last executing test programs: 39.797114419s ago: executing program 3 (id=1138): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x18, r1, 0xcc071acbf25dbf8f, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 39.796603197s ago: executing program 3 (id=1148): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r0) sendmsg$NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)={0x14, r1, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 39.750311616s ago: executing program 3 (id=1143): r0 = socket$kcm(0x11, 0x2, 0x300) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x8907, 0x0) recvmsg$kcm(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) 39.312575553s ago: executing program 3 (id=1162): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0xe, &(0x7f0000000140)={[{@sysvgroups}, {@dax_inode}, {@noauto_da_alloc}, {@minixdf}, {@data_journal}, {@quota}]}, 0x3, 0x455, &(0x7f0000000f00)="$eJzs3MtvG0UYAPBv10n6pDGlPPoAAgUR8UiatEAPXEAgcQAJCQ7lGJK0KnUb1ASJVhUYhMoRVeKOOCLxF3CCCwJOSFzhjipVqJcWTkZr7yaOY6dxmsSl/v2kTWZ2Zz3zeXfs2Z1sAuhbI9mPJGJ3RPwREcON7PICI41fN69fmv7n+qXtEVF7+++kXu7G9UvTRdFiv115ZjSNSD9P4mCbeucvXDwzVanMns/z4wtnPxifv3DxudNnp07Nnpo9N3n8+LGjEy++MPn8in0vD3cfZ7bLjQMfzx3a//q7V96cPnHlvV++S4r4W+Jor9xtlSOrbXyyVuv29e5o9zSlk4EeNoSulCIiO1yD9f4/HKVYOnjD8dpnPW0csKlquQ6bqzXgLpZEr1sA9EbxRZ9d/xbL1o0+eu/ay40LoCzum/nS2DIQaV5msOX6diONRMSJ6r9fZ0us6T4EAMDt+SEb/zzbbvyXxgNN5fbkcyjliLg3IvZGxH0RsS8i7o+ol30wIh7qsv7WSZKV45/06roCW6Ns/PdSPre1fPyXRrWRKJfqucYYsByDycnTldkj+XsyGoPbsvzEKnX8+OrvX3ba1jz+y5as/mIsmLfj6sC25fvMTC1M3V7US659GnFgoF38yeJMQBIR+yPiwDrrOP30t4c6bRuJ6i3i72RjJplq30Q81Tj+1WiJv5CsPj85vj0qs0fGi7NipV9/u/xWp/pvffw3V3b8d7Y9/xfjLyfN87Xz3ddx+c8vOl7TrPf8H0reqaeH8nUfTS0snJ+IGEreaDS6ef3k0r5FviifxT96uH3/3xtL78TBiMhO4ocj4pGIeDRv+2MR8XhEHF4l/p9feeL99ce/ubL4Z7o6/kuJoWhd0z5ROvPT98sqLXcTf3b8j9VTo/matXz+raVd6zubAQAA4P8njYjdkaRji+k0HRtr/A3/vtiZVubmF545OffhuZnGMwLlGEyLO13DTfdDJxYv6xv5yTxfbD+a3zf+qrSjnh+bnqvM9Dp46HO7OvT/zF+ltrts29oWApvK81rQv/R/6F/6P/Qv/R/6V5v+v6MX7QC2Xrvv/0960A5g67X0//bTfsBdyfU/9C/9H/qX/g99aX5HrPqQfFT31Mut7Ul/iTsqEbERr1P8I4iWTZH2PkCJzUv09GMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgw/wXAAD//7Jx47M=") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=') 39.115733963s ago: executing program 3 (id=1169): unshare(0x22020600) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000) recvfrom$inet_nvme(r0, 0x0, 0x0, 0x2140, 0x0, 0x0) 37.481711637s ago: executing program 3 (id=1227): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$TCGETA(r0, 0x5419, 0xffffffffffffffff) 37.42129836s ago: executing program 32 (id=1227): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$TCGETA(r0, 0x5419, 0xffffffffffffffff) 29.765535114s ago: executing program 1 (id=1630): r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x1, "5660359c3245d1c42317afadfd48ed5100000000000000608a00"}) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000180)={0x1, "029c6e5c846eccb800d2ae30e3f5c320998750190300"}) 29.680886493s ago: executing program 1 (id=1633): unshare(0x100000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x40) getdents64(r0, &(0x7f0000000040)=""/45, 0x2d) 29.622501844s ago: executing program 1 (id=1638): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@mcast2, 0x800000, 0x0, 0x1, 0x1, 0x4, 0x6}, 0x20) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, &(0x7f00000004c0)=0x20) 29.548090882s ago: executing program 1 (id=1641): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x9, &(0x7f0000000200)=0x3, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f0000000140)={0xa, 0x4001, 0xfffc, @loopback, 0xfffffffd}, 0x1c) 29.472109525s ago: executing program 1 (id=1646): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x10) symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') 29.398856025s ago: executing program 1 (id=1650): syz_mount_image$vfat(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0xa0, &(0x7f0000000000)={[{@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@shortname_mixed}, {@fat=@debug}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {@fat=@flush}, {@numtail}, {@utf8}, {@shortname_winnt}, {@utf8}]}, 0x1, 0x57f, &(0x7f0000000640)="$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") r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000001c0)={0xf030000, 0x1ff, 0x6, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x980913, 0xfffffffc, '\x00', @p_u8=0x0}}) 14.460319458s ago: executing program 33 (id=1650): syz_mount_image$vfat(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0xa0, &(0x7f0000000000)={[{@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@shortname_mixed}, {@fat=@debug}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {@fat=@flush}, {@numtail}, {@utf8}, {@shortname_winnt}, {@utf8}]}, 0x1, 0x57f, &(0x7f0000000640)="$eJzs2jFrE2EYB/DHtrbF5TI4icOBi1NJu1s8pIViQKjcoJOHTaHkQuECgXawbn4UwY/jR3DwM3QoRJoLMdHoovXU/H4Q3j+8+Yfnlrw3vK/u93tHp4PjT+8/x+bjNNYiYuUyohUrsRq1W5N1ZZzXY9bbAAD+NYeHRdb0DNysqsqK63e4je928g+NDAQAAAAAAAAAAMAvc/8fAJaP+///v6rKivXJ+9s89/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA5lyORsnoJ5+m5wMAfj/nPwAsH+c/ACwf5z8ALJ/nL14+zTqdvcM03Yzovxvmw7xe6/3sOE6ijG60I4mriNFUnfcPOnvtdKwVu/2LSf9imK/O97cjidbi/nbdT+f7t+PObH8nkri7uL+zsL8eDx/M9LciiY+v4zTKOIrr7tf+m+00ffKs801/Y/w9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWCZb6VQrHvUvhvkwj7heV+v9rR/t1/3sOE6ijG60I4mriNFUnfcPOnvtyQ/E7mx/Le6tNfvsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwLzB2XmvKMtuJQiCMA1N/zMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABNGZyd94qy7FaDpicBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP4Wg7PzXlGW3eoGQ9PPCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJ/3JQAA//9FFu9W") r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000001c0)={0xf030000, 0x1ff, 0x6, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x980913, 0xfffffffc, '\x00', @p_u8=0x0}}) 9.586217918s ago: executing program 4 (id=2399): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$comedi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/comedi0\x00', 0x20401, 0x0) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000080)={0x4000000, 0x0, 0x0, 0x0, 0x4}) 9.567149803s ago: executing program 4 (id=2401): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, 0x0) 9.524945827s ago: executing program 4 (id=2405): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfd9fb, {0x0, 0x0, 0x0, 0x0, 0x2017, 0x8}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002) 9.491201764s ago: executing program 4 (id=2406): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0xe, &(0x7f0000000140)={[{@sysvgroups}, {@acl}, {@noauto_da_alloc}, {@minixdf}, {@dax_never}, {@quota}]}, 0x3, 0x469, &(0x7f0000000300)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=') 9.423881707s ago: executing program 4 (id=2410): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000140)={[{}, {@oldalloc}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x447, &(0x7f0000000380)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000001c0)="f4322cf36e64626e9b33049d4bd59bc4657e8a5ab95cfb89685951c5cf5a5a980c7820d13506f3b9b9846b661e74d8509708c7b6c8f42386afe0e7", 0x3b, 0x2) 9.06376675s ago: executing program 4 (id=2433): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00') exit(0x7) statx(r0, 0x0, 0x1000, 0x10, 0x0) 9.02179285s ago: executing program 34 (id=2433): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00') exit(0x7) statx(r0, 0x0, 0x1000, 0x10, 0x0) 1.212803995s ago: executing program 5 (id=2901): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)={0x3c, r1, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}]}, 0x3c}}, 0x20000000) 1.152765493s ago: executing program 5 (id=2906): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e23, 0x1, @empty}}, 0xfffffffc, 0x0, 0x20000004, 0xe, 0x1b1, 0x57, 0x7f}, 0x9c) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e20, @empty}}, 0xc73, 0x7f, 0xfffffc00, 0xb764, 0x0, 0x9, 0xf9}, &(0x7f0000000400)=0x9c) 1.113576601s ago: executing program 6 (id=2910): r0 = syz_open_dev$vim2m(&(0x7f0000000300), 0x2, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0xd, 0x1, 0x1, 0x0, 0x7}) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000340)={0xfffffffd, 0x4005, 0x4, {0x1, @win={{0x0, 0xfff}, 0x0, 0x3, 0x0, 0x0, 0x0}}}) 1.058605232s ago: executing program 5 (id=2913): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x3}]}}}]}, 0x40}}, 0x0) 1.012251153s ago: executing program 5 (id=2916): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x20) 963.497329ms ago: executing program 6 (id=2919): r0 = msgget(0x3, 0x280) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) msgsnd(r0, &(0x7f0000000f80)=ANY=[@ANYRES32], 0xe2, 0x0) 925.553385ms ago: executing program 6 (id=2922): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000000)={0x1, 0x1, 0x12, 0x23, 0x10009c, 0xfffffffffffffffe}) 890.536717ms ago: executing program 6 (id=2924): syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 862.727639ms ago: executing program 5 (id=2927): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00') close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) statx(r0, 0x0, 0x1000, 0x10, 0x0) 832.715857ms ago: executing program 5 (id=2930): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r1, 0x421, 0x70bd2f, 0x25dfdbfe}, 0x14}}, 0x400d4) 796.645866ms ago: executing program 7 (id=2932): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi0\x00', 0x2, 0x0) mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x72b7e000) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil) 755.375482ms ago: executing program 7 (id=2935): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x491, &(0x7f0000000a00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x40086602, &(0x7f0000000080)={@desc={0x84c00, 0x0, @desc2}}) 634.426513ms ago: executing program 7 (id=2938): mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = socket$pptp(0x18, 0x1, 0x2) connect$pptp(r0, &(0x7f0000000700)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) 571.254651ms ago: executing program 7 (id=2943): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, 0x0, 0x29}, 0x28) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBTYPE(r0, 0x4b44, &(0x7f0000000000)) 528.388903ms ago: executing program 7 (id=2945): r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo\x00') getdents64(r0, &(0x7f0000000980)=""/4096, 0x1000) getdents64(r0, 0x0, 0x0) 481.730579ms ago: executing program 7 (id=2948): futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000000080), 0x2) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0) 267.522456ms ago: executing program 0 (id=2958): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x10, 0x4, 0x4, 0x8}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x3100, 0x3100, &(0x7f0000000000), 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 203.815635ms ago: executing program 2 (id=2960): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x26c, &(0x7f0000000840)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x42, 0x18) ioctl$FE_GET_PROPERTY(r0, 0x40047211, 0x0) 202.654315ms ago: executing program 0 (id=2970): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0xf0ffffffffffff}, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') 157.154784ms ago: executing program 0 (id=2961): r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x22108c0, &(0x7f0000000000), 0x0, 0x248, &(0x7f0000000940)="$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") r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000300)={0x0, "66507f6dbebc74352103768ce79c85073dd40fa2bb434294e4ebe8425d1280c01b6357a2a648321c9a944954d638486b73b51bf67fa39f50b2be5060efddf17a", 0x26}, 0x48, 0xfffffffffffffffe) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000480)={@desc={0x1, 0x0, @desc4}, 0x0, r1}) 156.149814ms ago: executing program 2 (id=2962): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x7fffffff, 0xffffffff}) r0 = socket$inet6(0x10, 0x2, 0x4) sendto$inet6(r0, &(0x7f0000000580)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdff0f000059a351d1ec0cffc87e2cd8000080609912", 0x4f, 0x0, 0x0, 0x0) 121.441943ms ago: executing program 2 (id=2963): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000480)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) sendfile(r1, r0, 0x0, 0x23b) 103.425399ms ago: executing program 0 (id=2964): r0 = socket$inet_sctp(0x2, 0x1, 0x84) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000004c0)={0x8, 0xfff1, 0x4, 0x5, 0x2, 0xfffffff0, 0xfffffff7, 0x2}, &(0x7f0000000540)=0x20) 102.617171ms ago: executing program 2 (id=2965): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x14) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018007000100637400001c0002800800014000000002080002400000000605000300000000000900010073797a30000000000900020073797a32"], 0x80}}, 0x0) 65.644188ms ago: executing program 0 (id=2966): r0 = socket$kcm(0xa, 0x1, 0x106) sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefce) recvfrom(r0, &(0x7f0000000100)=""/38, 0x26, 0x100, 0x0, 0x0) 40.77354ms ago: executing program 0 (id=2967): mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = socket$pptp(0x18, 0x1, 0x2) connect$pptp(r0, &(0x7f0000000700)={0x18, 0x2, {0x0, @multicast1}}, 0x1e) 40.231832ms ago: executing program 2 (id=2968): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x2fd, 0xffff, 0x101, 0x300}}) 13.246409ms ago: executing program 6 (id=2969): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000140)) 7.982381ms ago: executing program 2 (id=2971): syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x141000) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') ioctl$FE_GET_PROPERTY(r0, 0x80106f53, &(0x7f0000000040)={0x30, &(0x7f00000000c0)=[{0x41, '\x00', @st={0x4, [{0x7, @svalue=0x16ff}, {0x1, @svalue=0x81}, {0x3, @svalue=0x9}, {0x3, @svalue=0x400}]}}]}) 0s ago: executing program 6 (id=2972): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$KDSETLED(r0, 0x4008af00, 0xffffffffffffff38) kernel console output (not intermixed with test programs): pages.rst. [ 45.433730][ T6608] loop4: detected capacity change from 0 to 512 [ 45.518788][ T6608] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.557479][ T6625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.571182][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.645044][ T4716] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.830174][ T6659] bridge0: port 3(macvlan2) entered blocking state [ 45.830229][ T6659] bridge0: port 3(macvlan2) entered disabled state [ 45.830293][ T6659] macvlan2: entered allmulticast mode [ 45.830303][ T6659] bridge0: entered allmulticast mode [ 45.830321][ T6659] bridge0: entered promiscuous mode [ 45.839545][ T6659] macvlan2: left allmulticast mode [ 45.839571][ T6659] bridge0: left allmulticast mode [ 45.850640][ T6661] random: crng reseeded on system resumption [ 45.852329][ T4798] bridge0: left promiscuous mode [ 45.875605][ T6663] EXT4-fs: Ignoring removed i_version option [ 45.888320][ T6663] EXT4-fs: Mount option(s) incompatible with ext2 [ 45.910870][ T6663] Injecting memory failure for pfn 0x21cf58 at process virtual address 0x20ffd000 [ 45.924264][ T6663] Memory failure: 0x21cf58: unhandlable page. [ 45.924294][ T6663] Memory failure: 0x21cf58: recovery action for get hwpoison page: Ignored [ 46.158164][ T6690] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 46.184980][ T6690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.212985][ T6690] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 3: comm syz.1.820: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 46.229676][ T6690] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 12: comm syz.1.820: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 46.235166][ T6690] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 13: comm syz.1.820: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 46.240683][ T6690] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 16: comm