last executing test programs: 2.863237335s ago: executing program 3 (id=973): ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000040)) r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f00000000c0)={r1, 0x0, 0x0, 0x0, 0xffffffff, 0x4ee, 0x0, 0x0, 0x0, 0x0, 0x1}) 2.652897999s ago: executing program 3 (id=974): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001c00070c000000000000000007"], 0x34}}, 0x4000000) r0 = socket(0x15, 0x5, 0x0) connect$unix(r0, &(0x7f0000000080)=@abs={0xa}, 0x6e) getsockname$packet(r0, 0x0, &(0x7f0000000240)) 2.04979777s ago: executing program 3 (id=977): syz_mount_image$msdos(&(0x7f0000000040), &(0x7f00000004c0)='./file0\x00', 0x80, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES32, @ANYRESDEC], 0xfd, 0x1bf, &(0x7f0000000500)="$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") mount$nfs(&(0x7f0000000100)='.5.', 0x0, 0x0, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) 1.863270064s ago: executing program 3 (id=980): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000c300)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}], {0x14}}, 0x68}}, 0x0) sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000c00)={0x2c, 0x17, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x2c}}, 0x0) 1.753402057s ago: executing program 2 (id=981): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00100000000000120000d1850000000500000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='smb3\x00', 0x0, &(0x7f00000003c0)='\xff\xff\xff\xff\x15\x00\x00\xe0\x00\xc1') 1.648542598s ago: executing program 1 (id=982): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x4, 0x0, 0x0, 0xfffffffe}) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800400, &(0x7f00000009c0)={[{@quota}]}, 0x1, 0x4f4, &(0x7f0000000200)="$eJzs3cFrHG0ZAPBnNkmbtPncfOrh8wO/FltJi3Y3aWwbPJQK4q2g1nsMySaEbLIhu2mbUEqKf4AgogdPnrwI/gGC9OK9CAW9i4hSbKsHD+rK7M7aGHeTxW52283vB2/nnXkn8zxvtzudd+YlE8CpdTEi7kTESERcjYh8tj2XldhvlnS/168eLaUliXr93l+SSLJtrWMl2fJ89mPjEfHt5EDDAdXdvfXFcrm0na0Xaxtbxeru3rW1jcXV0mppc25u9ub8rfkb8zM96+vtr//xR9//2Tdu/+rLD36/8Ocrj9O0JrO2g/3opWbXxxp/Fy2jEbF9EsEGYCTrz1iX+5894XwAADhaeo3/6Yj4QuP6Px8jjas5AAAAYJjUk4h/JBF1AAAAYGjlGnNgk1whmwswGblcodCcw/vZOJcrV6q1L61UdjaXm3Nlp2Ist7JWLs1kc4WnYixJ12cb9Tfr1w+tz0XEhxHxw/xEsnI2SoWlSnl50Dc/AAAA4JQ4f2j8/7d8c/wPAAAADJmpQScAAAAAnDjjfwAAABh+Hcf/iZcBAAAAwBD45t27aam33n+9fH93Z71y/9pyqbpe2NhZKixVtrcKq5XKarlUWKpsHHe8cqWy9ZXY3HlYrJWqtWJ1d29ho7KzWVtovNd7odTte6IBAACA3vnwwtPfJRGx/9WJRkmdydqM1WG45Y7fZeJAPTnJXID+Ghl0AsDA/H8TfE0LhmFw3Bj/Zb3ep0yAQTluYD/eqeFZ73MBAABOxvTnOj//B4ZbF8//27jT8zyA/vP8H04vT/Lh9DLHH3i75/8mCQEAwPtgslGSXCF7FjgZuVyhEPFB47UAY8nKWrk0ExGfiojf5sfOpuuzg04aAAAAAAAAAAAAAAAAAAAAAAAAAN4z9XoS9cPORL0+3mgEAAAAhkBE7k9J9v6v6fzlycP3B84kf883lhHx4Cf3fvxwsVbbnk23v8y/eWtYtv16329fAAAAAKlf//dqa5zeGscDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQA/Vk+Zy6fWrR0v9DPziaxExFZHGbZVmy2iMN5bjMRYR5/6axOiBn0vzHelB/P0nEfFRu/hJmlZMZVkcjp+LiIkBxz/fg/hwmj1Nzz932n3/cnGxsWz//RvNytt6cbHT+S/3n/PfSIfz3wddxvj4+S+KHeM/ifh4tP35pxU/6RD/Upfxv/udvb1ObfWfRkxH+/gHYxVrG1vF6u7etbWNxdXSamlzbm725vyt+RvzM8WVtXIp+7NtjB98/pf/Oqr/5zrEnzqm/5e77P8/nz989Zn/2fr4eiv+lUvtP/+Pjoif/pv4Yvb/QNo+3arvN+sHffLz33xyVP+XO/T/uM//Spf9v/qt7/2hy10BgD6o7u6tL5bLpe0jK8/i+H36V2ldh7wr+aTXQmnldv+Ctm499PLIF9LjnWjyE/FOfF4q3VQGeFICAABOxJuL/kFnAgAAAAAAAAAAAAAAAAAAAKdXP36d2KD7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQjX8HAAD///Q8wkc=") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000080)={0x2, 0x6, 0x800077, 0x412, 0x4, 0x1000000000000020, 0x1000, 0x400000000000000, 0x9}) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) 1.590853209s ago: executing program 4 (id=983): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000000000000000020085000000a800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc) 1.501419641s ago: executing program 3 (id=985): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[@ANYBLOB=' '], 0x8) 1.464011022s ago: executing program 2 (id=986): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'geneve0\x00', 0x0}) sendto$packet(r0, &(0x7f00000000c0)="a6bea8a120e5f8320c30ce5086dd", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14) 1.340692064s ago: executing program 0 (id=987): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000580), &(0x7f0000000580)=""/154}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000280)={r1}, 0xc) 1.340288404s ago: executing program 3 (id=988): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000240)='./file0\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c001967b9b8a6cdd636d75428f2c5e8054d01858eef552755576e749526b36860cf2511040d1ce5a743ffd83d29d1ba3a54a59d8c7aa249f08d3c8c6d04ac105d67934db6190d59f2323b55a5a4"], 0x1, 0x4454, &(0x7f0000008900)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000280)='./bus\x00', 0x100) rename(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./bus\x00') 1.314690325s ago: executing program 4 (id=989): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x468, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x43c, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x25cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000, 0x0, 0xfffffffd, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0xfffffffa, 0x7fffffff, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffeff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x0, 0xc, 0x5, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x20000000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0xe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2]}, @TCA_TBF_RATE64={0xc}, @TCA_TBF_PARMS={0x28, 0x1, {{}, {0x2, 0x0, 0x5, 0x0, 0x0, 0x40}}}]}}]}, 0x468}}, 0x0) 1.160458198s ago: executing program 2 (id=990): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000240)=ANY=[@ANYBLOB="050000000000000007010040"]) 1.156093978s ago: executing program 4 (id=991): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl(r0, 0x8b2a, &(0x7f0000000040)) 1.141112198s ago: executing program 1 (id=992): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.swap.events\x00', 0x26e1, 0x0) close(r0) socket$nl_route(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="8d0000008000"}) 1.03955171s ago: executing program 0 (id=993): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000040)=0x101, 0x4) sendmsg$nl_route_sched(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000000180)=@newtfilter={0x24, 0x2c, 0x1}, 0x24}}, 0x0) 938.179382ms ago: executing program 4 (id=994): r0 = openat$null(0xffffffffffffff9c, &(0x7f0000003100), 0x0, 0x0) close(r0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000051c0), 0x0, 0x0) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f00000000c0)) 816.464474ms ago: executing program 0 (id=995): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x30, 0x14, 0x509, 0x50bd24, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r2}, [@IFA_FLAGS={0x8, 0x8, 0x210}, @IFA_LOCAL={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @IFA_ADDRESS={0x8, 0x1, @multicast2}]}, 0x30}}, 0x0) 812.054504ms ago: executing program 1 (id=996): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000001440)={'\x00', 0x4212}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9) ioctl$TUNSETDEBUG(r0, 0x400454c9, 0x0) 809.973735ms ago: executing program 2 (id=997): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = dup(r0) ioctl$PTP_EXTTS_REQUEST2(r1, 0xc0603d0f, &(0x7f0000000000)={0x1, 0xc}) 731.504946ms ago: executing program 4 (id=998): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000cc0)={0x20, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x4}]}, 0x20}}, 0x40080) 568.500439ms ago: executing program 0 (id=999): r0 = gettid() r1 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0) read$FUSE(r1, &(0x7f0000003c40)={0x2020}, 0xfffffdd9) rt_sigqueueinfo(r0, 0x21, &(0x7f0000002d00)={0x0, 0xfffffffe, 0xfffffffb}) 568.153959ms ago: executing program 2 (id=1000): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7fc}, 0xe) r1 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000340)={r0, r0, 0xb, 0x0, 0x0, 0x8, 0xb6, 0x7f, 0x7, 0x801, 0x2, 0x10, 'syz0\x00'}) 499.172181ms ago: executing program 1 (id=1001): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000180)={0x1, 0x2, 0x4, 0x10001, 0x8, "008ef14ba278887cb0baba08431799317e6324"}) r1 = dup(r0) write$UHID_INPUT(r1, 0x0, 0x0) 464.820601ms ago: executing program 4 (id=1002): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xa8, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x78, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x1}, @TCA_TAPRIO_ATTR_SCHED_BASE_TIME={0xc, 0x3, 0x280000000000000}]}}]}, 0xa8}}, 0x0) 240.566056ms ago: executing program 0 (id=1003): setresuid(0xee01, 0xffffffffffffffff, 0xffffffffffffffff) setresgid(0xee00, 0xee01, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000107c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@cred={{0x1c}}], 0x20}}], 0x1, 0x4) 240.347156ms ago: executing program 1 (id=1004): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f00000001c0)="c2", 0x1, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x45}, &(0x7f0000000100)=0x8) 50.007709ms ago: executing program 2 (id=1005): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="7f454c4602040000ff7f00000000000003003e00ecffffff9402000000000000400000000000fff20000000000000000000000000000380001"], 0x78) close(r0) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000) 44.205919ms ago: executing program 1 (id=1015): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x0, 0x7}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000200)={0x2c, &(0x7f0000000040)={0x0, 0x11, 0x5, {0x5, 0x11, "61121c"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000080)='Q') 0s ago: executing program 0 (id=1006): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000600)={'syz1\x00', {0x81, 0x7, 0x0, 0x163}, 0x1e, [0xa, 0xd1b30153, 0x10001, 0x9, 0x101, 0x6, 0xfc, 0x6, 0x2, 0x1000, 0xffff, 0xfffffff8, 0x4, 0x5, 0x4, 0x373, 0xafc, 0x8001, 0x4, 0x0, 0x0, 0xab1a, 0x800, 0xb84a, 0x40, 0x0, 0x4, 0x1, 0x5, 0x4, 0x800, 0x7, 0x0, 0xfffffff9, 0x4, 0x7fffffff, 0xfff, 0x4, 0xfffffff9, 0x9, 0x81a, 0x2, 0x3, 0x7, 0x1, 0x4, 0xfffffe01, 0xff, 0x9c0d, 0x0, 0x6, 0x0, 0xfffffff7, 0x5, 0x1, 0x8, 0x8001, 0x6e, 0x7, 0x8, 0x7ff, 0xffff, 0xf, 0x2000000], [0x497, 0xc, 0x9, 0x0, 0x5, 0xfffffffb, 0x10000, 0xd, 0xfffffffa, 0xffffffff, 0x1, 0x3, 0x6, 0x9, 0x1b3, 0x80000000, 0x1000, 0x7fffffff, 0x1000000, 0x5, 0x9, 0x400, 0x3ff, 0x7, 0x4bd, 0x2, 0x4, 0x1ff, 0x0, 0x3, 0x5, 0x3, 0x3, 0x7, 0x80000000, 0x0, 0x2, 0x400, 0xff07, 0x1, 0x6, 0x7f, 0x2b9a6653, 0x5, 0x5, 0x8, 0x66ec, 0x7, 0x6, 0x2, 0xdb63, 0x3, 0x6, 0xff6, 0xfffffff5, 0x1, 0x3, 0x5dc, 0xef00, 0x8001, 0x9, 0x80000001, 0x6], [0x7, 0x10, 0xc, 0xb, 0x42a5, 0xfff, 0x7fffffff, 0x8, 0xfffffffb, 0x0, 0x8, 0x5, 0x6, 0x3, 0x0, 0x6, 0x0, 0x400, 0x8, 0x4000000, 0x1, 0x3ff, 0x10000, 0x6, 0x1, 0x4, 0x62, 0x9, 0x7fffffff, 0x1, 0x81, 0x9, 0xfffffffe, 0x3, 0x8b3, 0x6, 0x6, 0x2, 0x0, 0x6, 0x4, 0x10, 0x5, 0x6, 0x1, 0x6d74, 0x3, 0x3, 0x9, 0x9, 0xffffffff, 0x1, 0x2, 0x4, 0x0, 0xfffffffe, 0xc8, 0x0, 0x9, 0x8, 0x9, 0x2, 0x5, 0x6], [0x7fffffff, 0x88, 0x7fffffff, 0x6, 0x80000001, 0x6, 0x4, 0x1, 0x3, 0x6, 0x6, 0x9, 0x2, 0x2, 0x2014, 0x81, 0x80000001, 0x0, 0x5, 0x1, 0x4, 0x2576, 0x399c25ed, 0x40, 0xc, 0xa, 0x3, 0x9, 0x2a, 0x3, 0x0, 0x0, 0x3, 0x7ff, 0x1, 0x4, 0x10001, 0x0, 0x9, 0xffff, 0x4, 0x9, 0x7, 0x1, 0x77, 0x579, 0x1ff, 0x3, 0x7, 0x6, 0xc6b, 0x5, 0xfffffffb, 0x7, 0x5, 0x800, 0x3, 0x2, 0x5, 0x8, 0xff, 0x4, 0x6, 0x7fff]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x2) kernel console output (not intermixed with test programs): k becomes ready [ 82.263870][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 82.282659][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 82.331266][ T4249] device veth0_macvtap entered promiscuous mode [ 82.342668][ T4257] device veth1_macvtap entered promiscuous mode [ 82.360989][ T4260] device veth0_vlan entered promiscuous mode [ 82.374982][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 82.389536][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 82.399780][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 82.415152][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 82.426022][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 82.440684][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 82.467315][ T4249] device veth1_macvtap entered promiscuous mode [ 82.476108][ T4310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.523508][ T4310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.561395][ T4260] device veth1_vlan entered promiscuous mode [ 82.570336][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 82.579815][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 82.590089][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.608146][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.634636][ T4249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.649371][ T4249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.659580][ T4249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.670142][ T4249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.681883][ T4249] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.690087][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.700729][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.712341][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.722963][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.733032][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.743860][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.756256][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.769668][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 82.779295][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 82.788072][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 82.796926][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 82.807789][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 82.834762][ T4249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.845561][ T4249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.856206][ T4249] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.867241][ T4249] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.879107][ T4249] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.889617][ T4310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.897760][ T4310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.898133][ T4249] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.915703][ T4249] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.924750][ T4249] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.933550][ T4249] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.945048][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.956993][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.968108][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.980174][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.990400][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.001103][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.012627][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.030304][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.039605][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.049898][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.062560][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 83.071155][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.080364][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.116866][ T4257] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.133915][ T4257] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.142940][ T4257] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.152050][ T4257] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.182070][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.189382][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.202660][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.206388][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.251291][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 83.282761][ T4260] device veth0_macvtap entered promiscuous mode [ 83.384930][ T4260] device veth1_macvtap entered promiscuous mode [ 83.389679][ T4332] syz.4.5 uses obsolete (PF_INET,SOCK_PACKET) [ 83.435425][ T27] audit: type=1326 audit(1744037380.066:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.438950][ T4291] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.490505][ T4291] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.531861][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 83.538399][ T27] audit: type=1326 