, @loopback}}}]}, @CTA_EXPECT_MASK={0x3c, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @remote}}}]}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @local}}}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8004}, 0x0) 297.603991ms ago: executing program 4 (id=2204): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/timers\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000553000/0x3000)=nil, 0x3000, 0x1a140de2b75ea764, 0x1012, r0, 0x0) 271.48121ms ago: executing program 0 (id=2205): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/comedi0\x00', 0x400, 0x0) ioctl$COMEDI_CHANINFO(r0, 0x80306403, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080), 0x0}) 271.355906ms ago: executing program 2 (id=2206): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000280)=0x9, 0x4) 249.653661ms ago: executing program 4 (id=2207): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r0, 0x118, 0x1, 0x0, 0x0) 248.605099ms ago: executing program 1 (id=2208): r0 = userfaultfd(0x80001) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/179, 0xb3}], 0x1) 244.692583ms ago: executing program 3 (id=2209): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000480)=ANY=[@ANYBLOB="6e6f757365725f78617474722c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c6572726f72733d636f6e74696e75652c646174613d77726974656261636b2c6572726f72733d72656d6f756e742d726f2c6e6f61636c2c0033b67a38edf7ca65cff4aecf1bccac7b7847e83ec6928ad9eff2281ff7a2314d9a8541a9772b98d067c1463bb01ed3ebf5764745d29402107611df2e22d6cfb25eb0a8b970f339cf6413aaef25cee228060d70ce0ade90d917a9c5"], 0x1, 0x442f, &(0x7f0000004480)="$eJzs3c9rHFUcAPA3k7RJan8ktYcKggsWFJWQ9KRGME3TH0lbI9UWESHdJNs2ssmWZCMeeog3wZPgQTwUBW85SQ5e65/gxaOeC3rwIghiZHdn053JLlnrbmLL53PYt/N+J9+Z2TeH3RcnyrcXV3OLq7n8cq40f3P1dO6jUnFtqRDiPdJ0/AN7Nz7t6cZ50kafff995jQzc/b8O9dPh/DDwk8Ptra2tkJFb2hqtOH9H7/fnW9M6+JMm0q/zXvrlPdDCCd2zKuiJ4Tw3vchRCGEM0neRJIOhBCOhFrZ9buf3ch1aDZ9Sbo5dmp6495m6789CuGr4jOv3Fr69fmesV9e6tDwAAAAAAAAAAAAAAAAAAA85i5cnbn29shouB+F3o2o9n3dvsbyJG31/ditjnluD/5aAAAAAAAAAAAAAAAAAAAA+H96+P3/XHQ82rlf92SSjrdov/Vm9+dI90y9NTN5bmQ02f89aiiZOVZ5fTXJ+u1MTxhqsu97dv/3M5n+m+//HnVs/vX51ccdDFE8nDqO4+HhEL5JNn4/GR2Ki6XV8ss3S2vLCx2bxmMrHf/a7v2p6CQb+rcb/4lM/93f///pHWdT5fhG506xJ1o6/j0t6/WHqK34n82024v48+jS8e+t5g00Vhiv3QC+/SQKn/fuHv/JTP/div/REEIuqsw1l7oDVNYwlfxW6xXS0vE/UM1L3TqTf2Ql/s2u/z8z8T+X6X+/7v/r2Q8imkrH/2A1rz9V4+H1PxTvfv2fz/S/H/GvzH/d539b0vFPfvmtN1Wl+p9s9/5/IdN/t+J/LU7meTRKnQEbUS2/1e/VkZaOf/+O8ofPf3Fb67+LmfZ79fxXH7f+/Fe//b8Y1Z7/aC4d/4GW9dq9/qcy7bp9/x+vrv94VOn4H6rmpdfOg9XXduM/nem/O/E/uP1uPLP+/7uvtgD42vqvLen4P1XLjBtrrFdfq+u/aPf1/6VM//ux/qvMfz3u7qhPinT8D7esV4n/j218/l/OtOt+/EMYsdZ/ZOn4H2lZr3r99+8e/yuZdt2O/wvd7BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgMTCRpIMhiodTx3E8PBzC2eT4ZDgUzeUXZueKpfkPVkOYTPJz4Xh0q1iayxdnF5dLC4XZfLFYmg/hXFJ+IvRHq8VSeXYpf+f8dl8D0e1CfqU8V8iXQwgXkvxnw5F6X3OL5aX8nRDCxe2yY3Fp5c7t/PLswuLK6yMjIyNhansOQ1Hh43JhuVwbvVYawvR228GoYXLV4kvbczkcfVhaW1nOF6v5lxvaFEvz+WJDmytJ2RdhKCqvrC3P58uF2WLpVn28/TSepJNTV9+9enl0R/mNqJZO7O20AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiX7o+99mUIobd2FIcQxutvomb1v/u58MbsX1c+3Rw7Nb1xb/NBq3oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMA/7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWGXjlEqBoIwAM+uRazEY1iFpLONKKKFEcETaO0JPIwexUt4BwsLWwsR4gYkL3mkea/6vmZgf3Z2YAcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1rm86+9vmzYixeFPVcXb4/vH//y61Jez+fsHe5iR3bm66c8vmrb8e9rIT8vRZ5eH9Pvr+SFm6uh1sifTffozNH062jLX0r4tzTe+exwp1xHRlfwk5VzX63oBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8sgMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBYAAAAAEOZvHUXfBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADArwAAAP//hykaaw==") symlinkat(&(0x7f0000000540)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 233.663907ms ago: executing program 0 (id=2210): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000440)="d800000018008106bc65f782db44b904021d080006007c09e8fe55a10a0015000500142603600e1208000f0000000401a800160020000140011c0000036010fab94dcf5c04e04bcb726f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x4004010) 223.475659ms ago: executing program 2 (id=2211): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000001280)={0xfb, 0x1ff, 0x1}) 193.024867ms ago: executing program 0 (id=2212): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f00000008c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@call={0x85, 0x0, 0x0, 0x27}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x7b}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x44, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 192.832521ms ago: executing program 1 (id=2213): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1c74}, 0x1, 0x0, 0x0, 0xc000}, 0x0) 120.155016ms ago: executing program 4 (id=2214): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="7c000000100001002cbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="a821000000000000140003006e657464657673696d30000000000200140014006e657464657673696d3000000000000034001680300001802c000c80140001"], 0x7c}}, 0x0) 119.913286ms ago: executing program 2 (id=2215): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0x5000000}, 0xc) 111.872113ms ago: executing program 1 (id=2216): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0) ioctl$SOUND_MIXER_READ_DEVMASK(r0, 0x80044dfe, &(0x7f0000006480)) 108.575299ms ago: executing program 0 (id=2217): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000004f0001000000875c4cbb69060a79"], 0x1c}}, 0x0) 107.465565ms ago: executing program 4 (id=2218): sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81", 0x6}], 0x1, 0x0, 0x0, 0x11000000}, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0xffffffffffffffff, 0x3e, 0x9, 0x2}, 0x20) 49.89638ms ago: executing program 0 (id=2219): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r0, 0x6, 0x18, 0x0, 0x0) 49.744431ms ago: executing program 2 (id=2220): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0700000004000000080000000101"], 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={r0, &(0x7f0000000000), 0x0}, 0x20) 153.26µs ago: executing program 4 (id=2221): r0 = syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800800, &(0x7f00000001c0)=ANY=[@ANYBLOB='iocharset=cp850,errors=continue,errors=remount-ro,errors=remount-ro,allow_utime=00000000000000000000007,uid=', @ANYRESHEX=0x0, @ANYRES8=0x0, @ANYRESHEX=0x0, @ANYBLOB=',fowner=', @ANYRESDEC=0x0, @ANYRESHEX=0x0], 0x1, 0x1520, &(0x7f00000037c0)="$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") linkat(r0, &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, 0x0, 0x1000) 0s ago: executing program 1 (id=2222): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00') write$UHID_CREATE(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): rned -14 [ 29.293398][ T6984] loop3: detected capacity change from 0 to 16 [ 29.299694][ T6984] erofs (device loop3): mounted with root inode @ nid 36. [ 29.310582][ T6989] kAFS: Can only specify source 'none' with -o dyn [ 29.328525][ T6984] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 29.331861][ T6984] erofs (device loop3): read error -117 @ 43 of nid 36 [ 29.368050][ T6992] netlink: 'syz.2.132': attribute type 21 has an invalid length. [ 29.368088][ T6992] IPv6: NLM_F_CREATE should be specified when creating new route [ 29.368231][ T6992] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 29.368239][ T6992] IPv6: NLM_F_CREATE should be set when creating new route [ 29.368312][ T6992] IPv6: NLM_F_CREATE should be set when creating new route [ 29.368321][ T6992] IPv6: NLM_F_CREATE should be set when creating new route [ 29.390326][ T6981] loop0: detected capacity change from 0 to 32768 [ 29.455999][ T6552] Bluetooth: hci0: command tx timeout [ 29.457365][ T6552] Bluetooth: hci2: command tx timeout [ 29.457417][ T6552] Bluetooth: hci3: command tx timeout [ 29.457439][ T6552] Bluetooth: hci4: command tx timeout [ 29.457457][ T6552] Bluetooth: hci1: command tx timeout [ 29.471867][ T7009] netlink: 12 bytes leftover after parsing attributes in process `syz.2.139'. [ 29.472290][ T7009] vlan0: entered promiscuous mode [ 29.507032][ T7017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.141'. [ 29.523852][ T7021] netlink: 8 bytes leftover after parsing attributes in process `syz.3.142'. [ 29.523889][ T7021] netlink: 32 bytes leftover after parsing attributes in process `syz.3.142'. [ 29.536564][ T7023] dlm: no locking on control device [ 29.576116][ T6981] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 29.576154][ T6981] allowing incompatible features above 0.0: (unknown version) [ 29.576174][ T6981] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 29.576186][ T6981] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 29.576277][ T6981] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 29.576642][ T6981] bcachefs (loop0): Version upgrade required: [ 29.576642][ T6981] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 29.576642][ T6981] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 29.576642][ T6981] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 29.589101][ T6981] bcachefs (loop0): dropping and reconstructing all alloc info [ 29.619385][ T6981] bcachefs (loop0): accounting_read... done [ 29.638634][ T6981] bcachefs (loop0): alloc_read... done [ 29.639289][ T6981] bcachefs (loop0): snapshots_read... done [ 29.639620][ T6981] bcachefs (loop0): check_allocations... done [ 29.686797][ T6981] bcachefs (loop0): going read-write [ 29.723496][ T6981] bcachefs (loop0): done starting filesystem [ 29.742290][ T7033] loop1: detected capacity change from 0 to 32768 [ 29.754783][ T7033] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.145 (7033) [ 29.762690][ T7033] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 29.762742][ T7033] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 29.762762][ T7033] BTRFS info (device loop1): using free-space-tree [ 29.817423][ T7046] loop3: detected capacity change from 0 to 32768 [ 29.830842][ T6554] bcachefs (loop0): shutting down [ 29.831563][ T6554] bcachefs (loop0): going read-only [ 29.831671][ T6554] bcachefs (loop0): finished waiting for writes to stop [ 29.856979][ T6554] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 29.857166][ T6554] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 29.873305][ T6554] bcachefs (loop0): unclean shutdown complete, journal seq 11 [ 29.875913][ T6554] bcachefs (loop0): done going read-only, filesystem not clean [ 29.921749][ T7033] BTRFS info (device loop1): balance: start -svrange=511..1024 [ 29.921921][ T7033] BTRFS info (device loop1): balance: ended with status: 0 [ 29.926599][ T7046] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow [ 29.930996][ T7046] allowing incompatible features above 0.0: (unknown version) [ 29.932295][ T7046] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 29.934886][ T7046] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 29.938931][ T7046] bcachefs (loop3): initializing new filesystem [ 29.940161][ T6554] bcachefs (loop0): shutdown complete [ 29.943007][ T7046] bcachefs (loop3): going read-write [ 29.960952][ T7048] loop2: detected capacity change from 0 to 32768 [ 29.982588][ T7085] netdevsim netdevsim4 netdevsim0: entered allmulticast mode [ 29.984084][ T7046] bcachefs (loop3): marking superblocks [ 29.990973][ T7085] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 29.997587][ T7048] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 30.011264][ T6550] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 30.013995][ T7046] bcachefs (loop3): initializing freespace [ 30.023204][ T7046] bcachefs (loop3): done initializing freespace [ 30.057061][ T7046] bcachefs (loop3): reading snapshots table [ 30.057118][ T7046] bcachefs (loop3): reading snapshots done [ 30.073418][ T7046] bcachefs (loop3): done starting filesystem [ 30.117932][ T7048] XFS (loop2): Ending clean mount [ 30.140199][ T6559] bcachefs (loop3): shutting down [ 30.141576][ T6559] bcachefs (loop3): going read-only [ 30.142766][ T6559] bcachefs (loop3): finished waiting for writes to stop [ 30.153072][ T6553] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 30.156066][ T6559] bcachefs (loop3): flushing journal and stopping allocators, journal seq 6 [ 30.222211][ T6559] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 8 [ 30.258028][ T6559] bcachefs (loop3): clean shutdown complete, journal seq 9 [ 30.258513][ T6559] bcachefs (loop3): marking filesystem clean [ 30.288373][ T7113] netlink: 'syz.4.170': attribute type 1 has an invalid length. [ 30.312768][ T6559] bcachefs (loop3): shutdown complete [ 30.494298][ T7120] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 30.503230][ T7120] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 30.577635][ T7117] loop0: detected capacity change from 0 to 32768 [ 30.580276][ T7117] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.172 (7117) [ 30.586099][ T7117] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 30.586164][ T7117] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 30.586188][ T7117] BTRFS info (device loop0): using free-space-tree [ 30.632962][ T7117] BTRFS info (device loop0): balance: start -svrange=511..1024 [ 30.634491][ T7117] BTRFS info (device loop0): balance: ended with status: 0 [ 30.694325][ T6554] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 30.992310][ T7168] loop2: detected capacity change from 0 to 32768 [ 30.997190][ T7168] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.192 (7168) [ 31.033319][ T7168] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 31.036551][ T7168] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 31.038204][ T7168] BTRFS info (device loop2): using free-space-tree [ 31.082777][ T7196] netlink: 'syz.0.185': attribute type 1 has an invalid length. [ 31.262165][ T7168] BTRFS info (device loop2): balance: start -svrange=511..1024 [ 31.262256][ T7168] BTRFS info (device loop2): balance: ended with status: 0 [ 31.357874][ T6553] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 31.409985][ T7249] netlink: 'syz.2.201': attribute type 1 has an invalid length. [ 31.535654][ T6552] Bluetooth: hci1: command tx timeout [ 31.535679][ T6560] Bluetooth: hci4: command tx timeout [ 31.535707][ T6560] Bluetooth: hci3: command tx timeout [ 31.535733][ T6560] Bluetooth: hci2: command tx timeout [ 31.535750][ T6560] Bluetooth: hci0: command tx timeout [ 32.220993][ T7328] __nla_validate_parse: 7 callbacks suppressed [ 32.221036][ T7328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.215'. [ 32.221047][ T7328] netlink: 32 bytes leftover after parsing attributes in process `syz.1.215'. [ 32.221056][ T7328] netlink: 32 bytes leftover after parsing attributes in process `syz.1.215'. [ 32.251987][ T7332] dlm: no locking on control device [ 32.390503][ T7357] netlink: 12 bytes leftover after parsing attributes in process `syz.4.227'. [ 32.392768][ T7357] vlan0: entered promiscuous mode [ 32.463101][ T7366] dlm: no locking on control device [ 32.465732][ T7368] netlink: 8 bytes leftover after parsing attributes in process `syz.0.232'. [ 32.467511][ T7368] netlink: 