syz.1.820: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653245223, rec_len=65536, size=2048 fake=0 [ 46.244699][ T6690] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #2: block 18: comm syz.1.820: lblock 23 mapped to illegal pblock 18 (length 1) [ 46.560304][ T6742] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 46.575430][ T6742] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 2: comm syz.3.842: lblock 2 mapped to illegal pblock 2 (length 1) [ 46.575464][ T6742] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 46.578053][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 46.578068][ C1] EXT4-fs (loop3): initial error at time 46: ext4_map_blocks:791: inode 3: block 2 [ 46.578087][ C1] EXT4-fs (loop3): last error at time 46: ext4_map_blocks:791: inode 3: block 2 [ 46.585501][ T6742] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 46.585547][ T6742] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 48: comm syz.3.842: lblock 0 mapped to illegal pblock 48 (length 1) [ 46.585571][ T6742] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 46.589577][ T6742] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 46.589597][ T6742] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.842: Failed to acquire dquot type 0 [ 46.589621][ T6742] fserror_report: 1 callbacks suppressed [ 46.589631][ T6742] loop3: lost filesystem error report for type 5 error -117 [ 46.596401][ T6742] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 46.596428][ T6742] loop3: lost filesystem error report for type 5 error -117 [ 46.601170][ T6742] EXT4-fs error (device loop3): ext4_evict_inode:267: inode #11: comm syz.3.842: mark_inode_dirty error [ 46.601209][ T6742] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 46.608841][ T6742] EXT4-fs warning (device loop3): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 46.608920][ T6742] EXT4-fs (loop3): 1 orphan inode deleted [ 46.609826][ T6742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.628063][ T1927] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1) [ 46.630940][ T1927] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 46.630983][ T1927] EXT4-fs error (device loop3): ext4_release_dquot:7070: comm kworker/u8:11: Failed to release dquot type 0 [ 46.698129][ T4716] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.698317][ T126] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 46.698332][ T126] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 46.698646][ T126] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 46.698665][ T126] EXT4-fs error (device loop3): ext4_release_dquot:7070: comm kworker/u8:4: Failed to release dquot type 0 [ 46.698678][ T126] loop3: lost filesystem error report for type 5 error -117 [ 46.699160][ T4716] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 46.699173][ T4716] loop3: lost filesystem error report for type 5 error -117 [ 46.699959][ T4716] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 46.699973][ T4716] loop3: lost filesystem error report for type 5 error -117 [ 46.700050][ T4716] EXT4-fs error (device loop3): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error [ 46.700061][ T4716] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 46.921448][ T6765] loop4: p1 p2 p3 [ 46.921448][ T6765] p1: [ 46.927283][ T6765] loop4: p3 start 65280 is beyond EOD, truncated [ 47.004346][ T4712] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.025597][ T4703] udevd[4703]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 47.029651][ T4701] udevd[4701]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 47.045405][ T6777] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 47.060088][ T6777] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:375: inode #2: comm syz.4.860: No space for directory leaf checksum. Please run e2fsck -D. [ 47.060125][ T6777] EXT4-fs error (device loop4): htree_dirblock_to_tree:1051: inode #2: comm syz.4.860: Directory block failed checksum [ 47.083386][ T4722] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 47.339507][ T6821] netlink: 8 bytes leftover after parsing attributes in process `syz.4.880'. [ 47.339564][ T6821] netlink: 16 bytes leftover after parsing attributes in process `syz.4.880'. [ 47.494705][ T6843] set_capacity_and_notify: 8 callbacks suppressed [ 47.494746][ T6843] loop1: detected capacity change from 0 to 256 [ 47.522753][ T6843] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 198) [ 47.522789][ T6843] FAT-fs (loop1): Filesystem has been set read-only [ 47.820573][ T6893] loop2: detected capacity change from 0 to 256 [ 48.086614][ T6927] netlink: 'syz.2.933': attribute type 4 has an invalid length. [ 48.135403][ T6933] netlink: 'syz.2.936': attribute type 7 has an invalid length. [ 48.135437][ T6933] netlink: 4 bytes leftover after parsing attributes in process `syz.2.936'. [ 48.405120][ T6968] netlink: 8 bytes leftover after parsing attributes in process `syz.4.945'. [ 48.453453][ T6973] loop3: detected capacity change from 0 to 8192 [ 48.477950][ T6973] syz.3.947: attempt to access beyond end of device [ 48.477950][ T6973] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 48.478030][ T6973] Buffer I/O error on dev loop3, logical block 57847, async page read [ 48.479021][ T6973] syz.3.947: attempt to access beyond end of device [ 48.479021][ T6973] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 48.479040][ T6973] Buffer I/O error on dev loop3, logical block 57847, async page read [ 48.687987][ T7002] loop3: detected capacity change from 0 to 128 [ 48.691278][ T7002] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 48.755055][ T4716] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 48.763915][ T7011] loop4: detected capacity change from 0 to 128 [ 48.781642][ T7011] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 48.810595][ T7018] loop3: detected capacity change from 0 to 1024 [ 48.810998][ T7018] ext4: Unknown parameter 'obj_type' [ 48.829133][ T4722] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 48.877467][ T7026] loop4: detected capacity change from 0 to 256 [ 48.891628][ T7026] FAT-fs (loop4): Directory bread(block 64) failed [ 48.892924][ T7026] FAT-fs (loop4): Directory bread(block 65) failed [ 48.894089][ T7026] FAT-fs (loop4): Directory bread(block 66) failed [ 48.899541][ T7026] FAT-fs (loop4): Directory bread(block 67) failed [ 48.900803][ T7026] FAT-fs (loop4): Directory bread(block 68) failed [ 48.901979][ T7026] FAT-fs (loop4): Directory bread(block 69) failed [ 48.903263][ T7026] FAT-fs (loop4): Directory bread(block 70) failed [ 48.904709][ T7026] FAT-fs (loop4): Directory bread(block 71) failed [ 48.906111][ T7026] FAT-fs (loop4): Directory bread(block 72) failed [ 48.907503][ T7026] FAT-fs (loop4): Directory bread(block 73) failed [ 48.937346][ T7033] loop3: detected capacity change from 0 to 256 [ 48.944698][ T7033] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 48.951147][ T7034] loop2: detected capacity change from 0 to 512 [ 49.099596][ T7054] loop3: detected capacity change from 0 to 512 [ 49.207485][ T7066] EXT4-fs (loop1): Test dummy encryption mode enabled [ 49.207513][ T7066] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 49.214352][ T7066] EXT4-fs error (device loop1): __ext4_iget:5481: inode #15: block 1803188595: comm syz.1.982: invalid block [ 49.214390][ T7066] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 49.216947][ T7066] EXT4-fs (loop1): Remounting filesystem read-only [ 49.268902][ T7072] ptrace attach of ""[7074] was attempted by "ci-upstream-gce-arm64/syz-executor exec"[7072] [ 49.345636][ T7079] FAT-fs (loop4): Directory bread(block 32) failed [ 49.345673][ T7079] FAT-fs (loop4): Directory bread(block 33) failed [ 49.345713][ T7079] FAT-fs (loop4): Directory bread(block 34) failed [ 49.345730][ T7079] FAT-fs (loop4): Directory bread(block 35) failed [ 49.345758][ T7079] FAT-fs (loop4): Directory bread(block 36) failed [ 49.345777][ T7079] FAT-fs (loop4): Directory bread(block 37) failed [ 49.345808][ T7079] FAT-fs (loop4): Directory bread(block 38) failed [ 49.345824][ T7079] FAT-fs (loop4): Directory bread(block 39) failed [ 49.345851][ T7079] FAT-fs (loop4): Directory bread(block 40) failed [ 49.345865][ T7079] FAT-fs (loop4): Directory bread(block 41) failed [ 49.350932][ T7085] netlink: 'syz.3.990': attribute type 2 has an invalid length. [ 49.350946][ T7085] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.990'. [ 49.429912][ T7079] syz.4.988: attempt to access beyond end of device [ 49.429912][ T7079] loop4: rw=0, sector=4112, nr_sectors = 4 limit=128 [ 49.429960][ T7079] Buffer I/O error on dev loop4, logical block 1028, async page read [ 49.430055][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430055][ T7079] loop4: rw=0, sector=167964, nr_sectors = 4 limit=128 [ 49.430068][ T7079] Buffer I/O error on dev loop4, logical block 41991, async page read [ 49.430167][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430167][ T7079] loop4: rw=0, sector=4112, nr_sectors = 4 limit=128 [ 49.430178][ T7079] Buffer I/O error on dev loop4, logical block 1028, async page read [ 49.430205][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430205][ T7079] loop4: rw=0, sector=167964, nr_sectors = 4 limit=128 [ 49.430215][ T7079] Buffer I/O error on dev loop4, logical block 41991, async page read [ 49.430392][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430392][ T7079] loop4: rw=0, sector=4112, nr_sectors = 4 limit=128 [ 49.430402][ T7079] Buffer I/O error on dev loop4, logical block 1028, async page read [ 49.430424][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430424][ T7079] loop4: rw=0, sector=167964, nr_sectors = 4 limit=128 [ 49.430433][ T7079] Buffer I/O error on dev loop4, logical block 41991, async page read [ 49.430517][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430517][ T7079] loop4: rw=0, sector=4112, nr_sectors = 4 limit=128 [ 49.430527][ T7079] Buffer I/O error on dev loop4, logical block 1028, async page read [ 49.430548][ T7079] syz.4.988: attempt to access beyond end of device [ 49.430548][ T7079] loop4: rw=0, sector=167964, nr_sectors = 4 limit=128 [ 49.430558][ T7079] Buffer I/O error on dev loop4, logical block 41991, async page read [ 49.633585][ T7109] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 198) [ 49.633621][ T7109] FAT-fs (loop3): Filesystem has been set read-only [ 49.795618][ T7123] tipc: Enabling of bearer rejected, failed to enable media [ 49.850577][ T7127] EXT4-fs: inline encryption not supported [ 49.866913][ T7127] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 49.866966][ T7127] EXT4-fs (loop3): Test dummy encryption mode enabled [ 49.880931][ T7127] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 49.881005][ T7127] System zones: 0-5 [ 49.923879][ T7137] EXT4-fs (loop2): Test dummy encryption mode enabled [ 49.923924][ T7137] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 49.931734][ T7137] EXT4-fs error (device loop2): __ext4_iget:5481: inode #15: block 1803188595: comm syz.2.1015: invalid block [ 49.931779][ T7137] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 49.936275][ T7137] EXT4-fs (loop2): Remounting filesystem read-only [ 50.530603][ T7209] EXT4-fs: inline encryption not supported [ 50.532374][ T7209] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 50.535808][ T7209] EXT4-fs (loop2): Test dummy encryption mode enabled [ 50.539964][ T7209] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003] [ 50.540025][ T7209] System zones: 0-5 [ 50.617697][ T30] audit: type=1326 audit(50.701:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7219 comm="syz.1.1055" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff83377aa8 code=0x0 [ 50.708097][ T7230] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1057'. [ 51.018531][ T7267] tipc: Started in network mode [ 51.018569][ T7267] tipc: Node identity ff020000000000000000000000000001, cluster identity 4711 [ 51.018591][ T7267] tipc: Enabling of bearer rejected, failed to enable media [ 51.123690][ T7275] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 51.123730][ T7275] FAT-fs (loop3): Filesystem has been set read-only [ 51.280521][ T7297] block nbd3: NBD_DISCONNECT [ 51.312876][ T7293] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1086: bg 0: block 112: padding at end of block bitmap is not set [ 51.318374][ T7293] EXT4-fs (loop0): Remounting filesystem read-only [ 51.404836][ T7310] tmpfs: Cannot disable swap on remount [ 51.616239][ T7340] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1104'. [ 51.751383][ T7365] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1111'. [ 51.823518][ T30] audit: type=1326 audit(51.930:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.828860][ T30] audit: type=1326 audit(51.930:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.843028][ T30] audit: type=1326 audit(51.950:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.843077][ T30] audit: type=1326 audit(51.950:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.850455][ T30] audit: type=1326 audit(51.950:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=261 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.850481][ T30] audit: type=1326 audit(51.950:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7375 comm="syz.1.1118" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83377aa8 code=0x7ffc0000 [ 51.927562][ T7384] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1122: bg 0: block 112: padding at end of block bitmap is not set [ 51.928706][ T7384] EXT4-fs (loop3): Remounting filesystem read-only [ 51.988496][ T7392] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 51.988529][ T7392] FAT-fs (loop0): Filesystem has been set read-only [ 52.095653][ T50] Bluetooth: Unexpected continuation frame (len 10) [ 52.192418][ T7423] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 52.192455][ T7423] FAT-fs (loop1): Filesystem has been set read-only [ 52.297100][ T7441] The dccp option matching is deprecated and scheduled to be removed in 2027. [ 52.297100][ T7441] Please contact the netfilter-devel mailing list or update your nftables rules. [ 52.399346][ T7452] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1163'. [ 52.541937][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1159'. [ 52.658321][ T7477] set_capacity_and_notify: 13 callbacks suppressed [ 52.660901][ T7477] loop3: detected capacity change from 0 to 512 [ 52.664105][ T7477] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 52.670504][ T7477] EXT4-fs (loop3): 1 truncate cleaned up [ 52.685229][ T7477] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 52.726592][ T7485] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1167'. [ 52.793785][ T7477] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 52.815667][ T4716] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz-executor: bad entry in directory: directory entry overrun - offset=76, inode=16, rec_len=1024, size=1024 fake=0 [ 52.826419][ T4716] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 52.835206][ T4716] EXT4-fs error (device loop3): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 52.838178][ T4716] EXT4-fs error (device loop3): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 52.840419][ T30] audit: type=1326 audit(52.973:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7486 comm="syz.0.1168" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 52.850098][ T30] audit: type=1326 audit(52.983:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7486 comm="syz.0.1168" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 52.850143][ T30] audit: type=1326 audit(52.983:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7486 comm="syz.0.1168" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 52.858956][ T30] audit: type=1326 audit(52.994:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7486 comm="syz.0.1168" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=261 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 52.934893][ T7495] loop1: detected capacity change from 0 to 512 [ 52.940230][ T7495] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 52.949642][ T7495] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1175: invalid indirect mapped block 4294967295 (level 0) [ 52.949679][ T7495] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 52.952221][ T7495] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.1175: invalid indirect mapped block 4294967295 (level 1) [ 52.952243][ T7495] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 52.958164][ C0] EXT4-fs (loop1): error count since last fsck: 2 [ 52.958196][ C0] EXT4-fs (loop1): initial error at time 53: ext4_free_branches:1023: inode 16 [ 52.958232][ C0] EXT4-fs (loop1): last error at time 53: ext4_free_branches:1023: inode 16 [ 52.973164][ T7495] EXT4-fs (loop1): 1 orphan inode deleted [ 52.973197][ T7495] EXT4-fs (loop1): 1 truncate cleaned up [ 53.050600][ T7502] loop4: detected capacity change from 0 to 256 [ 53.102953][ T7502] FAT-fs (loop4): Directory bread(block 64) failed [ 53.102987][ T7502] FAT-fs (loop4): Directory bread(block 65) failed [ 53.103012][ T7502] FAT-fs (loop4): Directory bread(block 66) failed [ 53.103023][ T7502] FAT-fs (loop4): Directory bread(block 67) failed [ 53.103045][ T7502] FAT-fs (loop4): Directory bread(block 68) failed [ 53.103056][ T7502] FAT-fs (loop4): Directory bread(block 69) failed [ 53.103078][ T7502] FAT-fs (loop4): Directory bread(block 70) failed [ 53.103088][ T7502] FAT-fs (loop4): Directory bread(block 71) failed [ 53.103110][ T7502] FAT-fs (loop4): Directory bread(block 72) failed [ 53.103120][ T7502] FAT-fs (loop4): Directory bread(block 73) failed [ 53.199685][ T7515] loop0: detected capacity change from 0 to 256 [ 53.218634][ T7515] FAT-fs (loop0): Directory bread(block 64) failed [ 53.218673][ T7515] FAT-fs (loop0): Directory bread(block 65) failed [ 53.218700][ T7515] FAT-fs (loop0): Directory bread(block 66) failed [ 53.218713][ T7515] FAT-fs (loop0): Directory bread(block 67) failed [ 53.218735][ T7515] FAT-fs (loop0): Directory bread(block 68) failed [ 53.218746][ T7515] FAT-fs (loop0): Directory bread(block 69) failed [ 53.218769][ T7515] FAT-fs (loop0): Directory bread(block 70) failed [ 53.218779][ T7515] FAT-fs (loop0): Directory bread(block 71) failed [ 53.218807][ T7515] FAT-fs (loop0): Directory bread(block 72) failed [ 53.218818][ T7515] FAT-fs (loop0): Directory bread(block 73) failed [ 53.430161][ T7539] loop2: detected capacity change from 0 to 512 [ 53.435429][ T7539] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 53.451518][ T7539] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.1194: invalid indirect mapped block 4294967295 (level 0) [ 53.451562][ T7539] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 53.451713][ T7539] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.1194: invalid indirect mapped block 4294967295 (level 1) [ 53.451727][ T7539] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 53.452279][ T7539] EXT4-fs (loop2): 1 orphan inode deleted [ 53.452292][ T7539] EXT4-fs (loop2): 1 truncate cleaned up [ 53.920476][ T126] bio_check_eod: 12894 callbacks suppressed [ 53.921690][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.921690][ T126] loop4: rw=1, sector=1192, nr_sectors = 32 limit=256 [ 53.923221][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923221][ T126] loop4: rw=1, sector=1256, nr_sectors = 32 limit=256 [ 53.923388][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923388][ T126] loop4: rw=1, sector=1320, nr_sectors = 32 limit=256 [ 53.923437][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923437][ T126] loop4: rw=1, sector=1384, nr_sectors = 32 limit=256 [ 53.923484][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923484][ T126] loop4: rw=1, sector=1448, nr_sectors = 32 limit=256 [ 53.923856][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923856][ T126] loop4: rw=1, sector=1512, nr_sectors = 32 limit=256 [ 53.923917][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.923917][ T126] loop4: rw=1, sector=1576, nr_sectors = 32 limit=256 [ 53.924027][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.924027][ T126] loop4: rw=1, sector=1640, nr_sectors = 32 limit=256 [ 53.924074][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.924074][ T126] loop4: rw=1, sector=1704, nr_sectors = 32 limit=256 [ 53.924120][ T126] kworker/u8:4: attempt to access beyond end of device [ 53.924120][ T126] loop4: rw=1, sector=1800, nr_sectors = 32 limit=256 [ 54.066809][ T50] Bluetooth: hci1: command 0x0406 tx timeout [ 54.137153][ T4798] IPVS: starting estimator thread 0... [ 54.221933][ T7591] IPVS: using max 56 ests per chain, 134400 per kthread [ 54.229637][ T7601] loop4: detected capacity change from 0 to 2048 [ 54.287629][ T7607] loop0: detected capacity change from 0 to 1024 [ 54.291800][ T7607] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 54.325401][ T7607] EXT4-fs error (device loop0): ext4_map_blocks:791: inode #3: block 2: comm syz.0.1218: lblock 2 mapped to illegal pblock 2 (length 1) [ 54.325455][ T7607] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 54.325596][ T7607] EXT4-fs error (device loop0): ext4_map_blocks:791: inode #3: block 48: comm syz.0.1218: lblock 0 mapped to illegal pblock 48 (length 1) [ 54.325610][ T7607] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 54.328290][ T7607] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.1218: Failed to acquire dquot type 0 [ 54.328318][ T7607] loop0: lost filesystem error report for type 5 error -117 [ 54.328461][ T7607] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 54.328471][ T7607] loop0: lost filesystem error report for type 5 error -117 [ 54.328583][ T7607] EXT4-fs error (device loop0): ext4_evict_inode:267: inode #11: comm syz.0.1218: mark_inode_dirty error [ 54.328595][ T7607] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 54.328668][ T7607] EXT4-fs warning (device loop0): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 54.328702][ T7607] EXT4-fs (loop0): 1 orphan inode deleted [ 54.350089][ T1637] EXT4-fs error (device loop0): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1) [ 54.352749][ T1637] EXT4-fs error (device loop0): ext4_release_dquot:7070: comm kworker/u8:5: Failed to release dquot type 0 [ 54.400755][ T7617] loop4: detected capacity change from 0 to 256 [ 54.407427][ T4799] IPVS: starting estimator thread 0... [ 54.412919][ T126] EXT4-fs error (device loop0): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 54.412949][ T126] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 54.415733][ T126] EXT4-fs error (device loop0): ext4_release_dquot:7070: comm kworker/u8:4: Failed to release dquot type 0 [ 54.415761][ T126] loop0: lost filesystem error report for type 5 error -117 [ 54.416303][ T4720] EXT4-fs error (device loop0): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 54.416316][ T4720] loop0: lost filesystem error report for type 5 error -117 [ 54.416413][ T4720] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 54.416422][ T4720] loop0: lost filesystem error report for type 5 error -117 [ 54.416487][ T4720] EXT4-fs error (device loop0): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error [ 54.416497][ T4720] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 54.432975][ T7617] FAT-fs (loop4): Directory bread(block 64) failed [ 54.435671][ T7617] FAT-fs (loop4): Directory bread(block 65) failed [ 54.436879][ T7617] FAT-fs (loop4): Directory bread(block 66) failed [ 54.438049][ T7617] FAT-fs (loop4): Directory bread(block 67) failed [ 54.439187][ T7617] FAT-fs (loop4): Directory bread(block 68) failed [ 54.440273][ T7617] FAT-fs (loop4): Directory bread(block 69) failed [ 54.441455][ T7617] FAT-fs (loop4): Directory bread(block 70) failed [ 54.442666][ T7617] FAT-fs (loop4): Directory bread(block 71) failed [ 54.443787][ T7617] FAT-fs (loop4): Directory bread(block 72) failed [ 54.444933][ T7617] FAT-fs (loop4): Directory bread(block 73) failed [ 54.498811][ T7621] IPVS: using max 57 ests per chain, 136800 per kthread [ 54.520381][ T7624] loop0: detected capacity change from 0 to 4096 [ 54.520746][ T7624] EXT4-fs: Ignoring removed mblk_io_submit option [ 54.554578][ T7624] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 54.554605][ T7624] EXT4-fs (loop0): Test dummy encryption mode enabled [ 54.582737][ T7634] loop2: detected capacity change from 0 to 2048 [ 54.633919][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 54.635521][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 54.638356][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 54.644526][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 54.646211][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 54.668461][ T7645] netlink: 532 bytes leftover after parsing attributes in process `syz.1.1235'. [ 54.763348][ T7653] sock: sock_set_timeout: `syz.4.1240' (pid 7653) tries to set negative timeout [ 54.778969][ T7657] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1239'. [ 54.794880][ T1637] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.887704][ T1637] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.932096][ T7679] Bluetooth: MGMT ver 1.23 [ 54.980631][ T1637] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.983352][ T7687] sock: sock_set_timeout: `syz.1.1250' (pid 7687) tries to set negative timeout [ 55.049614][ T7694] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1255'. [ 55.062074][ T7695] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1253'. [ 55.093628][ T1637] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.130397][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1267'. [ 55.133584][ T7702] bond0: (slave macsec1): Error -34 calling dev_set_mtu [ 55.139201][ T7709] FAT-fs (loop0): Directory bread(block 64) failed [ 55.139231][ T7709] FAT-fs (loop0): Directory bread(block 65) failed [ 55.139254][ T7709] FAT-fs (loop0): Directory bread(block 66) failed [ 55.139265][ T7709] FAT-fs (loop0): Directory bread(block 67) failed [ 55.139287][ T7709] FAT-fs (loop0): Directory bread(block 68) failed [ 55.139297][ T7709] FAT-fs (loop0): Directory bread(block 69) failed [ 55.139319][ T7709] FAT-fs (loop0): Directory bread(block 70) failed [ 55.139329][ T7709] FAT-fs (loop0): Directory bread(block 71) failed [ 55.139351][ T7709] FAT-fs (loop0): Directory bread(block 72) failed [ 55.139361][ T7709] FAT-fs (loop0): Directory bread(block 73) failed [ 55.264229][ T7636] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.264273][ T7636] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.264352][ T7636] bridge_slave_0: entered allmulticast mode [ 55.271518][ T7636] bridge_slave_0: entered promiscuous mode [ 55.304558][ T7636] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.304607][ T7636] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.304736][ T7636] bridge_slave_1: entered allmulticast mode [ 55.305233][ T7636] bridge_slave_1: entered promiscuous mode [ 55.333544][ T7721] EXT4-fs: Ignoring removed mblk_io_submit option [ 55.354236][ T7721] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 55.354262][ T7721] EXT4-fs (loop1): Test dummy encryption mode enabled [ 55.368260][ T7636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.386251][ T7636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.424540][ T7636] team0: Port device team_slave_0 added [ 55.622511][ T1637] bridge_slave_1: left allmulticast mode [ 55.622557][ T1637] bridge_slave_1: left promiscuous mode [ 55.622959][ T1637] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.631748][ T1637] bridge_slave_0: left allmulticast mode [ 55.632819][ T1637] bridge_slave_0: left promiscuous mode [ 55.634173][ T1637] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.873686][ T1637] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 55.901894][ T1637] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 55.925323][ T1637] bond0 (unregistering): Released all slaves [ 55.930378][ T7636] team0: Port device team_slave_1 added [ 55.938898][ T7636] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.941997][ T7636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.947062][ T7636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.992840][ T7636] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.992870][ T7636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.992903][ T7636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.024893][ T7636] hsr_slave_0: entered promiscuous mode [ 56.027520][ T7636] hsr_slave_1: entered promiscuous mode [ 56.029009][ T7636] debugfs: 'hsr0' already exists in 'hsr' [ 56.030096][ T7636] Cannot create hsr debugfs directory [ 56.036377][ T1637] tipc: Left network mode [ 56.200968][ T7636] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 56.210148][ T7636] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 56.237839][ T7636] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 56.240346][ T7636] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 56.242114][ T7636] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 56.272721][ T7636] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 56.274468][ T7636] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 56.282819][ T7636] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 56.437827][ T4399] 8021q: adding VLAN 0 to HW filter on device eth0 [ 56.452558][ T7817] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1299'. [ 56.458637][ T1637] hsr_slave_0: left promiscuous mode [ 56.461432][ T1637] hsr_slave_1: left promiscuous mode [ 56.462789][ T1637] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 56.464139][ T1637] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 56.466689][ T1637] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 56.466714][ T1637] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 56.474744][ T1637] veth1_macvtap: left promiscuous mode [ 56.475889][ T1637] veth0_macvtap: left promiscuous mode [ 56.476910][ T1637] veth1_vlan: left promiscuous mode [ 56.477803][ T1637] veth0_vlan: left promiscuous mode [ 56.656722][ T4723] Bluetooth: hci1: command tx timeout [ 56.675626][ T1637] team0 (unregistering): Port device team_slave_1 removed [ 56.698426][ T1637] team0 (unregistering): Port device team_slave_0 removed [ 56.822865][ T7636] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.850717][ T7636] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.857523][ T15] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.857586][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.858515][ T15] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.858535][ T15] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.894857][ T7636] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.246131][ T7636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.248227][ T7907] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 57.248264][ T7907] FAT-fs (loop2): Filesystem has been set read-only [ 57.317557][ T7916] FAT-fs (loop1): Directory bread(block 64) failed [ 57.317592][ T7916] FAT-fs (loop1): Directory bread(block 65) failed [ 57.317637][ T7916] FAT-fs (loop1): Directory bread(block 66) failed [ 57.317654][ T7916] FAT-fs (loop1): Directory bread(block 67) failed [ 57.317682][ T7916] FAT-fs (loop1): Directory bread(block 68) failed [ 57.317697][ T7916] FAT-fs (loop1): Directory bread(block 69) failed [ 57.317723][ T7916] FAT-fs (loop1): Directory bread(block 70) failed [ 57.317737][ T7916] FAT-fs (loop1): Directory bread(block 71) failed [ 57.317763][ T7916] FAT-fs (loop1): Directory bread(block 72) failed [ 57.317782][ T7916] FAT-fs (loop1): Directory bread(block 73) failed [ 57.452372][ T4399] 8021q: adding VLAN 0 to HW filter on device eth1 [ 57.540930][ T7636] veth0_vlan: entered promiscuous mode [ 57.549709][ T7636] veth1_vlan: entered promiscuous mode [ 57.557295][ T7636] veth0_macvtap: entered promiscuous mode [ 57.569559][ T7636] veth1_macvtap: entered promiscuous mode [ 57.577195][ T7636] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 57.586664][ T7636] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 57.594557][ T1927] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.594607][ T1927] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.594662][ T1927] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.594702][ T1927] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.647133][ T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.647160][ T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.653420][ T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.653452][ T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.672354][ T7960] Injecting memory failure for pfn 0x13a635 at process virtual address 0x20000000 [ 57.681706][ T7960] Memory failure: 0x13a635: Sending SIGBUS to syz.0.1350:7960 due to hardware memory corruption [ 57.681806][ T7960] Memory failure: 0x13a635: recovery action for dirty LRU page: Recovered [ 57.681833][ T7960] Injecting memory failure for pfn 0x21cf58 at process virtual address 0x20001000 [ 57.681927][ T7960] Memory failure: 0x21cf58: Sending SIGBUS to syz.0.1350:7960 due to hardware memory corruption [ 57.681947][ T7960] Memory failure: 0x21cf58: recovery action for already poisoned page: Failed [ 57.807177][ T7985] set_capacity_and_notify: 6 callbacks suppressed [ 57.808568][ T7985] loop4: detected capacity change from 0 to 7 [ 57.821178][ T7985] loop4: [CUMANA/ADFS] p1 [ADFS] p1 [ 57.822847][ T7985] loop4: partition table partially beyond EOD, truncated [ 57.824466][ T7985] loop4: p1 size 2989602745 extends beyond EOD, truncated [ 57.860004][ T7989] loop5: detected capacity change from 0 to 512 [ 57.870794][ T4703] udevd[4703]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 57.890437][ T7989] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.1362: corrupted xattr block 6: invalid header [ 57.900325][ T7989] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.1362: corrupted xattr block 6: invalid header [ 57.903340][ T7989] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.1362: corrupted xattr block 6: invalid header [ 57.909187][ T7989] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.1362: corrupted xattr block 6: invalid header [ 57.939309][ T7989] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.1362: corrupted xattr block 6: invalid header [ 57.947947][ T4399] 8021q: adding VLAN 0 to HW filter on device eth2 [ 58.440168][ T8073] loop1: detected capacity change from 0 to 512 [ 58.482082][ T4399] 8021q: adding VLAN 0 to HW filter on device eth3 [ 58.498708][ T8073] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #12: comm syz.1.1401: corrupted xattr block 6: invalid header [ 58.501075][ T8073] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #12: comm syz.1.1401: corrupted xattr block 6: invalid header [ 58.503950][ T8073] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #12: comm syz.1.1401: corrupted xattr block 6: invalid header [ 58.507423][ T8073] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #12: comm syz.1.1401: corrupted xattr block 6: invalid header [ 58.522124][ T8073] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #12: comm syz.1.1401: corrupted xattr block 6: invalid header [ 58.549513][ T8085] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1394'. [ 58.694557][ T4723] Bluetooth: hci1: command tx timeout [ 58.768508][ T8117] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1410'. [ 58.951847][ T8140] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1420'. [ 59.169022][ T8167] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1434'. [ 59.169875][ T8168] netlink: 'syz.5.1433': attribute type 10 has an invalid length. [ 59.401109][ T8198] loop0: detected capacity change from 0 to 1024 [ 59.437010][ T8196] vhci_hcd vhci_hcd.3: default hub control req: 2024 v0006 i0002 l1 [ 59.616818][ T8228] netlink: 'syz.2.1461': attribute type 1 has an invalid length. [ 59.694622][ T8241] __nla_validate_parse: 2 callbacks suppressed [ 59.694664][ T8241] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1469'. [ 59.716728][ T8243] loop1: detected capacity change from 0 to 256 [ 59.748416][ T8243] FAT-fs (loop1): Directory bread(block 64) failed [ 59.748453][ T8243] FAT-fs (loop1): Directory bread(block 65) failed [ 59.748487][ T8243] FAT-fs (loop1): Directory bread(block 66) failed [ 59.748499][ T8243] FAT-fs (loop1): Directory bread(block 67) failed [ 59.748522][ T8243] FAT-fs (loop1): Directory bread(block 68) failed [ 59.748532][ T8243] FAT-fs (loop1): Directory bread(block 69) failed [ 59.748555][ T8243] FAT-fs (loop1): Directory bread(block 70) failed [ 59.748565][ T8243] FAT-fs (loop1): Directory bread(block 71) failed [ 59.748586][ T8243] FAT-fs (loop1): Directory bread(block 72) failed [ 59.748596][ T8243] FAT-fs (loop1): Directory bread(block 73) failed [ 59.853553][ T8235] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 59.855509][ T8235] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 59.874471][ T8259] loop2: detected capacity change from 0 to 512 [ 59.878883][ T8235] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 59.899392][ T8235] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 59.899443][ T8235] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 59.923425][ T8235] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 59.928811][ T8235] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 59.928854][ T8235] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 59.933540][ T8235] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 59.935095][ T8259] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2810: inode #11: comm syz.2.1478: corrupted xattr block 95: invalid header [ 59.935143][ T8259] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 59.944870][ T8259] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1478: bg 0: block 7: invalid block bitmap [ 59.944916][ T8259] loop2: lost filesystem error report for type 5 error -117 [ 59.946076][ C1] EXT4-fs (loop2): error count since last fsck: 2 [ 59.946094][ C1] EXT4-fs (loop2): initial error at time 60: ext4_expand_extra_isize_ea:2810: inode 11 [ 59.946113][ C1] EXT4-fs (loop2): last error at time 60: ext4_validate_block_bitmap:432 [ 59.952979][ T8259] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 59.952993][ T8259] loop2: lost filesystem error report for type 5 error -117 [ 59.955952][ T8259] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2972: inode #11: comm syz.2.1478: corrupted xattr block 95: invalid header [ 59.955973][ T8259] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 59.956198][ T8259] EXT4-fs warning (device loop2): ext4_evict_inode:287: xattr delete (err -117) [ 59.956249][ T8259] EXT4-fs (loop2): 1 orphan inode deleted [ 59.962317][ T8235] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 59.962362][ T8235] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 60.032364][ T8235] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 60.323848][ T8312] loop0: detected capacity change from 0 to 1024 [ 60.330260][ T8312] EXT4-fs: Ignoring removed i_version option [ 60.330298][ T8312] EXT4-fs: inline encryption not supported [ 60.333060][ T8312] EXT4-fs (loop0): Test dummy encryption mode enabled [ 60.602028][ T8350] loop4: detected capacity change from 0 to 8192 [ 60.685978][ T8367] loop2: detected capacity change from 0 to 256 [ 60.721198][ T8367] FAT-fs (loop2): Directory bread(block 64) failed [ 60.721238][ T8367] FAT-fs (loop2): Directory bread(block 65) failed [ 60.721278][ T8367] FAT-fs (loop2): Directory bread(block 66) failed [ 60.721295][ T8367] FAT-fs (loop2): Directory bread(block 67) failed [ 60.721350][ T8367] FAT-fs (loop2): Directory bread(block 68) failed [ 60.721365][ T8367] FAT-fs (loop2): Directory bread(block 69) failed [ 60.721391][ T8367] FAT-fs (loop2): Directory bread(block 70) failed [ 60.721405][ T8367] FAT-fs (loop2): Directory bread(block 71) failed [ 60.721430][ T8367] FAT-fs (loop2): Directory bread(block 72) failed [ 60.721445][ T8367] FAT-fs (loop2): Directory bread(block 73) failed [ 60.734214][ T26] bridge0: entered promiscuous mode [ 60.860211][ T8363] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 60.860324][ T8363] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 60.860398][ T8363] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 60.860458][ T8363] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 61.109401][ T8421] loop4: detected capacity change from 0 to 1024 [ 61.109806][ T8421] EXT4-fs: Ignoring removed i_version option [ 61.109829][ T8421] EXT4-fs: inline encryption not supported [ 61.117400][ T8421] EXT4-fs (loop4): Test dummy encryption mode enabled [ 61.121805][ T8426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1556'. [ 61.226709][ T8441] EXT4-fs (loop0): orphan cleanup on readonly fs [ 61.228019][ T8441] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 61.233304][ T8441] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 61.236530][ T8441] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.1562: attempt to clear invalid blocks 2 len 1 [ 61.238978][ T8441] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 61.239048][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 61.239073][ C0] EXT4-fs (loop0): initial error at time 61: ext4_mb_generate_buddy:1317 [ 61.239099][ C0] EXT4-fs (loop0): last error at time 61: ext4_mb_generate_buddy:1317 [ 61.251072][ T8441] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1562: invalid indirect mapped block 1819239214 (level 0) [ 61.251106][ T8441] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 61.254746][ T8441] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1562: invalid indirect mapped block 1819239214 (level 1) [ 61.254784][ T8441] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 61.259581][ T8441] EXT4-fs (loop0): 1 truncate cleaned up [ 61.278446][ T8441] EXT4-fs: Ignoring removed oldalloc option [ 61.278606][ T8441] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 61.278614][ T8441] EXT4-fs: user quota file already specified [ 61.489019][ T8478] xt_l2tp: v2 tid > 0xffff: 37482740 [ 61.633496][ T8498] EXT4-fs error (device loop1): ext4_get_first_dir_block:3560: inode #11: comm syz.1.1592: directory missing '..' [ 61.664606][ T8511] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1596'. [ 61.823294][ T8533] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 61.842015][ T8533] EXT4-fs (loop4): 1 orphan inode deleted [ 61.842040][ T8533] EXT4-fs (loop4): 1 truncate cleaned up [ 62.016506][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 62.016538][ T30] audit: type=1326 audit(62.304:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.016862][ T30] audit: type=1326 audit(62.304:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023686][ T30] audit: type=1326 audit(62.315:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=226 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023705][ T30] audit: type=1326 audit(62.315:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023721][ T30] audit: type=1326 audit(62.315:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023736][ T30] audit: type=1326 audit(62.315:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=148 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023751][ T30] audit: type=1326 audit(62.315:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.023768][ T30] audit: type=1326 audit(62.315:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8561 comm="syz.4.1619" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff95d77aa8 code=0x7ffc0000 [ 62.038455][ T8564] Cannot find del_set index 14804 as target [ 62.052740][ T8568] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1621'. [ 62.065917][ T8569] EXT4-fs (loop4): orphan cleanup on readonly fs [ 62.065950][ T8569] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 62.066365][ T8569] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 62.066537][ T8569] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.1624: attempt to clear invalid blocks 2 len 1 [ 62.066550][ T8569] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 62.066898][ T8569] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1624: invalid indirect mapped block 1819239214 (level 0) [ 62.066913][ T8569] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 62.067027][ T8569] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1624: invalid indirect mapped block 1819239214 (level 1) [ 62.067039][ T8569] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 62.067250][ T8569] EXT4-fs (loop4): 1 truncate cleaned up [ 62.136769][ T8569] EXT4-fs: Ignoring removed oldalloc option [ 62.136843][ T8569] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 62.136851][ T8569] EXT4-fs: user quota file already specified [ 62.259582][ T8587] Injecting memory failure for pfn 0x11e7ee at process virtual address 0x20001000 [ 62.273742][ T8587] Memory failure: 0x11e7ee: recovery action for clean LRU page: Recovered [ 62.273844][ T8587] Injecting memory failure for pfn 0x13c773 at process virtual address 0x20002000 [ 62.279000][ T8587] Memory failure: 0x13c773: recovery action for clean LRU page: Recovered [ 62.279095][ T8587] Injecting memory failure for pfn 0x13c778 at process virtual address 0x20003000 [ 62.279176][ T8587] Memory failure: 0x13c778: recovery action for clean LRU page: Recovered [ 62.323287][ T8593] GUP no longer grows the stack in syz.2.1635 (8593): 20006000-20009000 (20004000) [ 62.323339][ T8593] CPU: 0 UID: 0 PID: 8593 Comm: syz.2.1635 Tainted: G L syzkaller #0 PREEMPT [ 62.323355][ T8593] Tainted: [L]=SOFTLOCKUP [ 62.323359][ T8593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 62.323364][ T8593] Call trace: [ 62.323367][ T8593] show_stack+0x2c/0x3c (C) [ 62.323386][ T8593] __dump_stack+0x30/0x40 [ 62.323398][ T8593] dump_stack_lvl+0xd8/0x12c [ 62.323410][ T8593] dump_stack+0x1c/0x28 [ 62.323421][ T8593] gup_vma_lookup+0x1b4/0x1d4 [ 62.323433][ T8593] fixup_user_fault+0xac/0x4d8 [ 62.323444][ T8593] fault_in_user_writeable+0x6c/0xd4 [ 62.323453][ T8593] futex_lock_pi+0x588/0x720 [ 62.323461][ T8593] do_futex+0x1dc/0x354 [ 62.323469][ T8593] __arm64_sys_futex+0x2d4/0x3f8 [ 62.323478][ T8593] invoke_syscall+0x98/0x244 [ 62.323490][ T8593] el0_svc_common+0xe8/0x23c [ 62.323501][ T8593] do_el0_svc+0x48/0x58 [ 62.323513][ T8593] el0_svc+0x64/0x260 [ 62.323521][ T8593] el0t_64_sync_handler+0x48/0x148 [ 62.323529][ T8593] el0t_64_sync+0x198/0x19c [ 62.374827][ T8600] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1637: bg 0: block 5: invalid block bitmap [ 62.374865][ T8600] loop5: lost filesystem error report for type 5 error -117 [ 62.375138][ T8600] EXT4-fs (loop5): Remounting filesystem read-only [ 62.375178][ T8600] EXT4-fs (loop5): 2 truncates cleaned up [ 62.381854][ T8600] EXT4-fs warning (device loop5): empty_inline_dir:1785: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 62.394429][ T8604] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1640'. [ 62.727145][ T8637] EXT4-fs error (device loop4): ext4_get_first_dir_block:3560: inode #11: comm syz.4.1656: directory missing '..' [ 62.885751][ T4723] Bluetooth: hci4: command 0x0c1a tx timeout [ 62.885822][ T4723] Bluetooth: hci3: command 0x0c1a tx timeout [ 62.885856][ T4723] Bluetooth: hci2: command 0x0c1a tx timeout [ 62.889295][ T50] Bluetooth: hci1: command 0x0419 tx timeout [ 63.038409][ T8670] set_capacity_and_notify: 9 callbacks suppressed [ 63.039781][ T8670] loop4: detected capacity change from 0 to 1024 [ 63.041392][ T8670] EXT4-fs: Ignoring removed oldalloc option [ 63.042432][ T8670] EXT4-fs: Ignoring removed nobh option [ 63.148667][ T8679] loop4: detected capacity change from 0 to 512 [ 63.150211][ T8679] EXT4-fs: Ignoring removed nomblk_io_submit option [ 63.153377][ T8679] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 63.154811][ T8679] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8840c01d, mo2=0102] [ 63.161625][ T8679] EXT4-fs (loop4): couldn't mount RDWR because of unsupported optional features (80) [ 63.163811][ T8679] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features [ 63.187161][ T8679] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.1673: dx entry: limit 65535 != root limit 120 [ 63.187204][ T8679] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.1673: Corrupt directory, running e2fsck is recommended [ 63.187284][ T8679] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 3: comm syz.4.1673: path /337/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0 [ 63.348186][ T8697] loop0: detected capacity change from 0 to 512 [ 63.364402][ T8697] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1684: bg 0: block 5: invalid block bitmap [ 63.364435][ T8697] loop0: lost filesystem error report for type 5 error -117 [ 63.364657][ T8697] EXT4-fs (loop0): Remounting filesystem read-only [ 63.364702][ T8697] EXT4-fs (loop0): 2 truncates cleaned up [ 63.382549][ T8697] EXT4-fs warning (device loop0): empty_inline_dir:1785: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 63.558919][ T8718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1692'. [ 63.673370][ T8724] loop2: detected capacity change from 0 to 4096 [ 63.723663][ T8732] loop0: detected capacity change from 0 to 1024 [ 63.724151][ T8732] EXT4-fs: Ignoring removed oldalloc option [ 63.724180][ T8732] EXT4-fs: Ignoring removed nobh option [ 63.966877][ T8758] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1710'. [ 63.976699][ T8760] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_team, syncid = 4, id = 0 [ 64.030079][ T8765] macsec1: entered promiscuous mode [ 64.030119][ T8765] dummy0: entered promiscuous mode [ 64.030268][ T8765] macsec1: entered allmulticast mode [ 64.030277][ T8765] dummy0: entered allmulticast mode [ 64.044707][ T8765] dummy0: left allmulticast mode [ 64.075236][ T9] dummy0: left promiscuous mode [ 64.075381][ T8771] tipc: Enabling of bearer rejected, failed to enable media [ 64.149319][ T1532] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.149373][ T1532] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.158234][ T8777] loop0: detected capacity change from 0 to 512 [ 64.165009][ T8777] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2810: inode #11: comm syz.0.1729: corrupted xattr block 95: invalid header [ 64.165056][ T8777] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 64.165313][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 64.165328][ C0] EXT4-fs (loop0): initial error at time 64: ext4_expand_extra_isize_ea:2810: inode 11 [ 64.165347][ C0] EXT4-fs (loop0): last error at time 64: ext4_expand_extra_isize_ea:2810: inode 11 [ 64.167173][ T8777] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1729: bg 0: block 7: invalid block bitmap [ 64.167189][ T8777] loop0: lost filesystem error report for type 5 error -117 [ 64.168753][ T8777] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 64.168777][ T8777] loop0: lost filesystem error report for type 5 error -117 [ 64.169068][ T8777] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2972: inode #11: comm syz.0.1729: corrupted xattr block 95: invalid header [ 64.169085][ T8777] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 64.169995][ T8777] EXT4-fs warning (device loop0): ext4_evict_inode:287: xattr delete (err -117) [ 64.170046][ T8777] EXT4-fs (loop0): 1 orphan inode deleted [ 64.170770][ T8777] EXT4-fs mount: 76 callbacks suppressed [ 64.170782][ T8777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 64.171347][ T24] cfg80211: failed to load regulatory.db [ 64.219031][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.455140][ T8796] loop0: detected capacity change from 0 to 2048 [ 64.474183][ T8796] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 64.510643][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.579268][ T8807] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 64.588468][ T8807] @0Ù: renamed from bond_slave_1 (while UP) [ 64.831600][ T8821] loop0: detected capacity change from 0 to 256 [ 64.834498][ T8821] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 64.948991][ T50] Bluetooth: hci1: command 0x0419 tx timeout [ 64.949024][ T4723] Bluetooth: hci3: command 0x0c1a tx timeout [ 64.949033][ T50] Bluetooth: hci4: command 0x0c1a tx timeout [ 64.949094][ T4718] Bluetooth: hci2: command 0x0c1a tx timeout [ 64.979433][ T8836] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 65.037514][ T8836] @0Ù: renamed from bond_slave_1 (while UP) [ 65.168141][ T8853] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1754'. [ 65.222912][ T8855] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1755'. [ 65.227305][ T8858] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_team, syncid = 4, id = 0 [ 65.385265][ T8870] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1761'. [ 65.462651][ T8878] loop4: detected capacity change from 0 to 1024 [ 65.464428][ T8878] EXT4-fs: Ignoring removed bh option [ 65.470463][ T8878] EXT4-fs: Mount option(s) incompatible with ext3 [ 65.755287][ T8900] loop5: detected capacity change from 0 to 2048 [ 65.795843][ T8900] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 65.875368][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.876427][ T8912] macsec1: entered promiscuous mode [ 65.876440][ T8912] dummy0: entered promiscuous mode [ 65.876503][ T8912] macsec1: entered allmulticast mode [ 65.876510][ T8912] dummy0: entered allmulticast mode [ 65.883008][ T8912] dummy0: left allmulticast mode [ 65.930861][ T9] dummy0: left promiscuous mode [ 65.946816][ T8918] syz.2.1783 uses obsolete (PF_INET,SOCK_PACKET) [ 65.982820][ T8920] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1785'. [ 65.982862][ T8920] block nbd1: Unsupported socket: should be TCP or UNIX. [ 66.227877][ T8948] proc: Bad value for 'gid' [ 66.267315][ T8952] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1800'. [ 66.613654][ T8982] EXT4-fs: Ignoring removed bh option [ 66.614950][ T8982] EXT4-fs: Mount option(s) incompatible with ext3 [ 66.715614][ T8996] FAT-fs (loop5): Directory bread(block 64) failed [ 66.715651][ T8996] FAT-fs (loop5): Directory bread(block 65) failed [ 66.715678][ T8996] FAT-fs (loop5): Directory bread(block 66) failed [ 66.715690][ T8996] FAT-fs (loop5): Directory bread(block 67) failed [ 66.715713][ T8996] FAT-fs (loop5): Directory bread(block 68) failed [ 66.715724][ T8996] FAT-fs (loop5): Directory bread(block 69) failed [ 66.715745][ T8996] FAT-fs (loop5): Directory bread(block 70) failed [ 66.715756][ T8996] FAT-fs (loop5): Directory bread(block 71) failed [ 66.715782][ T8996] FAT-fs (loop5): Directory bread(block 72) failed [ 66.715794][ T8996] FAT-fs (loop5): Directory bread(block 73) failed [ 66.794294][ T8998] CUSE: unknown device info "KJ éH+ßãÛ¤2Lh¸änLþ1Õ`†CcÝòn§õ†îì8­¨×0º©®(À3Õ¶ië®â>f¡Çè_Ù®,°ð<Ö_e¤FÀÆ" [ 66.794328][ T8998] CUSE: unknown device info "3ÜŸ•,²¥Ì˜õ" [ 66.794709][ T8998] CUSE: unknown device info "Jô©Ð2S Zûü !e/ëÅúãõž‘­J½+-n´¸a4¼ßØÁDÿ|G$öó­5O~©q ´ƒ [ 66.794709][ T8998] f𳦧ìýzóÚXÁSAäx¡Ùjª½T¾Ç”¨åw— üæšxRÉQ÷®(hÒj pøVdY0¨Æ|M?2JÿúIšvö^RÎ@´å" [ 66.794724][ T8998] CUSE: unknown device info "!ToÛ}Ý&|L+U²®oæõϲ±„Ð"–¨FstVµ:׌E• gJºî‹ÂÁ<@cÁ”²ûŽ4ÊTáM˜M|©·š‚ô" [ 66.794730][ T8998] CUSE: DEVNAME unspecified [ 66.999384][ T4718] Bluetooth: hci2: command 0x0c1a tx timeout [ 66.999403][ T50] Bluetooth: hci4: command 0x0c1a tx timeout [ 67.008317][ T50] Bluetooth: hci3: command 0x0c1a tx timeout [ 67.008340][ T4718] Bluetooth: hci1: command 0x0419 tx timeout [ 67.112603][ T9022] netlink: 'syz.2.1834': attribute type 2 has an invalid length. [ 67.112634][ T9022] netlink: 'syz.2.1834': attribute type 1 has an invalid length. [ 67.112979][ T9022] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1834'. [ 67.240328][ T9034] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1838'. [ 67.242652][ T9034] block nbd1: Unsupported socket: should be TCP or UNIX. [ 67.546511][ T9072] usb usb8: usbfs: process 9072 (syz.2.1852) did not claim interface 0 before use [ 67.560118][ T9074] netlink: 'syz.4.1851': attribute type 2 has an invalid length. [ 67.560159][ T9074] netlink: 'syz.4.1851': attribute type 1 has an invalid length. [ 67.602260][ T9081] Filesystem uses "lzo" compression. This is not supported [ 67.801758][ T9103] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621 [ 67.850834][ T9107] CUSE: unknown device info "KJ éH+ßãÛ¤2Lh¸änLþ1Õ`†CcÝòn§õ†îì8­¨×0º©®(À3Õ¶ië®â>f¡Çè_Ù®,°ð<Ö_e¤FÀÆ" [ 67.850866][ T9107] CUSE: unknown device info "3ÜŸ•,²¥Ì˜õ" [ 67.850890][ T9107] CUSE: unknown device info "Jô©Ð2S Zûü !e/ëÅúãõž‘­J½+-n´¸a4¼ßØÁDÿ|G$öó­5O~©q ´ƒ [ 67.850890][ T9107] f𳦧ìýzóÚXÁSAäx¡Ùjª½T¾Ç”¨åw— üæšxRÉQ÷®(hÒj pøVdY0¨Æ|M?2JÿúIšvö^RÎ@´å" [ 67.850904][ T9107] CUSE: unknown device info "!ToÛ}Ý&|L+U²®oæõϲ±„Ð"–¨FstVµ:׌E• gJºî‹ÂÁ<@cÁ”²ûŽ4ÊTáM˜M|©·š‚ô" [ 67.850915][ T9107] CUSE: DEVNAME unspecified [ 68.016879][ T9119] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1873'. [ 68.264778][ T9146] set_capacity_and_notify: 4 callbacks suppressed [ 68.265962][ T9146] loop4: detected capacity change from 0 to 1024 [ 68.325696][ T9146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.365037][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.381543][ T9157] netlink: 'syz.0.1890': attribute type 2 has an invalid length. [ 68.381580][ T9157] netlink: 'syz.0.1890': attribute type 1 has an invalid length. [ 68.381606][ T9157] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1890'. [ 68.431476][ T9159] loop4: detected capacity change from 0 to 2048 [ 68.469135][ T9159] loop4: p2 < > p4 [ 68.475965][ T9159] loop4: p4 size 8192 extends beyond EOD, truncated [ 68.537134][ T9171] binder: 9170:9171 ioctl c018620c 20000100 returned -22 [ 68.608159][ T4703] udevd[4703]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 68.614424][ T9181] netlink: 'syz.0.1898': attribute type 2 has an invalid length. [ 68.617858][ T9181] netlink: 'syz.0.1898': attribute type 1 has an invalid length. [ 68.619801][ T4705] udevd[4705]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 68.814745][ T9199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1907'. [ 68.835080][ T9201] usb usb8: usbfs: process 9201 (syz.0.1906) did not claim interface 0 before use [ 68.909468][ T9207] tipc: Enabling of bearer rejected, failed to enable media [ 68.967859][ T9220] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621 [ 69.061655][ T50] Bluetooth: hci1: command 0x0419 tx timeout [ 69.278589][ T9258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.341065][ T9258] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.750623][ T9312] macsec1: entered promiscuous mode [ 69.750655][ T9312] virt_wifi0: entered promiscuous mode [ 69.797068][ T9315] binder: 9314:9315 ioctl c018620c 20000100 returned -22 [ 69.822590][ T9318] vivid-000: ================= START STATUS ================= [ 69.822620][ T9318] vivid-000: Test Pattern: 75% Colorbar [ 69.822647][ T9318] vivid-000: Fill Percentage of Frame: 100 [ 69.822660][ T9318] vivid-000: Horizontal Movement: No Movement [ 69.822671][ T9318] vivid-000: Vertical Movement: No Movement [ 69.822681][ T9318] vivid-000: OSD Text Mode: All [ 69.822691][ T9318] vivid-000: Show Border: false [ 69.822700][ T9318] vivid-000: Show Square: false [ 69.822708][ T9318] vivid-000: Sensor Flipped Horizontally: false [ 69.822717][ T9318] vivid-000: Sensor Flipped Vertically: false [ 69.822726][ T9318] vivid-000: Insert SAV Code in Image: false [ 69.822735][ T9318] vivid-000: Insert EAV Code in Image: false [ 69.822745][ T9318] vivid-000: Insert Video Guard Band: false [ 69.822754][ T9318] vivid-000: Reduced Framerate: false [ 69.822763][ T9318] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator [ 69.822777][ T9318] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator [ 69.822787][ T9318] vivid-000: Enable Capture Cropping: true grabbed [ 69.822799][ T9318] vivid-000: Enable Capture Composing: true grabbed [ 69.822811][ T9318] vivid-000: Enable Capture Scaler: true grabbed [ 69.822822][ T9318] vivid-000: Timestamp Source: End of Frame [ 69.822831][ T9318] vivid-000: Colorspace: SMPTE 170M [ 69.822840][ T9318] vivid-000: Transfer Function: Default [ 69.822849][ T9318] vivid-000: Y'CbCr Encoding: Default [ 69.822857][ T9318] vivid-000: HSV Encoding: Hue 0-179 [ 69.822866][ T9318] vivid-000: Quantization: Default [ 69.822875][ T9318] vivid-000: Apply Alpha To Red Only: false [ 69.822884][ T9318] vivid-000: Standard Aspect Ratio: 4x3 [ 69.822893][ T9318] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 69.822906][ T9318] vivid-000: DV Timings: 640x480p59 inactive [ 69.822917][ T9318] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 69.822927][ T9318] vivid-000: Maximum EDID Blocks: 2 [ 69.822935][ T9318] vivid-000: Limited RGB Range (16-235): false [ 69.822945][ T9318] vivid-000: Rx RGB Quantization Range: Automatic [ 69.822954][ T9318] vivid-000: Power Present: 0x00000001 [ 69.822964][ T9318] tpg source WxH: 720x576 (Y'CbCr) [ 69.822969][ T9318] tpg field: 4 [ 69.822972][ T9318] tpg crop: (0,8)/16x16 [ 69.822978][ T9318] tpg compose: (0,0)/64x64 [ 69.822983][ T9318] tpg colorspace: 1 [ 69.822986][ T9318] tpg transfer function: 0/1 [ 69.822990][ T9318] tpg Y'CbCr encoding: 0/1 [ 69.822994][ T9318] tpg quantization: 0/2 [ 69.822998][ T9318] tpg RGB range: 0/2 [ 69.823002][ T9318] vivid-000: ================== END STATUS ================== [ 69.977548][ T9333] loop0: detected capacity change from 0 to 1024 [ 70.036329][ T9333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.043465][ T9339] loop2: detected capacity change from 0 to 256 [ 70.059983][ T9347] loop4: detected capacity change from 0 to 128 [ 70.098282][ T9347] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 70.108575][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.165823][ T4722] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 70.201712][ T9359] tipc: Enabling of bearer rejected, failed to enable media [ 70.621121][ T9401] vivid-000: ================= START STATUS ================= [ 70.621151][ T9401] vivid-000: Test Pattern: 75% Colorbar [ 70.621194][ T9401] vivid-000: Fill Percentage of Frame: 100 [ 70.621220][ T9401] vivid-000: Horizontal Movement: No Movement [ 70.621244][ T9401] vivid-000: Vertical Movement: No Movement [ 70.621265][ T9401] vivid-000: OSD Text Mode: All [ 70.621286][ T9401] vivid-000: Show Border: false [ 70.621307][ T9401] vivid-000: Show Square: false [ 70.621328][ T9401] vivid-000: Sensor Flipped Horizontally: false [ 70.621350][ T9401] vivid-000: Sensor Flipped Vertically: false [ 70.621370][ T9401] vivid-000: Insert SAV Code in Image: false [ 70.621390][ T9401] vivid-000: Insert EAV Code in Image: false [ 70.621410][ T9401] vivid-000: Insert Video Guard Band: false [ 70.621430][ T9401] vivid-000: Reduced Framerate: false [ 70.621450][ T9401] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator [ 70.621472][ T9401] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator [ 70.621492][ T9401] vivid-000: Enable Capture Cropping: true grabbed [ 70.621519][ T9401] vivid-000: Enable Capture Composing: true grabbed [ 70.621545][ T9401] vivid-000: Enable Capture Scaler: true grabbed [ 70.621569][ T9401] vivid-000: Timestamp Source: End of Frame [ 70.621588][ T9401] vivid-000: Colorspace: SMPTE 170M [ 70.621607][ T9401] vivid-000: Transfer Function: Default [ 70.621627][ T9401] vivid-000: Y'CbCr Encoding: Default [ 70.621645][ T9401] vivid-000: HSV Encoding: Hue 0-179 [ 70.621665][ T9401] vivid-000: Quantization: Default [ 70.621683][ T9401] vivid-000: Apply Alpha To Red Only: false [ 70.621703][ T9401] vivid-000: Standard Aspect Ratio: 4x3 [ 70.621722][ T9401] vivid-000: DV Timings Signal Mode: Current DV Timings inactive [ 70.621747][ T9401] vivid-000: DV Timings: 640x480p59 inactive [ 70.621773][ T9401] vivid-000: DV Timings Aspect Ratio: Source Width x Height [ 70.621796][ T9401] vivid-000: Maximum EDID Blocks: 2 [ 70.621817][ T9401] vivid-000: Limited RGB Range (16-235): false [ 70.621836][ T9401] vivid-000: Rx RGB Quantization Range: Automatic [ 70.621856][ T9401] vivid-000: Power Present: 0x00000001 [ 70.621876][ T9401] tpg source WxH: 720x576 (Y'CbCr) [ 70.621886][ T9401] tpg field: 4 [ 70.621893][ T9401] tpg crop: (0,8)/16x16 [ 70.621903][ T9401] tpg compose: (0,0)/64x64 [ 70.621911][ T9401] tpg colorspace: 1 [ 70.621918][ T9401] tpg transfer function: 0/1 [ 70.621926][ T9401] tpg Y'CbCr encoding: 0/1 [ 70.621933][ T9401] tpg quantization: 0/2 [ 70.621941][ T9401] tpg RGB range: 0/2 [ 70.621948][ T9401] vivid-000: ================== END STATUS ================== [ 70.693782][ T9408] macsec1: entered promiscuous mode [ 70.694871][ T9408] virt_wifi0: entered promiscuous mode [ 70.782516][ T9418] __nla_validate_parse: 5 callbacks suppressed [ 70.782555][ T9418] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1991'. [ 70.850410][ T9426] netlink: 'syz.5.2004': attribute type 3 has an invalid length. [ 70.919803][ T9430] sctp: [Deprecated]: syz.2.1995 (pid 9430) Use of int in maxseg socket option. [ 70.919803][ T9430] Use struct sctp_assoc_value instead [ 70.961822][ T9435] loop4: detected capacity change from 0 to 256 [ 70.985778][ T9437] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1998'. [ 71.217105][ T9456] loop0: detected capacity change from 0 to 256 [ 71.298564][ T9456] FAT-fs (loop0): Directory bread(block 64) failed [ 71.298605][ T9456] FAT-fs (loop0): Directory bread(block 65) failed [ 71.299383][ T9456] FAT-fs (loop0): Directory bread(block 66) failed [ 71.299398][ T9456] FAT-fs (loop0): Directory bread(block 67) failed [ 71.299422][ T9456] FAT-fs (loop0): Directory bread(block 68) failed [ 71.299433][ T9456] FAT-fs (loop0): Directory bread(block 69) failed [ 71.299456][ T9456] FAT-fs (loop0): Directory bread(block 70) failed [ 71.299466][ T9456] FAT-fs (loop0): Directory bread(block 71) failed [ 71.299488][ T9456] FAT-fs (loop0): Directory bread(block 72) failed [ 71.299498][ T9456] FAT-fs (loop0): Directory bread(block 73) failed [ 71.422154][ T9468] loop2: detected capacity change from 0 to 128 [ 71.432047][ T9468] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 71.457897][ T4711] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 71.517944][ T9473] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2017'. [ 71.646164][ T9482] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 72.067528][ T9519] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2037'. [ 72.133181][ T9522] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2038'. [ 72.765957][ T9580] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2064'. [ 72.929579][ T9598] tipc: Enabling of bearer rejected, failed to enable media [ 73.579957][ T9649] binder: BINDER_SET_CONTEXT_MGR already set [ 73.579984][ T9649] binder: 9648:9649 ioctl 40046207 0 returned -16 [ 73.682839][ T9659] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2099'. [ 73.720615][ T9665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2102'. [ 73.839701][ T9671] fusectl: Unknown parameter 'fd' [ 73.867004][ T9673] tipc: Enabling of bearer rejected, failed to enable media [ 74.245322][ T9700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2118'. [ 74.373662][ T9709] netlink: 'syz.2.2122': attribute type 1 has an invalid length. [ 74.445491][ T9712] tipc: Enabling of bearer rejected, failed to enable media [ 74.502920][ T9717] loop5: detected capacity change from 0 to 1024 [ 74.537885][ T9717] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 74.567232][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 74.650044][ T9724] loop5: detected capacity change from 0 to 4096 [ 74.662537][ T9724] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 74.677518][ T9724] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.704292][ T9724] EXT4-fs (loop5): Online resizing not supported with bigalloc [ 74.711066][ T9729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2132'. [ 74.729363][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.794571][ T9735] smc: net device vcan0 applied user defined pnetid SYZ1 [ 74.802039][ T9737] tmpfs: Cannot enable quota on remount [ 75.262278][ T9767] netlink: 'syz.0.2150': attribute type 1 has an invalid length. [ 75.422251][ T9782] tipc: Enabling of bearer rejected, failed to enable media [ 75.639989][ T9799] vhci_hcd vhci_hcd.1: invalid port number 236 [ 75.641299][ T9799] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 75.777739][ T9812] loop2: detected capacity change from 0 to 1024 [ 75.799746][ T9812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 75.868763][ T4711] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 75.888628][ T9820] nbd: must specify at least one socket [ 75.961318][ T9822] __nla_validate_parse: 1 callbacks suppressed [ 75.964720][ T9822] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2174'. [ 75.972612][ T9822] veth3: entered promiscuous mode [ 76.138650][ T9833] loop2: detected capacity change from 0 to 4096 [ 76.149237][ T9833] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 76.156526][ T9833] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.183748][ T9833] EXT4-fs (loop2): Online resizing not supported with bigalloc [ 76.225333][ T4711] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.320368][ T9846] loop0: detected capacity change from 0 to 512 [ 76.347514][ T9846] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 76.360729][ T9846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 76.460896][ T9846] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 76.463296][ T9846] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 76.465283][ T9846] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.2187: Failed to acquire dquot type 0 [ 76.471934][ T9846] overlayfs: failed to set uuid (/file0, err=-117); falling back to uuid=null. [ 76.474155][ T9846] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 76.481198][ T9846] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 76.483140][ T9846] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.2187: Failed to acquire dquot type 0 [ 76.501143][ T9846] overlayfs: failed to verify upper root origin [ 76.570521][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 76.588619][ T9859] vhci_hcd vhci_hcd.1: invalid port number 236 [ 76.588653][ T9859] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 76.842968][ T9871] nbd: must specify at least one socket [ 77.308956][ T9885] loop4: detected capacity change from 0 to 512 [ 77.327572][ T9885] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 77.327693][ T9885] EXT4-fs (loop4): orphan cleanup on readonly fs [ 77.327991][ T9885] EXT4-fs warning (device loop4): ext4_enable_quotas:7269: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 77.329299][ T9885] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 77.336848][ T9885] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #13: comm syz.4.2204: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 77.336893][ T9885] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 77.337200][ T9885] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.2204: couldn't read orphan inode 13 (err -117) [ 77.337219][ T9885] loop4: lost filesystem error report for type 5 error -117 [ 77.337798][ T9885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 77.399529][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.496596][ T9894] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 77.642166][ T4718] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 77.642772][ T4718] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 77.643090][ T4718] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 77.643703][ T4718] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 77.643940][ T4718] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 77.833271][ T9927] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2220'. [ 77.973481][ T1983] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.976447][ T9937] loop0: detected capacity change from 0 to 1024 [ 77.981940][ T9937] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.995911][ T9937] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c028, mo2=0102] [ 77.995963][ T9937] System zones: 0-1, 3-12 [ 77.996539][ T9937] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.053348][ T9937] EXT4-fs error (device loop0): __ext4_remount:6837: comm syz.0.2224: Abort forced by user [ 78.055508][ T9937] EXT4-fs (loop0): Remounting filesystem read-only [ 78.055536][ T9937] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. [ 78.055767][ T9944] netlink: 'syz.2.2226': attribute type 3 has an invalid length. [ 78.070141][ T9946] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2236'. [ 78.110722][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.136714][ T9949] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2229'. [ 78.140633][ T1983] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.282006][ T1983] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.310275][ T9901] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.311835][ T9901] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.313194][ T9901] bridge_slave_0: entered allmulticast mode [ 78.314814][ T9901] bridge_slave_0: entered promiscuous mode [ 78.317179][ T9901] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.320369][ T9901] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.320475][ T9901] bridge_slave_1: entered allmulticast mode [ 78.320948][ T9901] bridge_slave_1: entered promiscuous mode [ 78.329765][ T9901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.330735][ T9901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.337455][ T9901] team0: Port device team_slave_0 added [ 78.339008][ T9901] team0: Port device team_slave_1 added [ 78.344784][ T9901] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.345166][ T9901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.345194][ T9901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.345756][ T9901] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.345763][ T9901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.345779][ T9901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.357106][ T9901] hsr_slave_0: entered promiscuous mode [ 78.357445][ T9901] hsr_slave_1: entered promiscuous mode [ 78.394076][ T9972] loop5: detected capacity change from 0 to 1024 [ 78.394520][ T9972] EXT4-fs: Ignoring removed nomblk_io_submit option [ 78.424418][ T9972] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c028, mo2=0102] [ 78.424479][ T9972] System zones: 0-1, 3-12 [ 78.425047][ T9972] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.435467][ T1983] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.469052][ T9984] loop4: detected capacity change from 0 to 2048 [ 78.478776][ T9972] EXT4-fs error (device loop5): __ext4_remount:6837: comm syz.5.2239: Abort forced by user [ 78.481815][ T9972] EXT4-fs (loop5): Remounting filesystem read-only [ 78.483052][ T9972] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 78.493741][ T9984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.505986][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.552634][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.604419][ T9901] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 78.610410][ T9991] loop5: detected capacity change from 0 to 128 [ 78.618019][ T9901] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 78.625419][ T9901] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 78.625979][ T9991] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 78.637224][ T9901] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 78.637629][ T9901] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 78.638780][ T9991] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 78.655499][ T9901] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 78.666624][ T9997] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2249'. [ 78.691098][ T7636] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 78.715508][ T9901] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 78.727771][ T9901] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 78.847380][ T1983] bridge_slave_1: left allmulticast mode [ 78.847412][ T1983] bridge_slave_1: left promiscuous mode [ 78.847569][ T1983] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.850540][ T1983] bridge_slave_0: left allmulticast mode [ 78.850552][ T1983] bridge_slave_0: left promiscuous mode [ 78.850613][ T1983] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.870339][T10029] dlm: non-version read from control device 8224 [ 79.001517][ T1983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 79.037715][ T1983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 79.056784][ T1983] bond0 (unregistering): Released all slaves [ 79.065351][T10031] netem: change failed [ 79.086213][T10038] dvmrp5: entered allmulticast mode [ 79.216093][ T1983] IPVS: stopping backup sync thread 5985 ... [ 79.269739][ T9901] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.383258][ T9901] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.411403][T10082] dvmrp5: entered allmulticast mode [ 79.435633][ T1721] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.435682][ T1721] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.436238][ T1721] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.436260][ T1721] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.489630][ T4399] 8021q: adding VLAN 0 to HW filter on device eth4 [ 79.632767][ T30] audit: type=1326 audit(80.041:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.632810][ T30] audit: type=1326 audit(80.041:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.642683][ T30] audit: type=1326 audit(80.051:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=199 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.642724][ T30] audit: type=1326 audit(80.051:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.647059][ T30] audit: type=1326 audit(80.051:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=262 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.647079][ T30] audit: type=1326 audit(80.051:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10114 comm="syz.0.2295" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbc377aa8 code=0x7ffc0000 [ 79.647120][ T50] Bluetooth: hci5: command tx timeout [ 79.703050][T10126] loop4: detected capacity change from 0 to 1024 [ 79.705612][T10124] loop5: detected capacity change from 0 to 512 [ 79.707656][T10124] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 79.721913][T10126] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 79.728998][T10124] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.2297: bg 0: block 104: invalid block bitmap [ 79.729034][T10124] loop5: lost filesystem error report for type 5 error -117 [ 79.729601][T10124] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 79.729615][T10124] loop5: lost filesystem error report for type 5 error -117 [ 79.730349][T10124] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2297: invalid indirect mapped block 1 (level 1) [ 79.730367][T10124] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 79.730661][T10124] EXT4-fs (loop5): 1 truncate cleaned up [ 79.731300][T10124] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.759125][ T1983] hsr_slave_0: left promiscuous mode [ 79.766366][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 79.768132][ T1983] hsr_slave_1: left promiscuous mode [ 79.769396][ T1983] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 79.769411][ T1983] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 79.777949][ T1983] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 79.777987][ T1983] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 79.785586][ T1983] veth1_macvtap: left promiscuous mode [ 79.785629][ T1983] veth0_macvtap: left promiscuous mode [ 79.785667][ T1983] veth1_vlan: left promiscuous mode [ 79.785691][ T1983] veth0_vlan: left promiscuous mode [ 79.933433][ T1983] team0 (unregistering): Port device team_slave_1 removed [ 79.938753][ T1983] team0 (unregistering): Port device team_slave_0 removed [ 80.000965][T10136] netem: change failed [ 80.010883][ T4399] 8021q: adding VLAN 0 to HW filter on device eth5 [ 80.106400][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.267065][ T9901] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.304461][ T1983] IPVS: stop unused estimator thread 0... [ 80.437016][ T4399] 8021q: adding VLAN 0 to HW filter on device eth7 [ 80.493596][ T9901] veth0_vlan: entered promiscuous mode [ 80.505904][ T9901] veth1_vlan: entered promiscuous mode [ 80.543278][ T9901] veth0_macvtap: entered promiscuous mode [ 80.545919][ T9901] veth1_macvtap: entered promiscuous mode [ 80.552066][ T9901] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.561681][ T9901] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.627139][ T1927] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.627405][ T1927] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.627426][ T1927] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.627443][ T1927] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.718015][T10244] loop0: detected capacity change from 0 to 512 [ 80.763447][ T1927] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.763479][ T1927] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.768183][T10244] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2329: invalid block [ 80.768249][T10244] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 80.771333][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 80.771348][ C0] EXT4-fs (loop0): initial error at time 81: ext4_get_branch:178: inode 11: block 4294967295 [ 80.771369][ C0] EXT4-fs (loop0): last error at time 81: ext4_get_branch:178: inode 11: block 4294967295 [ 80.782451][T10244] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2329: invalid indirect mapped block 4294967295 (level 1) [ 80.782493][T10244] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 80.785344][T10244] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2329: invalid indirect mapped block 4294967295 (level 1) [ 80.785389][T10244] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 80.791542][T10244] EXT4-fs (loop0): 2 truncates cleaned up [ 80.792018][T10244] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.813057][ T1927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.813090][ T1927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.832815][T10247] loop4: detected capacity change from 0 to 512 [ 80.833187][T10247] EXT4-fs: Ignoring removed nomblk_io_submit option [ 80.850382][T10247] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 80.850413][T10247] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 80.866485][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.887388][T10249] syz.5.2331 (10249) used obsolete PPPIOCDETACH ioctl [ 80.892714][T10247] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.2330: Allocating blocks 41-42 which overlap fs metadata [ 80.892756][T10247] loop4: lost filesystem error report for type 5 error -117 [ 80.893943][T10247] EXT4-fs (loop4): Remounting filesystem read-only [ 80.894168][T10247] EXT4-fs (loop4): 1 truncate cleaned up [ 80.894639][T10247] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.910470][T10254] loop6: detected capacity change from 0 to 256 [ 80.966661][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.024051][ T4399] 8021q: adding VLAN 0 to HW filter on device eth6 [ 81.200374][T10286] loop5: detected capacity change from 0 to 512 [ 81.209730][T10286] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2342: invalid block [ 81.209765][T10286] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 81.212218][T10286] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2342: invalid indirect mapped block 4294967295 (level 1) [ 81.212249][T10286] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 81.216525][T10286] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2342: invalid indirect mapped block 4294967295 (level 1) [ 81.216551][T10286] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 81.218206][ C0] EXT4-fs (loop5): error count since last fsck: 3 [ 81.218221][ C0] EXT4-fs (loop5): initial error at time 81: ext4_get_branch:178: inode 11: block 4294967295 [ 81.218250][ C0] EXT4-fs (loop5): last error at time 81: ext4_free_branches:1023: inode 11 [ 81.227515][T10286] EXT4-fs (loop5): 2 truncates cleaned up [ 81.230954][T10286] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.316402][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.389237][ T50] Bluetooth: hci3: ISO packet too small [ 81.528308][T10309] loop5: detected capacity change from 0 to 512 [ 81.528753][T10309] EXT4-fs: Ignoring removed oldalloc option [ 81.529050][T10309] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 81.547150][T10309] EXT4-fs (loop5): 1 truncate cleaned up [ 81.547637][T10309] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.588639][T10315] loop0: detected capacity change from 0 to 256 [ 81.591387][T10313] netlink: 296 bytes leftover after parsing attributes in process `syz.4.2355'. [ 81.618701][T10315] FAT-fs (loop0): Directory bread(block 64) failed [ 81.619979][T10315] FAT-fs (loop0): Directory bread(block 65) failed [ 81.621307][T10315] FAT-fs (loop0): Directory bread(block 66) failed [ 81.622553][T10315] FAT-fs (loop0): Directory bread(block 67) failed [ 81.623881][T10315] FAT-fs (loop0): Directory bread(block 68) failed [ 81.625426][T10315] FAT-fs (loop0): Directory bread(block 69) failed [ 81.625500][T10315] FAT-fs (loop0): Directory bread(block 70) failed [ 81.625522][T10315] FAT-fs (loop0): Directory bread(block 71) failed [ 81.625562][T10315] FAT-fs (loop0): Directory bread(block 72) failed [ 81.625583][T10315] FAT-fs (loop0): Directory bread(block 73) failed [ 81.659691][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.679940][T10315] bio_check_eod: 1424 callbacks suppressed [ 81.679980][T10315] syz.0.2356: attempt to access beyond end of device [ 81.679980][T10315] loop0: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 81.716320][ T50] Bluetooth: hci5: command tx timeout [ 81.794286][T10333] Dead loop on virtual device ip6_vti0 (net 37), fix it urgently! [ 81.857277][T10343] loop4: detected capacity change from 0 to 512 [ 81.875230][T10343] EXT4-fs error (device loop4): dx_probe:791: inode #2: comm syz.4.2369: Attempting to read directory block (0) that is past i_size (256) [ 81.876553][T10346] netlink: 296 bytes leftover after parsing attributes in process `syz.2.2370'. [ 81.880324][T10343] loop4: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 81.882746][T10343] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 81.886217][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 81.886227][ C0] EXT4-fs (loop4): initial error at time 82: dx_probe:791: inode 2 [ 81.886242][ C0] EXT4-fs (loop4): last error at time 82: dx_probe:791: inode 2 [ 81.891088][T10343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.908872][ T4722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.927175][T10350] loop6: detected capacity change from 0 to 512 [ 81.928843][T10350] EXT4-fs: Ignoring removed nomblk_io_submit option [ 81.932086][T10350] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 81.932119][T10350] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 81.953080][T10350] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.2372: Allocating blocks 41-42 which overlap fs metadata [ 81.953118][T10350] loop6: lost filesystem error report for type 5 error -117 [ 81.953651][T10350] EXT4-fs (loop6): Remounting filesystem read-only [ 81.953717][T10350] __quota_error: 4 callbacks suppressed [ 81.953725][T10350] Quota error (device loop6): write_blk: dquota write failed [ 81.953733][T10350] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5 [ 81.953806][T10350] Quota error (device loop6): write_blk: dquota write failed [ 81.953841][T10350] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 81.953895][T10350] EXT4-fs (loop6): 1 truncate cleaned up [ 81.959227][T10350] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.016759][ T9901] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.153240][T10382] tmpfs: Cannot enable quota on remount [ 82.158203][T10383] vlan2: entered promiscuous mode [ 82.159140][T10383] veth1_virt_wifi: entered promiscuous mode [ 82.300069][T10398] EXT4-fs: Ignoring removed orlov option [ 82.300402][T10398] EXT4-fs (loop6): Cannot use DAX on a filesystem that may contain inline data [ 82.396874][T10411] binder: 10410:10411 ioctl c018620c 0 returned -14 [ 82.445526][T10421] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 82.455475][T10421] EXT4-fs (loop4): 1 truncate cleaned up [ 82.457084][T10421] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.475109][T10421] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 82.492157][ T4722] EXT4-fs error (device loop4): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz-executor: bad entry in directory: directory entry overrun - offset=76, inode=16, rec_len=1024, size=1024 fake=0 [ 82.504321][ T4722] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 82.508358][ T4722] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 82.508641][ T4722] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 82.529885][T10430] overlayfs: workdir and upperdir must be separate subtrees [ 82.539767][T10432] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2411'. [ 82.588507][ T5377] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.974725][ T4718] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.981599][ T4718] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.983472][ T4718] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.986770][ T4718] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.988691][ T4718] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.993680][T10493] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 83.002490][T10493] EXT4-fs (loop0): 1 truncate cleaned up [ 83.008770][T10493] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.062823][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.069643][T10502] EXT4-fs: Ignoring removed orlov option [ 83.072649][T10502] EXT4-fs (loop2): Cannot use DAX on a filesystem that may contain inline data [ 83.099131][T10508] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2453'. [ 83.100918][T10508] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2453'. [ 83.157758][T10514] Injecting memory failure for pfn 0x139a7d at process virtual address 0x20ffe000 [ 83.170686][T10514] Memory failure: 0x139a7d: Sending SIGBUS to syz.6.2445:10514 due to hardware memory corruption [ 83.170755][T10514] Memory failure: 0x139a7d: recovery action for dirty LRU page: Recovered [ 83.170798][T10514] Injecting memory failure for pfn 0x21cf58 at process virtual address 0x20fff000 [ 83.170845][T10514] Memory failure: 0x21cf58: Sending SIGBUS to syz.6.2445:10514 due to hardware memory corruption [ 83.170861][T10514] Memory failure: 0x21cf58: recovery action for already poisoned page: Failed [ 83.474672][T10562] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2464'. [ 83.499523][T10564] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2465'. [ 83.505661][T10564] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2465'. [ 83.657982][T10489] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.684835][T10489] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.684992][T10489] bridge_slave_0: entered allmulticast mode [ 83.685485][T10489] bridge_slave_0: entered promiscuous mode [ 83.697813][T10489] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.697914][T10489] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.698059][T10489] bridge_slave_1: entered allmulticast mode [ 83.708543][T10489] bridge_slave_1: entered promiscuous mode [ 83.729546][T10489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.735084][T10489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.737944][T10603] ip6_vti0: entered promiscuous mode [ 83.762975][T10489] team0: Port device team_slave_0 added [ 83.765182][T10489] team0: Port device team_slave_1 added [ 83.779421][T10489] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.783109][T10489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.787818][T10489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.789762][ T4718] Bluetooth: hci5: command tx timeout [ 83.791978][T10489] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.796354][T10489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.801360][T10489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.828178][T10616] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 83.836900][T10616] EXT4-fs error (device loop6): ext4_orphan_get:1423: comm syz.6.2480: bad orphan inode 131083 [ 83.836953][T10616] loop6: lost filesystem error report for type 5 error -117 [ 83.875694][T10616] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.887609][T10489] hsr_slave_0: entered promiscuous mode [ 83.903382][T10489] hsr_slave_1: entered promiscuous mode [ 83.907184][T10489] debugfs: 'hsr0' already exists in 'hsr' [ 83.908367][T10489] Cannot create hsr debugfs directory [ 83.915548][T10616] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1332: inode #12: block 7: comm syz.6.2480: path /30/bus/file0: bad entry in directory: directory entry overrun - offset=80, inode=1560281102, rec_len=1024, size=60 fake=0 [ 83.982010][T10642] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2493'. [ 83.983185][ T9901] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.985219][T10642] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2493'. [ 84.017929][T10640] netlink: 'syz.2.2490': attribute type 4 has an invalid length. [ 84.056222][T10489] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 84.069769][T10489] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 84.070108][T10489] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 84.110531][T10489] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 84.111144][T10489] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 84.124545][T10489] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 84.124896][T10489] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 84.135481][T10489] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 84.154248][T10659] tipc: Enabled bearer , priority 10 [ 84.192295][T10674] Injecting memory failure for pfn 0x13fa0f at process virtual address 0x20ffe000 [ 84.195612][T10489] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.195656][T10489] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.195751][T10489] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.195791][T10489] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.202940][T10674] Memory failure: 0x13fa0f: Sending SIGBUS to syz.0.2503:10674 due to hardware memory corruption [ 84.205233][ T1927] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.206859][T10674] Memory failure: 0x13fa0f: recovery action for dirty LRU page: Recovered [ 84.209268][T10674] Injecting memory failure for pfn 0x21cf58 at process virtual address 0x20fff000 [ 84.210968][T10674] Memory failure: 0x21cf58: Sending SIGBUS to syz.0.2503:10674 due to hardware memory corruption [ 84.213512][ T1927] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.215290][T10674] Memory failure: 0x21cf58: recovery action for already poisoned page: Failed [ 84.261916][T10489] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.270323][T10489] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.282617][ T40] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.282667][ T40] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.283214][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.283237][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.289412][T10489] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.372585][T10695] gretap0: entered promiscuous mode [ 84.503438][T10701] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.565777][ T4720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.601156][T10489] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.764322][T10757] Soft offlining pfn 0x140271 at process virtual address 0x20071000 [ 84.792403][T10489] veth0_vlan: entered promiscuous mode [ 84.805390][T10489] veth1_vlan: entered promiscuous mode [ 84.825763][T10751] set_capacity_and_notify: 6 callbacks suppressed [ 84.827325][T10751] loop6: detected capacity change from 0 to 8192 [ 84.833542][T10489] veth0_macvtap: entered promiscuous mode [ 84.850124][T10751] syz.6.2532: attempt to access beyond end of device [ 84.850124][T10751] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 84.851544][T10751] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1) [ 84.851558][T10751] FAT-fs (loop6): Filesystem has been set read-only [ 84.855105][T10489] veth1_macvtap: entered promiscuous mode [ 84.861423][T10751] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1) [ 84.861953][T10751] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1) [ 84.874564][T10489] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.879888][T10489] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.888882][ T126] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.889024][ T126] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.889084][ T126] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.889138][ T126] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.979856][ T126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.979894][ T126] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.018178][ T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.018210][ T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.066124][ T4718] Bluetooth: hci2: command tx timeout [ 85.134791][T10800] tipc: Enabled bearer , priority 10 [ 85.189249][T10797] loop2: detected capacity change from 0 to 2048 [ 85.211069][T10797] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.258666][T10815] gretap0: entered promiscuous mode [ 85.269214][ T4711] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.275501][ T24] tipc: Node number set to 65535 [ 85.353195][T10832] Soft offlining pfn 0x13c471 at process virtual address 0x20071000 [ 85.553958][T10865] vlan2: entered promiscuous mode [ 85.553999][T10865] bridge0: entered promiscuous mode [ 85.864319][ T4718] Bluetooth: hci5: command tx timeout [ 85.916422][T10909] loop7: detected capacity change from 0 to 8192 [ 85.928889][T10909] syz.7.2603: attempt to access beyond end of device [ 85.928889][T10909] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 85.929170][T10909] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1) [ 85.929181][T10909] FAT-fs (loop7): Filesystem has been set read-only [ 85.929427][T10909] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1) [ 85.929523][T10909] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1) [ 85.957622][T10919] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 85.984737][T10919] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.301855][T10969] loop5: detected capacity change from 0 to 4096 [ 86.314525][T10969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.356429][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.372406][T10975] random: crng reseeded on system resumption [ 86.382904][T10975] Restarting kernel threads ... [ 86.384234][T10975] Done restarting kernel threads. [ 86.609087][T11002] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 86.661442][T11009] vlan3: entered promiscuous mode [ 86.661480][T11009] bridge0: entered promiscuous mode [ 86.815284][T11027] loop5: detected capacity change from 0 to 4096 [ 86.824458][T11027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.833409][ T30] audit: type=1400 audit(87.273:29): lsm=SMACK fn=smack_inode_permission action=denied subject="_" object="uid>" requested=x pid=11026 comm="syz.5.2660" name="/" dev="loop5" ino=2 [ 86.860787][ T7636] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.141639][ T4718] Bluetooth: hci2: command tx timeout [ 87.188382][T11089] __nla_validate_parse: 11 callbacks suppressed [ 87.189711][T11089] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2692'. [ 87.367063][T11111] can0: slcan on ptm0. [ 87.420501][T11110] can0 (unregistered): slcan off ptm0. [ 87.438534][T11121] random: crng reseeded on system resumption [ 87.455314][T11121] Restarting kernel threads ... [ 87.455699][T11121] Done restarting kernel threads. [ 87.458384][T11116] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 87.591921][T11142] loop7: detected capacity change from 0 to 512 [ 87.593589][T11142] EXT4-fs: Ignoring removed i_version option [ 87.595262][T11142] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 87.598795][T11129] loop2: detected capacity change from 0 to 4096 [ 87.601963][T11142] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 87.605767][T11142] EXT4-fs (loop7): 1 truncate cleaned up [ 87.609375][T11142] EXT4-fs error (device loop7): ext4_inlinedir_to_tree:1332: inode #12: block 7: comm syz.7.2716: path /36/bus/file0: bad entry in directory: directory entry overrun - offset=80, inode=2147483648, rec_len=1024, size=60 fake=0 [ 87.642199][T11148] loop0: detected capacity change from 0 to 128 [ 87.786507][ T4798] hid_parser_main: 33 callbacks suppressed [ 87.788738][ T4798] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 87.793907][ T4798] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 87.930256][T11195] x_tables: ip_tables: dccp match: only valid for protocol 33 [ 88.074737][T11204] fido_id[11204]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 88.146712][T11221] loop6: detected capacity change from 0 to 1024 [ 88.241306][T11239] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add() [ 88.449847][T11276] loop5: detected capacity change from 0 to 128 [ 88.455891][T11273] can0: slcan on ptm0. [ 88.479178][T11271] can0 (unregistered): slcan off ptm0. [ 88.664789][ T4798] kernel read not supported for file /vcs (pid: 4798 comm: kworker/0:3) [ 88.716897][T11313] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 88.815171][T11332] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add() [ 88.895557][T11343] x_tables: ip_tables: dccp match: only valid for protocol 33 [ 89.032517][T11369] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2809'. [ 89.221036][ T4718] Bluetooth: hci2: command tx timeout [ 89.382803][T11419] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2833'. [ 89.382836][T11419] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2833'. [ 89.382855][T11419] netlink: 'syz.0.2833': attribute type 19 has an invalid length. [ 89.382864][T11419] netlink: 'syz.0.2833': attribute type 20 has an invalid length. [ 89.398262][T11421] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 89.458154][T11427] syz.5.2837 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 89.474719][T11430] EXT4-fs: Ignoring removed bh option [ 89.479080][T11430] EXT4-fs (loop6): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 89.505828][T11430] EXT4-fs error (device loop6): empty_inline_dir:1778: inode #12: block 7: comm syz.6.2839: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0 [ 89.509030][T11430] EXT4-fs (loop6): Remounting filesystem read-only [ 89.509050][T11430] EXT4-fs warning (device loop6): empty_inline_dir:1785: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60 [ 89.664949][T11452] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 89.726513][T11458] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 89.776599][T11462] EXT4-fs (loop6): resizing filesystem from 128 to 1 blocks [ 89.779146][T11462] EXT4-fs warning (device loop6): ext4_resize_fs:2041: can't shrink FS - resize aborted [ 89.808140][T11466] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 89.817203][T11466] EXT4-fs (loop5): 1 truncate cleaned up [ 89.871548][T11466] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 89.879754][T11471] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2856'. [ 89.880569][T11471] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2856'. [ 89.880596][T11471] netlink: 'syz.6.2856': attribute type 19 has an invalid length. [ 89.880605][T11471] netlink: 'syz.6.2856': attribute type 20 has an invalid length. [ 90.158353][T11487] set_capacity_and_notify: 5 callbacks suppressed [ 90.160825][T11487] loop7: detected capacity change from 0 to 512 [ 90.486706][T11534] loop0: detected capacity change from 0 to 256 [ 90.537981][T11543] loop5: detected capacity change from 0 to 128 [ 90.575359][T11548] loop2: detected capacity change from 0 to 512 [ 90.601233][ T26] IPVS: starting estimator thread 0... [ 90.683439][T11553] IPVS: using max 57 ests per chain, 136800 per kthread [ 90.877715][T11592] loop2: detected capacity change from 0 to 128 [ 91.045349][T11615] netlink: 'syz.2.2921': attribute type 2 has an invalid length. [ 91.129490][T11629] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 91.131346][T11629] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 91.225918][T11639] loop7: detected capacity change from 0 to 512 [ 91.226360][T11639] EXT4-fs: Ignoring removed orlov option [ 91.228991][T11639] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 91.232518][T11639] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 91.232767][T11639] EXT4-fs error (device loop7): ext4_iget_extra_inode:5128: inode #15: comm syz.7.2935: corrupted in-inode xattr: e_value size too large [ 91.232789][T11639] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 91.233594][T11639] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.2935: couldn't read orphan inode 15 (err -117) [ 91.233612][T11639] loop7: lost filesystem error report for type 5 error -117 [ 91.292249][ T4718] Bluetooth: hci2: command tx timeout [ 91.449931][T11665] loop0: detected capacity change from 0 to 256 [ 91.760667][T11708] loop2: detected capacity change from 0 to 256 [ 91.780540][T11710] loop0: detected capacity change from 0 to 128 [ 91.947341][T11731] ================================================================== [ 91.947355][T11731] BUG: KASAN: slab-use-after-free in dvb_device_open+0xd0/0x250 [ 91.947383][T11731] Read of size 8 at addr ffff0000cc82f418 by task syz.2.2971/11731 [ 91.947392][T11731] [ 91.947399][T11731] CPU: 1 UID: 0 PID: 11731 Comm: syz.2.2971 Tainted: G L syzkaller #0 PREEMPT [ 91.947411][T11731] Tainted: [L]=SOFTLOCKUP [ 91.947414][T11731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 91.947419][T11731] Call trace: [ 91.947422][T11731] show_stack+0x2c/0x3c (C) [ 91.947440][T11731] __dump_stack+0x30/0x40 [ 91.947453][T11731] dump_stack_lvl+0xd8/0x12c [ 91.947464][T11731] print_address_description+0xb0/0x238 [ 91.947474][T11731] print_report+0x68/0x84 [ 91.947482][T11731] kasan_report+0x8c/0xc4 [ 91.947494][T11731] __asan_report_load8_noabort+0x20/0x2c [ 91.947507][T11731] dvb_device_open+0xd0/0x250 [ 91.947518][T11731] chrdev_open+0x398/0x3e8 [ 91.947530][T11731] do_dentry_open+0x5c4/0xfc8 [ 91.947542][T11731] vfs_open+0x44/0x2d4 [ 91.947553][T11731] path_openat+0x2234/0x2a6c [ 91.947563][T11731] do_file_open+0x1c4/0x2e4 [ 91.947571][T11731] do_sys_openat2+0x114/0x1e8 [ 91.947584][T11731] do_sys_open+0xac/0xdc [ 91.947594][T11731] __arm64_sys_openat+0x9c/0xb8 [ 91.947606][T11731] invoke_syscall+0x98/0x244 [ 91.947619][T11731] el0_svc_common+0xe8/0x23c [ 91.947632][T11731] do_el0_svc+0x48/0x58 [ 91.947643][T11731] el0_svc+0x64/0x260 [ 91.947652][T11731] el0t_64_sync_handler+0x48/0x148 [ 91.947661][T11731] el0t_64_sync+0x198/0x19c [ 91.947670][T11731] [ 91.947672][T11731] Allocated by task 10017: [ 91.947676][T11731] kasan_save_track+0x40/0x78 [ 91.947686][T11731] kasan_save_alloc_info+0x44/0x54 [ 91.947696][T11731] __kasan_kmalloc+0x9c/0xb4 [ 91.947704][T11731] __kmalloc_noprof+0x32c/0x6f0 [ 91.947714][T11731] security_inode_init_security+0xec/0x378 [ 91.947724][T11731] shmem_mknod+0x1c4/0x2fc [ 91.947733][T11731] shmem_create+0x40/0x54 [ 91.947742][T11731] path_openat+0x1244/0x2a6c [ 91.947749][T11731] do_file_open+0x1c4/0x2e4 [ 91.947756][T11731] do_sys_openat2+0x114/0x1e8 [ 91.947765][T11731] do_sys_open+0xac/0xdc [ 91.947774][T11731] __arm64_sys_openat+0x9c/0xb8 [ 91.947783][T11731] invoke_syscall+0x98/0x244 [ 91.947797][T11731] el0_svc_common+0xe8/0x23c [ 91.947807][T11731] do_el0_svc+0x48/0x58 [ 91.947817][T11731] el0_svc+0x64/0x260 [ 91.947823][T11731] el0t_64_sync_handler+0x48/0x148 [ 91.947829][T11731] el0t_64_sync+0x198/0x19c [ 91.947835][T11731] [ 91.947837][T11731] Freed by task 10017: [ 91.947841][T11731] kasan_save_track+0x40/0x78 [ 91.947849][T11731] kasan_save_free_info+0x58/0x70 [ 91.947859][T11731] __kasan_slab_free+0x74/0xa4 [ 91.947867][T11731] kfree+0x188/0x690 [ 91.947874][T11731] security_inode_init_security+0x2ec/0x378 [ 91.947883][T11731] shmem_mknod+0x1c4/0x2fc [ 91.947891][T11731] shmem_create+0x40/0x54 [ 91.947900][T11731] path_openat+0x1244/0x2a6c [ 91.947907][T11731] do_file_open+0x1c4/0x2e4 [ 91.947914][T11731] do_sys_openat2+0x114/0x1e8 [ 91.947923][T11731] do_sys_open+0xac/0xdc [ 91.947932][T11731] __arm64_sys_openat+0x9c/0xb8 [ 91.947941][T11731] invoke_syscall+0x98/0x244 [ 91.947951][T11731] el0_svc_common+0xe8/0x23c [ 91.947961][T11731] do_el0_svc+0x48/0x58 [ 91.947970][T11731] el0_svc+0x64/0x260 [ 91.947976][T11731] el0t_64_sync_handler+0x48/0x148 [ 91.947982][T11731] el0t_64_sync+0x198/0x19c [ 91.947988][T11731] [ 91.947990][T11731] The buggy address belongs to the object at ffff0000cc82f400 [ 91.947990][T11731] which belongs to the cache kmalloc-256 of size 256 [ 91.947997][T11731] The buggy address is located 24 bytes inside of [ 91.947997][T11731] freed 256-byte region [ffff0000cc82f400, ffff0000cc82f500) [ 91.948005][T11731] [ 91.948007][T11731] The buggy address belongs to the physical page: [ 91.948011][T11731] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000cc82f400 pfn:0x10c82e [ 91.948019][T11731] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 91.948026][T11731] flags: 0x5ffc00000000240(workingset|head|node=0|zone=2|lastcpupid=0x7ff) [ 91.948035][T11731] page_type: f5(slab) [ 91.948042][T11731] raw: 05ffc00000000240 ffff0000c0001b40 fffffdffc3224e10 fffffdffc3593610 [ 91.948049][T11731] raw: ffff0000cc82f400 000000080010000e 00000000f5000000 0000000000000000 [ 91.948057][T11731] head: 05ffc00000000240 ffff0000c0001b40 fffffdffc3224e10 fffffdffc3593610 [ 91.948063][T11731] head: ffff0000cc82f400 000000080010000e 00000000f5000000 0000000000000000 [ 91.948071][T11731] head: 05ffc00000000001 fffffdffc3320b81 00000000ffffffff 00000000ffffffff [ 91.948077][T11731] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 91.948082][T11731] page dumped because: kasan: bad access detected [ 91.948085][T11731] [ 91.948087][T11731] Memory state around the buggy address: [ 91.948091][T11731] ffff0000cc82f300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 91.948097][T11731] ffff0000cc82f380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 91.948103][T11731] >ffff0000cc82f400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 91.948107][T11731] ^ [ 91.948111][T11731] ffff0000cc82f480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 91.948117][T11731] ffff0000cc82f500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 91.948121][T11731] ================================================================== [ 91.980962][T11731] Disabling lock debugging due to kernel taint