audit(1744037380.106:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.578478][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.608666][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.619371][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.644664][ T27] audit: type=1326 audit(1744037380.106:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.669131][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.679822][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.691660][ T27] audit: type=1326 audit(1744037380.106:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.714450][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.730369][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.741380][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.768548][ T27] audit: type=1326 audit(1744037380.106:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.832271][ T4340] loop1: detected capacity change from 0 to 256 [ 83.845753][ T4260] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.860706][ T27] audit: type=1326 audit(1744037380.106:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.885878][ T27] audit: type=1326 audit(1744037380.106:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 83.904233][ T4310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.909272][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.924097][ T4264] Bluetooth: hci0: command 0x0419 tx timeout [ 83.924105][ T4254] Bluetooth: hci4: command 0x0419 tx timeout [ 83.930717][ T4310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.978379][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.988881][ T4254] Bluetooth: hci3: command 0x0419 tx timeout [ 83.989253][ T48] Bluetooth: hci1: command 0x0419 tx timeout [ 84.000028][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.011824][ T48] Bluetooth: hci2: command 0x0419 tx timeout [ 84.029916][ T27] audit: type=1326 audit(1744037380.106:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4331 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e6cf8d169 code=0x7ffc0000 [ 84.051998][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.062598][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.074994][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.084925][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.095631][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.106075][ T4260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.116587][ T4260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.128817][ T4260] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.147180][ T4260] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.157302][ T4260] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.166999][ T4260] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.178612][ T4260] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.190466][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 84.209286][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.218887][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.234570][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.243193][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.288777][ T4310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.296855][ T4310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.318100][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.336520][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.538524][ T4347] loop4: detected capacity change from 0 to 128 [ 84.543086][ T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.577297][ T4347] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 84.584148][ T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.629529][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.637616][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.651924][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 84.652343][ T4349] loop3: detected capacity change from 0 to 256 [ 84.680616][ T4347] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 84.688580][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.719803][ T4351] loop2: detected capacity change from 0 to 1024 [ 84.744318][ T4351] ======================================================= [ 84.744318][ T4351] WARNING: The mand mount option has been deprecated and [ 84.744318][ T4351] and is ignored by this kernel. Remove the mand [ 84.744318][ T4351] option from the mount to silence this warning. [ 84.744318][ T4351] ======================================================= [ 84.856094][ T4351] EXT4-fs: Ignoring removed oldalloc option [ 84.882147][ T4351] EXT4-fs: Ignoring removed orlov option [ 85.017282][ T4351] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 85.308246][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 85.618316][ T22] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 85.831112][ T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 85.878228][ T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 85.906747][ T22] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 85.948059][ T22] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 85.972345][ T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.030201][ T22] usb 4-1: config 0 descriptor?? [ 86.493346][ T4400] loop0: detected capacity change from 0 to 1024 [ 86.594091][ T4400] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 86.615343][ T4385] loop4: detected capacity change from 0 to 32768 [ 86.646634][ T22] hid-led: probe of 0003:27B8:01ED.0001 failed with error -71 [ 86.660599][ T22] usb 4-1: USB disconnect, device number 2 [ 86.673914][ T4385] XFS: attr2 mount option is deprecated. [ 86.779051][ T4392] loop1: detected capacity change from 0 to 32768 [ 86.791693][ T14] cfg80211: failed to load regulatory.db [ 86.812962][ T4385] XFS (loop4): Mounting V5 Filesystem [ 86.815872][ T4392] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.26 (4392) [ 86.857582][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 86.935554][ T4392] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 86.963192][ T4392] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 86.972301][ T4385] XFS (loop4): Ending clean mount [ 87.008298][ T4392] BTRFS info (device loop1): setting nodatacow, compression disabled [ 87.019104][ T4392] BTRFS info (device loop1): max_inline at 0 [ 87.025157][ T4392] BTRFS info (device loop1): enabling disk space caching [ 87.050143][ T4385] XFS (loop4): Quotacheck needed: Please wait. [ 87.058416][ T4392] BTRFS info (device loop1): turning off barriers [ 87.064915][ T4392] BTRFS info (device loop1): turning on flush-on-commit [ 87.088132][ T4392] BTRFS info (device loop1): doing ref verification [ 87.117093][ T4392] BTRFS info (device loop1): force clearing of disk cache [ 87.137407][ T4392] BTRFS info (device loop1): enabling ssd optimizations [ 87.145009][ T4385] XFS (loop4): Quotacheck: Done. [ 87.170675][ T4392] BTRFS info (device loop1): max_inline at 4096 [ 87.205768][ T4396] loop2: detected capacity change from 0 to 32768 [ 87.216214][ T4392] BTRFS info (device loop1): disk space caching is enabled [ 87.245993][ T4396] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.28 (4396) [ 87.270586][ T4396] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 87.332304][ T4396] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 87.368924][ T4396] BTRFS info (device loop2): using free space tree [ 87.454309][ T4253] XFS (loop4): Unmounting Filesystem [ 87.726761][ T4396] BTRFS info (device loop2): enabling ssd optimizations [ 87.791671][ T4392] BTRFS info (device loop1): rebuilding free space tree [ 87.822436][ T4439] loop3: detected capacity change from 0 to 8192 [ 87.984500][ T4392] BTRFS info (device loop1): disabling free space tree [ 88.016716][ T4392] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 88.037964][ T4392] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 88.156522][ T4257] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 88.479595][ T27] audit: type=1800 audit(1744037385.116:10): pid=4467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26" name="file1" dev="loop1" ino=261 res=0 errno=0 [ 88.618597][ T4475] process 'syz.0.40' launched '/dev/fd/3' with NULL argv: empty string added [ 88.930071][ T4250] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 89.801566][ T4515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.52'. [ 89.866984][ T4515] netlink: 12 bytes leftover after parsing attributes in process `syz.0.52'. [ 89.887618][ T4515] netlink: 20 bytes leftover after parsing attributes in process `syz.0.52'. [ 89.913856][ T4480] loop2: detected capacity change from 0 to 32768 [ 89.922145][ T4515] netlink: 20 bytes leftover after parsing attributes in process `syz.0.52'. [ 89.958554][ T4480] XFS (loop2): Mounting V5 Filesystem [ 90.091052][ T4480] XFS (loop2): Ending clean mount [ 90.275028][ T4480] syz.2.39 (4480) used greatest stack depth: 19240 bytes left [ 90.296045][ T4535] netlink: 4 bytes leftover after parsing attributes in process `syz.4.58'. [ 90.296456][ T4257] XFS (loop2): Unmounting Filesystem [ 90.498342][ T4264] Bluetooth: hci4: unexpected event 0x03 length: 17 > 11 [ 90.498386][ T4264] Bluetooth: hci4: Invalid handle: 0x2000 > 0x0eff [ 90.684593][ T4549] loop1: detected capacity change from 0 to 2048 [ 90.774558][ T4549] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 91.035871][ T4542] loop4: detected capacity change from 0 to 32768 [ 91.065874][ T4560] netlink: 12 bytes leftover after parsing attributes in process `syz.3.68'. [ 91.092303][ T4542] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.63 (4542) [ 91.094117][ T4559] loop2: detected capacity change from 0 to 1024 [ 91.143207][ T4559] hfsplus: unable to parse mount options [ 91.177221][ T4542] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 91.240962][ T4559] CUSE: info not properly terminated [ 91.258422][ T4542] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 91.267208][ T4542] BTRFS info (device loop4): setting nodatacow, compression disabled [ 91.378582][ T4542] BTRFS info (device loop4): enabling auto defrag [ 91.378674][ T4542] BTRFS info (device loop4): max_inline at 0 [ 91.378698][ T4542] BTRFS info (device loop4): using free space tree [ 91.607041][ T4579] loop0: detected capacity change from 0 to 736 [ 91.614852][ T27] audit: type=1800 audit(1744037388.246:11): pid=4549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.67" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 91.847391][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 91.984597][ T4593] Bluetooth: MGMT ver 1.22 [ 92.034015][ T4253] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 92.038019][ T26] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 92.248443][ T26] usb 3-1: Using ep0 maxpacket: 16 [ 92.281527][ T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 92.363751][ T26] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 92.405479][ T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 92.471780][ T26] usb 3-1: config 0 descriptor?? [ 92.505803][ T4604] loop4: detected capacity change from 0 to 2048 [ 92.542277][ T4604] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 92.555381][ T4264] Bluetooth: hci4: command 0x0409 tx timeout [ 92.810470][ T4614] netlink: 4 bytes leftover after parsing attributes in process `syz.1.83'. [ 92.942243][ T26] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x6 [ 92.964001][ T26] mcp2221 0003:04D8:00DD.0002: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 93.137379][ C1] usb 3-1: input irq status -75 received [ 93.265647][ T4622] loop1: detected capacity change from 0 to 4096 [ 93.421460][ T4600] usb 3-1: USB disconnect, device number 2 [ 93.447711][ T4628] loop3: detected capacity change from 0 to 1024 [ 93.447826][ T4630] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 93.539656][ T4628] EXT4-fs: Ignoring removed i_version option [ 93.545752][ T4628] EXT4-fs: Ignoring removed nobh option [ 93.552016][ T4622] NILFS error (device loop1): nilfs_readdir: zero-length directory entry [ 93.596790][ T4622] Remounting filesystem read-only [ 93.625307][ T4628] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 93.728844][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 93.901232][ T4641] loop1: detected capacity change from 0 to 256 [ 93.971656][ T4641] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d) [ 94.151259][ T4650] loop2: detected capacity change from 0 to 764 [ 94.245092][ T4650] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 94.394138][ T4654] syz.1.99[4654] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 94.394253][ T4654] syz.1.99[4654] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 94.506611][ T4658] __sock_release: fasync list not empty! [ 94.701858][ T4662] Zero length message leads to an empty skb [ 94.745656][ T4664] loop1: detected capacity change from 0 to 256 [ 95.039939][ T4672] smb3: Unknown parameter 'ÿÿÿÿ' [ 95.520836][ T4684] loop2: detected capacity change from 0 to 1764 [ 95.525408][ T4655] loop0: detected capacity change from 0 to 32768 [ 95.648272][ T4655] XFS (loop0): Mounting V5 Filesystem [ 95.768548][ T4684] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 95.922433][ T4655] XFS (loop0): Ending clean mount [ 95.961688][ T4655] XFS (loop0): Quotacheck needed: Please wait. [ 96.070352][ T4655] XFS (loop0): Quotacheck: Done. [ 96.114198][ T4707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.122'. [ 96.309498][ T4260] XFS (loop0): Unmounting Filesystem [ 96.501338][ T4717] input: syz1 as /devices/virtual/input/input5 [ 96.861277][ T4727] netlink: 8 bytes leftover after parsing attributes in process `syz.4.132'. [ 97.402291][ T4742] netlink: 'syz.4.138': attribute type 1 has an invalid length. [ 97.430611][ T4742] netlink: 8 bytes leftover after parsing attributes in process `syz.4.138'. [ 97.441426][ T4747] loop2: detected capacity change from 0 to 512 [ 97.475641][ T4747] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 97.551446][ T4747] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 97.626521][ T4747] EXT4-fs (loop2): 1 truncate cleaned up [ 97.705446][ T4747] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 97.733900][ T4725] loop3: detected capacity change from 0 to 32768 [ 97.814930][ T4747] EXT4-fs (loop2): re-mounted. Quota mode: none. [ 97.840087][ T4725] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 97.881711][ T4725] XFS (loop3): Mounting V5 Filesystem [ 97.906232][ T4747] EXT4-fs error (device loop2): ext4_nfs_get_inode:1461: inode #11: comm syz.2.141: iget: bad extra_isize 46 (inode size 256) [ 97.963319][ T4744] loop0: detected capacity change from 0 to 32768 [ 98.004670][ T4725] XFS (loop3): Ending clean mount [ 98.013786][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 98.027043][ T4725] XFS (loop3): Quotacheck needed: Please wait. [ 98.088861][ T4744] XFS (loop0): Mounting V5 Filesystem [ 98.131458][ T4725] XFS (loop3): Quotacheck: Done. [ 98.227173][ T27] audit: type=1800 audit(1744037394.856:12): pid=4725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.130" name="file1" dev="loop3" ino=4422 res=0 errno=0 [ 98.247787][ C1] vkms_vblank_simulate: vblank timer overrun [ 98.264054][ T4744] XFS (loop0): Ending clean mount [ 98.459308][ T4249] XFS (loop3): Unmounting Filesystem [ 98.684028][ T4260] XFS (loop0): Unmounting Filesystem [ 98.923211][ T4785] loop4: detected capacity change from 0 to 256 [ 98.941296][ T4773] loop2: detected capacity change from 0 to 32768 [ 98.954435][ T4785] exfat: Deprecated parameter 'utf8' [ 98.999839][ T4785] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 99.112037][ T4787] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 99.183112][ T4788] loop3: detected capacity change from 0 to 512 [ 99.266869][ T4360] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 100.268038][ T4489] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 100.467943][ T4489] usb 2-1: Using ep0 maxpacket: 32 [ 100.475118][ T4489] usb 2-1: config index 0 descriptor too short (expected 35577, got 27) [ 100.513746][ T4489] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 100.538045][ T4489] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 100.568714][ T4489] usb 2-1: config 1 has no interface number 0 [ 100.574927][ T4489] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 100.647006][ T4489] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 100.679448][ T4827] loop3: detected capacity change from 0 to 512 [ 100.700941][ T4489] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 100.730990][ T4489] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.768021][ T4827] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 100.789122][ T4489] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found [ 100.893978][ T4827] EXT4-fs (loop3): 1 truncate cleaned up [ 100.907956][ T4827] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 100.972306][ T4489] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached [ 101.012441][ T4827] fscrypt (loop3, inode 18): Unsupported encryption flags (0x08) [ 101.065026][ T4834] loop2: detected capacity change from 0 to 1024 [ 101.232481][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 101.271992][ T4489] usb 2-1: USB disconnect, device number 2 [ 101.299962][ T4489] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected [ 101.521863][ T4825] loop4: detected capacity change from 0 to 32768 [ 102.202861][ T4859] binder: binder_mmap: 4858 200000000000-200000600000 bad vm_flags failed -1 [ 102.259113][ T27] audit: type=1326 audit(1744037398.896:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4847 comm="syz.2.176" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f03dcd8d169 code=0x0 [ 102.280697][ C1] vkms_vblank_simulate: vblank timer overrun [ 102.878650][ T4879] sctp: [Deprecated]: syz.4.189 (pid 4879) Use of int in max_burst socket option deprecated. [ 102.878650][ T4879] Use struct sctp_assoc_value instead [ 103.005371][ T4882] loop1: detected capacity change from 0 to 512 [ 103.037127][ T4882] EXT4-fs: Ignoring removed bh option [ 103.054905][ T4882] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 103.109853][ T4882] EXT4-fs (loop1): 1 truncate cleaned up [ 103.125544][ T4882] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 103.276349][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 103.577303][ T4904] netlink: 20 bytes leftover after parsing attributes in process `syz.4.200'. [ 103.724526][ T4900] loop3: detected capacity change from 0 to 8192 [ 103.775580][ T4900] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 103.803165][ T4900] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 103.841766][ T4900] REISERFS (device loop3): using ordered data mode [ 103.894000][ T4900] reiserfs: using flush barriers [ 103.979720][ T4900] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 104.049132][ T4900] REISERFS (device loop3): checking transaction log (loop3) [ 104.124327][ T4900] REISERFS (device loop3): Using r5 hash to sort names [ 104.148904][ T4900] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 104.387971][ T4264] Bluetooth: hci4: command 0x0407 tx timeout [ 104.700188][ T4599] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 104.737503][ T4917] loop1: detected capacity change from 0 to 32768 [ 104.780420][ T4917] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.205 (4917) [ 104.908283][ T4599] usb 1-1: Using ep0 maxpacket: 32 [ 104.930913][ T4599] usb 1-1: unable to get BOS descriptor or descriptor too short [ 104.943118][ T4599] usb 1-1: no configurations [ 104.947820][ T4599] usb 1-1: can't read configurations, error -22 [ 105.107881][ C1] sched: RT throttling activated [ 105.134055][ T4917] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 105.151474][ T4917] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 105.173423][ T4917] BTRFS info (device loop1): using free space tree [ 105.584043][ T4917] BTRFS info (device loop1): enabling ssd optimizations [ 106.180575][ T4919] loop2: detected capacity change from 0 to 262144 [ 106.229768][ T4250] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 106.241749][ T4919] F2FS-fs (loop2): invalid crc value [ 106.282294][ T4919] F2FS-fs (loop2): Found nat_bits in checkpoint [ 106.432719][ T4919] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 107.869644][ T4986] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.900869][ T26] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 107.991265][ T4990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.228'. [ 108.037953][ T4990] netlink: 40 bytes leftover after parsing attributes in process `syz.4.228'. [ 108.100092][ T26] usb 2-1: config 0 has no interfaces? [ 108.108825][ T26] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 108.148254][ T26] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.174378][ T26] usb 2-1: Product: syz [ 108.182455][ T4993] loop3: detected capacity change from 0 to 256 [ 108.188935][ T26] usb 2-1: Manufacturer: syz [ 108.188985][ T26] usb 2-1: SerialNumber: syz [ 108.241950][ T4993] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 108.246732][ T26] usb 2-1: config 0 descriptor?? [ 108.948119][ T4600] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 108.987465][ T1191] usb 2-1: USB disconnect, device number 3 [ 109.178152][ T4600] usb 4-1: Using ep0 maxpacket: 32 [ 109.185458][ T4600] usb 4-1: config 0 has an invalid interface number: 12 but max is 0 [ 109.205552][ T4600] usb 4-1: config 0 has no interface number 0 [ 109.228303][ T4600] usb 4-1: config 0 interface 12 has no altsetting 0 [ 109.260618][ T4600] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 109.277931][ T4600] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 109.296316][ T4600] usb 4-1: Product: syz [ 109.300947][ T4600] usb 4-1: Manufacturer: syz [ 109.308178][ T4600] usb 4-1: SerialNumber: syz [ 109.336183][ T4600] usb 4-1: config 0 descriptor?? [ 109.778749][ T5032] random: crng reseeded on system resumption [ 110.041378][ T5037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.249'. [ 110.063934][ T5018] loop2: detected capacity change from 0 to 32768 [ 110.075091][ T5018] XFS: noikeep mount option is deprecated. [ 110.186354][ T4600] f81534 4-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71 [ 110.223025][ T4600] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71 [ 110.277477][ T4600] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 110.306988][ T4600] f81534: probe of 4-1:0.12 failed with error -71 [ 110.307282][ T5048] loop0: detected capacity change from 0 to 256 [ 110.343366][ T4600] usb 4-1: USB disconnect, device number 3 [ 110.355860][ T5048] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 110.375196][ T5018] XFS (loop2): Mounting V5 Filesystem [ 110.382802][ T5049] netlink: 44 bytes leftover after parsing attributes in process `syz.4.251'. [ 110.411632][ T5049] netlink: 32 bytes leftover after parsing attributes in process `syz.4.251'. [ 110.593683][ T5018] XFS (loop2): Ending clean mount [ 110.637585][ T5018] XFS (loop2): Quotacheck needed: Please wait. [ 110.734219][ T5018] XFS (loop2): Quotacheck: Done. [ 110.859002][ T5058] loop4: detected capacity change from 0 to 4096 [ 110.890019][ T5058] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 110.928061][ T4600] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 110.983722][ T5058] ntfs: volume version 3.1. [ 111.007270][ T4257] XFS (loop2): Unmounting Filesystem [ 111.041963][ T5060] loop3: detected capacity change from 0 to 8192 [ 111.078906][ T5060] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 111.084022][ T5058] ntfs: (device loop4): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set iso8859-2. You might want to try to use the mount option nls=utf8. [ 111.092312][ T5060] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 111.133199][ T5060] REISERFS (device loop3): using ordered data mode [ 111.140066][ T5060] reiserfs: using flush barriers [ 111.146960][ T5058] ntfs: (device loop4): ntfs_filldir(): Skipping unrepresentable inode 0x4. [ 111.148116][ T4600] usb 1-1: Using ep0 maxpacket: 8 [ 111.169794][ T5060] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 111.205270][ T4600] usb 1-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 111.236570][ T5060] REISERFS (device loop3): checking transaction log (loop3) [ 111.244430][ T4600] usb 1-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 111.311255][ T4600] usb 1-1: config 0 interface 0 has no altsetting 0 [ 111.343639][ T4600] usb 1-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00 [ 111.393524][ T4600] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.423978][ T4600] usb 1-1: config 0 descriptor?? [ 111.506662][ T5060] REISERFS (device loop3): Using tea hash to sort names [ 111.530043][ T5060] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 111.719450][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state [ 111.855386][ T4600] chicony 0003:04F2:1421.0003: unbalanced delimiter at end of report description [ 111.872584][ T4600] chicony 0003:04F2:1421.0003: Chicony hid parse failed: -22 [ 111.900422][ T4600] chicony: probe of 0003:04F2:1421.0003 failed with error -22 [ 112.086784][ T4600] usb 1-1: USB disconnect, device number 4 [ 112.275384][ T5065] loop4: detected capacity change from 0 to 40427 [ 112.376200][ T5065] F2FS-fs (loop4): Found nat_bits in checkpoint [ 112.490892][ T5065] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 112.712519][ T4253] syz-executor: attempt to access beyond end of device [ 112.712519][ T4253] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 113.169475][ T5098] device dummy0 entered promiscuous mode [ 113.195039][ T5098] device dummy0 left promiscuous mode [ 113.234691][ T5088] loop2: detected capacity change from 0 to 32768 [ 113.272504][ T5088] XFS: noikeep mount option is deprecated. [ 113.387344][ T5088] XFS (loop2): Mounting V5 Filesystem [ 113.434109][ T5094] loop0: detected capacity change from 0 to 32768 [ 113.524888][ T5088] XFS (loop2): Ending clean mount [ 113.586554][ T5088] XFS (loop2): Quotacheck needed: Please wait. [ 113.612344][ T5094] JBD2: Ignoring recovery information on journal [ 113.714930][ T5088] XFS (loop2): Quotacheck: Done. [ 113.781709][ T5094] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 113.996399][ T4257] XFS (loop2): Unmounting Filesystem [ 113.996678][ T5094] OCFS2: ERROR (device loop0): int ocfs2_xattr_find_entry(struct inode *, int, const char *, struct ocfs2_xattr_search *): corrupted xattr entries [ 114.008284][ T5094] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 114.074082][ T5094] OCFS2: File system is now read-only. [ 114.340082][ T4260] ocfs2: Unmounting device (7,0) on (node local) [ 114.723560][ T5135] loop2: detected capacity change from 0 to 4096 [ 114.842002][ T5140] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 115.027193][ T5146] loop1: detected capacity change from 0 to 128 [ 115.076036][ T5146] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 115.129742][ T5146] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 115.338693][ T5130] loop3: detected capacity change from 0 to 32768 [ 115.433699][ T55] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 115.476037][ T5130] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 115.643749][ T5130] OCFS2: ERROR (device loop3): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 115.688119][ T5130] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 115.688407][ T5156] loop1: detected capacity change from 0 to 16 [ 115.717649][ T5130] OCFS2: File system is now read-only. [ 115.757336][ T5130] (syz.3.282,5130,0):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 115.767075][ T5156] erofs: (device loop1): mounted with root inode @ nid 36. [ 115.813666][ T5157] OCFS2: ERROR (device loop3): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 115.860441][ T5157] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 115.891994][ T5157] (syz.3.282,5157,0):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 116.055847][ T4249] ocfs2: Unmounting device (7,3) on (node local) [ 116.172889][ T5141] loop0: detected capacity change from 0 to 40427 [ 116.261474][ T5141] F2FS-fs (loop0): invalid crc value [ 116.312237][ T5141] F2FS-fs (loop0): Found nat_bits in checkpoint [ 116.379908][ T5170] loop4: detected capacity change from 0 to 1024 [ 116.537163][ T5141] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 116.559644][ T5170] hfsplus: xattr searching failed [ 116.589486][ T5175] hfsplus: xattr search failed [ 116.796716][ T4260] syz-executor: attempt to access beyond end of device [ 116.796716][ T4260] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 117.346955][ T5163] loop1: detected capacity change from 0 to 32768 [ 117.413647][ T5163] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 117.464317][ T5163] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 117.574363][ T5163] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 117.597652][ T4489] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 117.597709][ T5186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.302'. [ 117.635403][ T4489] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 117.779284][ T5190] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 117.784188][ T4489] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 148ms [ 117.834915][ T4489] gfs2: fsid=syz:syz.0: jid=0: Done [ 117.855653][ T5163] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 117.959763][ T5181] loop4: detected capacity change from 0 to 32768 [ 118.176277][ T5181] XFS (loop4): Mounting V5 Filesystem [ 118.390128][ T5181] XFS (loop4): Ending clean mount [ 118.400016][ T5181] XFS (loop4): Quotacheck needed: Please wait. [ 118.464936][ T5181] XFS (loop4): Quotacheck: Done. [ 118.674232][ T4253] XFS (loop4): Unmounting Filesystem [ 118.954865][ T5231] loop3: detected capacity change from 0 to 512 [ 118.992784][ T5231] EXT4-fs: Ignoring removed nobh option [ 119.057087][ T5231] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.317: invalid indirect mapped block 256 (level 2) [ 119.156523][ T5231] EXT4-fs (loop3): 2 truncates cleaned up [ 119.164111][ T5231] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 119.267545][ T5231] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.317: bg 0: block 5: invalid block bitmap [ 119.294372][ T5231] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 119.311480][ T5231] EXT4-fs (loop3): This should not happen!! Data will be lost [ 119.311480][ T5231] [ 119.325766][ T5231] EXT4-fs (loop3): Total free blocks count 0 [ 119.332161][ T5231] EXT4-fs (loop3): Free/Dirty block details [ 119.338373][ T5231] EXT4-fs (loop3): free_blocks=0 [ 119.343687][ T5231] EXT4-fs (loop3): dirty_blocks=66 [ 119.349130][ T5231] EXT4-fs (loop3): Block reservation details [ 119.355485][ T5231] EXT4-fs (loop3): i_reserved_data_blocks=66 [ 119.508329][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 119.590438][ T5249] netlink: 360 bytes leftover after parsing attributes in process `syz.0.322'. [ 119.611674][ T5249] netlink: 24 bytes leftover after parsing attributes in process `syz.0.322'. [ 119.658691][ T5251] loop3: detected capacity change from 0 to 1024 [ 119.722449][ T27] audit: type=1800 audit(1744037416.356:14): pid=5251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.323" name="file1" dev="loop3" ino=20 res=0 errno=0 [ 119.787042][ T5254] loop2: detected capacity change from 0 to 512 [ 119.805785][ T5254] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 119.849730][ T5254] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #15: comm syz.2.324: inline data xattr refers to an external xattr inode [ 119.896197][ T5254] EXT4-fs (loop2): Remounting filesystem read-only [ 119.918932][ T5254] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.324: couldn't read orphan inode 15 (err -117) [ 119.932118][ T5254] EXT4-fs (loop2): Remounting filesystem read-only [ 119.938941][ T5254] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 119.957698][ T5254] EXT4-fs (loop2): shut down requested (1) [ 120.019288][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 120.388104][ T5268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.330'. [ 120.732080][ T5282] program syz.4.336 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 120.912700][ T5286] loop0: detected capacity change from 0 to 256 [ 120.982736][ T5286] exfat: Deprecated parameter 'namecase' [ 121.046876][ T5288] mkiss: ax0: crc mode is auto. [ 121.051077][ T5286] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 121.077815][ T5293] Driver unsupported XDP return value 0 on prog (id 28) dev N/A, expect packet loss! [ 121.132458][ T27] audit: type=1800 audit(1744037417.766:15): pid=5286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.339" name="file1" dev="loop0" ino=1048615 res=0 errno=0 [ 121.153195][ T5286] syz.0.339: attempt to access beyond end of device [ 121.153195][ T5286] loop0: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 121.477779][ T5296] loop4: detected capacity change from 0 to 4096 [ 121.514732][ T5276] loop2: detected capacity change from 0 to 32768 [ 121.539072][ T5296] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 121.577571][ T5296] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 121.606864][ T5296] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 121.620492][ T5304] input: syz1 as /devices/virtual/input/input6 [ 121.638447][ T5296] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 121.652957][ T5296] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 121.682694][ T5296] ntfs: volume version 3.1. [ 121.697078][ T5296] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 121.708866][ T5296] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 121.720607][ T5296] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 121.724239][ T5276] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 121.904493][ T5276] OCFS2: ERROR (device loop2): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 121.979586][ T5276] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 122.021757][ T5276] OCFS2: File system is now read-only. [ 122.085150][ T5317] OCFS2: ERROR (device loop2): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has empty extent list at depth 312 [ 122.095324][ T5276] (syz.2.334,5276,0):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 122.160849][ T5319] netlink: 'syz.4.352': attribute type 1 has an invalid length. [ 122.188060][ T5319] netlink: 4 bytes leftover after parsing attributes in process `syz.4.352'. [ 122.217384][ T5317] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 122.277326][ T5321] netlink: 28 bytes leftover after parsing attributes in process `syz.1.354'. [ 122.303219][ T5317] (syz.2.334,5317,1):ocfs2_find_leaf:1933 ERROR: status = -30 [ 122.312142][ T5321] netlink: 28 bytes leftover after parsing attributes in process `syz.1.354'. [ 122.358200][ T5317] (syz.2.334,5317,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30 [ 122.385804][ T5317] (syz.2.334,5317,1):ocfs2_fiemap:776 ERROR: status = -30 [ 122.413750][ T5327] loop0: detected capacity change from 0 to 512 [ 122.473419][ T5327] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 122.546632][ T5327] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 122.574804][ T4257] ocfs2: Unmounting device (7,2) on (node local) [ 122.733796][ T5327] EXT4-fs (loop0): 1 truncate cleaned up [ 122.753862][ T5327] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 122.955644][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 122.977159][ T5338] : renamed from bond0 [ 123.161748][ T5333] loop4: detected capacity change from 0 to 32768 [ 123.277066][ T5333] I/O error, dev loop14, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 123.311801][ T5333] lbmIODone: I/O error in JFS log [ 123.344715][ T5333] *** Log Format Error ! *** [ 123.359581][ T5333] lmLogInit: exit(-22) [ 123.364111][ T5333] lmLogOpen: exit(-22) [ 123.439153][ T5333] I/O error, dev loop14, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 123.463913][ T5333] lbmIODone: I/O error in JFS log [ 123.488020][ T5333] *** Log Format Error ! *** [ 123.498900][ T5333] lmLogInit: exit(-22) [ 123.522114][ T5333] lmLogOpen: exit(-22) [ 123.837994][ T22] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 123.880124][ T5329] loop1: detected capacity change from 0 to 40427 [ 123.944933][ T5329] F2FS-fs (loop1): Found nat_bits in checkpoint [ 123.971247][ T5342] loop2: detected capacity change from 0 to 32768 [ 124.037921][ T22] usb 4-1: Using ep0 maxpacket: 16 [ 124.045259][ T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.064318][ T22] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 124.077935][ T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.086324][ T5329] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 124.113804][ T22] usb 4-1: config 0 descriptor?? [ 124.120774][ T5342] XFS (loop2): Mounting V5 Filesystem [ 124.192946][ T5342] XFS (loop2): Ending clean mount [ 124.202204][ T5342] XFS (loop2): Quotacheck needed: Please wait. [ 124.271824][ T5342] XFS (loop2): Quotacheck: Done. [ 124.422103][ T4250] syz-executor: attempt to access beyond end of device [ 124.422103][ T4250] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 124.467557][ T4257] XFS (loop2): Unmounting Filesystem [ 124.530487][ T22] elan 0003:04F3:0755.0004: unknown main item tag 0x0 [ 124.557995][ T22] elan 0003:04F3:0755.0004: unknown main item tag 0x0 [ 124.564866][ T22] elan 0003:04F3:0755.0004: unknown main item tag 0x0 [ 124.592519][ T22] elan 0003:04F3:0755.0004: unknown main item tag 0x0 [ 124.617996][ T22] elan 0003:04F3:0755.0004: unknown main item tag 0x0 [ 124.692574][ T22] elan 0003:04F3:0755.0004: hidraw0: USB HID v0.06 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0 [ 124.976994][ T22] usb 4-1: USB disconnect, device number 4 [ 125.408904][ T5374] loop0: detected capacity change from 0 to 40427 [ 125.439574][ T5374] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 125.473290][ T5374] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 125.505883][ T5374] F2FS-fs (loop0): invalid crc value [ 125.612315][ T5374] F2FS-fs (loop0): Found nat_bits in checkpoint [ 125.710767][ T5374] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 125.718258][ T5374] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 125.888408][ T22] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 126.080874][ T22] usb 5-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 126.100637][ T22] usb 5-1: config 4 has 0 interfaces, different from the descriptor's value: 1 [ 126.127957][ T22] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 126.147462][ T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 126.176162][ T5410] loop2: detected capacity change from 0 to 128 [ 126.208940][ T5410] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 126.245962][ T5410] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 126.425799][ T22] usb 5-1: USB disconnect, device number 2 [ 126.489126][ T33] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 126.618043][ T5413] capability: warning: `syz.2.387' uses deprecated v2 capabilities in a way that may be insecure [ 126.843138][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 126.843210][ T27] audit: type=1326 audit(1744037423.476:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fb78d169 code=0x7ffc0000 [ 126.896346][ T5417] program syz.0.385 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 126.918060][ T5408] loop1: detected capacity change from 0 to 32768 [ 126.925421][ T27] audit: type=1326 audit(1744037423.526:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fb78d169 code=0x7ffc0000 [ 126.941011][ T5408] XFS: noikeep mount option is deprecated. [ 127.061765][ T5408] XFS (loop1): Mounting V5 Filesystem [ 127.245020][ T5408] XFS (loop1): Ending clean mount [ 127.272374][ T5408] XFS (loop1): Quotacheck needed: Please wait. [ 127.418692][ T5408] XFS (loop1): Quotacheck: Done. [ 127.627987][ T4250] XFS (loop1): Unmounting Filesystem [ 128.209566][ T5456] loop4: detected capacity change from 0 to 512 [ 128.261200][ T5456] EXT4-fs: Ignoring removed bh option [ 128.287714][ T5456] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 128.376283][ T5456] EXT4-fs (loop4): 1 truncate cleaned up [ 128.394176][ T5456] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 128.463703][ T5439] loop0: detected capacity change from 0 to 32768 [ 128.544498][ T5439] XFS: ikeep mount option is deprecated. [ 128.546689][ T5446] loop3: detected capacity change from 0 to 32768 [ 128.577262][ T5439] XFS: noikeep mount option is deprecated. [ 128.597809][ T5446] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.399 (5446) [ 128.645509][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 128.695219][ T5446] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 128.719936][ T5439] XFS (loop0): Mounting V5 Filesystem [ 128.745540][ T5446] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 128.788183][ T5446] BTRFS info (device loop3): using free space tree [ 128.841424][ T5439] XFS (loop0): Ending clean mount [ 128.862269][ T5439] XFS (loop0): Quotacheck needed: Please wait. [ 128.939830][ T5446] BTRFS info (device loop3): enabling ssd optimizations [ 129.014243][ T5439] XFS (loop0): Quotacheck: Done. [ 129.147043][ T4249] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 129.177475][ T5494] random: crng reseeded on system resumption [ 129.227117][ T4260] XFS (loop0): Unmounting Filesystem [ 129.665325][ T5498] loop1: detected capacity change from 0 to 256 [ 129.729937][ T5498] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 130.333466][ T5513] netlink: 44 bytes leftover after parsing attributes in process `syz.3.413'. [ 130.343338][ T5513] netlink: 32 bytes leftover after parsing attributes in process `syz.3.413'. [ 130.361121][ T5509] loop2: detected capacity change from 0 to 8192 [ 130.373211][ T5509] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 130.386655][ T5509] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 130.396625][ T5509] REISERFS (device loop2): using ordered data mode [ 130.405609][ T5509] reiserfs: using flush barriers [ 130.418766][ T5509] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 130.443846][ T5509] REISERFS (device loop2): checking transaction log (loop2) [ 130.507991][ T1191] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 130.554859][ T5517] loop1: detected capacity change from 0 to 2048 [ 130.636498][ T5517] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 130.653959][ T5517] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.694816][ T27] audit: type=1800 audit(1744037427.326:18): pid=5517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.415" name="file0" dev="loop1" ino=13 res=0 errno=0 [ 130.704285][ T5509] REISERFS (device loop2): Using tea hash to sort names [ 130.722581][ T1191] usb 1-1: Using ep0 maxpacket: 32 [ 130.735866][ T1191] usb 1-1: unable to get BOS descriptor or descriptor too short [ 130.766893][ T1191] usb 1-1: config 146 has an invalid interface number: 8 but max is 1 [ 130.789861][ T1191] usb 1-1: config 146 has an invalid interface number: 199 but max is 1 [ 130.798885][ T5509] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 130.802951][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 130.808243][ T1191] usb 1-1: config 146 has no interface number 0 [ 130.857936][ T1191] usb 1-1: config 146 has no interface number 1 [ 130.874528][ T1191] usb 1-1: config 146 interface 8 has no altsetting 0 [ 130.894245][ T1191] usb 1-1: config 146 interface 199 has no altsetting 0 [ 130.929338][ T1191] usb 1-1: New USB device found, idVendor=1199, idProduct=907b, bcdDevice=d6.c2 [ 130.948160][ T1191] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.967396][ T1191] usb 1-1: Product: syz [ 130.972682][ T1191] usb 1-1: Manufacturer: syz [ 130.977329][ T1191] usb 1-1: SerialNumber: syz [ 131.215975][ T1191] usb 1-1: USB disconnect, device number 5 [ 131.311546][ T5527] loop2: detected capacity change from 0 to 512 [ 131.328933][ T5527] EXT4-fs: Ignoring removed bh option [ 131.353725][ T5518] loop3: detected capacity change from 0 to 32768 [ 131.355095][ T5527] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 131.415507][ T5527] EXT4-fs (loop2): 1 truncate cleaned up [ 131.421427][ T5527] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 131.464150][ T5518] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 131.474599][ T5518] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 131.504826][ T5518] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 131.543917][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 131.560524][ T4296] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 131.567398][ T4296] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 131.651198][ T4296] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 83ms [ 131.663191][ T4296] gfs2: fsid=syz:syz.0: jid=0: Done [ 131.674489][ T5518] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 131.901378][ T5522] loop4: detected capacity change from 0 to 40427 [ 131.909993][ T5522] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3ffff [ 131.927298][ T5522] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x2 [ 131.949682][ T5522] F2FS-fs (loop4): invalid crc value [ 131.963472][ T5534] device bridge0 entered promiscuous mode [ 132.017064][ T5534] device bridge0 left promiscuous mode [ 132.023719][ T5522] F2FS-fs (loop4): Found nat_bits in checkpoint [ 132.174401][ T5522] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 132.264685][ T5522] syz.4.417: attempt to access beyond end of device [ 132.264685][ T5522] loop4: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 132.388166][ T4253] syz-executor: attempt to access beyond end of device [ 132.388166][ T4253] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 132.853813][ T5551] random: crng reseeded on system resumption [ 132.872330][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.879276][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.217977][ T5554] loop1: detected capacity change from 0 to 8192 [ 133.245726][ T5554] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 133.268049][ T5554] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 133.278338][ T5554] REISERFS (device loop1): using ordered data mode [ 133.284893][ T5554] reiserfs: using flush barriers [ 133.377506][ T5557] sp0: Synchronizing with TNC [ 133.389430][ T5554] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 133.458507][ T5554] REISERFS (device loop1): checking transaction log (loop1) [ 133.604954][ T5565] loop0: detected capacity change from 0 to 512 [ 133.647139][ T5565] EXT4-fs: Ignoring removed bh option [ 133.665084][ T5565] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 133.724310][ T5554] REISERFS (device loop1): Using tea hash to sort names [ 133.741977][ T5554] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 133.759756][ T5565] EXT4-fs (loop0): 1 truncate cleaned up [ 133.765868][ T5565] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 133.996002][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 134.124183][ T5579] loop0: detected capacity change from 0 to 64 [ 134.399849][ T5583] loop4: detected capacity change from 0 to 1024 [ 134.527712][ T5585] loop1: detected capacity change from 0 to 2048 [ 134.622106][ T9] hfsplus: b-tree write err: -5, ino 4 [ 134.645429][ T5585] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 134.715067][ T5589] loop0: detected capacity change from 0 to 2048 [ 134.752655][ T27] audit: type=1800 audit(1744037431.386:19): pid=5585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.440" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 134.809758][ T5590] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 134.815406][ T5570] loop2: detected capacity change from 0 to 32768 [ 134.856258][ T5570] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 134.872010][ T5589] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 134.898379][ T5570] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 134.930527][ T5594] loop4: detected capacity change from 0 to 1024 [ 134.932603][ T5589] EXT4-fs (loop0): shut down requested (2) [ 135.005965][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 135.016524][ T5570] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 135.034153][ T4600] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 135.064771][ T4600] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 135.104484][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 135.165964][ T4600] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 101ms [ 135.183571][ T4600] gfs2: fsid=syz:syz.0: jid=0: Done [ 135.191416][ T5570] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 135.881527][ T5607] netlink: 'syz.3.450': attribute type 32 has an invalid length. [ 136.026086][ T5611] bond0: Unable to set up delay as MII monitoring is disabled [ 136.291353][ T5619] random: crng reseeded on system resumption [ 136.388147][ T5602] loop1: detected capacity change from 0 to 32768 [ 136.537205][ T5602] XFS (loop1): Mounting V5 Filesystem [ 136.572865][ T5633] netlink: 16 bytes leftover after parsing attributes in process `syz.2.459'. [ 136.732648][ T5602] XFS (loop1): Ending clean mount [ 136.778105][ T5635] 8021q: adding VLAN 0 to HW filter on device bond1 [ 136.799947][ T5602] XFS (loop1): Quotacheck needed: Please wait. [ 136.828310][ T5635] bond0: (slave bond1): Enslaving as an active interface with an up link [ 136.851559][ T5602] XFS (loop1): Quotacheck: Done. [ 136.955738][ T4250] XFS (loop1): Unmounting Filesystem [ 137.498468][ T5648] loop4: detected capacity change from 0 to 2048 [ 137.616461][ T5648] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 137.650607][ T27] audit: type=1800 audit(1744037434.286:20): pid=5648 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.465" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 137.783027][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 138.058782][ T5661] loop1: detected capacity change from 0 