32 bytes leftover after parsing attributes in process `syz.0.232'. [ 32.468879][ T7368] netlink: 32 bytes leftover after parsing attributes in process `syz.0.232'. [ 32.523960][ T7333] loop3: detected capacity change from 0 to 32768 [ 32.529932][ T7333] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.213 (7333) [ 32.536501][ T7333] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 32.536555][ T7333] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 32.536577][ T7333] BTRFS info (device loop3): using free-space-tree [ 32.564264][ T7386] loop4: detected capacity change from 0 to 1024 [ 32.569552][ T7386] EXT4-fs: Ignoring removed orlov option [ 32.571058][ T7386] EXT4-fs (loop4): Test dummy encryption mode enabled [ 32.578592][ T7386] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 32.600624][ T7398] netlink: 12 bytes leftover after parsing attributes in process `syz.1.241'. [ 32.611563][ T7386] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 32.651620][ T7407] netlink: 12 bytes leftover after parsing attributes in process `syz.0.244'. [ 32.652396][ T7407] vlan0: entered promiscuous mode [ 32.682553][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.697442][ T7333] BTRFS info (device loop3): balance: start -svrange=511..1024 [ 32.697564][ T7333] BTRFS info (device loop3): balance: ended with status: 0 [ 32.712571][ T7414] loop2: detected capacity change from 0 to 1024 [ 32.725470][ T7414] EXT4-fs: Ignoring removed orlov option [ 32.729166][ T7414] EXT4-fs (loop2): Test dummy encryption mode enabled [ 32.729696][ T7414] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 32.769105][ T6559] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 32.769331][ T7414] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 32.887872][ T6553] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.923750][ T7444] netlink: 12 bytes leftover after parsing attributes in process `syz.2.257'. [ 33.047511][ T7463] ieee802154 phy0 wpan0: encryption failed: -22 [ 33.156920][ T7450] loop4: detected capacity change from 0 to 32768 [ 33.166293][ T7450] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.267 (7450) [ 33.192706][ T7450] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 33.192800][ T7450] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 33.192831][ T7450] BTRFS info (device loop4): using free-space-tree [ 33.258859][ T7506] ieee802154 phy0 wpan0: encryption failed: -22 [ 33.321208][ T7450] BTRFS info (device loop4): balance: start -svrange=511..1024 [ 33.321308][ T7450] BTRFS info (device loop4): balance: ended with status: 0 [ 33.370244][ T6563] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 33.408576][ T7521] loop3: detected capacity change from 0 to 2048 [ 33.424070][ T7521] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 33.434105][ T7521] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 33.615277][ T6552] Bluetooth: hci0: command tx timeout [ 33.616276][ T6556] Bluetooth: hci1: command tx timeout [ 33.616331][ T6556] Bluetooth: hci2: command tx timeout [ 33.616370][ T6556] Bluetooth: hci3: command tx timeout [ 33.616389][ T6556] Bluetooth: hci4: command tx timeout [ 33.701476][ T7541] loop4: detected capacity change from 0 to 32768 [ 33.720062][ T7561] loop0: detected capacity change from 0 to 2048 [ 33.737183][ T7561] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 33.739879][ T7561] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 33.741930][ T7541] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 33.916304][ T7597] misc userio: The device must be registered before sending interrupts [ 33.941937][ T7600] overlayfs: conflicting options: nfs_export=on,index=off [ 33.956788][ T7603] loop0: detected capacity change from 0 to 16 [ 33.962006][ T7603] erofs (device loop0): mounted with root inode @ nid 36. [ 33.981092][ T7603] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 33.981679][ T7603] erofs (device loop0): read error -117 @ 43 of nid 36 [ 34.010072][ T7592] loop2: detected capacity change from 0 to 32768 [ 34.047493][ T7592] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 34.088980][ T7625] misc userio: The device must be registered before sending interrupts [ 34.131221][ T7629] overlayfs: conflicting options: nfs_export=on,index=off [ 34.182842][ T7635] loop4: detected capacity change from 0 to 16 [ 34.188096][ T7635] erofs (device loop4): mounted with root inode @ nid 36. [ 34.203491][ T7635] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 34.207874][ T7635] erofs (device loop4): read error -117 @ 43 of nid 36 [ 34.289271][ T7650] libceph: resolve '4' (ret=-3): failed [ 34.389643][ T7661] overlayfs: conflicting options: nfs_export=on,index=off [ 34.419464][ T7617] loop0: detected capacity change from 0 to 32768 [ 34.427951][ T7617] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.338 (7617) [ 34.433680][ T7617] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 34.433742][ T7617] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 34.433765][ T7617] BTRFS info (device loop0): disk space caching is enabled [ 34.433773][ T7617] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 34.483700][ T7690] libceph: resolve '4' (ret=-3): failed [ 34.506600][ T7617] BTRFS info (device loop0): rebuilding free space tree [ 34.524457][ T7617] BTRFS info (device loop0): disabling free space tree [ 34.524504][ T7617] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 34.524524][ T7617] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 34.568412][ T7700] binder: 7699:7700 ioctl c0306201 20000100 returned -14 [ 34.606672][ T6554] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 34.669355][ T7715] overlayfs: conflicting options: nfs_export=on,index=off [ 34.783021][ T7735] binder: 7734:7735 ioctl c0306201 20000100 returned -14 [ 34.946810][ T7753] loop0: detected capacity change from 0 to 64 [ 35.003216][ T7732] loop3: detected capacity change from 0 to 32768 [ 35.035665][ T7739] loop4: detected capacity change from 0 to 32768 [ 35.036337][ T7739] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.391 (7739) [ 35.040186][ T7739] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 35.040254][ T7739] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 35.040278][ T7739] BTRFS info (device loop4): disk space caching is enabled [ 35.040287][ T7739] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 35.121158][ T7748] loop2: detected capacity change from 0 to 32768 [ 35.121605][ T7732] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 35.121614][ T7732] allowing incompatible features above 0.0: (unknown version) [ 35.121619][ T7732] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 35.121628][ T7732] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 35.121674][ T7732] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 35.126161][ T7732] bcachefs (loop3): Version upgrade required: [ 35.126161][ T7732] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 35.126161][ T7732] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 35.126161][ T7732] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 35.126562][ T7732] bcachefs (loop3): dropping and reconstructing all alloc info [ 35.146194][ T7732] bcachefs (loop3): accounting_read... [ 35.148631][ T7748] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.398 (7748) [ 35.159716][ T7739] BTRFS info (device loop4): rebuilding free space tree [ 35.163598][ T7786] netlink: 'syz.1.405': attribute type 21 has an invalid length. [ 35.165089][ T7786] IPv6: NLM_F_CREATE should be specified when creating new route [ 35.166789][ T7786] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 35.166804][ T7786] IPv6: NLM_F_CREATE should be set when creating new route [ 35.166820][ T7786] IPv6: NLM_F_CREATE should be set when creating new route [ 35.166831][ T7786] IPv6: NLM_F_CREATE should be set when creating new route [ 35.168094][ T7739] BTRFS info (device loop4): disabling free space tree [ 35.168117][ T7739] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 35.168128][ T7739] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 35.179838][ T7732] done [ 35.179866][ T7732] bcachefs (loop3): alloc_read... done [ 35.180205][ T7732] bcachefs (loop3): snapshots_read... done [ 35.180459][ T7732] bcachefs (loop3): check_allocations... done [ 35.201776][ T7732] bcachefs (loop3): going read-write [ 35.210730][ T7732] bcachefs (loop3): done starting filesystem [ 35.212419][ T6563] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 35.231521][ T7748] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 35.231596][ T7748] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 35.260677][ T6559] bcachefs (loop3): shutting down [ 35.260709][ T6559] bcachefs (loop3): going read-only [ 35.260746][ T6559] bcachefs (loop3): finished waiting for writes to stop [ 35.291711][ T6559] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10 [ 35.291841][ T6559] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 35.299812][ T7748] BTRFS info (device loop2): rebuilding free space tree [ 35.304812][ T6559] bcachefs (loop3): unclean shutdown complete, journal seq 11 [ 35.307620][ T6559] bcachefs (loop3): done going read-only, filesystem not clean [ 35.329419][ T7748] BTRFS info (device loop2): disabling free space tree [ 35.330402][ T7811] kAFS: Can only specify source 'none' with -o dyn [ 35.333133][ T7748] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 35.333196][ T7748] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 35.354001][ T6559] bcachefs (loop3): shutdown complete [ 35.396697][ T7748] BTRFS info (device loop2 state M): max_inline set to 4096 [ 35.412412][ T6553] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 35.430947][ T7809] loop1: detected capacity change from 0 to 32768 [ 35.582160][ T7821] loop4: detected capacity change from 0 to 64 [ 35.663692][ T7832] netlink: 'syz.4.417': attribute type 21 has an invalid length. [ 35.663723][ T7832] IPv6: NLM_F_CREATE should be specified when creating new route [ 35.664161][ T7832] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 35.664170][ T7832] IPv6: NLM_F_CREATE should be set when creating new route [ 35.664180][ T7832] IPv6: NLM_F_CREATE should be set when creating new route [ 35.664186][ T7832] IPv6: NLM_F_CREATE should be set when creating new route [ 35.715965][ T7841] kAFS: Can only specify source 'none' with -o dyn [ 35.780830][ T7809] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 35.780866][ T7809] allowing incompatible features above 0.0: (unknown version) [ 35.784848][ T7809] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 35.784884][ T7809] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 35.784962][ T7809] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 35.785036][ T7809] bcachefs (loop1): Version upgrade required: [ 35.785036][ T7809] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 35.785036][ T7809] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 35.785036][ T7809] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 35.785500][ T7809] bcachefs (loop1): dropping and reconstructing all alloc info [ 35.789584][ T7809] bcachefs (loop1): accounting_read... done [ 35.806152][ T7809] bcachefs (loop1): alloc_read... done [ 35.806432][ T7809] bcachefs (loop1): snapshots_read... done [ 35.806685][ T7809] bcachefs (loop1): check_allocations... done [ 35.827442][ T7809] bcachefs (loop1): going read-write [ 35.837457][ T7809] bcachefs (loop1): done starting filesystem [ 35.913877][ T6550] bcachefs (loop1): shutting down [ 35.913909][ T6550] bcachefs (loop1): going read-only [ 35.913939][ T6550] bcachefs (loop1): finished waiting for writes to stop [ 35.940818][ T6550] bcachefs (loop1): flushing journal and stopping allocators, journal seq 10 [ 35.940927][ T6550] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 10 [ 35.950424][ T6550] bcachefs (loop1): unclean shutdown complete, journal seq 11 [ 35.951071][ T6550] bcachefs (loop1): done going read-only, filesystem not clean [ 35.971383][ T7855] loop3: detected capacity change from 0 to 32768 [ 35.974809][ T7855] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.421 (7855) [ 35.980710][ T6550] bcachefs (loop1): shutdown complete [ 35.981961][ T7855] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 35.982044][ T7855] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 36.031792][ T7879] loop2: detected capacity change from 0 to 64 [ 36.036031][ T7855] BTRFS info (device loop3): rebuilding free space tree [ 36.048893][ T7855] BTRFS info (device loop3): disabling free space tree [ 36.048932][ T7855] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 36.048941][ T7855] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 36.126834][ T7855] BTRFS info (device loop3 state M): max_inline set to 4096 [ 36.158879][ T6559] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 36.397095][ T7923] devpts: Bad value for 'max' [ 36.465099][ T7920] loop0: detected capacity change from 0 to 32768 [ 36.465966][ T7920] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.448 (7920) [ 36.471104][ T7920] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 36.471640][ T7920] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 36.488802][ T7920] BTRFS info (device loop0): rebuilding free space tree [ 36.493002][ T7920] BTRFS info (device loop0): disabling free space tree [ 36.493496][ T7920] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 36.493521][ T7920] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 36.512281][ T7920] BTRFS info (device loop0 state M): max_inline set to 4096 [ 36.521026][ T6554] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 36.754305][ T7974] devpts: Bad value for 'max' [ 36.803541][ T7983] netlink: 'syz.2.469': attribute type 3 has an invalid length. [ 36.805075][ T7983] netlink: 'syz.2.469': attribute type 3 has an invalid length. [ 36.812591][ T7985] loop0: detected capacity change from 0 to 256 [ 36.829085][ T7985] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 36.841204][ T7985] exFAT-fs (loop0): error, exfat_zeroed_cluster: out of range(sect:224 len:8) [ 36.841237][ T7985] exFAT-fs (loop0): Filesystem has been set read-only [ 37.088156][ T7993] capability: warning: `syz.0.484' uses 32-bit capabilities (legacy support in use) [ 37.170824][ T8005] binder: 8003:8005 BC_CLEAR_DEATH_NOTIFICATION invalid ref 1 [ 37.170865][ T8005] binder: 8003:8005 got reply transaction with no transaction stack [ 37.170875][ T8005] binder: 8003:8005 transaction reply to 0:0 failed 2/29201/-71, code 0 size 0-0 line 3054 [ 37.171200][ T6564] binder: undelivered TRANSACTION_ERROR: 29201 [ 37.246395][ T8007] loop3: detected capacity change from 0 to 4096 [ 37.248181][ T8007] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 37.299762][ T8007] ntfs3(loop3): Failed to initialize $Extend/$ObjId. [ 37.428483][ T8050] binder: 8048:8050 BC_CLEAR_DEATH_NOTIFICATION invalid ref 1 [ 37.429842][ T8050] binder: 8048:8050 got reply transaction with no transaction stack [ 37.431468][ T8050] binder: 8048:8050 transaction reply to 0:0 failed 3/29201/-71, code 0 size 0-0 line 3054 [ 37.435284][ T26] binder: undelivered TRANSACTION_ERROR: 29201 [ 37.581712][ T8080] __nla_validate_parse: 9 callbacks suppressed [ 37.581759][ T8080] netlink: 8 bytes leftover after parsing attributes in process `syz.4.508'. [ 37.823027][ T8079] loop1: detected capacity change from 0 to 32768 [ 37.850706][ T8123] mmap: syz.0.526 (8123) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 37.873618][ T8129] netlink: 8 bytes leftover after parsing attributes in process `syz.3.531'. [ 37.957689][ T8079] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow [ 37.973529][ T8079] allowing incompatible features above 0.0: (unknown version) [ 37.973584][ T8079] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 37.973621][ T8079] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 37.973689][ T8079] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 37.973764][ T8079] bcachefs (loop1): Version upgrade required: [ 37.973764][ T8079] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 37.973764][ T8079] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 37.973764][ T8079] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 37.973861][ T8079] bcachefs (loop1): dropping and reconstructing all alloc info [ 38.002864][ T8151] loop4: detected capacity change from 0 to 256 [ 38.003220][ T8151] exfat: Deprecated parameter 'utf8' [ 38.006797][ T8079] bcachefs (loop1): accounting_read... done [ 38.018265][ T8079] bcachefs (loop1): alloc_read... done [ 38.018355][ T8079] bcachefs (loop1): snapshots_read... done [ 38.018590][ T8079] bcachefs (loop1): done starting filesystem [ 38.043499][ T8151] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 38.069659][ T6550] bcachefs (loop1): shutting down [ 38.113445][ T6550] bcachefs (loop1): shutdown complete [ 38.173223][ T8169] netlink: 4 bytes leftover after parsing attributes in process `syz.0.546'. [ 38.174925][ T8169] netlink: 4 bytes leftover after parsing attributes in process `syz.0.546'. [ 38.176469][ T8169] netlink: 'syz.0.546': attribute type 6 has an invalid length. [ 38.207136][ T8157] loop3: detected capacity change from 0 to 32768 [ 38.225618][ T8178] loop0: detected capacity change from 0 to 24 [ 38.225994][ T8178] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 38.237280][ T8178] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 38.239020][ T8157] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 38.242287][ T8178] overlayfs: cannot append lower layer [ 38.287985][ T8187] binder: 8186:8187 BC_INCREFS_DONE u0000000000000001 no match [ 38.288031][ T8187] binder: 8186:8187 ioctl c0306201 20000100 returned -14 [ 38.311429][ T8157] XFS (loop3): Ending clean mount [ 38.346742][ T8194] usb usb8: usbfs: process 8194 (syz.4.552) did not claim interface 0 before use [ 38.366562][ T6559] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 38.909884][ T8193] loop0: detected capacity change from 0 to 131072 [ 38.973350][ T8193] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 38.977783][ T8193] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 39.002931][ T8193] F2FS-fs (loop0): access invalid blkaddr:3075201482 [ 39.002976][ T8193] CPU: 0 UID: 0 PID: 8193 Comm: syz.0.551 Not tainted 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 39.002986][ T8193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 39.002992][ T8193] Call trace: [ 39.002996][ T8193] show_stack+0x2c/0x3c (C) [ 39.003012][ T8193] __dump_stack+0x30/0x40 [ 39.003021][ T8193] dump_stack_lvl+0xd8/0x12c [ 39.003027][ T8193] dump_stack+0x1c/0x28 [ 39.003033][ T8193] __f2fs_is_valid_blkaddr+0xae0/0x107c [ 39.003048][ T8193] f2fs_is_valid_blkaddr+0x12c/0x294 [ 39.003058][ T8193] f2fs_get_read_data_folio+0x344/0x6d0 [ 39.003066][ T8193] f2fs_find_data_folio+0x84/0x390 [ 39.003073][ T8193] __f2fs_find_entry+0x4d0/0xac0 [ 39.003083][ T8193] f2fs_lookup+0x22c/0x8d0 [ 39.003090][ T8193] lookup_one_qstr_excl+0x10c/0x2fc [ 39.003101][ T8193] filename_create+0x1cc/0x32c [ 39.003110][ T8193] do_mkdirat+0xa8/0x4c8 [ 39.003120][ T8193] __arm64_sys_mkdirat+0x8c/0xa4 [ 39.003136][ T8193] invoke_syscall+0x98/0x2b8 [ 39.003143][ T8193] el0_svc_common+0x130/0x23c [ 39.003150][ T8193] do_el0_svc+0x48/0x58 [ 39.003157][ T8193] el0_svc+0x58/0x180 [ 39.003166][ T8193] el0t_64_sync_handler+0x84/0x12c [ 39.003173][ T8193] el0t_64_sync+0x198/0x19c [ 39.135481][ T31] audit: type=1400 audit(39.100:2): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=8288 comm="syz.2.596" saddr=172.30.0.3 daddr=172.20.20.170 netif=wpan0 [ 39.183973][ T8293] loop3: detected capacity change from 0 to 4096 [ 39.192832][ T8293] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 39.221539][ T8293] ntfs3(loop3): ino=19, mi_enum_attr [ 39.221583][ T8293] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 39.257189][ T8293] ntfs3(loop3): failed to convert "c46c" to iso8859-15 [ 39.258143][ T8293] ntfs3(loop3): ino=20, mi_enum_attr [ 39.258346][ T8293] ntfs3(loop3): ino=1b, mi_enum_attr [ 39.320484][ T8303] loop2: detected capacity change from 0 to 4096 [ 39.467731][ T8321] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 39.501796][ T8327] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-tlb(5) [ 39.579626][ T8342] loop4: detected capacity change from 0 to 1764 [ 39.637568][ T8352] loop3: detected capacity change from 0 to 64 [ 39.852393][ T8390] capability: warning: `syz.2.643' uses deprecated v2 capabilities in a way that may be insecure [ 39.993771][ T8374] loop0: detected capacity change from 0 to 32768 [ 39.999160][ T8374] (syz.0.636,8374,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 39.999568][ T8374] (syz.0.636,8374,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 40.005872][ T8412] loop1: detected capacity change from 0 to 512 [ 40.013047][ T8374] JBD2: Ignoring recovery information on journal [ 40.035598][ T8412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.064308][ T8374] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 40.075086][ T8405] loop3: detected capacity change from 0 to 32768 [ 40.123030][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.205603][ T6554] ocfs2: Unmounting device (7,0) on (node local) [ 40.237249][ T8434] loop3: detected capacity change from 0 to 4096 [ 40.242787][ T8434] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 40.280531][ T8442] netlink: 248 bytes leftover after parsing attributes in process `syz.1.667'. [ 40.373220][ T8458] netlink: 180 bytes leftover after parsing attributes in process `syz.2.676'. [ 40.404582][ T8464] netlink: 8 bytes leftover after parsing attributes in process `syz.1.680'. [ 40.563485][ T8494] loop2: detected capacity change from 0 to 256 [ 40.635017][ T8494] FAT-fs (loop2): Directory bread(block 64) failed [ 40.635764][ T8494] FAT-fs (loop2): Directory bread(block 65) failed [ 40.635812][ T8494] FAT-fs (loop2): Directory bread(block 66) failed [ 40.635831][ T8494] FAT-fs (loop2): Directory bread(block 67) failed [ 40.635861][ T8494] FAT-fs (loop2): Directory bread(block 68) failed [ 40.635877][ T8494] FAT-fs (loop2): Directory bread(block 69) failed [ 40.635902][ T8494] FAT-fs (loop2): Directory bread(block 70) failed [ 40.635916][ T8494] FAT-fs (loop2): Directory bread(block 71) failed [ 40.635964][ T8494] FAT-fs (loop2): Directory bread(block 72) failed [ 40.635978][ T8494] FAT-fs (loop2): Directory bread(block 73) failed [ 40.668205][ T8510] loop0: detected capacity change from 0 to 1024 [ 40.675096][ T8511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.696'. [ 40.764952][ T8516] netlink: 176 bytes leftover after parsing attributes in process `syz.1.698'. [ 40.868923][ T2496] hfsplus: b-tree write err: -5, ino 8 [ 40.905898][ T8532] vivid-000: ================= START STATUS ================= [ 40.905932][ T8532] vivid-000: Test Pattern: 75% Colorbar [ 40.906676][ T8532] vivid-000: Fill Percentage of Frame: 100 [ 40.906691][ T8532] vivid-000: Horizontal Movement: No Movement [ 40.906701][ T8532] vivid-000: Vertical Movement: No Movement [ 40.906710][ T8532] vivid-000: OSD Text Mode: All [ 40.906719][ T8532] vivid-000: Show Border: false [ 40.906728][ T8532] vivid-000: Show Square: false [ 40.906736][ T8532] vivid-000: Sensor Flipped Horizontally: false [ 40.906744][ T8532] vivid-000: Sensor Flipped Vertically: false [ 40.906753][ T8532] vivid-000: Insert SAV Code in Image: false [ 40.906762][ T8532] vivid-000: Insert EAV Code in Image: false [ 40.906771][ T8532] vivid-000: Insert Video Guard Band: false [ 40.906779][ T8532] vivid-000: Reduced Framerate: false [ 40.906788][ T8532] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator [ 40.906797][ T8532] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator [ 40.906806][ T8532] vivid-000: Enable Capture Cropping: true [ 40.906815][ T8532] vivid-000: Enable Capture Composing: true [ 40.906823][ T8532] vivid-000: Enable Capture Scaler: true [ 40.906832][ T8532] vivid-000: Timestamp Source: End of Frame [ 40.906840][ T8532] vivid-000: Colorspace: sRGB [ 40.906849][ T8532] vivid-000: Transfer Function: Default [ 40.906857][ T8532] vivid-000: Y'CbCr Encoding: Default [ 40.906866][ T8532] vivid-000: HSV Encoding: Hue 0-179 [ 40.906874][ T8532] vivid-000: Quantization: Default [ 40.906882][ T8532] vivid-000: Apply Alpha To Red Only: false [ 40.906891][ T8532] vivid-000: Standard Aspect Ratio: 4x3 [ 40.906900][ T8532] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 40.906912][ T8532] vivid-000: DV Timings: 640x480p59 inactive [ 40.906923][ T8532] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 40.906932][ T8532] vivid-000: Maximum EDID Blocks: 2 [ 40.906941][ T8532] vivid-000: Limited RGB Range (16-235): false [ 40.906949][ T8532] vivid-000: Rx RGB Quantization Range: Automatic [ 40.906959][ T8532] vivid-000: Power Present: 0x00000001 [ 40.906968][ T8532] tpg source WxH: 3840x2160 (Y'CbCr) [ 40.906973][ T8532] tpg field: 1 [ 40.906977][ T8532] tpg crop: (0,0)/3840x2160 [ 40.906982][ T8532] tpg compose: (0,0)/3840x2160 [ 40.906987][ T8532] tpg colorspace: 8 [ 40.906991][ T8532] tpg transfer function: 0/0 [ 40.906995][ T8532] tpg Y'CbCr encoding: 0/0 [ 40.906999][ T8532] tpg quantization: 0/0 [ 40.907003][ T8532] tpg RGB range: 0/2 [ 40.907008][ T8532] vivid-000: ================== END STATUS ================== [ 40.925609][ T8496] loop4: detected capacity change from 0 to 32768 [ 40.949259][ T8496] (syz.4.691,8496,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 40.952246][ T8496] (syz.4.691,8496,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 40.971997][ T8496] JBD2: Ignoring recovery information on journal [ 41.023269][ T8496] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 41.043356][ T8549] dlm: non-version read from control device 0 [ 41.051622][ T8552] netlink: 12 bytes leftover after parsing attributes in process `syz.0.713'. [ 41.110528][ T6563] ocfs2: Unmounting device (7,4) on (node local) [ 41.243548][ T8586] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551614) [ 41.243589][ T8586] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647 [ 41.289837][ T8594] autofs: Bad value for 'fd' [ 41.356294][ T8602] loop3: detected capacity change from 0 to 1024 [ 41.359847][ T8602] hfsplus: Filesystem is marked locked, mounting read-only. [ 41.399860][ T8612] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 41.474226][ T8615] loop2: detected capacity change from 0 to 512 [ 41.474648][ T8615] EXT4-fs: Ignoring removed nobh option [ 41.477636][ T8615] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 41.500172][ T8615] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.738: corrupted inode contents [ 41.500532][ T8615] EXT4-fs (loop2): Remounting filesystem read-only [ 41.500798][ T8615] EXT4-fs (loop2): 1 truncate cleaned up [ 41.501261][ T8615] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.519242][ T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 41.519284][ T12] Quota error (device loop2): write_blk: dquota write failed [ 41.519306][ T12] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 41.519314][ T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 41.519321][ T12] Quota error (device loop2): write_blk: dquota write failed [ 41.519326][ T12] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 41.519355][ T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 41.519361][ T12] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 41.519569][ T12] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 41.581399][ T6553] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.601536][ T8632] loop4: detected capacity change from 0 to 4096 [ 41.611268][ T8623] loop0: detected capacity change from 0 to 32768 [ 41.613257][ T8623] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.742 (8623) [ 41.627138][ T8637] netlink: 'syz.3.747': attribute type 11 has an invalid length. [ 41.630360][ T8623] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 41.630426][ T8623] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 41.630444][ T8623] BTRFS info (device loop0): disk space caching is enabled [ 41.630452][ T8623] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 41.646268][ T8632] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 41.657480][ T8653] No source specified [ 41.686962][ T8623] BTRFS info (device loop0): rebuilding free space tree [ 41.713204][ T8623] BTRFS info (device loop0): disabling free space tree [ 41.713254][ T8623] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 41.713265][ T8623] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 41.779152][ T8623] BTRFS info (device loop0): balance: start -sprofiles=system|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800,usage=34359738372,usage=4..8,drange=36028797018963968..70368744177664 [ 41.779278][ T8623] BTRFS info (device loop0): balance: ended with status: 0 [ 41.815743][ T8675] netlink: 'syz.3.754': attribute type 1 has an invalid length. [ 41.819711][ T6554] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 41.853918][ T8684] syz.1.756 uses obsolete (PF_INET,SOCK_PACKET) [ 41.886284][ T8683] loop3: detected capacity change from 0 to 1024 [ 41.892235][ T8683] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 41.892274][ T8683] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 41.892325][ T8683] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 41.896317][ T8683] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #5: comm syz.3.757: unexpected bad inode w/o EXT4_IGET_BAD [ 41.897777][ T8683] EXT4-fs (loop3): no journal found [ 41.897788][ T8683] EXT4-fs (loop3): can't get journal size [ 41.935018][ T8683] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 41.966357][ T8683] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (42152!=20869) [ 42.014563][ T6559] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.027544][ T8688] loop2: detected capacity change from 0 to 32768 [ 42.046638][ T8688] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 42.048327][ T8688] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 42.076412][ T8688] XFS (loop2): Ending clean mount [ 42.079234][ T8688] XFS (loop2): Quotacheck needed: Please wait. [ 42.194358][ T8688] XFS (loop2): Quotacheck: Done. [ 42.252427][ T6553] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 42.260504][ T8750] loop0: detected capacity change from 0 to 128 [ 42.270108][ T8750] EXT4-fs (loop0): Test dummy encryption mode enabled [ 42.278118][ T8750] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 42.286231][ T8755] ./file0: Can't lookup blockdev [ 42.336386][ T6554] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 42.343730][ T8766] loop1: detected capacity change from 0 to 164 [ 42.381891][ T8772] loop0: detected capacity change from 0 to 512 [ 42.387335][ T8772] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 42.406620][ T8772] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.784: couldn't read orphan inode 26 (err -116) [ 42.410860][ T8772] EXT4-fs (loop0): Remounting filesystem read-only [ 42.411394][ T8772] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.507850][ T6554] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.587128][ T8802] cgroup: none used incorrectly [ 42.606015][ T8805] loop3: detected capacity change from 0 to 2048 [ 42.629370][ T8805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.634302][ T8812] netlink: zone id is out of range [ 42.638086][ T8812] netlink: zone id is out of range [ 42.638216][ T8812] netlink: zone id is out of range [ 42.638226][ T8812] netlink: zone id is out of range [ 42.638235][ T8812] netlink: zone id is out of range [ 42.638243][ T8812] netlink: zone id is out of range [ 42.638250][ T8812] netlink: zone id is out of range [ 42.638257][ T8812] netlink: zone id is out of range [ 42.638263][ T8812] netlink: zone id is out of range [ 42.638270][ T8812] netlink: zone id is out of range [ 42.657245][ T8805] fscrypt (loop3, inode 13): Error -61 getting encryption context [ 42.681220][ T6559] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.811409][ T8839] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 42.992043][ T8831] loop0: detected capacity change from 0 to 32768 [ 42.992755][ T8831] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.813 (8831) [ 42.993990][ T8831] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 42.994025][ T8831] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 42.994040][ T8831] BTRFS info (device loop0): using free-space-tree [ 43.066084][ T8888] netlink: 'syz.4.834': attribute type 10 has an invalid length. [ 43.075528][ T8866] loop1: detected capacity change from 0 to 4096 [ 43.081298][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 43.083152][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 43.084633][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 43.086905][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 43.088122][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc1c00 [ 43.089347][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc2c00 [ 43.090616][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc4c00 [ 43.092342][ T8890] __nla_validate_parse: 3 callbacks suppressed [ 43.093647][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffc8c00 [ 43.095453][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffd0c00 [ 43.096791][ T8866] ntfs3(loop1): try to read out of volume at offset 0x3fffffe0c00 [ 43.103706][ T8890] netlink: 84 bytes leftover after parsing attributes in process `syz.3.835'. [ 43.132540][ T8831] nfs: Deprecated parameter 'nointr' [ 43.168555][ T6554] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 43.210077][ T8910] binder: BC_ATTEMPT_ACQUIRE not supported [ 43.210111][ T8910] binder: 8909:8910 ioctl c0306201 20000100 returned -22 [ 43.230140][ T8912] netlink: 'syz.3.846': attribute type 12 has an invalid length. [ 43.232640][ T8914] tmpfs: Bad value for 'mpol' [ 43.332001][ T8932] loop3: detected capacity change from 0 to 128 [ 43.366122][ T8932] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 43.438282][ T6559] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 43.525903][ T8959] netlink: 72 bytes leftover after parsing attributes in process `syz.1.868'. [ 43.525942][ T8959] netlink: 72 bytes leftover after parsing attributes in process `syz.1.868'. [ 43.589843][ T8942] loop2: detected capacity change from 0 to 32768 [ 43.629394][ T8942] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 43.658341][ T6552] Bluetooth: Wrong link type (-71) [ 43.662961][ T8978] netlink: 108 bytes leftover after parsing attributes in process `syz.1.876'. [ 43.695925][ T6553] ocfs2: Unmounting device (7,2) on (node local) [ 43.717798][ T8981] syz.1.879 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 43.728617][ T8957] loop0: detected capacity change from 0 to 40427 [ 43.746176][ T8957] F2FS-fs (loop0): invalid crc value [ 43.753897][ T8984] netlink: 'syz.2.877': attribute type 10 has an invalid length. [ 43.801518][ T8984] team0: Port device syz_tun added [ 43.809891][ T8957] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 43.820089][ T8957] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 43.945793][ T8982] loop4: detected capacity change from 0 to 40427 [ 44.069297][ T8982] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 44.070043][ T8982] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 44.099410][ T9036] netlink: 8 bytes leftover after parsing attributes in process `syz.1.897'. [ 44.171693][ T9010] loop3: detected capacity change from 0 to 32768 [ 44.206493][ T9010] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.889 (9010) [ 44.231635][ T9010] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 44.231727][ T9010] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 44.231750][ T9010] BTRFS info (device loop3): disk space caching is enabled [ 44.231759][ T9010] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 44.250040][ T9059] loop0: detected capacity change from 0 to 256 [ 44.283828][ T9010] BTRFS info (device loop3): rebuilding free space tree [ 44.286160][ T9070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.905'. [ 44.287576][ T9070] netlink: 74 bytes leftover after parsing attributes in process `syz.1.905'. [ 44.288151][ T9010] BTRFS info (device loop3): disabling free space tree [ 44.288176][ T9010] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 44.288188][ T9010] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 44.307604][ T9059] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x587066de, utbl_chksum : 0xe619d30d) [ 44.323712][ T9010] BTRFS info (device loop3): balance: start -sconvert=raid0,soft,usage=255,usage=255..0,devid=0,vrange=18446744073709551614..18446744073709551612 [ 44.323797][ T9010] BTRFS info (device loop3): balance: ended with status: 0 [ 44.365782][ T6559] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 44.436673][ T9095] tmpfs: Bad value for 'mpol' [ 44.493220][ T9105] netlink: 'syz.1.914': attribute type 2 has an invalid length. [ 44.493255][ T9105] netlink: 'syz.1.914': attribute type 1 has an invalid length. [ 44.498364][ T9104] overlayfs: missing 'lowerdir' [ 44.560280][ T9117] loop0: detected capacity change from 0 to 16 [ 44.564851][ T9117] erofs (device loop0): mounted with root inode @ nid 36. [ 44.685174][ T9137] loop3: detected capacity change from 0 to 256 [ 44.706005][ T9142] !: renamed from dummy0 (while UP) [ 44.785868][ T9151] delete_channel: no stack [ 44.865471][ T9169] netlink: 304 bytes leftover after parsing attributes in process `syz.3.944'. [ 44.872717][ T9172] netlink: 56 bytes leftover after parsing attributes in process `syz.0.946'. [ 44.873766][ T9172] netlink: 12 bytes leftover after parsing attributes in process `syz.0.946'. [ 44.873786][ T9172] netlink: 'syz.0.946': attribute type 2 has an invalid length. [ 44.937030][ T9182] netdevsim netdevsim3: Firmware load for './cgroup/../file0/file0' refused, path contains '..' component [ 44.978086][ T9187] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0) [ 44.978123][ T9187] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535 [ 45.076090][ T9192] loop2: detected capacity change from 0 to 8192 [ 45.082076][ T9192] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 45.144449][ T9214] netlink: 'syz.0.967': attribute type 1 has an invalid length. [ 45.162008][ T9217] !: renamed from dummy0 (while UP) [ 45.163802][ T9218] loop4: detected capacity change from 0 to 256 [ 45.260550][ T9235] delete_channel: no stack [ 45.344277][ T9249] !: renamed from dummy0 (while UP) [ 45.451529][ T9270] loop0: detected capacity change from 0 to 256 [ 45.470713][ T9267] delete_channel: no stack [ 45.473806][ T9275] netlink: 'syz.2.998': attribute type 2 has an invalid length. [ 45.515471][ T9279] !: renamed from dummy0 (while UP) [ 45.534116][ T9283] netdevsim netdevsim1: Firmware load for './cgroup/../file0/file0' refused, path contains '..' component [ 45.548081][ T9281] netlink: 'syz.3.1011': attribute type 2 has an invalid length. [ 45.596145][ T9291] loop2: detected capacity change from 0 to 256 [ 45.617261][ T9291] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 45.656605][ T9291] exFAT-fs (loop2): error, exfat_zeroed_cluster: out of range(sect:224 len:8) [ 45.656644][ T9291] exFAT-fs (loop2): Filesystem has been set read-only [ 45.702912][ T9289] loop0: detected capacity change from 0 to 32768 [ 45.772467][ T9289] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow [ 45.772506][ T9289] allowing incompatible features above 0.0: (unknown version) [ 45.786303][ T9289] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 45.788989][ T9289] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 45.789473][ T9318] netdevsim netdevsim2: Firmware load for './cgroup/../file0/file0' refused, path contains '..' component [ 45.792118][ T9289] bcachefs (loop0): initializing new filesystem [ 45.801829][ T9289] bcachefs (loop0): going read-write [ 45.842106][ T9289] bcachefs (loop0): marking superblocks [ 45.850450][ T9289] bcachefs (loop0): initializing freespace [ 45.852401][ T9289] bcachefs (loop0): done initializing freespace [ 45.854097][ T9289] bcachefs (loop0): reading snapshots table [ 45.856891][ T9289] bcachefs (loop0): reading snapshots done [ 45.868160][ T9289] bcachefs (loop0): done starting filesystem [ 45.905229][ T6554] bcachefs (loop0): shutting down [ 45.906161][ T6554] bcachefs (loop0): going read-only [ 45.907112][ T6554] bcachefs (loop0): finished waiting for writes to stop [ 45.923702][ T9301] loop3: detected capacity change from 0 to 32768 [ 45.927820][ T6554] bcachefs (loop0): flushing journal and stopping allocators, journal seq 4 [ 45.963398][ T9301] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 45.993714][ T9349] loop4: detected capacity change from 0 to 256 [ 46.009547][ T6554] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 7 [ 46.012444][ T6554] bcachefs (loop0): clean shutdown complete, journal seq 8 [ 46.013398][ T6554] bcachefs (loop0): marking filesystem clean [ 46.026094][ T9349] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 46.048803][ T9301] XFS (loop3): Ending clean mount [ 46.050728][ T6554] bcachefs (loop0): shutdown complete [ 46.051881][ T9349] exFAT-fs (loop4): error, exfat_zeroed_cluster: out of range(sect:224 len:8) [ 46.051905][ T9349] exFAT-fs (loop4): Filesystem has been set read-only [ 46.078956][ T9343] loop2: detected capacity change from 0 to 32768 [ 46.094351][ T6559] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 46.238446][ T9354] loop1: detected capacity change from 0 to 32768 [ 46.258026][ T9354] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 46.285706][ T9354] XFS (loop1): Ending clean mount [ 46.365201][ T6550] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 46.374601][ T9384] loop4: detected capacity change from 0 to 4096 [ 46.384762][ T9384] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 46.415398][ T9384] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 46.600227][ T9343] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow [ 46.600265][ T9343] allowing incompatible features above 0.0: (unknown version) [ 46.603218][ T9343] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 46.603249][ T9343] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 46.603275][ T9343] bcachefs (loop2): initializing new filesystem [ 46.615007][ T9343] bcachefs (loop2): going read-write [ 46.659353][ T9343] bcachefs (loop2): marking superblocks [ 46.661170][ T9343] bcachefs (loop2): initializing freespace [ 46.661853][ T9343] bcachefs (loop2): done initializing freespace [ 46.662289][ T9343] bcachefs (loop2): reading snapshots table [ 46.662312][ T9343] bcachefs (loop2): reading snapshots done [ 46.698336][ T9343] bcachefs (loop2): done starting filesystem [ 46.704484][ T9429] loop1: detected capacity change from 0 to 4096 [ 46.731771][ T9429] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 46.780163][ T9429] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 46.813056][ T6553] bcachefs (loop2): shutting down [ 46.813089][ T6553] bcachefs (loop2): going read-only [ 46.813120][ T6553] bcachefs (loop2): finished waiting for writes to stop [ 46.828987][ T6553] bcachefs (loop2): flushing journal and stopping allocators, journal seq 4 [ 46.859300][ T6553] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 6 [ 46.867876][ T6553] bcachefs (loop2): clean shutdown complete, journal seq 7 [ 46.868327][ T6553] bcachefs (loop2): marking filesystem clean [ 46.901360][ T6553] bcachefs (loop2): shutdown complete [ 46.935486][ T9460] validate_nla: 4 callbacks suppressed [ 46.935526][ T9460] netlink: 'syz.4.1070': attribute type 10 has an invalid length. [ 46.947002][ T9460] team0: Port device syz_tun added [ 47.031595][ T9474] netlink: 'syz.1.1088': attribute type 10 has an invalid length. [ 47.053518][ T9474] team0: Port device syz_tun added [ 47.105757][ T6552] Bluetooth: Wrong link type (-71) [ 47.127020][ T9483] loop0: detected capacity change from 0 to 4096 [ 47.131725][ T9483] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 47.166496][ T9483] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 47.311214][ T9488] loop1: detected capacity change from 0 to 40427 [ 47.329760][ T9488] F2FS-fs (loop1): invalid crc value [ 47.366553][ T9488] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 47.369797][ T9488] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 47.517803][ T9535] binder: BC_ATTEMPT_ACQUIRE not supported [ 47.519222][ T9535] binder: 9534:9535 ioctl c0306201 20000100 returned -22 [ 47.572687][ T9541] netlink: 'syz.0.1110': attribute type 12 has an invalid length. [ 47.630658][ T9549] tmpfs: Bad value for 'mpol' [ 47.786616][ T9575] netlink: 'syz.3.1125': attribute type 10 has an invalid length. [ 47.801019][ T9572] loop0: detected capacity change from 0 to 4096 [ 47.815018][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 47.815056][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 47.815069][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 47.815079][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 47.815098][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00 [ 47.815109][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00 [ 47.815119][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00 [ 47.815129][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00 [ 47.815153][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffd0c00 [ 47.815164][ T9572] ntfs3(loop0): try to read out of volume at offset 0x3fffffe0c00 [ 47.890631][ T9584] net_ratelimit: 50 callbacks suppressed [ 47.890680][ T9584] netlink: zone id is out of range [ 47.890782][ T9584] netlink: zone id is out of range [ 47.890875][ T9584] netlink: zone id is out of range [ 47.890881][ T9584] netlink: zone id is out of range [ 47.890885][ T9584] netlink: zone id is out of range [ 47.890889][ T9584] netlink: zone id is out of range [ 47.890893][ T9584] netlink: zone id is out of range [ 47.890896][ T9584] netlink: zone id is out of range [ 47.890900][ T9584] netlink: zone id is out of range [ 47.890904][ T9584] netlink: zone id is out of range [ 47.942798][ T9593] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 48.112822][ T9623] cgroup: none used incorrectly [ 48.120590][ T9625] __nla_validate_parse: 22 callbacks suppressed [ 48.120834][ T9625] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1152'. [ 48.157607][ T9629] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'. [ 48.274236][ T9646] loop4: detected capacity change from 0 to 2048 [ 48.308567][ T9658] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1165'. [ 48.328269][ T9646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.360403][ T9646] fscrypt (loop4, inode 13): Error -61 getting encryption context [ 48.376275][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.390932][ T9669] ./file0: Can't lookup blockdev [ 48.467006][ T9681] loop3: detected capacity change from 0 to 128 [ 48.476178][ T9681] EXT4-fs (loop3): Test dummy encryption mode enabled [ 48.491231][ T9681] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 48.541633][ T6559] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 48.619819][ T9711] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1191'. [ 48.657527][ T9721] netlink: 'syz.0.1193': attribute type 1 has an invalid length. [ 48.722630][ T9731] loop1: detected capacity change from 0 to 1024 [ 48.726466][ T9731] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 48.728101][ T9731] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 48.729724][ T9731] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 48.733330][ T9731] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1199: unexpected bad inode w/o EXT4_IGET_BAD [ 48.736614][ T9731] EXT4-fs (loop1): no journal found [ 48.737763][ T9731] EXT4-fs (loop1): can't get journal size [ 48.739919][ T9731] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 48.796229][ T9731] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (42152!=20869) [ 48.849415][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.901330][ T9756] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1207'. [ 48.928595][ T9760] No source specified [ 48.929566][ T9758] netlink: 'syz.2.1211': attribute type 1 has an invalid length. [ 49.001144][ T9773] netlink: 'syz.4.1219': attribute type 11 has an invalid length. [ 49.048472][ T9780] loop2: detected capacity change from 0 to 4096 [ 49.068248][ T9780] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 49.124408][ T9787] loop0: detected capacity change from 0 to 512 [ 49.131226][ T9787] EXT4-fs: Ignoring removed nobh option [ 49.177695][ T9787] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.1226: corrupted inode contents [ 49.180076][ T9787] EXT4-fs (loop0): Remounting filesystem read-only [ 49.180545][ T9787] EXT4-fs (loop0): 1 truncate cleaned up [ 49.181000][ T9787] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.204641][ T15] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 49.204909][ T15] Quota error (device loop0): write_blk: dquota write failed [ 49.204930][ T15] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries [ 49.204944][ T15] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 49.204955][ T15] Quota error (device loop0): write_blk: dquota write failed [ 49.204964][ T15] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list [ 49.204988][ T15] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 49.204997][ T15] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 49.205036][ T15] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 49.249247][ T6554] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.373400][ T9826] autofs: Bad value for 'fd' [ 49.434393][ T9840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1251'. [ 49.687961][ T9889] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1272'. [ 49.802224][ T9909] loop3: detected capacity change from 0 to 256 [ 49.803958][ T9909] exfat: Deprecated parameter 'utf8' [ 49.809020][ T9909] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 49.890748][ T9921] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1287'. [ 49.892292][ T9921] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1287'. [ 49.894362][ T9921] netlink: 'syz.4.1287': attribute type 6 has an invalid length. [ 49.927867][ T9926] loop4: detected capacity change from 0 to 24 [ 49.928292][ T9926] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 49.934573][ T9929] binder: 9928:9929 BC_INCREFS_DONE u0000000000000001 no match [ 49.936732][ T9929] binder: 9928:9929 ioctl c0306201 20000100 returned -14 [ 49.960317][ T9926] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 49.970801][ T9926] overlayfs: cannot append lower layer [ 50.002948][ T9917] loop0: detected capacity change from 0 to 32768 [ 50.024351][ T9917] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 50.094847][ T9945] usb usb8: usbfs: process 9945 (syz.3.1295) did not claim interface 0 before use [ 50.106126][ T9904] loop2: detected capacity change from 0 to 32768 [ 50.120819][ T9917] XFS (loop0): Ending clean mount [ 50.188201][ T6554] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 50.241407][ T9904] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow [ 50.270147][ T9904] allowing incompatible features above 0.0: (unknown version) [ 50.270199][ T9904] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 50.270235][ T9904] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 50.270297][ T9904] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 50.270358][ T9904] bcachefs (loop2): Version upgrade required: [ 50.270358][ T9904] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 50.270358][ T9904] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 50.270358][ T9904] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 50.270450][ T9904] bcachefs (loop2): dropping and reconstructing all alloc info [ 50.283342][ T9904] bcachefs (loop2): accounting_read... done [ 50.303660][ T9904] bcachefs (loop2): alloc_read... done [ 50.303762][ T9904] bcachefs (loop2): snapshots_read... done [ 50.303987][ T9904] bcachefs (loop2): done starting filesystem [ 50.420056][ T6553] bcachefs (loop2): shutting down [ 50.451625][ T6553] bcachefs (loop2): shutdown complete [ 50.502331][T10004] loop4: detected capacity change from 0 to 64 [ 50.516484][T10002] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-tlb(5) [ 50.582461][T10001] loop1: detected capacity change from 0 to 32768 [ 50.594030][T10001] (syz.1.1331,10001,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 50.594211][T10001] (syz.1.1331,10001,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 50.623069][T10001] JBD2: Ignoring recovery information on journal [ 50.626360][T10021] loop0: detected capacity change from 0 to 512 [ 50.668126][T10001] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 50.671273][T10021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.744800][ T6554] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.795826][T10034] netlink: 248 bytes leftover after parsing attributes in process `syz.4.1337'. [ 50.800921][ T6550] ocfs2: Unmounting device (7,1) on (node local) [ 50.831189][T10038] vivid-000: ================= START STATUS ================= [ 50.831222][T10038] vivid-000: Test Pattern: 75% Colorbar [ 50.831253][T10038] vivid-000: Fill Percentage of Frame: 100 [ 50.831263][T10038] vivid-000: Horizontal Movement: No Movement [ 50.831272][T10038] vivid-000: Vertical Movement: No Movement [ 50.831280][T10038] vivid-000: OSD Text Mode: All [ 50.831289][T10038] vivid-000: Show Border: false [ 50.831297][T10038] vivid-000: Show Square: false [ 50.831305][T10038] vivid-000: Sensor Flipped Horizontally: false [ 50.831314][T10038] vivid-000: Sensor Flipped Vertically: false [ 50.831322][T10038] vivid-000: Insert SAV Code in Image: false [ 50.831330][T10038] vivid-000: Insert EAV Code in Image: false [ 50.831338][T10038] vivid-000: Insert Video Guard Band: false [ 50.831346][T10038] vivid-000: Reduced Framerate: false [ 50.831354][T10038] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator [ 50.831363][T10038] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator [ 50.831372][T10038] vivid-000: Enable Capture Cropping: true [ 50.831380][T10038] vivid-000: Enable Capture Composing: true [ 50.831389][T10038] vivid-000: Enable Capture Scaler: true [ 50.831396][T10038] vivid-000: Timestamp Source: End of Frame [ 50.831405][T10038] vivid-000: Colorspace: sRGB [ 50.831413][T10038] vivid-000: Transfer Function: Default [ 50.831421][T10038] vivid-000: Y'CbCr Encoding: Default [ 50.831429][T10038] vivid-000: HSV Encoding: Hue 0-179 [ 50.831437][T10038] vivid-000: Quantization: Default [ 50.831445][T10038] vivid-000: Apply Alpha To Red Only: false [ 50.831453][T10038] vivid-000: Standard Aspect Ratio: 4x3 [ 50.831461][T10038] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 50.831472][T10038] vivid-000: DV Timings: 640x480p59 inactive [ 50.831483][T10038] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 50.831492][T10038] vivid-000: Maximum EDID Blocks: 2 [ 50.831500][T10038] vivid-000: Limited RGB Range (16-235): false [ 50.831508][T10038] vivid-000: Rx RGB Quantization Range: Automatic [ 50.831517][T10038] vivid-000: Power Present: 0x00000001 [ 50.831526][T10038] tpg source WxH: 320x180 (Y'CbCr) [ 50.831531][T10038] tpg field: 1 [ 50.831534][T10038] tpg crop: (0,0)/320x180 [ 50.831539][T10038] tpg compose: (0,0)/320x180 [ 50.831544][T10038] tpg colorspace: 3 [ 50.831548][T10038] tpg transfer function: 2/0 [ 50.831552][T10038] tpg Y'CbCr encoding: 0/0 [ 50.831555][T10038] tpg quantization: 2/0 [ 50.831559][T10038] tpg RGB range: 0/2 [ 50.831562][T10038] vivid-000: ================== END STATUS ================== [ 51.068659][T10069] dlm: non-version read from control device 0 [ 51.111876][T10077] loop1: detected capacity change from 0 to 1024 [ 51.114256][T10079] usb usb8: usbfs: process 10079 (syz.0.1361) did not claim interface 0 before use [ 51.201777][ T41] hfsplus: b-tree write err: -5, ino 8 [ 51.336787][T10111] binder: 10107:10111 BC_INCREFS_DONE u0000000000000001 no match [ 51.338295][T10111] binder: 10107:10111 ioctl c0306201 20000100 returned -14 [ 51.366460][T10118] netlink: 'syz.3.1365': attribute type 6 has an invalid length. [ 51.443136][T10128] loop1: detected capacity change from 0 to 256 [ 51.443498][T10128] exfat: Deprecated parameter 'utf8' [ 51.469618][T10128] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 51.996629][T10187] loop4: detected capacity change from 0 to 32768 [ 52.014490][T10187] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 52.068692][T10187] XFS (loop4): Ending clean mount [ 52.112739][T10232] loop2: detected capacity change from 0 to 24 [ 52.114376][T10232] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 52.120369][T10232] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 52.131319][T10211] loop3: detected capacity change from 0 to 32768 [ 52.143137][T10232] overlayfs: cannot append lower layer [ 52.149331][ T6563] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 52.219140][T10211] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow [ 52.229730][T10211] allowing incompatible features above 0.0: (unknown version) [ 52.231363][T10211] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 52.231394][T10211] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 52.231456][T10211] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 52.231524][T10211] bcachefs (loop3): Version upgrade required: [ 52.231524][T10211] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 52.231524][T10211] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 52.231524][T10211] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 52.231626][T10211] bcachefs (loop3): dropping and reconstructing all alloc info [ 52.289390][T10211] bcachefs (loop3): accounting_read... done [ 52.297671][T10211] bcachefs (loop3): alloc_read... done [ 52.297756][T10211] bcachefs (loop3): snapshots_read... done [ 52.297962][T10211] bcachefs (loop3): done starting filesystem [ 52.395809][ T6559] bcachefs (loop3): shutting down [ 52.407129][ T31] audit: type=1400 audit(52.370:3): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=10267 comm="syz.1.1427" saddr=172.30.0.2 daddr=172.20.20.170 netif=gretap0 [ 52.485796][ T6559] bcachefs (loop3): shutdown complete [ 52.584553][ T31] audit: type=1400 audit(52.550:4): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=10298 comm="syz.4.1443" saddr=172.30.0.5 daddr=172.20.20.170 netif=gretap0 [ 52.768531][T10327] loop4: detected capacity change from 0 to 4096 [ 52.769182][T10327] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 52.778524][T10327] ntfs3(loop4): ino=19, mi_enum_attr [ 52.778559][T10327] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 52.795369][T10327] ntfs3(loop4): failed to convert "c46c" to iso8859-15 [ 52.795732][T10327] ntfs3(loop4): ino=20, mi_enum_attr [ 52.796282][T10327] ntfs3(loop4): ino=1b, mi_enum_attr [ 53.038560][ T31] audit: type=1400 audit(53.010:5): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=10330 comm="syz.0.1458" saddr=172.30.0.1 daddr=172.20.20.170 netif=wpan0 [ 53.074140][T10340] loop0: detected capacity change from 0 to 1764 [ 53.360735][T10381] loop1: detected capacity change from 0 to 1764 [ 53.397457][T10385] loop0: detected capacity change from 0 to 64 [ 53.640088][T10397] loop1: detected capacity change from 0 to 32768 [ 53.861816][T10437] loop4: detected capacity change from 0 to 4096 [ 53.875637][T10437] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 53.950851][T10449] __nla_validate_parse: 5 callbacks suppressed [ 53.950916][T10449] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1513'. [ 54.142262][T10431] loop2: detected capacity change from 0 to 32768 [ 54.308248][T10496] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1537'. [ 54.311317][T10495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1538'. [ 54.562398][T10534] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1555'. [ 54.623284][T10546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1558'. [ 54.626900][T10544] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1560'. [ 54.683242][T10554] vivid-000: ================= START STATUS ================= [ 54.683283][T10554] vivid-000: Test Pattern: 75% Colorbar [ 54.683308][T10554] vivid-000: Fill Percentage of Frame: 100 [ 54.683327][T10554] vivid-000: Horizontal Movement: No Movement [ 54.683342][T10554] vivid-000: Vertical Movement: No Movement [ 54.683356][T10554] vivid-000: OSD Text Mode: All [ 54.683366][T10554] vivid-000: Show Border: false [ 54.683376][T10554] vivid-000: Show Square: false [ 54.683387][T10554] vivid-000: Sensor Flipped Horizontally: false [ 54.683396][T10554] vivid-000: Sensor Flipped Vertically: false [ 54.683405][T10554] vivid-000: Insert SAV Code in Image: false [ 54.683413][T10554] vivid-000: Insert EAV Code in Image: false [ 54.683422][T10554] vivid-000: Insert Video Guard Band: false [ 54.683430][T10554] vivid-000: Reduced Framerate: false [ 54.683439][T10554] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator [ 54.683448][T10554] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator [ 54.683457][T10554] vivid-000: Enable Capture Cropping: true [ 54.683465][T10554] vivid-000: Enable Capture Composing: true [ 54.683474][T10554] vivid-000: Enable Capture Scaler: true [ 54.683483][T10554] vivid-000: Timestamp Source: End of Frame [ 54.683491][T10554] vivid-000: Colorspace: sRGB [ 54.683499][T10554] vivid-000: Transfer Function: Default [ 54.683508][T10554] vivid-000: Y'CbCr Encoding: Default [ 54.683516][T10554] vivid-000: HSV Encoding: Hue 0-179 [ 54.683524][T10554] vivid-000: Quantization: Default [ 54.683532][T10554] vivid-000: Apply Alpha To Red Only: false [ 54.683541][T10554] vivid-000: Standard Aspect Ratio: 4x3 [ 54.683549][T10554] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 54.683560][T10554] vivid-000: DV Timings: 640x480p59 inactive [ 54.683571][T10554] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 54.683580][T10554] vivid-000: Maximum EDID Blocks: 2 [ 54.683589][T10554] vivid-000: Limited RGB Range (16-235): false [ 54.683597][T10554] vivid-000: Rx RGB Quantization Range: Automatic [ 54.683605][T10554] vivid-000: Power Present: 0x00000001 [ 54.683615][T10554] tpg source WxH: 3840x2160 (Y'CbCr) [ 54.683620][T10554] tpg field: 1 [ 54.683623][T10554] tpg crop: (0,0)/3840x2160 [ 54.683627][T10554] tpg compose: (0,0)/3840x2160 [ 54.683631][T10554] tpg colorspace: 3 [ 54.683635][T10554] tpg transfer function: 2/0 [ 54.683638][T10554] tpg Y'CbCr encoding: 0/0 [ 54.683642][T10554] tpg quantization: 2/0 [ 54.683645][T10554] tpg RGB range: 0/2 [ 54.683649][T10554] vivid-000: ================== END STATUS ================== [ 54.803958][T10568] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551614) [ 54.806490][T10568] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647 [ 55.035216][T10602] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551614) [ 55.039263][T10602] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647 [ 55.077314][T10605] loop4: detected capacity change from 0 to 1024 [ 55.078747][T10605] hfsplus: Filesystem is marked locked, mounting read-only. [ 55.146633][T10600] loop2: detected capacity change from 0 to 32768 [ 55.151051][T10600] (syz.2.1600,10600,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 55.152723][T10600] (syz.2.1600,10600,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 55.173572][T10600] JBD2: Ignoring recovery information on journal [ 55.194952][T10616] No source specified [ 55.197539][T10600] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 55.198669][T10588] loop3: detected capacity change from 0 to 32768 [ 55.209232][T10588] (syz.3.1594,10588,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 55.212047][T10588] (syz.3.1594,10588,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 55.241039][T10588] debugfs: '9357E9D751824C228242B9B0D0FB6750' already exists in 'ocfs2' [ 55.243705][T10588] JBD2: Ignoring recovery information on journal [ 55.277503][T10628] netlink: 'syz.1.1597': attribute type 11 has an invalid length. [ 55.277665][T10588] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 55.288397][ T6553] ocfs2: Unmounting device (7,2) on (node local) [ 55.430193][ T6559] ocfs2: Unmounting device (7,3) on (node local) [ 55.468335][T10653] loop0: detected capacity change from 0 to 1024 [ 55.486613][T10653] hfsplus: Filesystem is marked locked, mounting read-only. [ 55.576987][T10664] loop4: detected capacity change from 0 to 164 [ 55.613253][T10670] loop1: detected capacity change from 0 to 512 [ 55.620808][T10670] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 55.643927][T10670] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1616: couldn't read orphan inode 26 (err -116) [ 55.653060][T10670] EXT4-fs (loop1): Remounting filesystem read-only [ 55.653600][T10670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.666095][T10679] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1618'. [ 55.725428][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.739465][T10675] loop3: detected capacity change from 0 to 32768 [ 55.743575][T10675] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1628 (10675) [ 55.751085][T10675] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 55.751143][T10675] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 55.751159][T10675] BTRFS info (device loop3): disk space caching is enabled [ 55.751167][T10675] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 55.759474][T10685] cgroup: none used incorrectly [ 55.790577][T10690] loop4: detected capacity change from 0 to 1024 [ 55.799970][T10690] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 55.800021][T10690] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 55.800098][T10690] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 55.801202][T10690] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: inode #5: comm syz.4.1623: unexpected bad inode w/o EXT4_IGET_BAD [ 55.801455][T10690] EXT4-fs (loop4): no journal found [ 55.801464][T10690] EXT4-fs (loop4): can't get journal size [ 55.802289][T10690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 55.814593][T10675] BTRFS info (device loop3): rebuilding free space tree [ 55.841009][T10675] BTRFS info (device loop3): disabling free space tree [ 55.841060][T10675] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 55.841072][T10675] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 55.845793][T10690] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (42152!=20869) [ 55.873860][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.897343][T10675] BTRFS info (device loop3): balance: start -sprofiles=system|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800,usage=34359738372,usage=4..8,drange=36028797018963968..70368744177664 [ 55.897439][T10675] BTRFS info (device loop3): balance: ended with status: 0 [ 55.912333][ T6559] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 55.987034][T10722] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 55.993220][T10723] loop2: detected capacity change from 0 to 164 [ 56.200374][T10742] loop2: detected capacity change from 0 to 4096 [ 56.204406][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 56.204430][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 56.204445][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 56.204456][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 56.204469][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc1c00 [ 56.204480][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc2c00 [ 56.204492][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc4c00 [ 56.204503][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffc8c00 [ 56.204513][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffd0c00 [ 56.204525][T10742] ntfs3(loop2): try to read out of volume at offset 0x3fffffe0c00 [ 56.252169][T10736] loop3: detected capacity change from 0 to 32768 [ 56.261441][T10736] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1640 (10736) [ 56.265491][T10752] binder: BC_ATTEMPT_ACQUIRE not supported [ 56.265520][T10752] binder: 10751:10752 ioctl c0306201 20000100 returned -22 [ 56.298746][T10736] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 56.298807][T10736] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm [ 56.298838][T10736] BTRFS info (device loop3): using free-space-tree [ 56.392102][T10784] loop1: detected capacity change from 0 to 128 [ 56.406964][T10784] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 56.420957][T10736] nfs: Deprecated parameter 'nointr' [ 56.430100][ T6559] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 56.571177][ T6550] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 56.595470][T10788] loop4: detected capacity change from 0 to 40427 [ 56.599229][T10788] F2FS-fs (loop4): invalid crc value [ 56.637685][T10788] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 56.640554][T10788] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 56.866294][T10816] loop2: detected capacity change from 0 to 32768 [ 56.868405][T10816] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1664 (10816) [ 56.873624][T10816] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 56.873692][T10816] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 56.873709][T10816] BTRFS info (device loop2): disk space caching is enabled [ 56.873718][T10816] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 56.911640][T10818] loop1: detected capacity change from 0 to 32768 [ 56.916076][T10816] BTRFS info (device loop2): rebuilding free space tree [ 56.929439][T10816] BTRFS info (device loop2): disabling free space tree [ 56.929492][T10816] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 56.929508][T10816] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 56.956808][T10818] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 56.978322][T10824] loop4: detected capacity change from 0 to 32768 [ 56.985020][T10816] BTRFS info (device loop2): balance: start -sprofiles=system|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800,usage=34359738372,usage=4..8,drange=36028797018963968..70368744177664 [ 56.985531][T10816] BTRFS info (device loop2): balance: ended with status: 0 [ 56.986337][T10824] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1668 (10824) [ 56.999117][T10824] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 56.999187][T10824] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm [ 56.999205][T10824] BTRFS info (device loop4): using free-space-tree [ 57.046531][ T6550] ocfs2: Unmounting device (7,1) on (node local) [ 57.059666][ T6553] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 57.116874][T10870] tmpfs: Bad value for 'mpol' [ 57.126566][T10824] nfs: Deprecated parameter 'nointr' [ 57.139755][T10874] netlink: 'syz.3.1678': attribute type 2 has an invalid length. [ 57.139794][T10874] netlink: 'syz.3.1678': attribute type 1 has an invalid length. [ 57.166265][ T6563] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 57.177327][T10881] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1691'. [ 57.177475][T10881] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0) [ 57.177493][T10881] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535 [ 57.296443][T10898] overlayfs: missing 'lowerdir' [ 57.357704][T10903] tmpfs: Bad value for 'mpol' [ 57.371995][T10908] netlink: 'syz.4.1695': attribute type 2 has an invalid length. [ 57.372040][T10908] netlink: 'syz.4.1695': attribute type 1 has an invalid length. [ 57.410207][T10910] netlink: 'syz.3.1705': attribute type 3 has an invalid length. [ 57.468284][T10919] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1698'. [ 57.470005][T10919] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0) [ 57.472257][T10919] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535 [ 57.703264][T10954] [U] [ 57.753075][T10925] loop4: detected capacity change from 0 to 32768 [ 57.756916][T10925] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1700 (10925) [ 57.783787][T10964] netlink: 'syz.3.1722': attribute type 28 has an invalid length. [ 57.783825][T10964] netlink: 'syz.3.1722': attribute type 3 has an invalid length. [ 57.783847][T10964] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1722'. [ 57.799619][T10925] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 57.800096][T10925] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 57.800114][T10925] BTRFS info (device loop4): disk space caching is enabled [ 57.800123][T10925] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 57.801918][T10966] loop1: detected capacity change from 0 to 2048 [ 57.859267][T10925] BTRFS info (device loop4): rebuilding free space tree [ 57.870396][T10990] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 57.872164][T10925] BTRFS info (device loop4): disabling free space tree [ 57.872192][T10925] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 57.872206][T10925] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 57.918592][T10966] syz.1.1733: attempt to access beyond end of device [ 57.918592][T10966] loop1: rw=0, sector=281474976710722, nr_sectors = 2 limit=2048 [ 57.918663][T10966] NILFS (loop1): I/O error reading b-tree node block (ino=16, blocknr=15) [ 57.918712][T10966] syz.1.1733: attempt to access beyond end of device [ 57.918712][T10966] loop1: rw=0, sector=281474976710722, nr_sectors = 2 limit=2048 [ 57.918804][T10966] NILFS (loop1): I/O error reading b-tree node block (ino=16, blocknr=15) [ 57.918816][T10966] NILFS (loop1): error -5 truncating bmap (ino=16) [ 57.954314][T10997] netlink: 'syz.0.1731': attribute type 8 has an invalid length. [ 57.987856][T10925] BTRFS info (device loop4): balance: start -sconvert=raid0,soft,usage=255,usage=255..0,devid=0,vrange=18446744073709551614..18446744073709551612 [ 57.987952][T10925] BTRFS info (device loop4): balance: ended with status: 0 [ 58.036785][ T6563] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 58.229599][T11030] netlink: 'syz.3.1747': attribute type 1 has an invalid length. [ 58.295467][T11044] netlink: 'syz.0.1754': attribute type 3 has an invalid length. [ 58.420124][T11019] loop4: detected capacity change from 0 to 32768 [ 58.421593][T11019] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1739 (11019) [ 58.433400][T11019] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 58.433483][T11019] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 58.433527][T11019] BTRFS info (device loop4): disk space caching is enabled [ 58.433549][T11019] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 58.475327][T11075] tmpfs: Bad value for 'mpol' [ 58.500819][T11058] loop1: detected capacity change from 0 to 8192 [ 58.516632][T11058] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 58.560640][ T6563] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 58.660649][T11109] cgroup: noprefix used incorrectly [ 58.814013][T11131] delete_channel: no stack [ 58.851314][T11138] delete_channel: no stack [ 58.916145][T11147] geneve2: entered promiscuous mode [ 58.926257][T11147] geneve2: entered allmulticast mode [ 59.012498][T11162] tmpfs: Bad value for 'mpol' [ 59.097086][T11175] delete_channel: no stack [ 59.160113][T11188] cgroup: noprefix used incorrectly [ 59.190132][T11192] tmpfs: Bad value for 'mpol' [ 59.259495][T11202] loop2: detected capacity change from 0 to 64 [ 59.279293][T11202] syz.2.1822: attempt to access beyond end of device [ 59.279293][T11202] loop2: rw=0, sector=3072, nr_sectors = 2 limit=64 [ 59.332930][T11209] loop3: detected capacity change from 0 to 1764 [ 59.369319][T11214] cgroup: noprefix used incorrectly [ 59.383129][T11189] loop0: detected capacity change from 0 to 32768 [ 59.388151][T11189] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1815 (11189) [ 59.398465][T11209] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 59.413157][T11218] __nla_validate_parse: 4 callbacks suppressed [ 59.415019][T11218] netlink: 228 bytes leftover after parsing attributes in process `syz.1.1830'. [ 59.440657][T11220] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1832'. [ 59.441271][T11189] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 59.441312][T11189] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 59.441334][T11189] BTRFS info (device loop0): using free-space-tree [ 59.466285][T11230] loop4: detected capacity change from 0 to 256 [ 59.466906][T11227] tmpfs: Bad value for 'mpol' [ 59.482309][T11230] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x235a34ad, utbl_chksum : 0xe619d30d) [ 59.576910][ T6554] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 59.677955][T11271] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1848'. [ 59.679511][T11271] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1848'. [ 59.683203][T11271] geneve2: entered promiscuous mode [ 59.684381][T11271] geneve2: entered allmulticast mode [ 59.766049][T11283] cgroup: noprefix used incorrectly [ 59.857984][T11295] netlink: 228 bytes leftover after parsing attributes in process `syz.4.1859'. [ 59.887378][T11298] loop3: detected capacity change from 0 to 64 [ 59.913469][T11298] syz.3.1870: attempt to access beyond end of device [ 59.913469][T11298] loop3: rw=0, sector=3072, nr_sectors = 2 limit=64 [ 59.933845][T11301] loop4: detected capacity change from 0 to 1764 [ 59.978534][T11301] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 59.985441][T11309] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1865'. [ 60.041584][T11317] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1869'. [ 60.084193][T11328] loop3: detected capacity change from 0 to 256 [ 60.105730][T11328] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x235a34ad, utbl_chksum : 0xe619d30d) [ 60.302887][T11357] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1889'. [ 60.303936][ T31] audit: type=1107 audit(60.270:6): pid=11356 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='?' [ 60.357492][T11350] loop1: detected capacity change from 0 to 32768 [ 60.362516][T11350] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1884 (11350) [ 60.380717][T11350] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 60.380785][T11350] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 60.380809][T11350] BTRFS info (device loop1): disk space caching is enabled [ 60.380821][T11350] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 60.411771][T11347] loop3: detected capacity change from 0 to 32768 [ 60.415734][T11347] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1886 (11347) [ 60.430905][T11347] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 60.430990][T11347] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 60.431020][T11347] BTRFS info (device loop3): using free-space-tree [ 60.536288][ T6550] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 60.553673][T11409] loop2: detected capacity change from 0 to 512 [ 60.565661][T11409] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 60.597926][T11409] EXT4-fs (loop2): 1 truncate cleaned up [ 60.598552][T11409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.621110][ T6559] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 60.629261][T11415] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1903'. [ 60.629795][T11409] EXT4-fs error (device loop2): ext4_find_extent:903: inode #15: comm syz.2.1901: inode has invalid extent depth: 25964 [ 60.647254][T11409] EXT4-fs (loop2): Remounting filesystem read-only [ 60.647385][T11409] fs-verity (loop2, inode 15): Error -117 getting verity descriptor size [ 60.679114][ T6553] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.739227][T11424] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1915'. [ 60.825376][ T31] audit: type=1107 audit(60.790:7): pid=11433 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='?' [ 60.896473][T11449] loop4: detected capacity change from 0 to 256 [ 60.901433][T11445] loop2: detected capacity change from 0 to 4096 [ 60.903105][T11449] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 60.940308][T11445] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 60.996803][T11456] loop1: detected capacity change from 0 to 512 [ 61.003580][T11456] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 61.006992][ T6553] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.013329][T11456] EXT4-fs (loop1): 1 truncate cleaned up [ 61.013788][T11456] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.042785][T11456] EXT4-fs error (device loop1): ext4_find_extent:903: inode #15: comm syz.1.1931: inode has invalid extent depth: 25964 [ 61.044469][T11456] EXT4-fs (loop1): Remounting filesystem read-only [ 61.044489][T11456] fs-verity (loop1, inode 15): Error -117 getting verity descriptor size [ 61.120972][ T31] audit: type=1107 audit(61.090:8): pid=11472 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='?' [ 61.136732][T11477] loop2: detected capacity change from 0 to 256 [ 61.154097][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.181224][T11483] loop3: detected capacity change from 0 to 256 [ 61.182498][T11483] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 61.228395][T11477] FAT-fs (loop2): Directory bread(block 64) failed [ 61.228434][T11477] FAT-fs (loop2): Directory bread(block 65) failed [ 61.228461][T11477] FAT-fs (loop2): Directory bread(block 66) failed [ 61.228475][T11477] FAT-fs (loop2): Directory bread(block 67) failed [ 61.228500][T11477] FAT-fs (loop2): Directory bread(block 68) failed [ 61.228511][T11477] FAT-fs (loop2): Directory bread(block 69) failed [ 61.228533][T11477] FAT-fs (loop2): Directory bread(block 70) failed [ 61.228544][T11477] FAT-fs (loop2): Directory bread(block 71) failed [ 61.228564][T11477] FAT-fs (loop2): Directory bread(block 72) failed [ 61.228574][T11477] FAT-fs (loop2): Directory bread(block 73) failed [ 61.274039][T11487] sp0: Synchronizing with TNC [ 61.613523][T11543] loop3: detected capacity change from 0 to 2048 [ 61.649565][T11544] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 61.653566][T11536] loop1: detected capacity change from 0 to 32768 [ 61.656419][T11536] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1959 (11536) [ 61.666514][T11536] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 61.668355][T11536] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 61.669929][T11536] BTRFS info (device loop1): using free-space-tree [ 61.678513][T11543] NILFS (loop3): error -2 truncating bmap (ino=16) [ 61.698884][T11544] NILFS (loop3): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 61.698925][T11544] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=16) [ 61.704241][T11544] Remounting filesystem read-only [ 61.710937][ T6559] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 61.762099][T11530] loop2: detected capacity change from 0 to 32768 [ 61.776650][ T6550] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 61.833464][T11530] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc64,gc_reserve_bytes=512 GiB,norecovery,nojournal_transaction_names,no_data_io [ 61.833492][T11530] allowing incompatible features above 0.0: (unknown version) [ 61.833587][T11530] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 61.833612][T11530] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 61.833679][T11530] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 61.833731][T11530] bcachefs (loop2): Version upgrade from 1.13: inode_has_child_snapshots to 1.7: mi_btree_bitmap incomplete [ 61.833731][T11530] Doing compatible version upgrade from 1.13: inode_has_child_snapshots to 1.28: inode_has_case_insensitive [ 61.833731][T11530] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes [ 61.861746][T11530] bcachefs (loop2): invalid bkey in btree_node btree=inodes level=0: u64s 17 type inode_v3 0:4097:U32_MAX len 0 ver 0: (unpack error) [ 61.861782][T11530] invalid variable length fields, deleting [ 61.866290][T11530] bcachefs (loop2): btree node read error at btree dirents level 0/0 [ 61.866318][T11530] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 61.866337][T11530] loop2 node offset 0/24 bset u64s 0: incorrect max key 281483566645247:U64_MAX:U32_MAX [ 61.866342][T11530] loop2 btree validate error [ 61.866345][T11530] flagging btree dirents lost data [ 61.866350][T11530] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 61.866354][T11530] running recovery pass check_lrus (14), currently at recovery_pass_empty (0) [ 61.866359][T11530] running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0) [ 61.866363][T11530] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 61.866367][T11530] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 61.866371][T11530] ret btree_node_read_err_bad_node [ 61.867007][T11530] bcachefs (loop2): error reading btree root btree=dirents level=0: btree_node_read_error, fixing [ 61.878192][T11530] bcachefs (loop2): invalid bkey in btree_node btree=alloc level=0: u64s 12 type alloc_v4 0:28:0 len 0 ver 0: [ 61.878201][T11530] gen 0 oldest_gen 0 data_type btree [ 61.878205][T11530] journal_seq_nonempty 6 [ 61.878208][T11530] journal_seq_empty 0 [ 61.878211][T11530] need_discard 1 [ 61.878214][T11530] need_inc_gen 1 [ 61.878217][T11530] dirty_sectors 0 [ 61.878220][T11530] stripe_sectors 1769482 [ 61.878223][T11530] cached_sectors 0 [ 61.878225][T11530] stripe 0 [ 61.878228][T11530] stripe_redundancy 0 [ 61.878231][T11530] io_time[READ] 1 [ 61.878233][T11530] io_time[WRITE] 768 [ 61.878236][T11530] fragmentation 0 [ 61.878239][T11530] bp_start 7 [ 61.878242][T11530] [ 61.878244][T11530] invalid data type (got 3 should be 9), deleting [ 61.882596][T11530] bcachefs (loop2): check_topology... [ 61.887134][T11530] bcachefs (loop2): btree root dirents unreadable, must recover from scan [ 61.887243][T11530] bcachefs (loop2): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding [ 61.887260][T11530] bcachefs (loop2): bch2_check_root(): error restart_recovery [ 61.887269][T11530] bcachefs (loop2): scan_for_btree_nodes... [ 61.890282][T11530] bcachefs (loop2): btree node scan found 1 nodes after overwrites [ 61.890396][T11530] done [ 61.890401][T11530] bcachefs (loop2): check_topology... [ 61.890466][T11530] bcachefs (loop2): btree root dirents unreadable, must recover from scan [ 61.894357][T11530] bcachefs (loop2): no nodes found for btree dirents, continuing [ 61.895150][T11530] done [ 61.895157][T11530] bcachefs (loop2): accounting_read... done [ 61.915126][T11530] bcachefs (loop2): alloc_read... done [ 61.915238][T11530] bcachefs (loop2): snapshots_read... done [ 61.915368][T11530] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean [ 61.915445][T11530] bcachefs (loop2): done starting filesystem [ 61.967092][ T6553] bcachefs (loop2): shutting down [ 61.998198][ T6553] bcachefs (loop2): shutdown complete [ 62.122673][T11608] loop1: detected capacity change from 0 to 64 [ 62.410647][T11630] loop1: detected capacity change from 0 to 2048 [ 62.421864][T11633] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 62.438892][T11630] NILFS (loop1): error -2 truncating bmap (ino=16) [ 62.472861][T11633] NILFS (loop1): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 62.472903][T11633] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=16) [ 62.473614][T11633] Remounting filesystem read-only [ 62.479778][ T6550] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 62.572040][T11632] loop0: detected capacity change from 0 to 32768 [ 62.572740][T11632] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1991 (11632) [ 62.580315][T11632] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 62.582245][T11632] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 62.583835][T11632] BTRFS info (device loop0): using free-space-tree [ 62.646668][ T6554] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 62.872012][T11695] loop3: detected capacity change from 0 to 64 [ 63.004579][T11718] [U]  [ 63.059011][T11725] loop4: detected capacity change from 0 to 2048 [ 63.131746][T11740] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 63.164349][T11747] net_ratelimit: 110 callbacks suppressed [ 63.164403][T11747] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 63.210022][T11725] NILFS (loop4): error -2 truncating bmap (ino=16) [ 63.245947][T11740] NILFS (loop4): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 63.245982][T11740] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=16) [ 63.249629][T11740] Remounting filesystem read-only [ 63.255810][ T6563] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 63.323565][T11765] validate_nla: 7 callbacks suppressed [ 63.323614][T11765] netlink: 'syz.1.2041': attribute type 5 has an invalid length. [ 63.348099][T11767] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 63.348127][T11767] CIFS mount error: No usable UNC path provided in device string! [ 63.348127][T11767] [ 63.348224][T11767] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 63.574433][T11770] loop4: detected capacity change from 0 to 32768 [ 63.585967][T11770] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2043 (11770) [ 63.595989][T11770] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 63.596063][T11770] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 63.596109][T11770] BTRFS info (device loop4): using free-space-tree [ 63.611096][T11799] loop2: detected capacity change from 0 to 4096 [ 63.751563][ T6563] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 64.031123][T11845] loop1: detected capacity change from 0 to 32768 [ 64.042387][T11845] XFS: ikeep mount option is deprecated. [ 64.047677][T11876] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 64.062283][T11883] netlink: 'syz.0.2084': attribute type 1 has an invalid length. [ 64.072215][T11845] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 64.072537][T11845] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 64.111355][T11893] loop0: detected capacity change from 0 to 1764 [ 64.113305][T11845] XFS (loop1): Ending clean mount [ 64.131299][ T6550] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 64.177751][T11896] netlink: 'syz.3.2088': attribute type 29 has an invalid length. [ 64.261538][T11874] loop4: detected capacity change from 0 to 40427 [ 64.261921][T11874] F2FS-fs: heap/no_heap options were deprecated [ 64.264550][T11874] F2FS-fs (loop4): Wrong secs_per_zone / total_sections (4285726721, 24) [ 64.264573][T11874] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 64.282135][T11874] F2FS-fs (loop4): invalid crc value [ 64.318963][T11874] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 64.330687][T11874] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 64.330722][T11874] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 64.400932][T11874] F2FS-fs (loop4): Corrupted max_depth of 3: 127 [ 64.441971][T11922] loop3: detected capacity change from 0 to 8192 [ 64.465644][T11922] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 64.471818][T11922] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF [ 64.472736][T11922] FAT-fs (loop3): Filesystem has been set read-only [ 64.482474][T11937] tmpfs: Bad value for 'mpol' [ 64.496213][ T1818] cfg80211: failed to load regulatory.db [ 64.496331][ T2412] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.496367][ T2412] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.566298][T11945] __nla_validate_parse: 7 callbacks suppressed [ 64.567585][T11945] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2112'. [ 64.677813][T11961] ceph: No source [ 64.689985][T11957] loop2: detected capacity change from 0 to 4096 [ 64.696791][T11957] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 64.711727][T11957] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 64.816754][T11985] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.2130' sets config #0 [ 64.823273][T11987] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 64.872225][T11991] loop1: detected capacity change from 0 to 512 [ 64.881362][T11991] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 64.883431][T11991] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 64.883600][T11991] EXT4-fs (loop1): orphan cleanup on readonly fs [ 64.883607][T11991] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.2133: bad orphan inode 267 [ 64.884127][T11991] EXT4-fs (loop1): Remounting filesystem read-only [ 64.884834][T11991] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 64.908187][T11991] EXT4-fs warning (device loop1): dx_probe:861: inode #2: comm syz.1.2133: dx entry: limit 0 != root limit 125 [ 64.908229][T11991] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.2133: Corrupt directory, running e2fsck is recommended [ 64.933342][T11984] loop4: detected capacity change from 0 to 32768 [ 64.938260][T11984] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2131 (11984) [ 64.950212][ T6550] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 64.964111][T11984] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 64.964176][T11984] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 64.964199][T11984] BTRFS info (device loop4): using free-space-tree [ 64.992256][T12010] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 64.993695][T12010] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 65.147844][ T6563] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 65.203466][T12053] openvswitch: netlink: Flow key attribute not present in set flow. [ 65.224887][T12056] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2157'. [ 65.224925][T12056] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2157'. [ 65.224937][T12056] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2157'. [ 65.225369][T12056] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2157'. [ 65.225379][T12056] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2157'. [ 65.246384][T12060] netlink: 'syz.3.2159': attribute type 1 has an invalid length. [ 65.246434][T12060] netlink: 'syz.3.2159': attribute type 101 has an invalid length. [ 65.246444][T12060] netlink: 836 bytes leftover after parsing attributes in process `syz.3.2159'. [ 65.381437][T12080] loop0: detected capacity change from 0 to 256 [ 65.402855][T12080] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 65.497221][T12092] netlink: 'syz.2.2173': attribute type 21 has an invalid length. [ 65.497283][T12092] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2173'. [ 65.556013][T12101] binder: 12100:12101 ioctl 40046210 0 returned -14 [ 65.561154][T12105] netlink: 'syz.3.2181': attribute type 1 has an invalid length. [ 65.563654][T12106] loop4: detected capacity change from 0 to 512 [ 65.578518][T12106] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 65.598725][T12106] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 65.598917][T12106] EXT4-fs (loop4): orphan cleanup on readonly fs [ 65.598925][T12106] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.2179: bad orphan inode 267 [ 65.601336][T12106] EXT4-fs (loop4): Remounting filesystem read-only [ 65.601820][T12106] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 65.612192][T12106] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.2179: dx entry: limit 0 != root limit 125 [ 65.612235][T12106] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.2179: Corrupt directory, running e2fsck is recommended [ 65.623626][T12114] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 65.631902][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 65.787774][T12144] loop0: detected capacity change from 0 to 512 [ 65.791516][T12145] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2199'. [ 65.791548][T12145] netlink: 'syz.2.2199': attribute type 1 has an invalid length. [ 65.800878][T12144] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 65.824187][T12144] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 65.824332][T12144] EXT4-fs (loop0): orphan cleanup on readonly fs [ 65.824340][T12144] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.2198: bad orphan inode 267 [ 65.831825][T12144] EXT4-fs (loop0): Remounting filesystem read-only [ 65.832360][T12144] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 65.851846][T12144] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.2198: dx entry: limit 0 != root limit 125 [ 65.851895][T12144] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.2198: Corrupt directory, running e2fsck is recommended [ 65.864377][ T6554] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 65.911934][T12164] netlink: 'syz.0.2210': attribute type 21 has an invalid length. [ 65.912001][T12164] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2210'. [ 66.004072][T12176] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 66.004111][T12176] netdevsim netdevsim4 netdevsim0: left allmulticast mode [ 66.004226][T12176] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 66.073942][T12166] loop3: detected capacity change from 0 to 32768 [ 66.114383][T12166] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 66.136160][T12166] [ 66.136563][T12166] ====================================================== [ 66.137742][T12166] WARNING: possible circular locking dependency detected [ 66.138802][T12166] 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 Not tainted [ 66.139815][T12166] ------------------------------------------------------ [ 66.140881][T12193] loop4: detected capacity change from 0 to 256 [ 66.141851][T12166] syz.3.2209/12166 is trying to acquire lock: [ 66.142769][T12166] ffff0000f5f25c78 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 66.144301][T12166] [ 66.144301][T12166] but task is already holding lock: [ 66.145422][T12166] ffff0000cc270950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xe4c/0x10dc [ 66.146772][T12166] [ 66.146772][T12166] which lock already depends on the new lock. [ 66.146772][T12166] [ 66.148334][T12166] [ 66.148334][T12166] the existing dependency chain (in reverse order) is: [ 66.149794][T12166] [ 66.149794][T12166] -> #4 (jbd2_handle){++++}-{0:0}: [ 66.151002][T12166] start_this_handle+0xe74/0x10dc [ 66.151385][T12193] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 66.153833][T12166] jbd2__journal_start+0x288/0x51c [ 66.154743][T12166] jbd2_journal_start+0x3c/0x4c [ 66.155658][T12166] ocfs2_start_trans+0x368/0x6b0 [ 66.156538][T12166] ocfs2_modify_bh+0xe4/0x43c [ 66.157327][T12166] ocfs2_local_read_info+0x104c/0x1364 [ 66.158312][T12166] dquot_load_quota_sb+0x6bc/0xa90 [ 66.159252][T12166] dquot_load_quota_inode+0x274/0x4e4 [ 66.160182][T12166] ocfs2_enable_quotas+0x17c/0x3b4 [ 66.161093][T12166] ocfs2_fill_super+0x4004/0x532c [ 66.162002][T12166] get_tree_bdev_flags+0x360/0x414 [ 66.162911][T12166] get_tree_bdev+0x2c/0x3c [ 66.163725][T12166] ocfs2_get_tree+0x28/0x38 [ 66.164568][T12166] vfs_get_tree+0x90/0x28c [ 66.165407][T12166] do_new_mount+0x278/0x7f4 [ 66.166188][T12166] path_mount+0x5b4/0xde0 [ 66.166908][T12166] __arm64_sys_mount+0x3e8/0x468 [ 66.167808][T12166] invoke_syscall+0x98/0x2b8 [ 66.168611][T12166] el0_svc_common+0x130/0x23c [ 66.169481][T12166] do_el0_svc+0x48/0x58 [ 66.170182][T12166] el0_svc+0x58/0x180 [ 66.170919][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.171834][T12166] el0t_64_sync+0x198/0x19c [ 66.172668][T12166] [ 66.172668][T12166] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 66.174048][T12166] down_read+0x58/0x2f8 [ 66.174722][T12166] ocfs2_start_trans+0x35c/0x6b0 [ 66.175537][T12166] ocfs2_modify_bh+0xe4/0x43c [ 66.176306][T12166] ocfs2_local_read_info+0x104c/0x1364 [ 66.177200][T12166] dquot_load_quota_sb+0x6bc/0xa90 [ 66.178017][T12166] dquot_load_quota_inode+0x274/0x4e4 [ 66.178897][T12166] ocfs2_enable_quotas+0x17c/0x3b4 [ 66.179751][T12166] ocfs2_fill_super+0x4004/0x532c [ 66.180539][T12166] get_tree_bdev_flags+0x360/0x414 [ 66.181355][T12166] get_tree_bdev+0x2c/0x3c [ 66.182046][T12166] ocfs2_get_tree+0x28/0x38 [ 66.182853][T12166] vfs_get_tree+0x90/0x28c [ 66.183667][T12166] do_new_mount+0x278/0x7f4 [ 66.184468][T12166] path_mount+0x5b4/0xde0 [ 66.185260][T12166] __arm64_sys_mount+0x3e8/0x468 [ 66.186068][T12166] invoke_syscall+0x98/0x2b8 [ 66.186851][T12166] el0_svc_common+0x130/0x23c [ 66.187669][T12166] do_el0_svc+0x48/0x58 [ 66.188424][T12166] el0_svc+0x58/0x180 [ 66.189139][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.190036][T12166] el0t_64_sync+0x198/0x19c [ 66.190882][T12166] [ 66.190882][T12166] -> #2 (sb_internal#3){.+.+}-{0:0}: [ 66.192084][T12166] ocfs2_start_trans+0x1f4/0x6b0 [ 66.193020][T12166] ocfs2_setattr+0xd40/0x17a0 [ 66.193927][T12166] notify_change+0x9a4/0xc50 [ 66.194803][T12166] chown_common+0x374/0x4dc [ 66.195701][T12166] ksys_fchown+0xe0/0x158 [ 66.196511][T12166] __arm64_sys_fchown+0x7c/0x94 [ 66.197433][T12166] invoke_syscall+0x98/0x2b8 [ 66.198271][T12166] el0_svc_common+0x130/0x23c [ 66.199418][T12166] do_el0_svc+0x48/0x58 [ 66.200160][T12166] el0_svc+0x58/0x180 [ 66.200882][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.201818][T12166] el0t_64_sync+0x198/0x19c [ 66.202666][T12166] [ 66.202666][T12166] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}: [ 66.204221][T12166] down_write+0x50/0xc0 [ 66.204925][T12166] ocfs2_try_remove_refcount_tree+0xb4/0x2d8 [ 66.205861][T12166] ocfs2_xattr_set+0x460/0xe9c [ 66.206636][T12166] ocfs2_set_acl+0x574/0x628 [ 66.207579][T12166] ocfs2_iop_set_acl+0x190/0x25c [ 66.208404][T12166] vfs_set_acl+0x70c/0x974 [ 66.209178][T12166] do_set_acl+0xc8/0x1a8 [ 66.209986][T12166] filename_setxattr+0x268/0x4f8 [ 66.210855][T12166] path_setxattrat+0x2e8/0x320 [ 66.211679][T12166] __arm64_sys_setxattr+0xc0/0xdc [ 66.212567][T12166] invoke_syscall+0x98/0x2b8 [ 66.213356][T12166] el0_svc_common+0x130/0x23c [ 66.214171][T12166] do_el0_svc+0x48/0x58 [ 66.214944][T12166] el0_svc+0x58/0x180 [ 66.215685][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.216602][T12166] el0t_64_sync+0x198/0x19c [ 66.217380][T12166] [ 66.217380][T12166] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}: [ 66.218700][T12166] __lock_acquire+0x1774/0x30a4 [ 66.219537][T12166] lock_acquire+0x14c/0x2e0 [ 66.220332][T12166] down_write+0x50/0xc0 [ 66.221093][T12166] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 66.222116][T12166] ocfs2_init_security_set+0xb4/0xd8 [ 66.223071][T12166] ocfs2_symlink+0x16a0/0x1ff8 [ 66.223976][T12166] vfs_symlink+0x138/0x288 [ 66.224789][T12166] do_symlinkat+0x17c/0x360 [ 66.225602][T12166] __arm64_sys_symlinkat+0x9c/0xb4 [ 66.226484][T12166] invoke_syscall+0x98/0x2b8 [ 66.227177][T12166] el0_svc_common+0x130/0x23c [ 66.227989][T12166] do_el0_svc+0x48/0x58 [ 66.228724][T12166] el0_svc+0x58/0x180 [ 66.229436][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.230352][T12166] el0t_64_sync+0x198/0x19c [ 66.231186][T12166] [ 66.231186][T12166] other info that might help us debug this: [ 66.231186][T12166] [ 66.232816][T12166] Chain exists of: [ 66.232816][T12166] &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle [ 66.232816][T12166] [ 66.234951][T12166] Possible unsafe locking scenario: [ 66.234951][T12166] [ 66.236025][T12166] CPU0 CPU1 [ 66.236774][T12166] ---- ---- [ 66.237530][T12166] rlock(jbd2_handle); [ 66.238143][T12166] lock(&journal->j_trans_barrier); [ 66.239336][T12166] lock(jbd2_handle); [ 66.240275][T12166] lock(&oi->ip_xattr_sem); [ 66.240894][T12166] [ 66.240894][T12166] *** DEADLOCK *** [ 66.240894][T12166] [ 66.242078][T12166] 8 locks held by syz.3.2209/12166: [ 66.242816][T12166] #0: ffff0000cd19c428 (sb_writers#20){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 66.244181][T12166] #1: ffff0000f5f3a640 (&type->i_mutex_dir_key#16/1){+.+.}-{4:4}, at: filename_create+0x1ac/0x32c [ 66.245689][T12166] #2: ffff0000f5f242c0 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 66.247771][T12166] #3: ffff0000f5f3ed80 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x12c/0x3b9c [ 66.249844][T12166] #4: ffff0000f5f22640 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x104/0x26a0 [ 66.251921][T12166] #5: ffff0000cd19c618 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_symlink+0xa68/0x1ff8 [ 66.253303][T12166] #6: ffff0000ce8f04e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x35c/0x6b0 [ 66.254909][T12166] #7: ffff0000cc270950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xe4c/0x10dc [ 66.256329][T12166] [ 66.256329][T12166] stack backtrace: [ 66.257196][T12166] CPU: 0 UID: 0 PID: 12166 Comm: syz.3.2209 Not tainted 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 66.258807][T12166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 66.260471][T12166] Call trace: [ 66.260990][T12166] show_stack+0x2c/0x3c (C) [ 66.261737][T12166] __dump_stack+0x30/0x40 [ 66.262381][T12166] dump_stack_lvl+0xd8/0x12c [ 66.263061][T12166] dump_stack+0x1c/0x28 [ 66.263723][T12166] print_circular_bug+0x324/0x32c [ 66.264569][T12166] check_noncircular+0x154/0x174 [ 66.265353][T12166] __lock_acquire+0x1774/0x30a4 [ 66.266112][T12166] lock_acquire+0x14c/0x2e0 [ 66.266849][T12166] down_write+0x50/0xc0 [ 66.267479][T12166] ocfs2_xattr_set_handle+0x2a8/0x5e4 [ 66.268401][T12166] ocfs2_init_security_set+0xb4/0xd8 [ 66.269303][T12166] ocfs2_symlink+0x16a0/0x1ff8 [ 66.270066][T12166] vfs_symlink+0x138/0x288 [ 66.270750][T12166] do_symlinkat+0x17c/0x360 [ 66.271571][T12166] __arm64_sys_symlinkat+0x9c/0xb4 [ 66.272408][T12166] invoke_syscall+0x98/0x2b8 [ 66.273160][T12166] el0_svc_common+0x130/0x23c [ 66.273898][T12166] do_el0_svc+0x48/0x58 [ 66.274564][T12166] el0_svc+0x58/0x180 [ 66.275220][T12166] el0t_64_sync_handler+0x84/0x12c [ 66.275994][T12166] el0t_64_sync+0x198/0x19c [ 66.297230][ T6559] ocfs2: Unmounting device (7,3) on (node local)