to 512 [ 138.099388][ T5661] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 138.146440][ T5661] EXT4-fs (loop1): 1 truncate cleaned up [ 138.184127][ T5664] loop3: detected capacity change from 0 to 1024 [ 138.191905][ T5661] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 138.344311][ T5651] loop2: detected capacity change from 0 to 32768 [ 138.389768][ T9] hfsplus: b-tree write err: -5, ino 4 [ 138.497696][ T5651] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 138.533746][ T5651] XFS (loop2): Mounting V5 Filesystem [ 138.581310][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 138.699199][ T5651] XFS (loop2): Ending clean mount [ 138.730712][ T5651] XFS (loop2): Quotacheck needed: Please wait. [ 138.751397][ T1191] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_cntbt block 0x10 [ 138.770813][ T1191] XFS (loop2): Unmount and run xfs_repair [ 138.785875][ T1191] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 138.796364][ T1191] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 138.823375][ T1191] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 138.846867][ T1191] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 138.858470][ T1191] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 138.867501][ T1191] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 138.889922][ T1191] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 138.915126][ T1191] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 138.924329][ T1191] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 138.941411][ T55] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x10 len 8 error 74 [ 138.967753][ T5651] XFS (loop2): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 139.019696][ T5677] loop3: detected capacity change from 0 to 32768 [ 139.069311][ T1191] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_cntbt block 0x10 [ 139.112810][ T1191] XFS (loop2): Unmount and run xfs_repair [ 139.123465][ T1191] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 139.136677][ T1191] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 139.149551][ T4257] XFS (loop2): Unmounting Filesystem [ 139.155279][ T1191] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 139.166585][ T1191] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 139.187976][ T1191] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 139.197013][ T1191] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 139.217901][ T1191] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 139.226824][ T1191] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 139.247933][ T1191] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 139.256879][ T1191] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x10 len 8 error 74 [ 139.300288][ T1191] XFS (loop2): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296). Shutting down filesystem. [ 139.328050][ T1191] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 139.342809][ T5677] XFS (loop3): Mounting V5 Filesystem [ 139.507644][ T5695] loop1: detected capacity change from 0 to 32768 [ 139.529222][ T5677] XFS (loop3): Ending clean mount [ 139.548402][ T5677] XFS (loop3): Quotacheck needed: Please wait. [ 139.609184][ T5677] XFS (loop3): Quotacheck: Done. [ 139.752963][ T5695] XFS (loop1): Mounting V5 Filesystem [ 139.830528][ T5695] XFS (loop1): Ending clean mount [ 139.848436][ T5695] XFS (loop1): Quotacheck needed: Please wait. [ 139.983724][ T5695] XFS (loop1): Quotacheck: Done. [ 140.076641][ T5713] netlink: 'syz.4.482': attribute type 1 has an invalid length. [ 140.094639][ T5713] netlink: 'syz.4.482': attribute type 2 has an invalid length. [ 140.124544][ T5695] XFS (loop1): User initiated shutdown received. [ 140.143831][ T5695] XFS (loop1): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:499). Shutting down filesystem. [ 140.180003][ T5695] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 140.335376][ T4250] XFS (loop1): Unmounting Filesystem [ 140.643491][ T5703] loop0: detected capacity change from 0 to 131072 [ 140.835295][ T4249] XFS (loop3): Unmounting Filesystem [ 141.035798][ T5724] program syz.2.479 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 141.127010][ T5703] F2FS-fs (loop0): Test dummy encryption mode enabled [ 141.183583][ T5703] F2FS-fs (loop0): Found nat_bits in checkpoint [ 141.288006][ T5703] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 141.588798][ T5739] loop2: detected capacity change from 0 to 512 [ 141.686977][ T5739] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 141.735740][ T5739] System zones: 0-2, 18-18, 34-34 [ 141.796549][ T5739] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.490: bg 0: block 248: padding at end of block bitmap is not set [ 141.816787][ T5739] Quota error (device loop2): write_blk: dquota write failed [ 141.875069][ T5741] loop3: detected capacity change from 0 to 4096 [ 141.901746][ T5739] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 141.913376][ T5739] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.490: Failed to acquire dquot type 1 [ 141.983762][ T5739] EXT4-fs (loop2): 1 truncate cleaned up [ 142.013072][ T5739] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 142.026371][ T5739] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.186143][ T5739] syz.2.490 (5739) used greatest stack depth: 18752 bytes left [ 142.255677][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 142.419518][ T5757] loop3: detected capacity change from 0 to 512 [ 142.496407][ T5757] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 142.508175][ T4476] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 142.550432][ T5757] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c019, mo2=0002] [ 142.598152][ T5757] System zones: 0-2, 18-18, 34-35 [ 142.629087][ T5757] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 142.702900][ T5757] EXT4-fs (loop3): shut down requested (0) [ 142.709066][ T4476] usb 5-1: Using ep0 maxpacket: 16 [ 142.716037][ T4476] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 142.760025][ T4476] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 142.791767][ T4476] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.826978][ T4476] usb 5-1: config 0 descriptor?? [ 142.852435][ T5766] loop1: detected capacity change from 0 to 64 [ 142.902570][ T5768] loop0: detected capacity change from 0 to 1024 [ 142.909548][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 143.092844][ T9] hfsplus: b-tree write err: -5, ino 8 [ 143.265406][ T4476] mcp2221 0003:04D8:00DD.0005: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0 [ 143.418569][ T5777] netlink: 8 bytes leftover after parsing attributes in process `syz.2.504'. [ 143.513101][ T5777] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.555015][ T5780] loop3: detected capacity change from 0 to 1024 [ 143.672277][ T4476] usb 5-1: USB disconnect, device number 3 [ 143.704832][ T5780] hfsplus: found bad thread record in catalog [ 143.756237][ T5780] hfsplus: catalog searching failed [ 143.906163][ T5786] loop0: detected capacity change from 0 to 2048 [ 143.931409][ T5788] loop2: detected capacity change from 0 to 2048 [ 143.956864][ T5788] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 143.965932][ T55] hfsplus: found bad thread record in catalog [ 143.996482][ T55] hfsplus: found bad thread record in catalog [ 144.016860][ T5788] UDF-fs: Scanning with blocksize 512 failed [ 144.035707][ T5788] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 144.065278][ T5791] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 144.139490][ T27] audit: type=1800 audit(1744037440.776:21): pid=5786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.509" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 144.258074][ T27] audit: type=1804 audit(1744037440.796:22): pid=5794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.509" name="/newroot/101/file0/file2" dev="loop0" ino=16 res=1 errno=0 [ 144.354707][ T5794] syz.0.509 (5794) used greatest stack depth: 18656 bytes left [ 144.652255][ T5808] loop0: detected capacity change from 0 to 64 [ 144.804958][ T5813] loop4: detected capacity change from 0 to 512 [ 144.874567][ T5814] loop2: detected capacity change from 0 to 1024 [ 144.902365][ T5814] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 144.955111][ T5813] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.4.518: corrupted xattr block 95 [ 144.990480][ T5813] EXT4-fs (loop4): Remounting filesystem read-only [ 145.005254][ T5813] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.518: bg 0: block 7: invalid block bitmap [ 145.026629][ T5813] EXT4-fs (loop4): Remounting filesystem read-only [ 145.035426][ T5813] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 145.048225][ T5813] EXT4-fs (loop4): Remounting filesystem read-only [ 145.055328][ T5813] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2925: inode #11: comm syz.4.518: corrupted xattr block 95 [ 145.067925][ T27] audit: type=1800 audit(1744037441.686:23): pid=5823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.519" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 145.150860][ T5813] EXT4-fs (loop4): Remounting filesystem read-only [ 145.157456][ T5813] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117) [ 145.179687][ T5813] EXT4-fs (loop4): 1 orphan inode deleted [ 145.190357][ T5813] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 145.214448][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 145.409923][ T5831] sch_fq: defrate 113 ignored. [ 145.432971][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 145.579907][ T5837] netlink: 28 bytes leftover after parsing attributes in process `syz.0.527'. [ 145.613996][ T5837] netlink: 28 bytes leftover after parsing attributes in process `syz.0.527'. [ 145.768154][ T4296] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 145.957974][ T4296] usb 4-1: Using ep0 maxpacket: 32 [ 145.970569][ T4296] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 146.013001][ T4296] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 146.038960][ T4296] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 146.072427][ T4296] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 146.113102][ T4296] usb 4-1: config 0 descriptor?? [ 146.327132][ T4296] usb 4-1: USB disconnect, device number 5 [ 147.042441][ T5877] loop4: detected capacity change from 0 to 64 [ 147.317939][ T5884] loop4: detected capacity change from 0 to 256 [ 147.497950][ T4476] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 147.693546][ T4476] usb 3-1: Using ep0 maxpacket: 16 [ 147.700995][ T4476] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 147.732481][ T4476] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 147.759496][ T4476] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 147.803424][ T4476] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 147.823185][ T4476] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.850038][ T4476] usb 3-1: config 0 descriptor?? [ 147.878350][ T5899] cifs: Unknown parameter 'mode' [ 148.273113][ T4476] microsoft 0003:045E:07DA.0006: ignoring exceeding usage max [ 148.305073][ T4476] microsoft 0003:045E:07DA.0006: unbalanced collection at end of report description [ 148.339876][ T4476] microsoft 0003:045E:07DA.0006: parse failed [ 148.363330][ T4476] microsoft: probe of 0003:045E:07DA.0006 failed with error -22 [ 148.476424][ T4476] usb 3-1: USB disconnect, device number 3 [ 149.173811][ T5938] netlink: 4 bytes leftover after parsing attributes in process `syz.4.571'. [ 149.476302][ T5949] mkiss: ax0: crc mode is auto. [ 149.584426][ T5954] loop4: detected capacity change from 0 to 256 [ 149.593513][ T27] audit: type=1326 audit(1744037446.226:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5922 comm="syz.0.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f709838d169 code=0x7fc00000 [ 149.683670][ T5954] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d) [ 149.777745][ T5954] exFAT-fs (loop4): error, invalid size(size(0) > aligned(9223372036854777344) [ 149.777745][ T5954] [ 149.829020][ T5954] exFAT-fs (loop4): Filesystem has been set read-only [ 150.016947][ T5963] loop0: detected capacity change from 0 to 4096 [ 150.316061][ T5967] loop3: detected capacity change from 0 to 8192 [ 150.379742][ T5967] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 150.458738][ T5967] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 150.492813][ T5967] FAT-fs (loop3): Filesystem has been set read-only [ 151.873552][ T6012] loop0: detected capacity change from 0 to 1024 [ 153.287523][ T6024] loop0: detected capacity change from 0 to 32768 [ 153.376144][ T6049] loop3: detected capacity change from 0 to 2048 [ 153.392762][ T6024] find_entry called with index = 0 [ 153.430619][ T6024] read_mapping_page failed! [ 153.435264][ T6024] ERROR: (device loop0): txCommit: [ 153.435264][ T6024] [ 153.465473][ T6022] loop1: detected capacity change from 0 to 40427 [ 153.513889][ T6049] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 153.579950][ T6022] F2FS-fs (loop1): invalid crc value [ 153.639100][ T6024] ERROR: (device loop0): diFree: numfree > numinos [ 153.639100][ T6024] [ 153.652370][ T55] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 153.676319][ T6022] F2FS-fs (loop1): Found nat_bits in checkpoint [ 153.693421][ T6050] ERROR: (device loop0): diFree: numfree > numinos [ 153.693421][ T6050] [ 153.708206][ T55] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 153.748089][ T55] EXT4-fs (loop3): This should not happen!! Data will be lost [ 153.748089][ T55] [ 153.777289][ T55] EXT4-fs (loop3): Total free blocks count 0 [ 153.797907][ T55] EXT4-fs (loop3): Free/Dirty block details [ 153.804067][ T55] EXT4-fs (loop3): free_blocks=4096 [ 153.830393][ T55] EXT4-fs (loop3): dirty_blocks=512 [ 153.847943][ T55] EXT4-fs (loop3): Block reservation details [ 153.854102][ T55] EXT4-fs (loop3): i_reserved_data_blocks=32 [ 153.865809][ T6022] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 153.915265][ T55] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28 [ 154.080616][ T4250] syz-executor: attempt to access beyond end of device [ 154.080616][ T4250] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 154.166441][ T6047] loop2: detected capacity change from 0 to 32768 [ 154.282579][ T6047] XFS (loop2): Mounting V5 Filesystem [ 154.432325][ T6053] loop4: detected capacity change from 0 to 32768 [ 154.455695][ T6053] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.623 (6053) [ 154.498018][ T6047] XFS (loop2): Ending clean mount [ 154.514483][ T6053] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 154.569095][ T6053] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 154.598478][ T6053] BTRFS info (device loop4): use no compression [ 154.628118][ T6053] BTRFS info (device loop4): turning on sync discard [ 154.657948][ T6053] BTRFS info (device loop4): force clearing of disk cache [ 154.675470][ T6053] BTRFS info (device loop4): enabling auto defrag [ 154.699055][ T6053] BTRFS info (device loop4): turning off discard [ 154.705483][ T6053] BTRFS info (device loop4): using free space tree [ 154.768760][ T4257] XFS (loop2): Unmounting Filesystem [ 154.914486][ T6053] BTRFS info (device loop4): enabling ssd optimizations [ 154.949764][ T6053] BTRFS info (device loop4): rebuilding free space tree [ 155.407707][ T4253] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 155.476234][ T6069] loop0: detected capacity change from 0 to 40427 [ 155.552704][ T6069] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff [ 155.629917][ T6069] F2FS-fs (loop0): invalid crc value [ 155.690789][ T6069] F2FS-fs (loop0): Found nat_bits in checkpoint [ 155.975833][ T6069] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 155.991734][ T6107] loop2: detected capacity change from 0 to 1024 [ 156.284959][ T4291] hfsplus: b-tree write err: -5, ino 4 [ 156.466160][ T6119] netlink: 'syz.2.638': attribute type 2 has an invalid length. [ 156.524904][ T6119] netlink: 'syz.2.638': attribute type 1 has an invalid length. [ 156.857087][ T6125] loop2: detected capacity change from 0 to 1024 [ 156.908236][ T6125] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 157.006935][ T6125] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 157.062828][ T6111] loop4: detected capacity change from 0 to 32768 [ 157.104159][ T6125] EXT4-fs error (device loop2): ext4_xattr_ibody_get:603: inode #2: comm syz.2.642: corrupted in-inode xattr [ 157.194267][ T6125] EXT4-fs (loop2): Remounting filesystem read-only [ 157.247379][ T6111] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 157.317169][ T4257] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2739: inode #2: comm syz-executor: corrupted in-inode xattr [ 157.444218][ T4257] EXT4-fs (loop2): Remounting filesystem read-only [ 157.488718][ T7] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 157.535738][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 157.711552][ T6147] netlink: 96 bytes leftover after parsing attributes in process `syz.1.650'. [ 157.725305][ T4253] ocfs2: Unmounting device (7,4) on (node local) [ 157.746501][ T7] usb 1-1: Using ep0 maxpacket: 16 [ 157.758237][ T7] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 157.788910][ T7] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 157.816032][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.836915][ T7] usb 1-1: Product: syz [ 157.844899][ T7] usb 1-1: Manufacturer: syz [ 157.852806][ T7] usb 1-1: SerialNumber: syz [ 157.915067][ T7] usb 1-1: config 0 descriptor?? [ 157.949075][ T7] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 157.993345][ T7] usb 1-1: Detected FT232R [ 158.138442][ T7] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 158.351533][ T7] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 158.559503][ T7] usb 1-1: USB disconnect, device number 6 [ 158.605948][ T7] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 158.648771][ T7] ftdi_sio 1-1:0.0: device disconnected [ 158.826324][ T6178] loop1: detected capacity change from 0 to 1024 [ 158.851982][ T6181] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 158.885434][ T6178] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 158.952553][ T6184] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 159.041959][ T6187] netlink: 12 bytes leftover after parsing attributes in process `syz.2.665'. [ 159.237145][ T4250] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 250: padding at end of block bitmap is not set [ 159.284881][ T4250] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 159.337181][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 159.740987][ T6207] loop4: detected capacity change from 0 to 512 [ 159.748285][ T4296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 159.811658][ T6207] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 234 vs 220 free clusters [ 159.849051][ T6207] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.674: inode #1: comm syz.4.674: iget: illegal inode # [ 159.908617][ T6207] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.674: error while reading EA inode 1 err=-117 [ 159.932246][ T6207] EXT4-fs (loop4): 1 orphan inode deleted [ 159.949577][ T6207] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 160.161765][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 160.198743][ T6219] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.209685][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.385902][ T6226] loop4: detected capacity change from 0 to 47 [ 160.392954][ T4310] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.401749][ T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.417196][ T1191] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.435481][ T4476] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.525100][ T6226] MINIX-fs: deleted inode referenced: 9 [ 160.586680][ T6226] MINIX-fs: deleted inode referenced: 9 [ 160.815275][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 160.938394][ T6242] loop1: detected capacity change from 0 to 256 [ 160.962507][ T6235] loop3: detected capacity change from 0 to 4096 [ 160.991872][ T6235] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 161.012946][ T6242] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 161.055474][ T6235] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 161.097232][ T6242] exFAT-fs (loop1): hint_cluster is invalid (17) [ 161.135269][ T6235] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 161.168299][ T6235] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 161.181887][ T27] audit: type=1800 audit(1744037457.806:25): pid=6247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.689" name="file1" dev="loop1" ino=1048627 res=0 errno=0 [ 161.237948][ T6235] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 161.296717][ T6235] ntfs: volume version 3.1. [ 161.315330][ T6235] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 161.317005][ T6251] loop0: detected capacity change from 0 to 512 [ 161.364397][ T6235] ntfs: (device loop3): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 161.378327][ T6251] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 161.415997][ T6235] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 161.456962][ T6235] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 161.508463][ T6251] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.692: invalid indirect mapped block 4294967295 (level 1) [ 161.556986][ T6251] EXT4-fs (loop0): Remounting filesystem read-only [ 161.566929][ T6251] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.692: invalid indirect mapped block 4294967295 (level 1) [ 161.582933][ T6262] loop3: detected capacity change from 0 to 24 [ 161.590476][ T6251] EXT4-fs (loop0): Remounting filesystem read-only [ 161.597615][ T6251] EXT4-fs (loop0): 2 truncates cleaned up [ 161.604274][ T6251] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 161.786856][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 161.871635][ T6266] netlink: 4 bytes leftover after parsing attributes in process `syz.4.697'. [ 161.966424][ T6273] loop0: detected capacity change from 0 to 512 [ 162.004342][ T6274] loop3: detected capacity change from 0 to 512 [ 162.026355][ T6273] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 162.052861][ T6273] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 162.077173][ T6273] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2186: inode #15: comm syz.0.700: corrupted in-inode xattr [ 162.105425][ T6274] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 162.142582][ T6274] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.197340][ T6281] loop4: detected capacity change from 0 to 128 [ 162.213558][ T6273] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.700: couldn't read orphan inode 15 (err -117) [ 162.219359][ T6281] ext4: Unknown parameter 'appraise_type' [ 162.272023][ T6273] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 162.296067][ T6274] EXT4-fs error (device loop3): ext4_acquire_dquot:6795: comm syz.3.701: Failed to acquire dquot type 0 [ 162.326840][ T6273] EXT4-fs (loop0): shut down requested (2) [ 162.336755][ T6284] EXT4-fs error (device loop3): ext4_acquire_dquot:6795: comm syz.3.701: Failed to acquire dquot type 0 [ 162.400489][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 162.495034][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 163.118765][ T6297] loop0: detected capacity change from 0 to 256 [ 163.126443][ T6281] loop4: detected capacity change from 0 to 32768 [ 163.142834][ T6281] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.703 (6281) [ 163.165836][ T6297] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 163.186871][ T6297] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 163.226016][ T6281] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 163.245902][ T6297] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 163.272107][ T6281] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 163.307586][ T6281] BTRFS info (device loop4): setting nodatacow, compression disabled [ 163.348407][ T6281] BTRFS info (device loop4): force zlib compression, level 3 [ 163.384232][ T6281] BTRFS info (device loop4): turning off barriers [ 163.402982][ T6299] loop1: detected capacity change from 0 to 8192 [ 163.427527][ T6281] BTRFS info (device loop4): max_inline at 6 [ 163.440247][ T6299] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 163.465859][ T6299] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 163.466133][ T6281] BTRFS info (device loop4): enabling ssd optimizations [ 163.483327][ T6299] REISERFS (device loop1): using ordered data mode [ 163.511222][ T6299] reiserfs: using flush barriers [ 163.581975][ T6299] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 163.587343][ T6281] BTRFS info (device loop4): using spread ssd allocation scheme [ 163.620349][ T6281] BTRFS info (device loop4): setting nodatacow [ 163.626592][ T6281] BTRFS info (device loop4): using free space tree [ 163.697593][ T6299] REISERFS (device loop1): checking transaction log (loop1) [ 163.734828][ T6299] REISERFS (device loop1): Using r5 hash to sort names [ 163.773850][ T6299] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 163.831192][ T6299] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 163.908879][ T126] net_ratelimit: 5 callbacks suppressed [ 163.908899][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 164.068105][ T4600] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 164.100967][ T6328] netem: incorrect gi model size [ 164.138075][ T6328] netem: change failed [ 164.158629][ T4253] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 164.380413][ T6331] loop3: detected capacity change from 0 to 4096 [ 164.624020][ T6303] loop2: detected capacity change from 0 to 32768 [ 164.776757][ T6303] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 164.873295][ T6303] XFS (loop2): Mounting V5 Filesystem [ 164.998068][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 165.018888][ T6356] netlink: 236 bytes leftover after parsing attributes in process `syz.0.723'. [ 165.203722][ T6303] XFS (loop2): Ending clean mount [ 165.227785][ T6303] XFS (loop2): Quotacheck needed: Please wait. [ 165.299295][ T6343] kernel read not supported for file /dsp1 (pid: 6343 comm: kworker/0:18) [ 165.319599][ T6303] XFS (loop2): Quotacheck: Done. [ 165.380942][ T6303] XFS (loop2): User initiated shutdown received. [ 165.387385][ T6303] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:499). Shutting down filesystem. [ 165.444038][ T6303] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 165.543800][ T6366] loop1: detected capacity change from 0 to 64 [ 165.608150][ T4257] XFS (loop2): Unmounting Filesystem [ 165.834043][ T4264] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 165.840887][ T48] Bluetooth: hci0: command 0x0401 tx timeout [ 165.971724][ T6359] loop4: detected capacity change from 0 to 32768 [ 166.068342][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.148454][ T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.154177][ T6363] loop3: detected capacity change from 0 to 32768 [ 166.157508][ T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.174093][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.182349][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.189024][ T6380] loop0: detected capacity change from 0 to 256 [ 166.198633][ T4600] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.206873][ T4600] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 166.216571][ T6359] XFS (loop4): Mounting V5 Filesystem [ 166.315195][ T6380] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 166.440496][ T6359] XFS (loop4): Ending clean mount [ 166.480711][ T6359] XFS (loop4): Quotacheck needed: Please wait. [ 166.605635][ T6359] XFS (loop4): Quotacheck: Done. [ 166.676948][ T6392] loop2: detected capacity change from 0 to 512 [ 166.687606][ T6391] netlink: 8 bytes leftover after parsing attributes in process `syz.0.737'. [ 166.777041][ T6392] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 166.794661][ T4253] XFS (loop4): Unmounting Filesystem [ 166.834274][ T6392] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0002] [ 166.849425][ T6392] System zones: 1-12 [ 166.858633][ T6392] EXT4-fs (loop2): orphan cleanup on readonly fs [ 166.865995][ T6392] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.731: Inode bitmap for bg 0 marked uninitialized [ 166.881646][ T6392] EXT4-fs (loop2): Remounting filesystem read-only [ 166.888335][ T6392] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 166.924926][ T6392] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 5: comm syz.2.731: lblock 0 mapped to illegal pblock 5 (length 1) [ 167.020808][ T6392] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.731: error -117 reading directory block [ 167.067947][ T6392] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 5: comm syz.2.731: lblock 0 mapped to illegal pblock 5 (length 1) [ 167.177660][ T6392] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.731: error -117 reading directory block [ 167.354845][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 167.387746][ T6405] loop4: detected capacity change from 0 to 8 [ 167.537173][ T6407] netlink: 16 bytes leftover after parsing attributes in process `syz.2.745'. [ 167.549072][ T6405] SQUASHFS error: Failed to read block 0x6e6: -5 [ 167.558770][ T6405] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 167.587805][ T6405] SQUASHFS error: Unable to read directory block [6e4:0] [ 167.709288][ T6410] loop0: detected capacity change from 0 to 512 [ 167.877396][ T6410] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 167.913197][ T6410] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.994190][ T6401] loop1: detected capacity change from 0 to 32768 [ 168.044589][ T6401] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 168.086305][ T6410] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 168.156227][ T6401] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 168.246054][ T6410] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28 [ 168.268647][ T6410] EXT4-fs (loop0): This should not happen!! Data will be lost [ 168.268647][ T6410] [ 168.337287][ T6410] EXT4-fs (loop0): Total free blocks count 0 [ 168.354764][ T6410] EXT4-fs (loop0): Free/Dirty block details [ 168.363518][ T6410] EXT4-fs (loop0): free_blocks=65280 [ 168.385586][ T6410] EXT4-fs (loop0): dirty_blocks=31 [ 168.391839][ T4250] ocfs2: Unmounting device (7,1) on (node local) [ 168.407470][ T6410] EXT4-fs (loop0): Block reservation details [ 168.414192][ T6410] EXT4-fs (loop0): i_reserved_data_blocks=31 [ 168.571899][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 168.886072][ T6426] loop2: detected capacity change from 0 to 32768 [ 168.926394][ T6426] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.751 (6426) [ 168.977656][ T6426] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 169.001050][ T6426] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 169.031740][ T6426] BTRFS info (device loop2): setting nodatacow, compression disabled [ 169.063535][ T6426] BTRFS info (device loop2): max_inline at 0 [ 169.087987][ T6426] BTRFS info (device loop2): enabling disk space caching [ 169.108040][ T6426] BTRFS info (device loop2): turning off barriers [ 169.127975][ T6426] BTRFS info (device loop2): turning on flush-on-commit [ 169.135007][ T6426] BTRFS info (device loop2): doing ref verification [ 169.148841][ T6426] BTRFS info (device loop2): force clearing of disk cache [ 169.158087][ T6426] BTRFS info (device loop2): enabling ssd optimizations [ 169.188141][ T4330] net_ratelimit: 3 callbacks suppressed [ 169.188157][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 169.222537][ T6426] BTRFS info (device loop2): max_inline at 4096 [ 169.248348][ T6426] BTRFS info (device loop2): disk space caching is enabled [ 169.268225][ T6343] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 169.525591][ T6426] BTRFS info (device loop2): rebuilding free space tree [ 169.591314][ T6426] BTRFS info (device loop2): disabling free space tree [ 169.618066][ T6426] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 169.627801][ T6426] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 169.684410][ T6434] loop3: detected capacity change from 0 to 32768 [ 169.746600][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 169.746618][ T27] audit: type=1800 audit(1744037466.376:26): pid=6426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.751" name="file2" dev="loop2" ino=261 res=0 errno=0 [ 169.962189][ T6443] loop4: detected capacity change from 0 to 32768 [ 170.025373][ T6443] XFS (loop4): Mounting V5 Filesystem [ 170.119636][ T4257] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 170.172867][ T6443] XFS (loop4): Ending clean mount [ 170.228065][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 170.242371][ T6465] loop0: detected capacity change from 0 to 32768 [ 170.326707][ T6465] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.761 (6465) [ 170.423705][ T6465] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 170.443608][ T6465] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 170.472997][ T6465] BTRFS info (device loop0): setting nodatacow, compression disabled [ 170.513549][ T6465] BTRFS info (device loop0): setting datacow [ 170.543920][ T6465] BTRFS info (device loop0): doing ref verification [ 170.570499][ T6465] BTRFS info (device loop0): force clearing of disk cache [ 170.614067][ T6478] loop1: detected capacity change from 0 to 128 [ 170.621627][ T6465] BTRFS info (device loop0): turning off barriers [ 170.645820][ T6465] BTRFS info (device loop0): enabling ssd optimizations [ 170.678001][ T6465] BTRFS info (device loop0): using spread ssd allocation scheme [ 170.731684][ T6465] BTRFS info (device loop0): using free space tree [ 170.858118][ T4253] XFS (loop4): Unmounting Filesystem [ 171.136090][ T6465] BTRFS info (device loop0): rebuilding free space tree [ 171.268181][ T4330] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 171.459249][ T4260] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 171.909995][ T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 171.990442][ T4489] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 172.018472][ T6343] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 172.119760][ T6530] loop4: detected capacity change from 0 to 16 [ 172.166895][ T6530] erofs: (device loop4): mounted with root inode @ nid 36. [ 172.308178][ T4489] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 172.318700][ T6343] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 172.416950][ T6538] loop2: detected capacity change from 0 to 1764 [ 172.627632][ T6544] loop3: detected capacity change from 0 to 256 [ 172.766123][ T6548] netlink: 596 bytes leftover after parsing attributes in process `syz.2.784'. [ 172.843306][ T6552] loop4: detected capacity change from 0 to 256 [ 172.881903][ T6552] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 172.926511][ T6552] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 172.983169][ T6552] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 173.327920][ T6566] loop0: detected capacity change from 0 to 512 [ 173.348223][ T4489] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 173.353502][ T6569] loop3: detected capacity change from 0 to 128 [ 173.393771][ T6566] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 173.404920][ T6571] loop4: detected capacity change from 0 to 1024 [ 173.449701][ T6569] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 173.486526][ T6566] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 173.496174][ T6566] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 173.537427][ T6569] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 173.565699][ T6383] hfsplus: b-tree write err: -5, ino 4 [ 173.665314][ T6578] program syz.2.799 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.683521][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 174.198839][ T6583] net_ratelimit: 1274 callbacks suppressed [ 174.198900][ T6583] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.213478][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.232882][ T6583] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.241565][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.252818][ T6583] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.261695][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.275662][ T6583] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.284093][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.298211][ T6583] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.306620][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 174.311369][ T6596] loop4: detected capacity change from 0 to 256 [ 174.463823][ T6598] loop1: detected capacity change from 0 to 1024 [ 174.524047][ T6598] EXT4-fs: Ignoring removed oldalloc option [ 174.598606][ T6598] EXT4-fs: Ignoring removed orlov option [ 174.674246][ T6598] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 174.854313][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 175.265663][ T6627] loop4: detected capacity change from 0 to 512 [ 175.360025][ T6627] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 175.380341][ T6627] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 175.481985][ T6627] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 175.525143][ T6634] loop2: detected capacity change from 0 to 256 [ 175.531808][ T6627] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 175.549842][ T6634] MINIX-fs: mounting file system with errors, running fsck is recommended [ 175.579257][ T6627] System zones: 0-2, 18-18, 34-34 [ 175.635612][ T6627] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 175.655477][ T6642] loop1: detected capacity change from 0 to 1024 [ 175.676753][ T6642] EXT4-fs: Ignoring removed i_version option [ 175.695336][ T6642] EXT4-fs: inline encryption not supported [ 175.731032][ T6642] EXT4-fs (loop1): Test dummy encryption mode enabled [ 175.770616][ T6642] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 175.786466][ T6627] EXT4-fs (loop4): 1 truncate cleaned up [ 175.792906][ T6627] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 175.909740][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 175.994009][ T6650] loop4: detected capacity change from 0 to 1024 [ 176.047440][ T6650] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 176.173786][ T6642] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 176.192845][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 176.510403][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 176.899953][ T6684] loop0: detected capacity change from 0 to 128 [ 176.966936][ T6684] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 176.997749][ T6684] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 177.188109][ T4264] Bluetooth: hci3: command 0x0406 tx timeout [ 177.734875][ T6712] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 178.005433][ T6717] loop4: detected capacity change from 0 to 2048 [ 178.033636][ T6722] netlink: 20 bytes leftover after parsing attributes in process `syz.0.861'. [ 178.163641][ T6725] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 178.221913][ T6725] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 178.243931][ T6725] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4) [ 178.290322][ T6343] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 178.309207][ T6725] Remounting filesystem read-only [ 178.406294][ T4253] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 178.502325][ T6343] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 178.522619][ T6343] usb 4-1: config 0 interface 0 has no altsetting 0 [ 178.523346][ T6701] loop1: detected capacity change from 0 to 32768 [ 178.545396][ T6343] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 178.550838][ T6701] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.850 (6701) [ 178.587778][ T6343] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 178.603565][ T6732] loop2: detected capacity change from 0 to 1024 [ 178.644628][ T6343] usb 4-1: Product: syz [ 178.660152][ T6343] usb 4-1: Manufacturer: syz [ 178.664920][ T6343] usb 4-1: SerialNumber: syz [ 178.697032][ T6343] usb 4-1: config 0 descriptor?? [ 178.746769][ T6343] usb 4-1: selecting invalid altsetting 0 [ 178.802184][ T6701] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 178.843663][ T6701] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 178.885240][ T6701] BTRFS info (device loop1): using free space tree [ 179.030245][ T6343] usb 4-1: USB disconnect, device number 6 [ 179.186417][ T6701] BTRFS info (device loop1): enabling ssd optimizations [ 179.474398][ T4250] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 179.748157][ T4297] net_ratelimit: 829 callbacks suppressed [ 179.748176][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 179.781468][ C1] vkms_vblank_simulate: vblank timer overrun [ 180.382819][ T6790] netlink: 4 bytes leftover after parsing attributes in process `syz.3.884'. [ 180.788374][ T4489] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 180.891900][ T6812] loop3: detected capacity change from 0 to 256 [ 180.928953][ T6812] exfat: Unknown parameter 'iocha]set' [ 180.971836][ T4361] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 181.020814][ T6814] loop0: detected capacity change from 0 to 512 [ 181.080432][ T6814] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 181.110971][ T6814] EXT4-fs (loop0): invalid journal inode [ 181.133692][ T6814] EXT4-fs (loop0): can't get journal size [ 181.143033][ T6816] loop1: detected capacity change from 0 to 512 [ 181.176334][ T6814] EXT4-fs (loop0): 1 truncate cleaned up [ 181.204083][ T6783] loop4: detected capacity change from 0 to 32768 [ 181.209397][ T6814] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 181.227198][ T6822] loop3: detected capacity change from 0 to 512 [ 181.285872][ T6822] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.897: casefold flag without casefold feature [ 181.333317][ T6783] XFS (loop4): Mounting V5 Filesystem [ 181.349250][ T4260] EXT4-fs (loop0): unmounting filesystem. [ 181.361627][ T6822] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.897: couldn't read orphan inode 15 (err -117) [ 181.376154][ T6822] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 181.417287][ T6816] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.895: corrupted inode contents [ 181.442664][ T6816] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #16: comm syz.1.895: mark_inode_dirty error [ 181.462398][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 181.473380][ T6816] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.895: corrupted inode contents [ 181.490360][ T6816] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.895: mark_inode_dirty error [ 181.508691][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 181.523327][ T6816] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.895: corrupted inode contents [ 181.536048][ T6783] XFS (loop4): Ending clean mount [ 181.574328][ T6816] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 181.608790][ T6816] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.895: corrupted inode contents [ 181.656235][ T6837] ALSA: mixer_oss: invalid OSS volume '3³˜=zZq0铆٢X¦0ó ÓqMoY¦&sÈæ(' [ 181.659977][ T6816] EXT4-fs error (device loop1): ext4_truncate:4311: inode #16: comm syz.1.895: mark_inode_dirty error [ 181.687115][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 181.692844][ T6837] ALSA: mixer_oss: invalid OSS volume 'ÙæÎô›ÑfÙÆŒ‚RVjã:jn×Q­#l2‚ý' [ 181.704339][ T6837] ALSA: mixer_oss: invalid OSS volume 'šy‚d3' [ 181.717730][ T6837] ALSA: mixer_oss: invalid OSS volume '\_Ì­)ß攑«–HæÄñZÅÅà ðmoa<Ž¤²' [ 181.728073][ T4253] XFS (loop4): Unmounting Filesystem [ 181.748273][ T6816] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 181.798605][ T6837] ALSA: mixer_oss: invalid OSS volume '³lü]Òw`¨Œ°Ô¼¿H' [ 181.806125][ T6816] EXT4-fs (loop1): 1 truncate cleaned up [ 181.813010][ T6816] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 181.837969][ T4489] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 181.838404][ T4291] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 181.854971][ T6837] ALSA: mixer_oss: invalid OSS volume 'åÝ®R½-¯' [ 181.868322][ T6816] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 181.908509][ T4291] EXT4-fs error (device loop1): ext4_release_dquot:6818: comm kworker/u4:5: Failed to release dquot type 1 [ 181.914797][ T6837] ALSA: mixer_oss: invalid OSS volume '-xˆ‚¾G=KST0VNóQ3ð–Jé]˜ºïÁ(% Ó' [ 181.936335][ T6837] ALSA: mixer_oss: invalid OSS volume 'ÊaõkmBÍ:ep' [ 181.977211][ T6837] ALSA: mixer_oss: invalid OSS volume 'Ï‘ØnÃŒ€B®S2RÕcrƦËJZQ…òaýÐ…?' [ 181.986118][ T4297] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 182.004252][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 182.024662][ T6837] ALSA: mixer_oss: invalid OSS volume '' [ 182.051593][ T6837] ALSA: mixer_oss: invalid OSS volume 'Åv4Ň¿Ï=!¤!„å%^Ž>âžiØI“G4ÿ–Š ' [ 182.075144][ T6837] ALSA: mixer_oss: invalid OSS volume '_' [ 182.198084][ T4297] usb 1-1: Using ep0 maxpacket: 8 [ 182.205069][ T4297] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 182.257907][ T4297] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 182.292460][ T4297] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 182.318243][ T4297] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 182.353791][ T6850] loop1: detected capacity change from 0 to 1024 [ 182.357566][ T4297] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 182.404429][ T4297] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 182.418902][ T6850] hfsplus: unable to parse mount options [ 182.424718][ T4297] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.519643][ T6850] CUSE: info not properly terminated [ 182.534006][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.901'. [ 182.664004][ T4297] usb 1-1: GET_CAPABILITIES returned 0 [ 182.669823][ T4297] usbtmc 1-1:16.0: can't read capabilities [ 182.851148][ T6860] loop3: detected capacity change from 0 to 736 [ 182.868309][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 182.886476][ T4292] usb 1-1: USB disconnect, device number 7 [ 182.901735][ T6863] loop2: detected capacity change from 0 to 24 [ 182.910369][ T6863] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 182.926538][ T6864] loop4: detected capacity change from 0 to 2048 [ 182.935981][ T6863] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 183.004943][ T6864] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 183.099288][ T6869] EXT4-fs (loop4): shut down requested (1) [ 183.102039][ T27] audit: type=1800 audit(1744037479.736:27): pid=6864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.911" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 183.360948][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 183.564666][ T6880] loop3: detected capacity change from 0 to 2048 [ 183.680467][ T6880] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 183.729924][ T6887] Falling back ldisc for ptm0. [ 183.908224][ T4292] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 184.407504][ T6914] loop1: detected capacity change from 0 to 64 [ 184.469574][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 184.948192][ T6526] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 185.067075][ T6933] device team0 entered promiscuous mode [ 185.093220][ T6933] device team_slave_0 entered promiscuous mode [ 185.127426][ T6933] device team_slave_1 entered promiscuous mode [ 185.172663][ T6932] device team0 left promiscuous mode [ 185.194898][ T6932] device team_slave_0 left promiscuous mode [ 185.218692][ T6932] device team_slave_1 left promiscuous mode [ 185.254944][ T6939] device vxcan3 entered promiscuous mode [ 185.336757][ T6944] netlink: 12 bytes leftover after parsing attributes in process `syz.0.942'. [ 185.813148][ T6961] loop4: detected capacity change from 0 to 1024 [ 185.835961][ T6961] EXT4-fs: Ignoring removed i_version option [ 185.867307][ T6961] EXT4-fs: Ignoring removed nobh option [ 185.940708][ T6961] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 185.974780][ T6957] loop3: detected capacity change from 0 to 4096 [ 185.988129][ T4292] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 186.057276][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 186.068068][ T6974] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 186.157380][ T6957] NILFS error (device loop3): nilfs_readdir: zero-length directory entry [ 186.204812][ T6957] Remounting filesystem read-only [ 186.642011][ T6981] loop1: detected capacity change from 0 to 4096 [ 187.028130][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 187.052717][ T6964] loop2: detected capacity change from 0 to 32768 [ 187.098383][ T6964] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.948 (6964) [ 187.150757][ T6964] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 187.197072][ T6964] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 187.221603][ T6964] BTRFS info (device loop2): setting nodatacow, compression disabled [ 187.244559][ T6964] BTRFS info (device loop2): max_inline at 0 [ 187.268083][ T6964] BTRFS info (device loop2): enabling disk space caching [ 187.293327][ T7007] __sock_release: fasync list not empty! [ 187.304966][ T6964] BTRFS info (device loop2): turning off barriers [ 187.327271][ T6964] BTRFS info (device loop2): turning on flush-on-commit [ 187.351263][ T6964] BTRFS info (device loop2): doing ref verification [ 187.383766][ T6964] BTRFS info (device loop2): force clearing of disk cache [ 187.418025][ T6964] BTRFS info (device loop2): enabling ssd optimizations [ 187.445476][ T6964] BTRFS info (device loop2): max_inline at 4096 [ 187.467951][ T6964] BTRFS info (device loop2): disk space caching is enabled [ 187.509112][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 187.588117][ T4297] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 187.626740][ T6964] BTRFS info (device loop2): rebuilding free space tree [ 187.712298][ T7035] netlink: 4 bytes leftover after parsing attributes in process `syz.3.968'. [ 187.735651][ T6964] BTRFS info (device loop2): disabling free space tree [ 187.769809][ T6964] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 187.779672][ T4297] usb 5-1: Using ep0 maxpacket: 16 [ 187.786947][ T4297] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 187.837963][ T6964] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 187.848347][ T4297] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 187.887937][ T4297] usb 5-1: config 0 interface 0 has no altsetting 0 [ 187.894637][ T4297] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00 [ 187.937907][ T4297] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 187.972939][ T4297] usb 5-1: config 0 descriptor?? [ 188.075079][ T4292] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 188.119396][ T27] audit: type=1800 audit(1744037484.756:28): pid=6964 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.948" name="file1" dev="loop2" ino=261 res=0 errno=0 [ 188.448514][ T4257] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 188.469141][ T4297] cougar 0003:060B:500A.0007: unexpected long global item [ 188.476887][ T4297] cougar 0003:060B:500A.0007: parse failed [ 188.492622][ T4297] cougar: probe of 0003:060B:500A.0007 failed with error -22 [ 188.645412][ C0] vkms_vblank_simulate: vblank timer overrun [ 188.770025][ T7049] loop1: detected capacity change from 0 to 2048 [ 188.787180][ T7022] loop0: detected capacity change from 0 to 32768 [ 188.799762][ T7049] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 188.852225][ T27] audit: type=1800 audit(1744037485.486:29): pid=7022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.966" name="file1" dev="loop0" ino=4 res=0 errno=0 [ 188.918180][ T4491] usb 5-1: USB disconnect, device number 4 [ 189.082118][ T7053] loop3: detected capacity change from 0 to 256 [ 189.108057][ T4490] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 189.289875][ T7057] netlink: 'syz.1.978': attribute type 1 has an invalid length. [ 189.580430][ T7064] loop1: detected capacity change from 0 to 512 [ 189.599519][ T7065] smb3: Unknown parameter 'ÿÿÿÿ' [ 189.715551][ T7064] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 189.731095][ T7064] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.898447][ T7079] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 190.035576][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 190.154511][ T4491] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 190.457472][ T7098] tap0: tun_chr_ioctl cmd 1074025673 [ 190.561981][ T6343] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 190.715943][ T7105] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input7 [ 190.870475][ T7077] loop3: detected capacity change from 0 to 32768 [ 190.960404][ T7077] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 191.060629][ T7077] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 191.109433][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 191.208895][ T4491] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 191.255979][ T7122] [ 191.258369][ T7122] ====================================================== [ 191.265418][ T7122] WARNING: possible circular locking dependency detected [ 191.272615][ T7122] 6.1.133-syzkaller #0 Not tainted [ 191.277767][ T7122] ------------------------------------------------------ [ 191.284810][ T7122] syz.3.988/7122 is trying to acquire lock: [ 191.290712][ T7122] ffff888055acb120 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_read_virt_blocks+0x2dc/0xab0 [ 191.301729][ T7122] [ 191.301729][ T7122] but task is already holding lock: [ 191.309117][ T7122] ffff88807640e990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f51/0x21b0 [ 191.318390][ T7122] [ 191.318390][ T7122] which lock already depends on the new lock. [ 191.318390][ T7122] [ 191.328810][ T7122] [ 191.328810][ T7122] the existing dependency chain (in reverse order) is: [ 191.337838][ T7122] [ 191.337838][ T7122] -> #3 (jbd2_handle){++++}-{0:0}: [ 191.345245][ T7122] lock_acquire+0x1f8/0x5a0 [ 191.350302][ T7122] start_this_handle+0x1f71/0x21b0 [ 191.355967][ T7122] jbd2__journal_start+0x2d1/0x5c0 [ 191.361622][ T7122] jbd2_journal_start+0x25/0x30 [ 191.367014][ T7122] ocfs2_start_trans+0x3c0/0x6f0 [ 191.372518][ T7122] ocfs2_shutdown_local_alloc+0x214/0xa90 [ 191.378786][ T7122] ocfs2_dismount_volume+0x1fb/0x960 [ 191.384629][ T7122] generic_shutdown_super+0x130/0x340 [ 191.390553][ T7122] kill_block_super+0x7a/0xe0 [ 191.395779][ T7122] deactivate_locked_super+0xa0/0x110 [ 191.401694][ T7122] cleanup_mnt+0x490/0x520 [ 191.406687][ T7122] task_work_run+0x246/0x300 [ 191.411813][ T7122] exit_to_user_mode_loop+0xde/0x100 [ 191.417632][ T7122] exit_to_user_mode_prepare+0xb1/0x140 [ 191.423705][ T7122] syscall_exit_to_user_mode+0x60/0x270 [ 191.429806][ T7122] do_syscall_64+0x47/0xb0 [ 191.434757][ T7122] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 191.441206][ T7122] [ 191.441206][ T7122] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 191.449731][ T7122] lock_acquire+0x1f8/0x5a0 [ 191.454771][ T7122] down_read+0xad/0xa30 [ 191.459463][ T7122] ocfs2_start_trans+0x3b5/0x6f0 [ 191.464940][ T7122] ocfs2_shutdown_local_alloc+0x214/0xa90 [ 191.471188][ T7122] ocfs2_dismount_volume+0x1fb/0x960 [ 191.477010][ T7122] generic_shutdown_super+0x130/0x340 [ 191.482943][ T7122] kill_block_super+0x7a/0xe0 [ 191.488155][ T7122] deactivate_locked_super+0xa0/0x110 [ 191.494065][ T7122] cleanup_mnt+0x490/0x520 [ 191.499018][ T7122] task_work_run+0x246/0x300 [ 191.504141][ T7122] exit_to_user_mode_loop+0xde/0x100 [ 191.509951][ T7122] exit_to_user_mode_prepare+0xb1/0x140 [ 191.516025][ T7122] syscall_exit_to_user_mode+0x60/0x270 [ 191.522103][ T7122] do_syscall_64+0x47/0xb0 [ 191.527048][ T7122] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 191.533473][ T7122] [ 191.533473][ T7122] -> #1 (sb_internal#4){.+.+}-{0:0}: [ 191.540962][ T7122] lock_acquire+0x1f8/0x5a0 [ 191.546026][ T7122] ocfs2_start_trans+0x2b0/0x6f0 [ 191.551503][ T7122] ocfs2_truncate_file+0x6b1/0x1630 [ 191.557231][ T7122] ocfs2_setattr+0x17c5/0x1e60 [ 191.562543][ T7122] notify_change+0xce3/0xfc0 [ 191.567685][ T7122] do_truncate+0x21c/0x300 [ 191.572655][ T7122] vfs_truncate+0x2dd/0x3a0 [ 191.577693][ T7122] do_sys_truncate+0xda/0x190 [ 191.582905][ T7122] do_syscall_64+0x3b/0xb0 [ 191.587847][ T7122] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 191.594276][ T7122] [ 191.594276][ T7122] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}: [ 191.603063][ T7122] validate_chain+0x1661/0x5950 [ 191.608464][ T7122] __lock_acquire+0x125b/0x1f80 [ 191.613867][ T7122] lock_acquire+0x1f8/0x5a0 [ 191.618910][ T7122] down_read+0xad/0xa30 [ 191.623606][ T7122] ocfs2_read_virt_blocks+0x2dc/0xab0 [ 191.629510][ T7122] ocfs2_read_dir_block+0x102/0x5b0 [ 191.635234][ T7122] ocfs2_dir_foreach_blk+0x2a1/0x1e10 [ 191.641130][ T7122] ocfs2_dir_foreach+0x20c/0x270 [ 191.646597][ T7122] ocfs2_empty_dir+0x446/0x7b0 [ 191.651889][ T7122] ocfs2_rename+0x26c2/0x4000 [ 191.657097][ T7122] vfs_rename+0xd32/0x10f0 [ 191.662048][ T7122] do_renameat2+0xde0/0x1440 [ 191.667175][ T7122] __x64_sys_rename+0x82/0x90 [ 191.672407][ T7122] do_syscall_64+0x3b/0xb0 [ 191.677379][ T7122] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 191.683808][ T7122] [ 191.683808][ T7122] other info that might help us debug this: [ 191.683808][ T7122] [ 191.694048][ T7122] Chain exists of: [ 191.694048][ T7122] &ocfs2_file_ip_alloc_sem_key --> &journal->j_trans_barrier --> jbd2_handle [ 191.694048][ T7122] [ 191.708748][ T7122] Possible unsafe locking scenario: [ 191.708748][ T7122] [ 191.716198][ T7122] CPU0 CPU1 [ 191.721578][ T7122] ---- ---- [ 191.727031][ T7122] lock(jbd2_handle); [ 191.731106][ T7122] lock(&journal->j_trans_barrier); [ 191.738932][ T7122] lock(jbd2_handle); [ 191.745542][ T7122] lock(&ocfs2_file_ip_alloc_sem_key); [ 191.751123][ T7122] [ 191.751123][ T7122] *** DEADLOCK *** [ 191.751123][ T7122] [ 191.759268][ T7122] 7 locks held by syz.3.988/7122: [ 191.764294][ T7122] #0: ffff888058056460 (sb_writers#30){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 191.773552][ T7122] #1: ffff88807125a648 (&type->i_mutex_dir_key#18/1){+.+.}-{3:3}, at: do_renameat2+0x65a/0x1440 [ 191.784117][ T7122] #2: ffff888055acb488 (&sb->s_type->i_mutex_key#37){+.+.}-{3:3}, at: vfs_rename+0x814/0x10f0 [ 191.794503][ T7122] #3: ffff88807125d108 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]){+.+.}-{3:3}, at: ocfs2_lookup_lock_orphan_dir+0xfe/0x340 [ 191.807940][ T7122] #4: ffff888058056650 (sb_internal#4){.+.+}-{0:0}, at: ocfs2_rename+0x1eed/0x4000 [ 191.817374][ T7122] #5: ffff88801ff6c8e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3b5/0x6f0 [ 191.828114][ T7122] #6: ffff88807640e990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f51/0x21b0 [ 191.837891][ T7122] [ 191.837891][ T7122] stack backtrace: [ 191.843826][ T7122] CPU: 0 PID: 7122 Comm: syz.3.988 Not tainted 6.1.133-syzkaller #0 [ 191.851906][ T7122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 191.862003][ T7122] Call Trace: [ 191.865295][ T7122] [ 191.868235][ T7122] dump_stack_lvl+0x1e3/0x2cb [ 191.872934][ T7122] ? nf_tcp_handle_invalid+0x647/0x647 [ 191.878408][ T7122] ? print_circular_bug+0x12b/0x1a0 [ 191.883624][ T7122] check_noncircular+0x2fa/0x3b0 [ 191.888922][ T7122] ? add_chain_block+0x850/0x850 [ 191.893878][ T7122] ? lockdep_lock+0x11f/0x2a0 [ 191.898575][ T7122] ? add_chain_block+0x850/0x850 [ 191.903530][ T7122] ? _find_first_zero_bit+0xd0/0x100 [ 191.908837][ T7122] validate_chain+0x1661/0x5950 [ 191.913700][ T7122] ? check_path+0x21/0x40 [ 191.918046][ T7122] ? lockdep_unlock+0x165/0x300 [ 191.922951][ T7122] ? reacquire_held_locks+0x660/0x660 [ 191.928358][ T7122] ? __bfs+0x359/0x6e0 [ 191.932507][ T7122] ? check_path+0x40/0x40 [ 191.936884][ T7122] ? noop_count+0x30/0x30 [ 191.941282][ T7122] ? hlock_conflict+0x55/0x1f0 [ 191.946062][ T7122] ? mark_lock+0x9a/0x340 [ 191.950398][ T7122] __lock_acquire+0x125b/0x1f80 [ 191.955279][ T7122] lock_acquire+0x1f8/0x5a0 [ 191.959827][ T7122] ? ocfs2_read_virt_blocks+0x2dc/0xab0 [ 191.965422][ T7122] ? read_lock_is_recursive+0x10/0x10 [ 191.970820][ T7122] ? lockdep_lock+0x2a0/0x2a0 [ 191.975529][ T7122] ? __might_sleep+0xb0/0xb0 [ 191.980222][ T7122] ? validate_chain+0x13ce/0x5950 [ 191.985274][ T7122] down_read+0xad/0xa30 [ 191.989488][ T7122] ? ocfs2_read_virt_blocks+0x2dc/0xab0 [ 191.995070][ T7122] ? __down_common+0x8b0/0x8b0 [ 191.999853][ T7122] ? reacquire_held_locks+0x660/0x660 [ 192.005235][ T7122] ? mark_lock+0x9a/0x340 [ 192.009579][ T7122] ocfs2_read_virt_blocks+0x2dc/0xab0 [ 192.014971][ T7122] ? ocfs2_validate_dx_leaf+0x220/0x220 [ 192.020530][ T7122] ? ocfs2_seek_data_hole_offset+0xd10/0xd10 [ 192.026533][ T7122] ? __lock_acquire+0x125b/0x1f80 [ 192.031608][ T7122] ocfs2_read_dir_block+0x102/0x5b0 [ 192.036834][ T7122] ? ocfs2_check_dir_trailer+0x230/0x230 [ 192.042477][ T7122] ? read_lock_is_recursive+0x10/0x10 [ 192.047866][ T7122] ? __lock_acquire+0x1f80/0x1f80 [ 192.052930][ T7122] ocfs2_dir_foreach_blk+0x2a1/0x1e10 [ 192.058336][ T7122] ? slab_post_alloc_hook+0x52/0x3a0 [ 192.063639][ T7122] ? ocfs2_dir_foreach+0x270/0x270 [ 192.068766][ T7122] ? jbd2__journal_start+0x5c0/0x5c0 [ 192.074068][ T7122] ocfs2_dir_foreach+0x20c/0x270 [ 192.079017][ T7122] ? __ocfs2_add_entry+0x20d0/0x20d0 [ 192.084309][ T7122] ? __kasan_slab_alloc+0x65/0x70 [ 192.089342][ T7122] ? slab_post_alloc_hook+0x71/0x3a0 [ 192.094650][ T7122] ? ocfs2_empty_dir+0xba/0x7b0 [ 192.099511][ T7122] ocfs2_empty_dir+0x446/0x7b0 [ 192.104376][ T7122] ? trace_jbd2_handle_start+0xbe/0x2b0 [ 192.109962][ T7122] ? ocfs2_check_dir_for_entry+0x520/0x520 [ 192.115777][ T7122] ? jbd2__journal_start+0x3af/0x5c0 [ 192.121085][ T7122] ? jbd2_journal_start+0x25/0x30 [ 192.126128][ T7122] ? ocfs2_start_trans+0x4da/0x6f0 [ 192.131261][ T7122] ? ocfs2_empty_dir+0x7b0/0x7b0 [ 192.136305][ T7122] ? ocfs2_recovery_exit+0x280/0x280 [ 192.141614][ T7122] ? trace_ocfs2_rename_over_existing+0xb6/0x280 [ 192.147962][ T7122] ocfs2_rename+0x26c2/0x4000 [ 192.152667][ T7122] ? __kernel_text_address+0x9/0x40 [ 192.157895][ T7122] ? ocfs2_mknod+0x2e20/0x2e20 [ 192.162671][ T7122] ? add_chain_block+0x850/0x850 [ 192.167708][ T7122] ? lockdep_unlock+0x165/0x300 [ 192.172581][ T7122] ? lockdep_lock+0x2a0/0x2a0 [ 192.177283][ T7122] ? validate_chain+0x13ce/0x5950 [ 192.182344][ T7122] ? reacquire_held_locks+0x660/0x660 [ 192.187739][ T7122] ? register_lock_class+0x100/0x990 [ 192.193047][ T7122] ? is_dynamic_key+0x260/0x260 [ 192.197919][ T7122] ? mark_lock+0x9a/0x340 [ 192.202360][ T7122] ? __lock_acquire+0x125b/0x1f80 [ 192.207448][ T7122] ? read_lock_is_recursive+0x10/0x10 [ 192.212849][ T7122] ? vfs_rename+0x74d/0x10f0 [ 192.217457][ T7122] ? rwsem_write_trylock+0x166/0x210 [ 192.222757][ T7122] ? clear_nonspinnable+0x60/0x60 [ 192.227798][ T7122] ? do_raw_spin_unlock+0x137/0x8a0 [ 192.233018][ T7122] vfs_rename+0xd32/0x10f0 [ 192.237458][ T7122] ? tomoyo_path_link+0x101/0x170 [ 192.242505][ T7122] ? __ia32_sys_link+0x90/0x90 [ 192.247293][ T7122] ? rcu_is_watching+0x11/0xb0 [ 192.252067][ T7122] ? security_path_rename+0x17f/0x210 [ 192.257477][ T7122] do_renameat2+0xde0/0x1440 [ 192.262097][ T7122] ? fsnotify_move+0x4f0/0x4f0 [ 192.266886][ T7122] ? __virt_addr_valid+0x17f/0x530 [ 192.272038][ T7122] ? __virt_addr_valid+0x17f/0x530 [ 192.277161][ T7122] ? __virt_addr_valid+0x45b/0x530 [ 192.282303][ T7122] ? __phys_addr_symbol+0x2b/0x70 [ 192.287349][ T7122] ? strncpy_from_user+0x1f9/0x360 [ 192.292482][ T7122] ? getname_flags+0x1f9/0x4f0 [ 192.297258][ T7122] ? lockdep_hardirqs_on+0x94/0x130 [ 192.302475][ T7122] __x64_sys_rename+0x82/0x90 [ 192.307172][ T7122] do_syscall_64+0x3b/0xb0 [ 192.311599][ T7122] ? clear_bhb_loop+0x45/0xa0 [ 192.316288][ T7122] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 192.322197][ T7122] RIP: 0033:0x7f49fb78d169 [ 192.326641][ T7122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.346262][ T7122] RSP: 002b:00007f49fc5bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 192.354693][ T7122] RAX: ffffffffffffffda RBX: 00007f49fb9a6160 RCX: 00007f49fb78d169 [ 192.362676][ T7122] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 00002000000001c0 [ 192.370653][ T7122] RBP: 00007f49fb80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.378665][ T7122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.386645][ T7122] R13: 0000000000000001 R14: 00007f49fb9a6160 R15: 00007ffdb4894178 [ 192.394662][ T7122] [ 192.397806][ C0] vkms_vblank_simulate: vblank timer overrun [ 192.402463][ T4490] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 192.443460][ T7126] input: syz1 as /devices/virtual/input/input8 [ 192.536216][ T4249] ocfs2: Unmounting device (7,3) on (node local) [ 192.577972][ T4491] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 192.757915][ T4491] usb 2-1: Using ep0 maxpacket: 16 [ 192.764773][ T4491] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 192.775803][ T4491] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 192.784890][ T4491] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 192.794483][ T4491] usb 2-1: config 0 descriptor?? [ 193.207900][ T4491] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x6 [ 193.215327][ T4491] mcp2221 0003:04D8:00DD.0008: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0 [ 193.431557][ T4491] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 193.440238][ C1] usb 2-1: input irq status -75 received [ 193.588141][ T14] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 193.641741][ T6343] usb 2-1: USB disconnect, device number 4 [ 194.311479][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.311694][ T4599] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 194.317927][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.471634][ T4491] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 195.520797][ T4491] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 196.561313][ T4492] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 196.628190][ T4599] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 197.598294][ T4492] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 198.631572][ T4492] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 199.668610][ T4599] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 199.683431][ T4492] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 200.711335][ T4492] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog