last executing test programs: 1m52.732144572s ago: executing program 1 (id=1314): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) prlimit64(0x0, 0x7, &(0x7f00000003c0), 0x0) accept$nfc_llcp(r0, 0x0, 0x0) 1m52.335515097s ago: executing program 1 (id=1318): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0xa}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) 1m51.219380204s ago: executing program 1 (id=1325): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000004c0)={0x5, 0x40000}, 0x10) sendmsg$nl_route(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="2c00000012003700"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000a001d"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x880) 1m50.581257403s ago: executing program 1 (id=1331): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800, &(0x7f0000000100)=ANY=[@ANYBLOB='iocharset=iso8859-9,utf8,dmask=00000000000000000000011,utf8,errors=remount-ro,utf8,fmask=00000000000000000000001,errors=remount-ro,iocharset=iso8859-5,gid=', @ANYRESHEX=0x0, @ANYBLOB='\x00@'], 0x1, 0x1548, &(0x7f0000000380)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0) 1m49.71970023s ago: executing program 1 (id=1337): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000009c0), 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000d00)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000004980)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002980)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c}}], 0x50}}], 0x2, 0x4c000) 1m48.385715608s ago: executing program 1 (id=1341): r0 = socket$tipc(0x1e, 0x2, 0x0) recvmsg(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=""/231, 0xe7}], 0x1}, 0x8002a0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x0, 0x3}, 0x10) 1m46.350124931s ago: executing program 32 (id=1341): r0 = socket$tipc(0x1e, 0x2, 0x0) recvmsg(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=""/231, 0xe7}], 0x1}, 0x8002a0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x0, 0x3}, 0x10) 4.378616604s ago: executing program 3 (id=1941): r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) bpf$MAP_CREATE(0x0, 0x0, 0x0) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000001c0)=@overlay={0x8, 0x5, 0x4, 0x100000, 0x6, {0x0, 0x2710}, {0x4, 0x0, 0xff, 0x0, 0x4, 0x8, "7c8299b8"}, 0xd, 0x3, {}, 0x96b6}) 3.881151635s ago: executing program 0 (id=1945): r0 = socket$inet6(0xa, 0x3, 0x87) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000300)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x1d}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x2000000, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x0, 0x3}}, 0xe4) connect$inet6(r0, &(0x7f00000000c0), 0x1c) 3.819185787s ago: executing program 3 (id=1946): mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]}) mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x40078, &(0x7f0000000000)) 3.790719759s ago: executing program 4 (id=1948): syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') write$UHID_CREATE2(r0, 0x0, 0x0) 3.566816547s ago: executing program 2 (id=1949): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0100000005000000ec0b000007"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000280), 0x105, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r0, &(0x7f00000000c0), &(0x7f0000000d40)=""/4096}, 0x20) 3.267002361s ago: executing program 0 (id=1951): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000180)=0x1, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, &(0x7f0000000040)) 3.152036464s ago: executing program 3 (id=1952): r0 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedreceive(r0, &(0x7f00000008c0)=""/134, 0x86, 0x3d, &(0x7f0000000980)={0x77359400}) mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0) 3.081264944s ago: executing program 4 (id=1953): r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2) read(r0, &(0x7f0000000080)=""/115, 0x73) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x81, 0x0, 0x32314142, 0x0, 0x4, [{}, {0xffffffff}, {}, {0x0, 0x3}]}}) 2.937574619s ago: executing program 2 (id=1954): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0xd, &(0x7f00000002c0)=0x87, 0x4) getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000000)=""/19, &(0x7f0000000280)=0x13) 2.818693623s ago: executing program 5 (id=1955): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000940)=0x200000000) write$vhost_msg_v2(r0, &(0x7f00000004c0)={0x2, 0x0, {&(0x7f00000003c0)=""/126, 0xffffffffffffff83, 0x0, 0x0, 0x2}}, 0x48) 2.653626863s ago: executing program 0 (id=1956): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20048a, &(0x7f00000001c0)={[{@grpjquota}, {@noinit_itable}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$eJzs3U9sI1cZAPBvJsnam6ZNCj0AKnQphQWt1k68bVT1QjlVCFVC9MhhGxInimLHUeyUJuwhe+SORCVOcOLMAYkDUk/ckTjAjUs5IBVYgRokJFx5bGedP06sbGJv499PGvnNvLG/93Y071mfN/MCGFu3ImI/Im5ExLsRMds5nnS2eLO9tc775NGD5YNHD5aTaDbf+WeS1beORc97Wp7pfGY+In7wVsSPkmNB/xRR393bWKpUytudQ8VGdatY3927u15dWiuvlTdLpcWFxfnX771WurS+vlT9zcc3I+L3v/vyR3/c/9ZPWs2a6dT19uMytbs+dRinZTIivncVwUZgotOfGxd584XexGVKI+JzEfFydv/PxkR2NY86epm+PcTWAQBXodmcjeZs7z4AcN2lWQ4sSQudXMBMpGmh0M7hvRDTaaVWb9xZre1srrRzZXMxla6uV8rznVzhXEwlq+uT5YWs3N2vlEvH9u9FxPMR8bPczWy/sFyrrIzyiw8AjLFnjs3//8m1538A4JrLPy7mRtkOAGB48qNuAAAwdOZ/ABg/5n8AGD/mfwAYP+Z/ABg/5n8AGCvff/vt1tY86Dz/euW93Z2N2nt3V8r1jUJ1Z7mwXNveKqzVamvZM3uq531epVbbWng1dt4vNsr1RrG+u3e/WtvZbNzPnut9vzw1lF4BAGd5/qUP/5JExP4bN7Mtep73f+5c/eJVtw64SumoGwCMzMSoGwCMzMnVvoBxIR8P4+v/zWYzetbujYiHh6Weh4H2/S9CHwwUJrVuKDx9bn/xCfL/wGea/D+Mr4vl/32Xh+tA/h/GV7OZWPMfAMaMHD+QnFPf+/v/fLNnZ7Df/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBamsm2JC101gKfiTQtFCKejYi5mEpW1yvl+Yh4LiL+nJvKtfYXIsK6QQDwWZb+Pems/3V79pWZ47U3cv/NZa8R8eNfvPPz95caje2FiBvJvw6PNz7oHC+Nov0AwHm683R3Hu/65NGD5e42zPZ8/J324qKtuAedrV0zGZPZaz7LNUz/O+nst7W+r0xcQvz9hxHxhdP6n2S5kbnOyqfH47diPzvU+OmR+GlW135t/Vt8/hLaAuPmw9b48+Zp918at7LX0+//fDZCPbnu+HdwYvxLD8e/iT7j361BY7z6h++eONicbdc9jPjSZMRB98N7xp9u/KRP/FcGjP/XF7/ycr+65i8jbsdp/U+OxCo2qlvF+u7e3fXq0lp5rbxZKi0uLM6/fu+1UjHLURe7meqT/vHGnef6xW/1f7pP/Pw5/f/6gP3/1f/e/eFXz4j/za+dfv1fOCN+a078xoDxl6Z/m+9X14q/0qf/513/OwPG/+hveysDngoADEF9d29jqVIpbz95IX/mOellhBigkETsX3GIx4Xcr3/61vkn54bWngsWol/VxNPSwmtTyD0dzRigMOqRCbhqj2/6UbcEAAAAAAAAAAAAAADoZxh/TjTqPgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB9fRoAAP//j4/W2A==") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') 2.595885135s ago: executing program 3 (id=1957): r0 = memfd_create(&(0x7f0000000780)='/dev/loop#\x00\xee\b\xce\xde\xe9\x8d\xd3\xd4\xe2\xfd\x7f\xf5R%\xe8]l\xa1s\b\xa5\xd2\xd59\xe8\xda\b\xd6\xb2\x15\xf6F\xb8\xb4{r.\xd2\xea\xec\xdbXe&J \xe9\x16\x82\xe8=\x83\x88sN\x83N`\xf9\xec\xe1\xbb\x05vH\xdd\x01?k\x97\xa5\xbf\x89#=2G\xb16\xfb*\xf5\xd5\\\xa7\xebe\xbe\x9d\xd7\xf5\xb9<\xb2\xc4\xf9:\xef\xc0g\xc3\xa6\x7f\xc0\xcck.5=\xcc\x10Y\xad^*;MVh\xd9\xcf )\x0e%\x84\x95bXy\x81;o\xc9\x94\xc5M\xaf\xdbr\xec\xf6', 0x6) fallocate(r0, 0x0, 0x0, 0x200401) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000007, 0x810, r0, 0xb7bb8000) 2.413670223s ago: executing program 2 (id=1958): r0 = socket(0xa, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @empty}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000001640)={&(0x7f0000000080)=@in={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000040)=')', 0x1}], 0x1, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000000000008400000007000000ac"], 0x18, 0x8000}, 0x2800c051) 2.245751919s ago: executing program 5 (id=1959): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x10, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}]}, @NFTA_IMMEDIATE_DREG={0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa0}}, 0x0) 1.939690689s ago: executing program 3 (id=1960): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x80a, &(0x7f00000003c0), 0x1, 0x796, &(0x7f0000000c40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc020660b, &(0x7f0000000080)={@desc={0x1, 0x0, @desc4}}) 1.899698052s ago: executing program 5 (id=1961): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x80, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x2c, 0x3, "7339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c7fffffff500"/40}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0x8, 0x1, 'LED\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040) 1.867630383s ago: executing program 4 (id=1962): openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) 1.427493098s ago: executing program 0 (id=1963): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x20004450) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x7}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x14, 0x1, 0x0, 0x0, {0x1}}}, 0x78}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 1.390619983s ago: executing program 5 (id=1964): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_NON_HH_WEIGHT={0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80884}, 0x20000000) 1.24416443s ago: executing program 2 (id=1965): r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0), 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x2000000, @ipv4={'\x00', '\xff\xff', @loopback}, 0xb851}, 0x1c) 1.204064209s ago: executing program 4 (id=1966): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000480)={{{@in=@rand_addr=0x64010101, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x2, 0x4e21, 0x4b, 0x2}, {0x0, 0x0, 0x4, 0x34a, 0x0, 0x0, 0x9c0, 0x6}, {0xffffbffffffffffc, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in6=@mcast1, 0x4d3, 0x3c}, 0xa, @in6=@remote, 0x3507, 0x4, 0x3, 0x0, 0x0, 0x4000000, 0x1}}, 0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0) 920.248125ms ago: executing program 5 (id=1967): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x80a, &(0x7f0000001a40)={[{@iocharset={'iocharset', 0x3d, 'cp855'}}, {@discard}, {@zero_size_dir}, {@sys_tz}, {@utf8}, {@discard}, {@keep_last_dots}, {@utf8}, {@gid}, {@sys_tz}]}, 0x1, 0x152f, &(0x7f0000000400)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 799.551838ms ago: executing program 3 (id=1968): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'hsr0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="4400000010000104000002000000000000000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x44}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054) 711.445829ms ago: executing program 2 (id=1969): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000002500), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000002540)={0x44, r1, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @multicast2}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @mcast1}]}, 0x44}, 0x1, 0x0, 0x0, 0x8010}, 0x4000) 675.579558ms ago: executing program 4 (id=1970): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x30, r1, 0xfdd1df4705532f1, 0x0, 0x0, {{}, {}, {0x3}}}, 0x30}}, 0x0) 598.571242ms ago: executing program 0 (id=1971): r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, 0x0) 107.893035ms ago: executing program 0 (id=1972): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1}) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000001200)={0x2, @win={{0x4, 0x4, 0x3, 0x2}, 0x2, 0xfffffe84, 0x0, 0x5, 0x0}}) 78.746757ms ago: executing program 2 (id=1973): landlock_create_ruleset(&(0x7f0000000080)={0x220, 0x1, 0x1}, 0x18, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20802, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000e40)='\b', 0x17ff}], 0x5) 74.647752ms ago: executing program 4 (id=1974): unshare(0x26020480) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x4a, &(0x7f0000000040), 0x4) 0s ago: executing program 5 (id=1975): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x1}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xfc}, @ETHTOOL_A_LINKMODES_SPEED={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x0) kernel console output (not intermixed with test programs): 0 descriptor?? [ 324.846075][ T795] usb 3-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 324.855253][ T795] usb 3-1: selecting invalid altsetting 1 [ 324.861481][ T795] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 324.875745][ T795] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 324.887460][ T795] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 324.896135][ T795] usb 3-1: media controller created [ 324.957435][ T795] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 325.028427][ T7697] XFS (loop3): Metadata CRC error detected at xfs_agf_read_verify+0x1b9/0x300, xfs_agf block 0x1 [ 325.040155][ T7697] XFS (loop3): Unmount and run xfs_repair [ 325.046249][ T7697] XFS (loop3): First 128 bytes of corrupted metadata buffer: [ 325.053930][ T7697] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 10 00 XAGF............ [ 325.063207][ T7697] 00000010: 00 00 00 01 00 00 00 02 00 00 00 00 00 00 00 01 ................ [ 325.072496][ T7697] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04 ................ [ 325.081691][ T7697] 00000030: 00 00 00 04 00 00 0b a2 00 00 0b a0 00 00 00 00 ................ [ 325.090850][ T7697] 00000040: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 325.100325][ T7697] 00000050: 00 00 00 00 00 00 00 01 00 00 00 05 00 00 00 01 ................ [ 325.109559][ T7697] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 ................ [ 325.126119][ T7697] 00000070: 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 325.132880][ T7689] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 325.135268][ T7697] XFS (loop3): metadata I/O error in "xfs_read_agf+0x23d/0x550" at daddr 0x1 len 1 error 74 [ 325.135907][ T7697] XFS (loop3): Error -117 reserving per-AG metadata reserve pool. [ 325.165543][ T7697] XFS (loop3): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x4d7/0x590 (fs/xfs/xfs_fsops.c:566). Shutting down filesystem. [ 325.181297][ T7697] XFS (loop3): Please unmount the filesystem and rectify the problem(s) [ 325.189944][ T7697] XFS (loop3): Ending clean mount [ 325.196094][ T7697] XFS (loop3): Failed to initialize disk quotas, err -5. [ 325.270417][ T7689] XFS (loop0): Starting recovery (logdev: internal) [ 325.362867][ T5829] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 325.366722][ T7689] XFS (loop0): Metadata CRC error detected at xfs_allocbt_read_verify+0xaf/0x2d0, xfs_bnobt block 0x8 [ 325.383420][ T7689] XFS (loop0): Unmount and run xfs_repair [ 325.389728][ T7689] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 325.397699][ T7689] 00000000: 41 42 54 42 00 00 00 02 ff ff ff ff ff ff ff ff ABTB............ [ 325.406996][ T7689] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 325.418919][ T7689] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 325.435735][ T7689] 00000030: 00 00 00 00 c8 fc 31 e4 00 00 04 4e 00 00 00 02 ......1....N.... [ 325.444969][ T7689] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 325.454395][ T7689] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 325.463750][ T7689] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 325.473087][ T7689] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 325.491196][ T7689] XFS (loop0): Filesystem has been shut down due to log error (0x2). [ 325.499731][ T7689] XFS (loop0): Please unmount the filesystem and rectify the problem(s). [ 325.509543][ T7689] XFS (loop0): log mount/recovery failed: error -74 [ 325.535953][ T7689] XFS (loop0): log mount failed [ 326.264302][ T795] usb 3-1: dvb_usb_ce6230: usb_control_msg() failed=-110 [ 326.272025][ T795] zl10353_read_register: readreg error (reg=127, ret==-110) [ 326.326886][ T7703] usb 3-1: dvb_usb_ce6230: usb_control_msg() failed=-32 [ 326.683257][ T795] usb 3-1: USB disconnect, device number 6 [ 327.650194][ T7739] loop1: detected capacity change from 0 to 1024 [ 327.682584][ T7739] EXT4-fs: Ignoring removed nobh option [ 327.689315][ T7739] EXT4-fs: Ignoring removed bh option [ 327.788807][ T7739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 328.150480][ T5818] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.999000][ T7770] netlink: 4 bytes leftover after parsing attributes in process `syz.0.768'. [ 329.181760][ T30] audit: type=1800 audit(1756672185.186:19): pid=7777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.771" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 329.202243][ C1] vkms_vblank_simulate: vblank timer overrun [ 329.529239][ T7783] netlink: 'syz.3.773': attribute type 1 has an invalid length. [ 329.537872][ T7783] netlink: 'syz.3.773': attribute type 3 has an invalid length. [ 329.546852][ T7783] netlink: 224 bytes leftover after parsing attributes in process `syz.3.773'. [ 330.536696][ T30] audit: type=1800 audit(1756672186.556:20): pid=7806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.783" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 331.037179][ T7816] netlink: 'syz.1.787': attribute type 2 has an invalid length. [ 332.312561][ T7840] loop2: detected capacity change from 0 to 512 [ 332.358401][ T7840] EXT4-fs: Ignoring removed orlov option [ 332.394717][ T7843] loop3: detected capacity change from 0 to 512 [ 332.410163][ T7840] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 332.455197][ T7840] EXT4-fs (loop2): orphan cleanup on readonly fs [ 332.471675][ T7840] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.799: bg 0: block 248: padding at end of block bitmap is not set [ 332.518052][ T7840] Quota error (device loop2): write_blk: dquota write failed [ 332.526155][ T7840] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 332.536726][ T7840] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.799: Failed to acquire dquot type 1 [ 332.587837][ T7851] loop0: detected capacity change from 0 to 1764 [ 332.606882][ T7843] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 332.620069][ T7843] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.632957][ T7840] EXT4-fs (loop2): 1 truncate cleaned up [ 332.653276][ T7851] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 332.688466][ T7840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 332.776878][ T7840] EXT4-fs: Ignoring removed orlov option [ 332.783135][ T7840] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 332.864168][ T7840] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 332.946095][ T7840] EXT4-fs error (device loop2): __ext4_remount:6740: comm syz.2.799: Abort forced by user [ 332.969483][ T7840] EXT4-fs (loop2): Remounting filesystem read-only [ 332.980253][ T7840] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 332.989160][ T7840] ext4 filesystem being remounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 333.020896][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 333.080788][ T7840] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 333.272356][ T7860] tipc: Enabling of bearer rejected, failed to enable media [ 333.371077][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.779181][ T7871] loop0: detected capacity change from 0 to 1024 [ 333.817915][ T7871] EXT4-fs: Ignoring removed nobh option [ 333.958008][ T7871] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 334.009203][ T7880] loop2: detected capacity change from 0 to 16 [ 334.039493][ T7880] erofs (device loop2): mounted with root inode @ nid 36. [ 334.344179][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.526356][ T795] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 334.583030][ T7889] tipc: Started in network mode [ 334.588570][ T7889] tipc: Node identity aaaaaaaaaa34, cluster identity 4711 [ 334.598242][ T7889] tipc: Enabled bearer , priority 10 [ 334.705924][ T795] usb 4-1: Using ep0 maxpacket: 32 [ 334.730596][ T795] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 334.743868][ T795] usb 4-1: config 0 has no interface number 0 [ 334.801443][ T795] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 334.811006][ T795] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 334.819532][ T795] usb 4-1: Product: syz [ 334.823881][ T795] usb 4-1: Manufacturer: syz [ 334.828891][ T795] usb 4-1: SerialNumber: syz [ 334.897988][ T795] usb 4-1: config 0 descriptor?? [ 334.912846][ T795] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 335.171616][ T795] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 335.245140][ T795] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 335.270184][ T7900] loop2: detected capacity change from 0 to 256 [ 335.552073][ C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 335.570704][ T795] usb 4-1: USB disconnect, device number 4 [ 335.599935][ T795] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 335.677054][ T795] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 335.690376][ T795] quatech2 4-1:0.51: device disconnected [ 335.716657][ T5880] tipc: Node number set to 10398378 [ 337.193437][ T5881] usb 2-1: [UEAGLE-ATM] firmware is not available [ 337.566093][ T7942] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 338.716499][ T7947] loop2: detected capacity change from 0 to 32768 [ 338.744065][ T7947] gfs2: fsid=commit: Trying to join cluster "lock_nolock", "commit" [ 338.753835][ T7947] gfs2: fsid=commit: Now mounting FS (format 0)... [ 338.768159][ T7947] gfs2: Invalid block size shift [ 338.773268][ T7947] gfs2: fsid=commit: can't read superblock [ 338.779305][ T7947] gfs2: fsid=commit: can't read superblock: -22 [ 338.848397][ T5881] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 339.060650][ T5881] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 339.072385][ T5881] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 339.082858][ T5881] usb 5-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 339.092317][ T5881] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 339.318400][ T5881] usb 5-1: config 0 descriptor?? [ 339.330233][ T7961] loop3: detected capacity change from 0 to 512 [ 339.408524][ T7961] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 339.616945][ T7961] EXT4-fs (loop3): 1 truncate cleaned up [ 339.624847][ T7961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.130218][ T7963] loop0: detected capacity change from 0 to 32768 [ 340.181188][ T5881] petalynx 0003:18B1:0037.000E: unknown main item tag 0x0 [ 340.191417][ T5881] petalynx 0003:18B1:0037.000E: unknown global tag 0xe [ 340.199558][ T5881] petalynx 0003:18B1:0037.000E: item 0 0 1 14 parsing failed [ 340.218392][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.218771][ T5881] petalynx 0003:18B1:0037.000E: parse failed [ 340.237300][ T5881] petalynx 0003:18B1:0037.000E: probe with driver petalynx failed with error -22 [ 340.327567][ T7963] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=snapshots_read,nojournal_transaction_names,noexcl,read_only,no_data_io [ 340.327717][ T7963] allowing incompatible features above 0.0: (unknown version) [ 340.327806][ T7963] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 340.378024][ T7963] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0 [ 340.388963][ T7963] bcachefs (loop0): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 340.401959][ T7963] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 340.411732][ T7963] bcachefs (loop0): Version upgrade required: [ 340.411732][ T7963] Version upgrade from 0.12: snapshot to 1.7: mi_btree_bitmap incomplete [ 340.411732][ T7963] Doing incompatible version upgrade from 0.12: snapshot to 1.28: inode_has_case_insensitive [ 340.411732][ T7963] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 340.517551][ T5881] usb 5-1: USB disconnect, device number 7 [ 340.672841][ T7963] bcachefs (loop0): btree node read error at btree backpointers level 0/0 [ 340.672942][ T7963] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0 [ 340.673046][ T7963] loop0 node offset 0/24 bset u64s 0: checksum error, type none: got should be [ 340.673127][ T7963] loop0 btree validate error [ 340.673190][ T7963] flagging btree backpointers lost data [ 340.673261][ T7963] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 340.673363][ T7963] ret fsck_errors_not_fixed [ 340.739897][ T7963] bcachefs (loop0): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing [ 340.759595][ T7963] bcachefs (loop0): check_topology... done [ 340.774623][ T7963] bcachefs (loop0): accounting_read... done [ 340.820236][ T7963] bcachefs (loop0): alloc_read... done [ 340.843015][ T7963] bcachefs (loop0): snapshots_read... done [ 340.862369][ T7963] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean [ 340.930143][ T7963] bcachefs (loop0): done starting filesystem [ 341.046026][ T5819] bcachefs (loop0): shutting down [ 341.104460][ T5819] bcachefs (loop0): shutdown complete [ 342.356303][ T30] audit: type=1326 audit(1756672198.356:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.379766][ T30] audit: type=1326 audit(1756672198.366:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.402916][ T30] audit: type=1326 audit(1756672198.366:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.681249][ T30] audit: type=1326 audit(1756672198.446:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.703932][ T30] audit: type=1326 audit(1756672198.446:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.727987][ T30] audit: type=1326 audit(1756672198.466:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.754830][ T30] audit: type=1326 audit(1756672198.466:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.779210][ T30] audit: type=1326 audit(1756672198.476:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.802117][ T30] audit: type=1326 audit(1756672198.476:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8002 comm="syz.4.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 342.966966][ T8012] netlink: 240 bytes leftover after parsing attributes in process `syz.3.876'. [ 343.748647][ T8016] loop1: detected capacity change from 0 to 32768 [ 343.836324][ T8016] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=snapshots_read,nojournal_transaction_names,noexcl,read_only,no_data_io [ 343.836474][ T8016] allowing incompatible features above 0.0: (unknown version) [ 343.836563][ T8016] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 343.886674][ T8016] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 343.897173][ T8016] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=btree_root in superblock: invalid btree root journal entry: wrong number of keys, fixing [ 343.915899][ T8016] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing [ 343.929223][ T8016] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 343.938755][ T8016] bcachefs (loop1): Version upgrade required: [ 343.938755][ T8016] Version upgrade from 0.11: inode_btree_change to 1.7: mi_btree_bitmap incomplete [ 343.938755][ T8016] Doing incompatible version upgrade from 0.11: inode_btree_change to 1.28: inode_has_case_insensitive [ 343.938755][ T8016] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 344.046041][ T8016] bcachefs (loop1): btree node read error at btree extents level 0/0 [ 344.046142][ T8016] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key 0:3064397824:0 durability: 1 ptr: 0:27:0 gen 0 [ 344.046252][ T8016] loop1 node offset 0/16: incorrect min_key: got POS_MIN should be 0:3064397824:0 [ 344.046342][ T8016] loop1 btree validate error [ 344.046409][ T8016] flagging btree extents lost data [ 344.046484][ T8016] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 344.046574][ T8016] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 344.046664][ T8016] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 344.046749][ T8016] ret btree_node_read_err_bad_node [ 344.130790][ T8016] bcachefs (loop1): error reading btree root btree=extents level=0: btree_node_read_error, fixing [ 344.142933][ T5903] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 344.170007][ T8016] bcachefs (loop1): btree node read error at btree dirents level 0/0 [ 344.170110][ T8016] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 344.170217][ T8016] loop1 node offset 16/24: btree node data missing: expected 24 sectors, found 16 [ 344.170304][ T8016] loop1 btree validate error [ 344.170369][ T8016] repair success (rewriting node) [ 344.229825][ T8016] bcachefs (loop1): btree node read error at btree alloc level 0/0 [ 344.229928][ T8016] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 344.230039][ T8016] loop1 node offset 0/24 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 3328 > 4294967295 [ 344.230135][ T8016] u64s 3 fields 64:0, 64:0, 32:3328, 0:0, 0:0, 0:0 [ 344.230209][ T8016] loop1 btree validate error [ 344.230317][ T8016] flagging btree alloc lost data [ 344.230386][ T8016] ret btree_node_read_err_bad_node [ 344.293193][ T8016] bcachefs (loop1): error reading btree root btree=alloc level=0: btree_node_read_error, fixing [ 344.332266][ T5903] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 344.355999][ T8016] bcachefs (loop1): btree node read error at btree backpointers level 0/0 [ 344.356102][ T8016] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0 [ 344.356210][ T8016] loop1 node offset 0/24 bset u64s 0: checksum error, type none: got should be [ 344.356299][ T8016] loop1 btree validate error [ 344.356364][ T8016] flagging btree backpointers lost data [ 344.356434][ T8016] ret fsck_errors_not_fixed [ 344.411030][ T8016] bcachefs (loop1): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing [ 344.426929][ T5903] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 344.436681][ T5903] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 344.444893][ T5903] usb 5-1: SerialNumber: syz [ 344.461817][ T8016] bcachefs (loop1): check_topology... [ 344.462486][ T8016] bcachefs (loop1): btree root extents unreadable, must recover from scan [ 344.483783][ T8016] bcachefs (loop1): running recovery pass scan_for_btree_nodes (1), currently at check_topology (2) - rewinding [ 344.496088][ T8016] bcachefs (loop1): bch2_check_root(): error restart_recovery [ 344.503749][ T8016] bcachefs (loop1): scan_for_btree_nodes... [ 344.819826][ T8016] bcachefs (loop1): btree node scan found 1 nodes after overwrites [ 344.856405][ T8016] done [ 344.859631][ T8016] bcachefs (loop1): check_topology... [ 344.860166][ T8016] bcachefs (loop1): btree root extents unreadable, must recover from scan [ 344.875741][ T8016] bcachefs (loop1): bch2_get_scanned_nodes(): recovery btree=extents level=0 POS_MIN - SPOS_MAX [ 344.893790][ T8016] bcachefs (loop1): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0 [ 344.944438][ T8016] done [ 344.947647][ T8016] bcachefs (loop1): accounting_read... done [ 344.964113][ T8016] bcachefs (loop1): alloc_read... done [ 344.978022][ T8016] bcachefs (loop1): snapshots_read... [ 344.996650][ T5903] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71 [ 345.029043][ T8016] done [ 345.032414][ T8016] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean [ 345.054067][ T8016] bcachefs (loop1): done starting filesystem [ 345.135889][ T5903] usb 5-1: USB disconnect, device number 8 [ 345.156280][ T5818] bcachefs (loop1): shutting down [ 345.230936][ T5818] bcachefs (loop1): shutdown complete [ 346.228688][ T8048] loop2: detected capacity change from 0 to 128 [ 346.270404][ T8048] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 346.338068][ T8048] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 347.432636][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.444424][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 348.046695][ T8075] netlink: 8 bytes leftover after parsing attributes in process `syz.4.906'. [ 348.118879][ T4309] hfsplus: b-tree write err: -5, ino 4 [ 348.917384][ T8096] usb usb8: usbfs: process 8096 (syz.0.914) did not claim interface 0 before use [ 349.353562][ T8106] program syz.4.919 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 349.380851][ T8107] loop2: detected capacity change from 0 to 256 [ 349.737808][ T8107] FAT-fs (loop2): Directory bread(block 64) failed [ 349.744675][ T8107] FAT-fs (loop2): Directory bread(block 65) failed [ 349.752028][ T8107] FAT-fs (loop2): Directory bread(block 66) failed [ 349.758865][ T8107] FAT-fs (loop2): Directory bread(block 67) failed [ 349.765889][ T8107] FAT-fs (loop2): Directory bread(block 68) failed [ 349.772606][ T8107] FAT-fs (loop2): Directory bread(block 69) failed [ 349.779737][ T8107] FAT-fs (loop2): Directory bread(block 70) failed [ 349.786675][ T8107] FAT-fs (loop2): Directory bread(block 71) failed [ 349.793528][ T8107] FAT-fs (loop2): Directory bread(block 72) failed [ 349.805856][ T8107] FAT-fs (loop2): Directory bread(block 73) failed [ 350.115778][ T5827] Bluetooth: hci4: command 0x0405 tx timeout [ 351.950127][ T8160] sp0: Synchronizing with TNC [ 352.597332][ T8172] netlink: 32 bytes leftover after parsing attributes in process `syz.3.951'. [ 353.719611][ T8194] program syz.1.961 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 354.334942][ T8190] loop2: detected capacity change from 0 to 32768 [ 354.345488][ T8190] XFS: attr2 mount option is deprecated. [ 354.351804][ T8190] XFS (loop2): sunit and swidth options incompatible with the noalign option [ 355.997931][ T8220] loop3: detected capacity change from 0 to 4096 [ 356.377011][ T8220] ntfs3(loop3): ino=b, mi_enum_attr [ 356.382469][ T8220] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 356.414010][ T8220] ntfs3(loop3): Failed to load $Extend (-22). [ 356.421145][ T8220] ntfs3(loop3): Failed to initialize $Extend. [ 356.478426][ T8236] loop0: detected capacity change from 0 to 64 [ 356.510552][ T8220] ntfs3(loop3): ino=5, "/" ntfs_readdir [ 357.269273][ T8250] loop0: detected capacity change from 0 to 1024 [ 357.350117][ T8253] loop1: detected capacity change from 0 to 128 [ 357.480742][ T8250] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 357.520111][ T8253] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 357.575211][ T8261] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 357.596998][ T8253] System zones: 1-3, 19-19, 35-36 [ 357.605190][ T8253] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 357.665133][ T8253] ext4 filesystem being mounted at /171/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 357.823936][ T8265] loop2: detected capacity change from 0 to 256 [ 357.897234][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.919829][ T8266] loop3: detected capacity change from 0 to 1024 [ 358.154281][ T5818] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 358.349057][ T12] hfsplus: b-tree write err: -5, ino 4 [ 358.592596][ T5903] kernel write not supported for file /stat (pid: 5903 comm: kworker/0:5) [ 358.631692][ T8278] loop3: detected capacity change from 0 to 256 [ 358.659870][ T8278] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 358.837903][ T8278] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 359.703426][ T8280] loop0: detected capacity change from 0 to 40427 [ 359.774904][ T8280] F2FS-fs (loop0): invalid crc value [ 359.799893][ T8280] F2FS-fs (loop0): invalid journal entries nats 41728 sits 6 [ 359.807907][ T8280] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-22) [ 359.921634][ T8282] loop2: detected capacity change from 0 to 32768 [ 360.202756][ T8282] bcachefs (dev-0): cannot online: device too small [ 360.209796][ T8282] bcachefs (loop2): shutting down [ 360.230108][ T8282] bcachefs (loop2): shutdown complete [ 361.127251][ T8292] loop1: detected capacity change from 0 to 4096 [ 361.451509][ T8298] loop3: detected capacity change from 0 to 32768 [ 361.460560][ T8282] bcachefs: bch2_fs_get_tree() error: device_size_too_small [ 361.466639][ T8298] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1006 (8298) [ 361.552203][ T8298] BTRFS info (device loop3 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 361.563910][ T8298] BTRFS info (device loop3 state S): using crc32c (crc32c-lib) checksum algorithm [ 361.875200][ T8298] BTRFS info (device loop3 state CS): enabling ssd optimizations [ 361.888036][ T8298] BTRFS info (device loop3 state CS): disabling tree log [ 361.897076][ T8298] BTRFS info (device loop3 state CS): disabling log replay at mount time [ 361.905950][ T8298] BTRFS info (device loop3 state CS): turning on async discard [ 361.913768][ T8298] BTRFS info (device loop3 state CS): enabling free space tree [ 361.921707][ T8298] BTRFS info (device loop3 state CS): force clearing of disk cache [ 361.930231][ T8298] BTRFS info (device loop3 state CS): doing ref verification [ 361.938090][ T8298] BTRFS info (device loop3 state CS): ignoring bad roots [ 361.945576][ T8298] BTRFS info (device loop3 state CS): ignoring data csums [ 361.954921][ T8298] BTRFS info (device loop3 state CS): ignoring meta csums [ 361.962510][ T8298] BTRFS info (device loop3 state CS): ignoring unknown super block flags [ 362.137699][ T5829] BTRFS info (device loop3 state CS): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 363.278099][ T8335] loop2: detected capacity change from 0 to 128 [ 363.344499][ T5881] Process accounting resumed [ 363.881395][ T8346] loop2: detected capacity change from 0 to 256 [ 364.040355][ T8350] netlink: 204 bytes leftover after parsing attributes in process `syz.3.1025'. [ 364.050371][ T8350] netlink: 'syz.3.1025': attribute type 3 has an invalid length. [ 364.060731][ T8346] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 364.155041][ T8338] loop0: detected capacity change from 0 to 8192 [ 364.194913][ T30] audit: type=1800 audit(1756672220.206:30): pid=8346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1022" name="file2" dev="loop2" ino=1048698 res=0 errno=0 [ 365.760599][ T8380] loop1: detected capacity change from 0 to 1024 [ 365.938291][ T8380] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 365.954913][ T8380] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 366.306654][ T8377] loop2: detected capacity change from 0 to 32768 [ 366.320417][ T5818] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 366.338375][ T8377] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section journal_seq_blacklist: entry 1 out of order with next entry (16981954538416098692 > 128) [ 366.338375][ T8377] journal_seq_blacklist (size 64): [ 366.338375][ T8377] 6431665835172427386-16981954538416098692 128-34376515584 1714681267-1611530240 [ 366.338375][ T8377] [ 366.373483][ T8377] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal_seq_blacklist [ 366.577693][ T8386] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_bridge, syncid = 32, id = 0 [ 367.191228][ T8393] loop0: detected capacity change from 0 to 2048 [ 367.227962][ T8393] EXT4-fs: Ignoring removed bh option [ 367.239541][ T8396] loop2: detected capacity change from 0 to 256 [ 367.297617][ T8393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 367.494940][ T8396] FAT-fs (loop2): Directory bread(block 64) failed [ 367.502389][ T8396] FAT-fs (loop2): Directory bread(block 65) failed [ 367.514846][ T8396] FAT-fs (loop2): Directory bread(block 66) failed [ 367.523249][ T8396] FAT-fs (loop2): Directory bread(block 67) failed [ 367.530367][ T8396] FAT-fs (loop2): Directory bread(block 68) failed [ 367.537224][ T8396] FAT-fs (loop2): Directory bread(block 69) failed [ 367.544057][ T8396] FAT-fs (loop2): Directory bread(block 70) failed [ 367.550923][ T8396] FAT-fs (loop2): Directory bread(block 71) failed [ 367.558053][ T8396] FAT-fs (loop2): Directory bread(block 72) failed [ 367.564759][ T8396] FAT-fs (loop2): Directory bread(block 73) failed [ 369.097824][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.642038][ T8417] loop1: detected capacity change from 0 to 256 [ 369.715087][ T8417] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 371.112579][ T8432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1059'. [ 371.225630][ T8429] loop2: detected capacity change from 0 to 40427 [ 371.257280][ T8429] F2FS-fs (loop2): Wrong SIT boundary, start(1536) end(2560) blocks(512) [ 371.266089][ T8429] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 371.278253][ T8429] F2FS-fs (loop2): build fault injection rate: 7 [ 371.284794][ T8429] F2FS-fs (loop2): build fault injection type: 0x35f7 [ 371.307569][ T8429] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of get_checkpoint_version+0x4a/0x9b0 [ 371.319780][ T8429] F2FS-fs (loop2): invalid crc value [ 371.330321][ T8429] F2FS-fs (loop2): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x78b6/0xa750 [ 371.340441][ T8429] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-12) [ 372.092848][ T8448] loop3: detected capacity change from 0 to 512 [ 372.275990][ T8448] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 372.289252][ T8448] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 372.454148][ T30] audit: type=1800 audit(1756672228.446:31): pid=8448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1066" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 372.610908][ T8462] loop1: detected capacity change from 0 to 256 [ 372.638246][ T8462] exfat: Deprecated parameter 'utf8' [ 372.644053][ T8462] exfat: Deprecated parameter 'namecase' [ 372.650603][ T8462] exfat: Deprecated parameter 'namecase' [ 372.660787][ T8462] exfat: Deprecated parameter 'utf8' [ 372.757804][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.759965][ T8456] loop2: detected capacity change from 0 to 4096 [ 372.810512][ T8462] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d) [ 372.876926][ T8462] exFAT-fs (loop1): start_clu is invalid cluster(0x400) [ 372.927680][ T8468] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 373.443612][ T8474] loop1: detected capacity change from 0 to 764 [ 373.530464][ T8474] rock: directory entry would overflow storage [ 373.537653][ T8474] rock: sig=0x5850, size=36, remaining=22 [ 374.405738][ T8492] loop2: detected capacity change from 0 to 1024 [ 374.414710][ T8484] loop0: detected capacity change from 0 to 4096 [ 374.632499][ T8492] hfsplus: bad catalog entry type [ 374.856151][ T8491] loop1: detected capacity change from 0 to 32768 [ 374.874106][ T8491] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section journal: duplicate journal buckets 1 [ 374.874106][ T8491] journal (size 40): [ 374.874106][ T8491] Buckets: 1 7 24 1 [ 374.874106][ T8491] [ 374.902896][ T8491] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal [ 375.066321][ T12] hfsplus: b-tree write err: -5, ino 4 [ 375.095252][ T8484] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 375.102680][ T8484] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 375.728982][ T1101] ntfs3(loop0): ino=3, ntfs3_write_inode failed, -22. [ 375.755996][ T5819] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 375.762755][ T5819] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 375.770927][ T5819] ntfs3(loop0): ino=3, ntfs_set_state failed, -22. [ 375.779760][ T1101] ntfs3(loop0): ino=3, ntfs3_write_inode failed, -22. [ 375.862235][ T8504] loop2: detected capacity change from 0 to 2048 [ 376.028161][ T8504] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 376.036219][ T8504] UDF-fs: Scanning with blocksize 512 failed [ 376.191114][ T8504] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 376.991588][ T8522] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1098'. [ 377.220781][ T8529] loop3: detected capacity change from 0 to 128 [ 377.575970][ T8532] overlayfs: conflicting lowerdir path [ 377.675892][ T8537] loop2: detected capacity change from 0 to 128 [ 378.532999][ T8548] NILFS (nullb0): couldn't find nilfs on the device [ 378.835940][ T8542] loop1: detected capacity change from 0 to 32768 [ 378.965845][ T8542] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,compression=gzip,wide_macs,no_splitbrain_check,journal_flush_disabled,recovery_pass_last=check_topology,nojournal_transaction_names,read_only,no_data_io [ 378.966000][ T8542] allowing incompatible features above 0.0: (unknown version) [ 378.966091][ T8542] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 378.989397][ C1] vkms_vblank_simulate: vblank timer overrun [ 379.025946][ T8542] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 379.035094][ T8542] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 379.044618][ T8542] bcachefs (loop1): Version upgrade required: [ 379.044618][ T8542] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 379.044618][ T8542] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 379.044618][ T8542] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 379.118135][ C1] vkms_vblank_simulate: vblank timer overrun [ 379.179656][ T8542] bcachefs (loop1): btree node read error at btree alloc level 0/0 [ 379.179756][ T8542] u64s 11 type btree_ptr_v2 283673999966207:U64_MAX:U32_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 379.179869][ T8542] loop1 node offset 0/24 bset u64s 0: incorrect max key SPOS_MAX [ 379.179946][ T8542] loop1 btree validate error [ 379.180012][ T8542] flagging btree alloc lost data [ 379.180084][ T8542] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 379.180166][ T8542] ret btree_node_read_err_bad_node [ 379.244373][ T8542] bcachefs (loop1): error reading btree root btree=alloc level=0: btree_node_read_error, fixing [ 379.291860][ T8542] bcachefs (loop1): check_topology... done [ 379.307016][ T8542] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean [ 379.325945][ T8542] bcachefs (loop1): done starting filesystem [ 379.356850][ T8555] loop0: detected capacity change from 0 to 1024 [ 379.436435][ T5818] bcachefs (loop1): shutting down [ 379.530238][ T5818] bcachefs (loop1): shutdown complete [ 380.258614][ T3864] hfsplus: b-tree write err: -5, ino 4 [ 380.271024][ T8566] tmpfs: Cannot change global quota limit on remount [ 380.723716][ T8574] loop3: detected capacity change from 0 to 512 [ 380.861952][ T8574] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 380.878540][ T8574] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 380.952297][ T8581] sp0: Synchronizing with TNC [ 381.299556][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.576556][ T8597] loop0: detected capacity change from 0 to 512 [ 382.630632][ T8597] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 382.776662][ T8597] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 382.790064][ T8597] FAT-fs (loop0): Filesystem has been set read-only [ 382.857699][ T8602] loop2: detected capacity change from 0 to 1024 [ 382.887457][ T8604] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 382.959731][ T8602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 383.150196][ T8609] program syz.1.1137 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 383.359230][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.543500][ T8615] [U] „ [ 383.681497][ T8617] vivid-002: disconnect [ 383.725886][ T8616] vivid-002: reconnect [ 384.498903][ T8631] loop2: detected capacity change from 0 to 1024 [ 384.569924][ T5903] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 384.601522][ T8631] EXT4-fs: Ignoring removed mblk_io_submit option [ 384.609231][ T8631] EXT4-fs: Ignoring removed nobh option [ 384.619570][ T8631] EXT4-fs: Ignoring removed bh option [ 384.879296][ T5903] usb 4-1: Using ep0 maxpacket: 32 [ 384.902495][ T8631] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.944541][ T5903] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 384.953257][ T5903] usb 4-1: config 0 has no interface number 0 [ 384.993604][ T8629] loop1: detected capacity change from 0 to 32768 [ 385.041481][ T5903] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 385.043502][ T8637] loop0: detected capacity change from 0 to 256 [ 385.053787][ T5903] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 385.069509][ T5903] usb 4-1: Product: syz [ 385.074042][ T5903] usb 4-1: Manufacturer: syz [ 385.079066][ T5903] usb 4-1: SerialNumber: syz [ 385.269621][ T8629] (syz.1.1147,8629,1):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2! [ 385.269621][ T8629] found = 1, set = 0, taken = 0, off = 0 [ 385.272811][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.290518][ T8629] (syz.1.1147,8629,1):ocfs2_load_local_alloc:356 ERROR: status = -22 [ 385.290674][ T8629] (syz.1.1147,8629,1):ocfs2_check_volume:2404 ERROR: status = -22 [ 385.290819][ T8629] (syz.1.1147,8629,1):ocfs2_check_volume:2432 ERROR: status = -22 [ 385.290959][ T8629] (syz.1.1147,8629,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 385.358912][ T5903] usb 4-1: config 0 descriptor?? [ 385.361186][ T8629] (syz.1.1147,8629,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 385.482431][ T5903] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 385.491589][ T5903] usb 4-1: selecting invalid altsetting 1 [ 385.500519][ T5903] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 385.838919][ T5903] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 385.859181][ T5903] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 385.872404][ T5903] usb 4-1: media controller created [ 386.026596][ T8647] hugetlbfs: Bad value '[' for mount option 'size' [ 386.026596][ T8647] [ 386.143873][ T5903] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 386.936082][ T8633] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-110 [ 386.975175][ T5903] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-32 [ 386.986185][ T5903] zl10353_read_register: readreg error (reg=127, ret==-32) [ 387.255221][ T8663] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 387.483832][ T5903] usb 4-1: USB disconnect, device number 5 [ 388.477336][ T8679] loop0: detected capacity change from 0 to 64 [ 388.597667][ T8681] binder: 8680:8681 ioctl c018620c 200000000100 returned -22 [ 388.635791][ T5881] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 388.802848][ T8667] loop1: detected capacity change from 0 to 8192 [ 388.849795][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 388.861672][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 388.872975][ T5881] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 388.886236][ T5881] usb 3-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00 [ 388.895652][ T5881] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.951996][ T8675] loop3: detected capacity change from 0 to 32768 [ 388.964173][ T8675] XFS: noattr2 mount option is deprecated. [ 388.973598][ T8675] XFS (loop3): attr2 and noattr2 cannot both be specified. [ 389.247096][ T5881] usb 3-1: config 0 descriptor?? [ 389.255132][ T8678] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 389.859718][ T5881] aureal 0003:0755:2626.000F: unknown main item tag 0x6 [ 389.867350][ T5881] aureal 0003:0755:2626.000F: report_id 29495 is invalid [ 389.874596][ T5881] aureal 0003:0755:2626.000F: item 0 2 1 8 parsing failed [ 389.961820][ T5881] aureal 0003:0755:2626.000F: probe with driver aureal failed with error -22 [ 390.089761][ T5881] usb 3-1: USB disconnect, device number 7 [ 390.683695][ T8700] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1179'. [ 391.131774][ T8708] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1182'. [ 391.380355][ T8706] loop1: detected capacity change from 0 to 2048 [ 391.510580][ T8706] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.900094][ T8724] loop2: detected capacity change from 0 to 1024 [ 391.950358][ T5818] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.960115][ T8724] EXT4-fs: Ignoring removed nobh option [ 392.053562][ T8724] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.360627][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.430025][ T8735] netlink: 802 bytes leftover after parsing attributes in process `syz.4.1194'. [ 392.742047][ T8742] tmpfs: Too few inodes for current use [ 392.780932][ T8744] loop0: detected capacity change from 0 to 256 [ 392.812242][ T8740] loop2: detected capacity change from 0 to 1024 [ 392.918306][ T8740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.931433][ T8740] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 392.940775][ T8749] No buffer was provided with the request [ 392.981895][ T8744] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 393.400654][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.784262][ T8761] loop0: detected capacity change from 0 to 256 [ 393.812504][ T8761] exfat: Deprecated parameter 'namecase' [ 393.822137][ T8761] exfat: Deprecated parameter 'namecase' [ 393.822729][ T8762] xt_limit: Overflow, try lower: 10/0 [ 393.928515][ T5903] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 393.969680][ T8761] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 394.154410][ T5903] usb 3-1: Using ep0 maxpacket: 16 [ 394.205794][ T5903] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 394.220449][ T5903] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 394.230648][ T5903] usb 3-1: config 0 interface 0 has no altsetting 0 [ 394.244431][ T5903] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 394.255120][ T5903] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 394.298812][ T5903] usb 3-1: config 0 descriptor?? [ 394.799017][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.812893][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.822953][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.830232][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.840228][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.847391][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.860978][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.872380][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.879530][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.889238][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.897071][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.904063][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.913792][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.920997][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.930874][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.938103][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 394.945084][ T5903] kye 0003:0458:0138.0010: unknown main item tag 0x0 [ 395.038357][ T5903] kye 0003:0458:0138.0010: collection stack underflow [ 395.048198][ T5903] kye 0003:0458:0138.0010: item 0 0 0 12 parsing failed [ 395.340418][ T5903] kye 0003:0458:0138.0010: parse failed [ 395.349712][ T5903] kye 0003:0458:0138.0010: probe with driver kye failed with error -22 [ 395.462785][ T5903] usb 3-1: USB disconnect, device number 8 [ 396.428012][ T8805] loop2: detected capacity change from 0 to 512 [ 396.548210][ T8805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.561524][ T8805] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 397.087578][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.177952][ T8820] loop3: detected capacity change from 0 to 512 [ 397.231794][ T8820] EXT4-fs: Ignoring removed nobh option [ 397.262316][ T8820] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 397.317762][ T8820] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1227: iget: bad i_size value: 38620345925642 [ 397.341945][ T8820] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1227: couldn't read orphan inode 15 (err -117) [ 397.445206][ T8820] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.541192][ T8827] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1231'. [ 397.913095][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.911478][ T8851] vcan0: MTU too low for tipc bearer [ 399.917355][ T8851] tipc: Enabling of bearer rejected, failed to enable media [ 401.062401][ T8861] loop1: detected capacity change from 0 to 1024 [ 401.393167][ T8861] hfsplus: bad catalog entry type [ 401.828148][ T1101] hfsplus: b-tree write err: -5, ino 4 [ 402.404471][ T8875] loop2: detected capacity change from 0 to 128 [ 402.557384][ T8875] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 402.744324][ T8875] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 402.759861][ T8878] loop1: detected capacity change from 0 to 1024 [ 403.239591][ T8872] loop3: detected capacity change from 0 to 4096 [ 403.533338][ T5104] hfsplus: b-tree write err: -5, ino 4 [ 404.781487][ T8903] netlink: 666 bytes leftover after parsing attributes in process `syz.3.1262'. [ 404.986994][ T8908] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 405.038847][ T8909] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1267'. [ 405.051289][ T8909] smc: net device bond0 applied user defined pnetid SYZ [ 405.875833][ T5903] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 405.944230][ T8925] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1274'. [ 406.095775][ T5903] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 406.111067][ T5903] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 406.125950][ T5903] usb 1-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 406.135226][ T5903] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 406.244579][ T5903] usb 1-1: config 0 descriptor?? [ 406.949911][ T5903] hid-led 0003:0FC5:B080.0011: probe with driver hid-led failed with error -71 [ 407.027025][ T5903] usb 1-1: USB disconnect, device number 6 [ 407.333908][ T8944] loop1: detected capacity change from 0 to 256 [ 407.628830][ T8944] FAT-fs (loop1): Directory bread(block 64) failed [ 407.637688][ T8944] FAT-fs (loop1): Directory bread(block 65) failed [ 407.644607][ T8944] FAT-fs (loop1): Directory bread(block 66) failed [ 407.656332][ T8944] FAT-fs (loop1): Directory bread(block 67) failed [ 407.663318][ T8944] FAT-fs (loop1): Directory bread(block 68) failed [ 407.672025][ T8944] FAT-fs (loop1): Directory bread(block 69) failed [ 407.679116][ T8944] FAT-fs (loop1): Directory bread(block 70) failed [ 407.686003][ T8944] FAT-fs (loop1): Directory bread(block 71) failed [ 407.692878][ T8944] FAT-fs (loop1): Directory bread(block 72) failed [ 407.699813][ T8944] FAT-fs (loop1): Directory bread(block 73) failed [ 408.439643][ T8964] loop3: detected capacity change from 0 to 256 [ 408.520583][ T8964] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d) [ 408.534301][ T8964] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 408.547444][ T8967] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1294'. [ 408.873587][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.886142][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 409.054315][ T8970] loop2: detected capacity change from 0 to 2048 [ 409.137180][ T8974] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 409.222547][ T8975] loop0: detected capacity change from 0 to 128 [ 409.371266][ T8975] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 409.402136][ T8975] ext4 filesystem being mounted at /270/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 409.483516][ T8975] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:375: inode #2: comm syz.0.1306: No space for directory leaf checksum. Please run e2fsck -D. [ 409.506574][ T8975] EXT4-fs error (device loop0): htree_dirblock_to_tree:1051: inode #2: comm syz.0.1306: Directory block failed checksum [ 409.890983][ T5819] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 410.365692][ T8992] loop0: detected capacity change from 0 to 256 [ 410.608050][ T8992] FAT-fs (loop0): Directory bread(block 64) failed [ 410.614928][ T8992] FAT-fs (loop0): Directory bread(block 65) failed [ 410.627356][ T8992] FAT-fs (loop0): Directory bread(block 66) failed [ 410.634135][ T8992] FAT-fs (loop0): Directory bread(block 67) failed [ 410.643070][ T8992] FAT-fs (loop0): Directory bread(block 68) failed [ 410.650130][ T8992] FAT-fs (loop0): Directory bread(block 69) failed [ 410.657249][ T8992] FAT-fs (loop0): Directory bread(block 70) failed [ 410.664069][ T8992] FAT-fs (loop0): Directory bread(block 71) failed [ 410.671209][ T8992] FAT-fs (loop0): Directory bread(block 72) failed [ 410.678226][ T8992] FAT-fs (loop0): Directory bread(block 73) failed [ 411.335222][ T8999] loop3: detected capacity change from 0 to 8192 [ 412.278344][ T9021] nbd: must specify a device to reconfigure [ 412.800698][ T9028] sctp: [Deprecated]: syz.2.1322 (pid 9028) Use of int in maxseg socket option. [ 412.800698][ T9028] Use struct sctp_assoc_value instead [ 413.358552][ T9036] netlink: 'syz.1.1325': attribute type 29 has an invalid length. [ 413.474400][ T9038] loop3: detected capacity change from 0 to 128 [ 413.857416][ T9045] loop2: detected capacity change from 0 to 16 [ 413.919650][ T9045] erofs (device loop2): mounted with root inode @ nid 36. [ 413.978469][ T9048] loop1: detected capacity change from 0 to 256 [ 413.988621][ T9048] exfat: Deprecated parameter 'utf8' [ 413.994406][ T9048] exfat: Deprecated parameter 'utf8' [ 414.006907][ T9048] exfat: Deprecated parameter 'utf8' [ 414.061684][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.061684][ T9045] loop2: rw=524288, sector=524984, nr_sectors = 8 limit=16 [ 414.076625][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.076625][ T9045] loop2: rw=524288, sector=368, nr_sectors = 8 limit=16 [ 414.090905][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.090905][ T9045] loop2: rw=524288, sector=33822867456, nr_sectors = 8 limit=16 [ 414.110398][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.110398][ T9045] loop2: rw=524288, sector=524280, nr_sectors = 8 limit=16 [ 414.126685][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.126685][ T9045] loop2: rw=524288, sector=525096, nr_sectors = 8 limit=16 [ 414.141026][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.141026][ T9045] loop2: rw=524288, sector=712, nr_sectors = 8 limit=16 [ 414.155274][ T9045] syz.2.1330: attempt to access beyond end of device [ 414.155274][ T9045] loop2: rw=0, sector=524984, nr_sectors = 8 limit=16 [ 414.169153][ T9045] erofs (device loop2): failed to readdir of logical block 0 of nid 36 [ 414.200671][ T9048] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 414.234469][ T9053] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1333'. [ 414.247084][ T9053] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 415.187698][ T9059] loop3: detected capacity change from 0 to 2048 [ 415.268089][ T9055] loop0: detected capacity change from 0 to 32768 [ 415.277378][ T9055] btrfs: Deprecated parameter 'usebackuproot' [ 415.283657][ T9055] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 415.325480][ T9055] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1334 (9055) [ 415.356352][ T9059] EXT4-fs (loop3): Test dummy encryption mode enabled [ 415.389344][ T9055] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 415.400286][ T9055] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 415.409461][ T9055] BTRFS error (device loop0): ignorebadroots must be used with ro mount option [ 415.418884][ T9055] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 415.438089][ T9055] BTRFS error (device loop0): open_ctree failed: -22 [ 415.485566][ T9059] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 415.751883][ T3864] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 416.058836][ T3864] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 416.313815][ T3864] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 416.492200][ T9059] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 416.627940][ T3864] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 416.822222][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.984150][ T3864] bridge_slave_1: left allmulticast mode [ 416.990554][ T3864] bridge_slave_1: left promiscuous mode [ 416.997330][ T3864] bridge0: port 2(bridge_slave_1) entered disabled state [ 417.032295][ T3864] bridge_slave_0: left allmulticast mode [ 417.038461][ T3864] bridge_slave_0: left promiscuous mode [ 417.045052][ T3864] bridge0: port 1(bridge_slave_0) entered disabled state [ 417.567762][ T3864] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 417.638580][ T3864] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 417.670952][ T3864] bond0 (unregistering): Released all slaves [ 418.176295][ T3864] hsr_slave_0: left promiscuous mode [ 418.220840][ T3864] hsr_slave_1: left promiscuous mode [ 418.232156][ T3864] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 418.239903][ T3864] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 418.278877][ T3864] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 418.289998][ T3864] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 418.337584][ T9082] loop2: detected capacity change from 0 to 512 [ 418.352455][ T3864] veth1_macvtap: left promiscuous mode [ 418.359558][ T3864] veth0_macvtap: left promiscuous mode [ 418.368174][ T3864] veth1_vlan: left promiscuous mode [ 418.373778][ T3864] veth0_vlan: left promiscuous mode [ 418.380802][ T9082] EXT4-fs: Ignoring removed mblk_io_submit option [ 418.436679][ T9082] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 418.775850][ T9082] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 418.836892][ T9082] EXT4-fs (loop2): orphan cleanup on readonly fs [ 418.888989][ T9082] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1345: Invalid block bitmap block 0 in block_group 0 [ 418.949770][ T9082] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1345: Invalid block bitmap block 0 in block_group 0 [ 419.035934][ T9082] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1345: Invalid block bitmap block 0 in block_group 0 [ 419.169739][ T9082] Quota error (device loop2): write_blk: dquota write failed [ 419.178077][ T9082] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 419.191210][ T9082] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1345: Failed to acquire dquot type 1 [ 419.299453][ T9082] EXT4-fs (loop2): 1 orphan inode deleted [ 419.308632][ T5104] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5 [ 419.320854][ T5104] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:32: Failed to release dquot type 1 [ 419.361313][ T5822] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 419.373146][ T3864] team0 (unregistering): Port device team_slave_1 removed [ 419.384931][ T9082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 419.399861][ T5822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 419.419278][ T3864] team0 (unregistering): Port device team_slave_0 removed [ 419.472165][ T5822] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 419.569674][ T5822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 419.583792][ T5822] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 419.851824][ T9081] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 420.298429][ T9093] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1351'. [ 420.327579][ T9093] vlan2: entered promiscuous mode [ 420.332840][ T9093] macvtap0: entered promiscuous mode [ 420.390840][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.294636][ T9085] chnl_net:caif_netlink_parms(): no params data found [ 421.805990][ T5827] Bluetooth: hci1: command tx timeout [ 422.124917][ T9104] loop0: detected capacity change from 0 to 512 [ 422.306961][ T9104] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1355: bg 0: block 288: padding at end of block bitmap is not set [ 422.494972][ T9104] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 422.687671][ T9104] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.1355: attempt to clear invalid blocks 1024 len 1 [ 422.837344][ T9104] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.1355: invalid indirect mapped block 1819239214 (level 0) [ 422.914313][ T9104] EXT4-fs (loop0): 1 truncate cleaned up [ 422.922735][ T9104] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 423.875751][ T5827] Bluetooth: hci1: command tx timeout [ 424.142323][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.176453][ T9085] bridge0: port 1(bridge_slave_0) entered blocking state [ 424.183963][ T9085] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.192215][ T9085] bridge_slave_0: entered allmulticast mode [ 424.209866][ T9085] bridge_slave_0: entered promiscuous mode [ 424.231542][ T9085] bridge0: port 2(bridge_slave_1) entered blocking state [ 424.245189][ T9085] bridge0: port 2(bridge_slave_1) entered disabled state [ 424.252955][ T9085] bridge_slave_1: entered allmulticast mode [ 424.262668][ T9085] bridge_slave_1: entered promiscuous mode [ 424.492814][ T9085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 424.522088][ T9122] loop3: detected capacity change from 0 to 256 [ 424.577866][ T9085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 424.838528][ T9085] team0: Port device team_slave_0 added [ 424.878387][ T9085] team0: Port device team_slave_1 added [ 425.352503][ T9085] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 425.359940][ T9085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 425.390482][ T9085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 425.426857][ T9085] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 425.434094][ T9085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 425.461037][ T9085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 426.021779][ T5827] Bluetooth: hci1: command tx timeout [ 426.093202][ T9085] hsr_slave_0: entered promiscuous mode [ 426.106358][ T9085] hsr_slave_1: entered promiscuous mode [ 426.115052][ T9085] debugfs: 'hsr0' already exists in 'hsr' [ 426.123809][ T9085] Cannot create hsr debugfs directory [ 426.650795][ T9149] loop2: detected capacity change from 0 to 64 [ 427.003239][ T5903] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 427.205825][ T5903] usb 4-1: Using ep0 maxpacket: 16 [ 427.303872][ T5903] usb 4-1: config index 0 descriptor too short (expected 292, got 36) [ 427.318616][ T5903] usb 4-1: config 0 has an invalid interface number: 161 but max is 0 [ 427.331055][ T5903] usb 4-1: config 0 has no interface number 0 [ 427.337726][ T5903] usb 4-1: config 0 interface 161 altsetting 13 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 427.351963][ T5903] usb 4-1: config 0 interface 161 altsetting 13 endpoint 0x81 has invalid wMaxPacketSize 0 [ 427.362631][ T5903] usb 4-1: config 0 interface 161 has no altsetting 0 [ 427.372542][ T5903] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1b34, bcdDevice= 0.00 [ 427.381958][ T5903] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 427.478745][ T5903] usb 4-1: config 0 descriptor?? [ 427.940988][ T5903] hid_parser_main: 636 callbacks suppressed [ 427.941196][ T5903] corsair 0003:1B1C:1B34.0012: unknown main item tag 0x0 [ 427.957863][ T5903] corsair 0003:1B1C:1B34.0012: unknown main item tag 0x0 [ 427.968433][ T5903] corsair 0003:1B1C:1B34.0012: unknown main item tag 0x0 [ 427.976118][ T5903] corsair 0003:1B1C:1B34.0012: unknown main item tag 0x0 [ 427.983625][ T5903] corsair 0003:1B1C:1B34.0012: unknown main item tag 0x0 [ 428.056275][ T5827] Bluetooth: hci1: command tx timeout [ 428.084189][ T5903] corsair 0003:1B1C:1B34.0012: failed to start in urb: -90 [ 428.108586][ T5903] corsair 0003:1B1C:1B34.0012: hidraw0: USB HID v0.05 Device [HID 1b1c:1b34] on usb-dummy_hcd.3-1/input161 [ 428.192693][ T5903] usb 4-1: USB disconnect, device number 6 [ 429.033973][ T9153] netlink: 766 bytes leftover after parsing attributes in process `syz.4.1374'. [ 429.034418][ T9155] loop3: detected capacity change from 0 to 64 [ 429.543820][ T9085] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 429.660726][ T9085] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 429.760606][ T9085] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 429.887020][ T9085] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 430.132948][ T9168] netlink: 'syz.3.1381': attribute type 3 has an invalid length. [ 430.144954][ T9168] netlink: 'syz.3.1381': attribute type 1 has an invalid length. [ 430.153144][ T9168] netlink: 199820 bytes leftover after parsing attributes in process `syz.3.1381'. [ 430.279758][ T30] audit: type=1326 audit(1756672286.276:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.308372][ T30] audit: type=1326 audit(1756672286.316:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.335469][ T30] audit: type=1326 audit(1756672286.316:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.361134][ T30] audit: type=1326 audit(1756672286.316:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.390701][ T30] audit: type=1326 audit(1756672286.326:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.417354][ T30] audit: type=1326 audit(1756672286.326:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.442858][ T30] audit: type=1326 audit(1756672286.346:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9169 comm="syz.4.1382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bdb38ebe9 code=0x7ffc0000 [ 430.561224][ T9172] loop0: detected capacity change from 0 to 1024 [ 431.074409][ T9174] loop2: detected capacity change from 0 to 2048 [ 431.176685][ T9174] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 431.249526][ T9179] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 431.423127][ T9085] 8021q: adding VLAN 0 to HW filter on device bond0 [ 431.650661][ T9085] 8021q: adding VLAN 0 to HW filter on device team0 [ 431.750494][ T3773] bridge0: port 1(bridge_slave_0) entered blocking state [ 431.758121][ T3773] bridge0: port 1(bridge_slave_0) entered forwarding state [ 431.852511][ T3773] bridge0: port 2(bridge_slave_1) entered blocking state [ 431.860185][ T3773] bridge0: port 2(bridge_slave_1) entered forwarding state [ 432.728628][ T9199] sctp: [Deprecated]: syz.3.1395 (pid 9199) Use of int in maxseg socket option. [ 432.728628][ T9199] Use struct sctp_assoc_value instead [ 433.380687][ T9212] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1400'. [ 433.921505][ T9085] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 434.020724][ T9222] loop0: detected capacity change from 0 to 1024 [ 434.040303][ T9222] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 434.067897][ T9222] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 434.081747][ T9222] EXT4-fs (loop0): orphan cleanup on readonly fs [ 434.095723][ T9222] Quota error (device loop0): v2_read_file_info: Can't read info structure [ 434.104847][ T9222] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 434.120153][ T9222] EXT4-fs (loop0): Cannot turn on quotas: error -5 [ 434.138079][ T9222] EXT4-fs (loop0): 1 truncate cleaned up [ 434.146099][ T9222] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 434.252285][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.479501][ T9230] loop0: detected capacity change from 0 to 40427 [ 435.493181][ T9230] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(2560) blocks(512) [ 435.502065][ T9230] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 435.516098][ T9230] F2FS-fs (loop0): build fault injection rate: 7 [ 435.522690][ T9230] F2FS-fs (loop0): build fault injection type: 0x35f7 [ 435.532379][ T9230] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of get_checkpoint_version+0x4a/0x9b0 [ 435.549190][ T9230] F2FS-fs (loop0): invalid crc value [ 435.571052][ T9230] F2FS-fs (loop0): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x78b6/0xa750 [ 435.581139][ T9230] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-12) [ 436.101347][ T9085] veth0_vlan: entered promiscuous mode [ 436.197115][ T9085] veth1_vlan: entered promiscuous mode [ 436.437202][ T9085] veth0_macvtap: entered promiscuous mode [ 436.489954][ T9241] sctp: [Deprecated]: syz.0.1410 (pid 9241) Use of int in maxseg socket option. [ 436.489954][ T9241] Use struct sctp_assoc_value instead [ 436.512071][ T9085] veth1_macvtap: entered promiscuous mode [ 436.644563][ T9085] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 436.785074][ T9085] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 436.850705][ T3605] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 436.931861][ T3605] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 436.988838][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.775883][ T9248] loop2: detected capacity change from 0 to 32768 [ 437.798118][ T3864] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 437.890388][ T9248] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,compression=gzip,wide_macs,no_splitbrain_check,journal_flush_disabled,recovery_pass_last=check_topology,nojournal_transaction_names,read_only,no_data_io [ 437.890544][ T9248] allowing incompatible features above 0.0: (unknown version) [ 437.890632][ T9248] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 437.936625][ T9248] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 437.945922][ T9248] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 437.956035][ T9248] bcachefs (loop2): Version upgrade required: [ 437.956035][ T9248] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 437.956035][ T9248] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 437.956035][ T9248] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 438.227263][ T9248] bcachefs (loop2): btree node read error at btree alloc level 0/0 [ 438.227364][ T9248] u64s 11 type btree_ptr_v2 283673999966207:U64_MAX:U32_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 438.227476][ T9248] loop2 node offset 0/24 bset u64s 0: incorrect max key SPOS_MAX [ 438.227554][ T9248] loop2 btree validate error [ 438.227623][ T9248] flagging btree alloc lost data [ 438.227695][ T9248] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 438.227780][ T9248] ret btree_node_read_err_bad_node [ 438.292770][ T9248] bcachefs (loop2): error reading btree root btree=alloc level=0: btree_node_read_error, fixing [ 438.395704][ T9248] bcachefs (loop2): check_topology... done [ 438.421398][ T9248] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean [ 438.452261][ T9248] bcachefs (loop2): done starting filesystem [ 438.607040][ T5823] bcachefs (loop2): shutting down [ 438.720942][ T5823] bcachefs (loop2): shutdown complete [ 439.022634][ T9265] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1420'. [ 439.062333][ T9266] loop3: detected capacity change from 0 to 256 [ 439.197941][ T9266] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 439.344073][ T30] audit: type=1800 audit(1756672295.356:39): pid=9266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1421" name="memory.events" dev="loop3" ino=1048803 res=0 errno=0 [ 439.406007][ T30] audit: type=1804 audit(1756672295.396:40): pid=9266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1421" name="/newroot/309/file0/memory.events" dev="loop3" ino=1048803 res=1 errno=0 [ 440.072525][ T9276] loop3: detected capacity change from 0 to 2048 [ 440.274236][ T9276] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 440.671869][ T9288] loop0: detected capacity change from 0 to 8 [ 440.716152][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 440.785202][ T9288] SQUASHFS error: Failed to read block 0xe000000000001ea: -5 [ 440.793949][ T9288] unable to read xattr id index table [ 441.238790][ T9294] loop3: detected capacity change from 0 to 512 [ 441.307658][ T9294] EXT4-fs: Ignoring removed mblk_io_submit option [ 441.364397][ T9294] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 441.416920][ T9294] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 441.436996][ T9294] EXT4-fs (loop3): orphan cleanup on readonly fs [ 441.464647][ T9294] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1429: Invalid block bitmap block 0 in block_group 0 [ 441.529478][ T9294] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1429: Invalid block bitmap block 0 in block_group 0 [ 441.646521][ T9294] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1429: Invalid block bitmap block 0 in block_group 0 [ 441.718340][ T9294] Quota error (device loop3): write_blk: dquota write failed [ 441.731759][ T9294] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 441.742483][ T9294] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.1429: Failed to acquire dquot type 1 [ 441.848078][ T9294] EXT4-fs (loop3): 1 orphan inode deleted [ 441.860774][ T3605] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-5 [ 441.870384][ T3605] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:18: Failed to release dquot type 1 [ 441.948798][ T9294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 442.180196][ T9313] netdevsim netdevsim2: Direct firmware load for € failed with error -2 [ 442.189121][ T9313] netdevsim netdevsim2: Falling back to sysfs fallback for: € [ 442.472783][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 442.885209][ T5875] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0 [ 442.936915][ T5875] hid-generic 0000:0000:0000.0013: hidraw0: HID v0.00 Device [syz0] on syz0 [ 443.561487][ T9332] loop2: detected capacity change from 0 to 512 [ 443.693556][ T9332] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a84ec018, mo2=0002] [ 443.740995][ T9332] System zones: 0-2, 18-18, 34-35 [ 443.787744][ T9332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 443.805181][ T9332] ext4 filesystem being mounted at /279/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 443.938618][ T9332] EXT4-fs warning (device loop2): verify_group_input:156: Last group not full [ 444.150517][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 444.159142][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 444.304024][ T9345] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 444.304968][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 444.348229][ T795] IPVS: starting estimator thread 0... [ 444.370718][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 444.379575][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 444.445833][ T9346] IPVS: using max 240 ests per chain, 12000 per kthread [ 444.706815][ T9352] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1448'. [ 444.718683][ T9352] NCSI netlink: No device for ifindex 1024 [ 445.248085][ T9360] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1451'. [ 445.854772][ T9371] tipc: Started in network mode [ 445.860531][ T9371] tipc: Node identity ac14140f, cluster identity 4711 [ 445.868576][ T9371] tipc: New replicast peer: 255.255.255.255 [ 445.879406][ T9371] tipc: Enabled bearer , priority 10 [ 445.892334][ T9374] loop5: detected capacity change from 0 to 1024 [ 445.939347][ T9374] EXT4-fs: Ignoring removed nomblk_io_submit option [ 446.122197][ T9374] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 446.584310][ T9387] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 446.595144][ T9085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 446.985741][ T795] tipc: Node number set to 2886997007 [ 448.297937][ T9404] loop2: detected capacity change from 0 to 4096 [ 448.467983][ T9410] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 448.840463][ T9408] loop5: detected capacity change from 0 to 32768 [ 449.081334][ T9408] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,compression=gzip,wide_macs,no_splitbrain_check,journal_flush_disabled,recovery_pass_last=check_topology,nojournal_transaction_names,read_only,no_data_io [ 449.081496][ T9408] allowing incompatible features above 0.0: (unknown version) [ 449.081586][ T9408] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 449.081739][ T9408] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0 [ 449.082552][ T9408] bcachefs (loop5): recovering from clean shutdown, journal seq 10 [ 449.083974][ T9408] bcachefs (loop5): Version upgrade required: [ 449.083974][ T9408] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 449.083974][ T9408] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 449.083974][ T9408] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 449.174441][ T9408] bcachefs (loop5): btree node read error at btree alloc level 0/0 [ 449.174552][ T9408] u64s 11 type btree_ptr_v2 283673999966207:U64_MAX:U32_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 449.174665][ T9408] loop5 node offset 0/24 bset u64s 0: incorrect max key SPOS_MAX [ 449.174742][ T9408] loop5 btree validate error [ 449.174808][ T9408] flagging btree alloc lost data [ 449.174877][ T9408] running recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 449.174958][ T9408] ret btree_node_read_err_bad_node [ 449.175845][ T9408] bcachefs (loop5): error reading btree root btree=alloc level=0: btree_node_read_error, fixing [ 449.223405][ T9408] bcachefs (loop5): check_topology... done [ 449.240298][ T9408] bcachefs (loop5): Fixed errors, running fsck a second time to verify fs is clean [ 449.269072][ T9408] bcachefs (loop5): done starting filesystem [ 449.423689][ T9085] bcachefs (loop5): shutting down [ 449.559772][ C0] vkms_vblank_simulate: vblank timer overrun [ 449.612770][ T9085] bcachefs (loop5): shutdown complete [ 449.748495][ T5875] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 449.940167][ T5875] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 449.954910][ T5875] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 449.969106][ T5875] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 449.982586][ T5875] usb 1-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 449.994862][ T5875] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 450.033665][ T5875] usb 1-1: config 0 descriptor?? [ 450.520062][ T5875] dragonrise 0003:0079:0011.0014: hidraw0: USB HID v0.00 Device [HID 0079:0011] on usb-dummy_hcd.0-1/input0 [ 450.638935][ T9429] loop3: detected capacity change from 0 to 512 [ 450.650839][ T9429] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 450.689954][ T9429] EXT4-fs (loop3): 1 truncate cleaned up [ 450.698232][ T9429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 450.719788][ T795] usb 1-1: USB disconnect, device number 7 [ 450.940604][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.535117][ T9442] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 451.542602][ T9442] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 451.549986][ T9442] comedi comedi3: 8255: I/O port conflict (0x5c952399,4) [ 451.557496][ T9442] comedi comedi3: 8255: I/O port conflict (0xd,4) [ 451.566370][ T9442] comedi comedi3: 8255: I/O port conflict (0x3ff,4) [ 451.573253][ T9442] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 451.585812][ T9442] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 451.592631][ T9442] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 451.601212][ T9442] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 451.608505][ T9442] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 452.593523][ T9459] loop5: detected capacity change from 0 to 256 [ 452.711308][ T9459] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x395f7e4b, utbl_chksum : 0xe619d30d) [ 453.236130][ T5875] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 453.456520][ T5875] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 453.465225][ T5875] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 453.478895][ T5875] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 453.492151][ T5875] usb 4-1: config 220 has no interface number 2 [ 453.499013][ T5875] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 453.515233][ T5875] usb 4-1: config 220 interface 0 has no altsetting 0 [ 453.522374][ T5875] usb 4-1: config 220 interface 76 has no altsetting 0 [ 453.536556][ T5875] usb 4-1: config 220 interface 1 has no altsetting 0 [ 454.004939][ T9465] loop5: detected capacity change from 0 to 32768 [ 454.204635][ T9465] (syz.5.1500,9465,1):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2! [ 454.204635][ T9465] found = 1, set = 0, taken = 0, off = 0 [ 454.225999][ T9465] (syz.5.1500,9465,1):ocfs2_load_local_alloc:356 ERROR: status = -22 [ 454.234311][ T9465] (syz.5.1500,9465,1):ocfs2_check_volume:2404 ERROR: status = -22 [ 454.248302][ T9465] (syz.5.1500,9465,1):ocfs2_check_volume:2432 ERROR: status = -22 [ 454.258218][ T9465] (syz.5.1500,9465,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 454.287930][ T9465] (syz.5.1500,9465,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 454.681240][ T9470] loop2: detected capacity change from 0 to 32768 [ 454.727601][ T5875] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 454.740750][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 454.749120][ T5875] usb 4-1: Product: syz [ 454.753482][ T5875] usb 4-1: Manufacturer: syz [ 454.764191][ T5875] usb 4-1: SerialNumber: syz [ 455.430579][ T9478] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1505'. [ 455.494366][ T9480] ptrace attach of "./syz-executor exec"[5817] was attempted by " [ 455.580691][ T5875] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 455.683052][ T5875] usb 4-1: No valid video chain found. [ 455.696554][ T5875] usb 4-1: selecting invalid altsetting 0 [ 455.977725][ T5875] usb 4-1: selecting invalid altsetting 0 [ 455.988882][ T5875] usbtest 4-1:220.1: probe with driver usbtest failed with error -22 [ 456.059549][ T5875] usb 4-1: USB disconnect, device number 7 [ 457.413081][ T9510] loop2: detected capacity change from 0 to 1024 [ 457.449384][ T9510] EXT4-fs: Ignoring removed oldalloc option [ 457.591044][ T9510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 457.604116][ T9510] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 457.842726][ T9510] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 457.844789][ T9510] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 28 [ 457.844938][ T9510] EXT4-fs (loop2): This should not happen!! Data will be lost [ 457.844938][ T9510] [ 457.845025][ T9510] EXT4-fs (loop2): Total free blocks count 0 [ 457.845116][ T9510] EXT4-fs (loop2): Free/Dirty block details [ 457.845202][ T9510] EXT4-fs (loop2): free_blocks=4293918720 [ 457.848290][ T9510] EXT4-fs (loop2): dirty_blocks=64 [ 457.848406][ T9510] EXT4-fs (loop2): Block reservation details [ 457.848488][ T9510] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 458.163518][ T4309] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 28 [ 459.423986][ T9545] loop2: detected capacity change from 0 to 512 [ 459.511279][ T9545] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #3: comm syz.2.1533: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 9(4), depth 0(0) [ 459.661150][ T9545] EXT4-fs error (device loop2): ext4_quota_enable:7131: comm syz.2.1533: Bad quota inode: 3, type: 0 [ 459.744992][ T9552] loop5: detected capacity change from 0 to 512 [ 459.764010][ T9545] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 459.804899][ T9552] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 459.832018][ T9545] EXT4-fs (loop2): mount failed [ 459.851930][ T9552] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended [ 459.902015][ T9552] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 459.990418][ T9552] System zones: 0-2, 18-18, 34-34 [ 460.004030][ T9552] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.1535: iget: bad i_size value: 360287970189639680 [ 460.077894][ T9552] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1535: couldn't read orphan inode 15 (err -117) [ 460.143588][ T9552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 460.370949][ T9566] netlink: 348 bytes leftover after parsing attributes in process `syz.2.1539'. [ 460.622477][ T9085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.409796][ T9583] loop5: detected capacity change from 0 to 256 [ 461.493702][ T9584] loop2: detected capacity change from 0 to 256 [ 461.639083][ T9584] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 462.211307][ T9595] Bluetooth: MGMT ver 1.23 [ 463.594992][ T9613] loop3: detected capacity change from 0 to 1024 [ 463.632838][ T9616] loop5: detected capacity change from 0 to 64 [ 463.648266][ T9613] EXT4-fs: Ignoring removed oldalloc option [ 463.654454][ T9613] EXT4-fs: Ignoring removed orlov option [ 463.661965][ T9613] EXT4-fs: Ignoring removed oldalloc option [ 463.673726][ T9613] EXT4-fs: Ignoring removed nomblk_io_submit option [ 463.837872][ T9613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 464.129399][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.722098][ T9654] loop0: detected capacity change from 0 to 128 [ 465.790565][ T9654] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 465.811683][ T9654] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 465.888685][ T9654] overlayfs: upper fs needs to support d_type. [ 465.945098][ T9654] overlayfs: upper fs does not support tmpfile. [ 466.770828][ T9672] loop0: detected capacity change from 0 to 256 [ 466.904757][ T9672] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 466.997993][ T9676] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1590'. [ 467.364996][ T9680] bond_slave_0: entered promiscuous mode [ 467.371093][ T9680] bond_slave_1: entered promiscuous mode [ 467.380064][ T9680] macsec1: entered promiscuous mode [ 467.385586][ T9680] bond0: entered promiscuous mode [ 467.478789][ T9680] bond0: left promiscuous mode [ 467.488001][ T9680] bond_slave_0: left promiscuous mode [ 467.493631][ T9680] bond_slave_1: left promiscuous mode [ 467.882922][ T9685] loop5: detected capacity change from 0 to 1024 [ 467.958865][ T9685] EXT4-fs: Ignoring removed nomblk_io_submit option [ 467.971802][ T9685] EXT4-fs: Ignoring removed nomblk_io_submit option [ 468.158196][ T9685] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 468.628320][ T9085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.053081][ T9708] loop2: detected capacity change from 0 to 1024 [ 469.143533][ T9713] loop3: detected capacity change from 0 to 64 [ 469.155081][ T9708] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 469.168835][ T9708] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 469.178896][ T9708] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 469.301043][ T9708] EXT4-fs error (device loop2): ext4_get_journal_inode:5800: inode #5: comm syz.2.1605: unexpected bad inode w/o EXT4_IGET_BAD [ 469.372753][ T9708] EXT4-fs (loop2): no journal found [ 469.381484][ T9708] EXT4-fs (loop2): can't get journal size [ 469.488914][ T9708] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 469.834335][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.907982][ T9714] loop0: detected capacity change from 0 to 32768 [ 469.922289][ T9714] ocfs2: Bad value for 'barrier' [ 470.351852][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.360624][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.391702][ T30] audit: type=1326 audit(1756672326.406:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.414625][ T30] audit: type=1326 audit(1756672326.406:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.441929][ T30] audit: type=1326 audit(1756672326.406:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.477994][ T30] audit: type=1326 audit(1756672326.496:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.502303][ T30] audit: type=1326 audit(1756672326.526:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.579376][ T30] audit: type=1326 audit(1756672326.546:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.602414][ T30] audit: type=1326 audit(1756672326.556:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 470.625175][ T30] audit: type=1326 audit(1756672326.556:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz.5.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 471.002996][ T9728] sp0: Synchronizing with TNC [ 471.822338][ T9742] loop3: detected capacity change from 0 to 256 [ 472.634264][ T9759] loop3: detected capacity change from 0 to 256 [ 472.708885][ T9762] loop5: detected capacity change from 0 to 8 [ 473.138375][ T9765] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1630'. [ 473.148765][ T9765] 8021q: VLANs not supported on lo [ 473.314853][ T9771] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1632'. [ 474.873695][ T9779] loop5: detected capacity change from 0 to 40427 [ 474.885625][ T9779] F2FS-fs: heap/no_heap options were deprecated [ 474.993874][ T9789] loop2: detected capacity change from 0 to 512 [ 475.957616][ T9784] loop0: detected capacity change from 0 to 32768 [ 475.968510][ T9784] gfs2: commit mount option requires a positive numeric argument [ 476.429723][ T9789] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 477.108577][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 477.429874][ T9799] loop3: detected capacity change from 0 to 32768 [ 477.444228][ T9799] bcachefs (/dev/loop3): error validating superblock: Invalid superblock: member info area missing [ 477.455904][ T9799] bcachefs: bch2_fs_get_tree() error: invalid_sb_members_missing [ 477.799964][ T5827] Bluetooth: hci4: command 0x0405 tx timeout [ 478.050272][ T9811] loop0: detected capacity change from 0 to 1024 [ 478.099703][ T9811] EXT4-fs: Ignoring removed bh option [ 478.151472][ T9811] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 478.278390][ T9811] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 478.354846][ T9821] xt_socket: unknown flags 0x50 [ 478.420468][ T9820] IPv6: NLM_F_CREATE should be specified when creating new route [ 478.429034][ T9820] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 478.436636][ T9820] IPv6: NLM_F_CREATE should be set when creating new route [ 478.444048][ T9820] IPv6: NLM_F_CREATE should be set when creating new route [ 478.451668][ T9820] IPv6: NLM_F_CREATE should be set when creating new route [ 478.547423][ T9823] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 478.595930][ T9823] Zero length message leads to an empty skb [ 478.684872][ T9826] loop5: detected capacity change from 0 to 256 [ 478.709052][ T9826] exfat: Deprecated parameter 'namecase' [ 478.766032][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 478.864038][ T9826] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 478.908408][ T30] audit: type=1326 audit(1756672334.916:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d9cb8ebe9 code=0x7ff00000 [ 479.001388][ T30] audit: type=1326 audit(1756672334.966:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d9cb8ebe9 code=0x7ff00000 [ 479.029055][ T30] audit: type=1326 audit(1756672334.966:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9d9cb8ebe9 code=0x7ff00000 [ 479.053679][ T30] audit: type=1326 audit(1756672334.966:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.077012][ T30] audit: type=1326 audit(1756672334.966:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.099653][ T30] audit: type=1326 audit(1756672334.966:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.122489][ T30] audit: type=1326 audit(1756672334.966:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.149797][ T30] audit: type=1326 audit(1756672334.966:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.178079][ T30] audit: type=1326 audit(1756672334.966:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 479.201059][ T30] audit: type=1326 audit(1756672334.966:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.2.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d9cb8d84a code=0x7ff00000 [ 480.655995][ T795] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 480.834405][ T9846] loop5: detected capacity change from 0 to 4096 [ 480.845932][ T795] usb 4-1: Using ep0 maxpacket: 32 [ 480.883343][ T9846] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 480.886815][ T795] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 480.902269][ T795] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 480.982343][ T795] usb 4-1: config 0 descriptor?? [ 481.017829][ T795] gspca_main: sunplus-2.14.0 probing 041e:400b [ 481.027118][ T9856] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1668'. [ 481.036810][ T9856] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1668'. [ 481.046585][ T9856] netlink: 'syz.4.1668': attribute type 11 has an invalid length. [ 481.054787][ T9856] netlink: 'syz.4.1668': attribute type 13 has an invalid length. [ 481.229836][ T9846] ntfs3(loop5): ino=19, mi_enum_attr [ 481.271299][ T9854] loop0: detected capacity change from 0 to 2048 [ 481.289039][ T9846] ntfs3(loop5): failed to convert "c46c" to cp861 [ 481.303205][ T9846] ntfs3(loop5): ino=20, mi_enum_attr [ 481.411908][ T9854] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 481.649259][ T795] gspca_sunplus: reg_r err -71 [ 481.654502][ T795] sunplus 4-1:0.0: probe with driver sunplus failed with error -71 [ 481.722282][ T795] usb 4-1: USB disconnect, device number 8 [ 481.979456][ T9860] loop5: detected capacity change from 0 to 64 [ 483.195924][ T9883] loop2: detected capacity change from 0 to 128 [ 483.253912][ T9881] loop3: detected capacity change from 0 to 1024 [ 483.371361][ T9881] hfsplus: bad catalog entry type [ 483.760084][ T3500] hfsplus: b-tree write err: -5, ino 4 [ 485.228285][ T9902] loop0: detected capacity change from 0 to 32768 [ 485.307802][ T9902] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section crypt: bad kdf type 10 [ 485.307802][ T9902] crypt (size 64): [ 485.307802][ T9902] KFD: 10 [ 485.307802][ T9902] scrypt n: 52612 [ 485.307802][ T9902] scrypt r: 44575 [ 485.307802][ T9902] scrypt p: 1453 [ 485.307802][ T9902] [ 485.342018][ C1] vkms_vblank_simulate: vblank timer overrun [ 485.349289][ T9902] bcachefs: bch2_fs_get_tree() error: invalid_sb_crypt [ 487.158508][ T9934] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1706'. [ 487.171347][ T9934] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 488.224152][ T9948] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1712'. [ 488.236665][ T9948] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1712'. [ 488.314126][ T9951] syz.3.1714 (9951): /proc/9951/oom_adj is deprecated, please use /proc/9951/oom_score_adj instead. [ 490.590518][ T9988] loop5: detected capacity change from 0 to 512 [ 490.633261][ T9993] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1734'. [ 490.643006][ T9993] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1734'. [ 490.734532][ T9988] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 490.747030][ T9988] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 490.897968][ T9988] EXT4-fs (loop5): 1 truncate cleaned up [ 490.909406][ T9988] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 491.114513][ T9988] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 491.224481][ T9990] loop2: detected capacity change from 0 to 4096 [ 491.371113][ T9990] NILFS (loop2): invalid segment: Checksum error in segment payload [ 491.382410][ T9990] NILFS (loop2): trying rollback from an earlier position [ 491.409565][ T9085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 491.514603][ T9990] NILFS (loop2): recovery complete [ 491.595739][T10002] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 491.783204][T10005] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1739'. [ 491.793343][T10005] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1739'. [ 492.470346][T10015] loop5: detected capacity change from 0 to 2048 [ 493.898516][ T30] kauditd_printk_skb: 528 callbacks suppressed [ 493.898690][ T30] audit: type=1326 audit(1756672349.916:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz.5.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 493.963062][ T30] audit: type=1326 audit(1756672349.956:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz.5.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 493.992785][ T30] audit: type=1326 audit(1756672349.956:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz.5.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 494.016630][ T30] audit: type=1326 audit(1756672349.966:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz.5.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 494.042457][ T30] audit: type=1326 audit(1756672349.966:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10042 comm="syz.5.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9f358ebe9 code=0x7ffc0000 [ 496.362900][T10083] loop3: detected capacity change from 0 to 256 [ 496.470567][T10083] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d) [ 498.373412][T10118] loop0: detected capacity change from 0 to 512 [ 498.430351][T10118] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 498.453395][T10120] loop5: detected capacity change from 0 to 512 [ 498.521248][T10120] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 498.552819][T10120] EXT4-fs (loop5): 1 truncate cleaned up [ 498.563552][T10120] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 498.580574][T10118] EXT4-fs (loop0): 1 truncate cleaned up [ 498.594055][T10118] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 498.860498][ T795] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 498.987906][ T9085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.018769][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.076489][ T795] usb 4-1: Using ep0 maxpacket: 16 [ 499.112592][ T795] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 499.126726][ T795] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 499.137197][ T795] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 499.150480][ T795] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 499.160095][ T795] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 499.266645][ T795] usb 4-1: config 0 descriptor?? [ 499.330260][T10137] netlink: 'syz.0.1799': attribute type 8 has an invalid length. [ 499.777140][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.784907][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.792971][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.800908][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.809277][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.833264][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.844953][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.852859][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.860655][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.868401][ T795] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0 [ 499.898435][ T795] microsoft 0003:045E:07DA.0015: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 499.910963][ T795] microsoft 0003:045E:07DA.0015: no inputs found [ 499.925808][ T795] microsoft 0003:045E:07DA.0015: could not initialize ff, continuing anyway [ 499.998678][ T795] usb 4-1: USB disconnect, device number 9 [ 500.178166][T10145] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1804'. [ 500.216426][ T5881] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 500.360365][T10147] loop2: detected capacity change from 0 to 64 [ 500.378667][ T5881] usb 6-1: Using ep0 maxpacket: 16 [ 500.422696][ T5881] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 500.439597][ T5881] usb 6-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 500.451132][ T5881] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 500.475230][ T5881] usb 6-1: config 0 descriptor?? [ 500.935112][ T5823] hfs: node 4:3 still has 1 user(s)! [ 501.010178][ T5881] holtek_kbd 0003:04D9:A055.0016: item fetching failed at offset 5/7 [ 501.047368][ T5881] holtek_kbd 0003:04D9:A055.0016: probe with driver holtek_kbd failed with error -22 [ 501.256740][ T5881] usb 6-1: USB disconnect, device number 2 [ 501.307711][T10159] bridge0: entered promiscuous mode [ 501.320694][T10159] bridge0: port 3(macvlan2) entered blocking state [ 501.327977][T10159] bridge0: port 3(macvlan2) entered disabled state [ 501.335200][T10159] macvlan2: entered allmulticast mode [ 501.340961][T10159] bridge0: entered allmulticast mode [ 501.427014][T10159] macvlan2: left allmulticast mode [ 501.432431][T10159] bridge0: left allmulticast mode [ 501.442427][T10159] bridge0: left promiscuous mode [ 502.088010][T10169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1815'. [ 503.056586][T10183] loop5: detected capacity change from 0 to 1024 [ 503.122488][T10188] overlay: filesystem on ./cgroup not supported [ 503.840604][T10199] loop3: detected capacity change from 0 to 256 [ 503.875521][T10199] exfat: Deprecated parameter 'namecase' [ 503.882032][T10199] exfat: Deprecated parameter 'namecase' [ 503.888282][T10199] exfat: Deprecated parameter 'namecase' [ 503.936008][T10199] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 504.045709][T10199] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 504.537665][T10203] loop5: detected capacity change from 0 to 4096 [ 504.996592][ T30] audit: type=1800 audit(1756672360.996:592): pid=10203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1831" name="bus" dev="loop5" ino=33 res=0 errno=0 [ 505.608543][T10224] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1844'. [ 505.972594][T10222] loop3: detected capacity change from 0 to 4096 [ 506.095083][T10232] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 509.828345][T10280] loop5: detected capacity change from 0 to 32768 [ 509.861364][T10280] bcachefs (/dev/loop5): error validating superblock: Invalid superblock section downgrade: downgrade entry with mismatched major version (61 != 1) [ 509.861364][T10280] downgrade (size 64): [ 509.861364][T10280] version: 61.634: (unknown version) [ 509.861364][T10280] recovery passes: check_topology,alloc_read,stripes_read,initialize_subvolumes,check_allocations,trans_mark_dev_sbs,set_may_go_rw,journal_replay,check_lrus,check_backpointers_to_extents,reconstruct_snapshots,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_unreachable_inodes,check_directory_structure,check_nlinks,check_rebalance_work,delete_dead_inodes [ 509.861364][T10280] errors: [ 509.861364][T10280] version: 0.0: (unknown version) [ 509.861364][T10280] recovery passes: check_unreachable_inodes [ 509.861364][T10280] errors: [ 509.861364][T10280] [ 509.940026][T10280] bcachefs: bch2_fs_get_tree() error: invalid_sb_downgrade [ 511.554148][T10298] loop3: detected capacity change from 0 to 32768 [ 511.583397][T10298] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section replicas_v0: invalid device 1 in entry (unknown data_type 122): 1/246 [0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 5 5 6 7 8 9 9 10 11 14 24 27 31 35 43 47 47 51 56 65 80 89 96 102 119 128 132 172 173 174 179 205 222 235 245] [ 511.583397][T10298] replicas_v0 (size 64): [ 511.583397][T10298] (unknown data_type 122): 246 [119 43 0 222 65 89 132 205 31 174 173 5 172 235 128 0 0 0 0 0 0 0 0 0 0 1 8 0 0 0 179 245 51 102 0 0 0 0 0 0 14 96 0 0 0 0 0 0 0 0 0 0 0 0 5 0 0 0 9 0 0 0 9 0 0 0 0 0 0 0 7 0 0 0 0 0 0 0 24 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 80 0 0 0 10 0 0 0 0 0 0 0 0 0 0 0 56 0 0 0 0 0 0 0 0 0 0 0 0 0 0 [ 511.584359][T10298] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry [ 512.172821][T10310] loop0: detected capacity change from 0 to 256 [ 512.432637][T10310] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 512.729097][T10317] loop3: detected capacity change from 0 to 512 [ 512.835039][T10317] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1885: bad orphan inode 15 [ 512.950542][T10317] ext4_test_bit(bit=14, block=5) = 0 [ 512.958514][T10317] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 513.358713][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.714831][T10334] loop3: detected capacity change from 0 to 256 [ 513.804814][T10334] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 513.819430][T10334] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 513.999069][T10334] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 515.009978][T10353] overlayfs: missing 'lowerdir' [ 515.313683][ T30] audit: type=1326 audit(1756672371.326:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.337162][ T30] audit: type=1326 audit(1756672371.326:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.360277][ T30] audit: type=1326 audit(1756672371.326:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe12018d550 code=0x7ffc0000 [ 515.388001][ T30] audit: type=1326 audit(1756672371.326:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fe120190417 code=0x7ffc0000 [ 515.412770][ T30] audit: type=1326 audit(1756672371.326:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.435667][ T30] audit: type=1326 audit(1756672371.326:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fe120190417 code=0x7ffc0000 [ 515.458751][ T30] audit: type=1326 audit(1756672371.326:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe12018d84a code=0x7ffc0000 [ 515.489754][ T30] audit: type=1326 audit(1756672371.326:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.517573][ T30] audit: type=1326 audit(1756672371.356:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.542876][ T30] audit: type=1326 audit(1756672371.356:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10360 comm="syz.0.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe12018ebe9 code=0x7ffc0000 [ 515.670417][T10366] netlink: 'syz.2.1909': attribute type 29 has an invalid length. [ 516.142573][T10372] loop5: detected capacity change from 0 to 128 [ 516.185154][T10372] hpfs: Unknown parameter '0xffffffffffffffff0xffffffffffffffff˙' [ 516.260199][T10372] process 'syz.5.1910' launched './file0' with NULL argv: empty string added [ 516.387300][T10376] vlan3: entered promiscuous mode [ 516.392627][T10376] macvtap0: entered promiscuous mode [ 517.949034][T10405] netem: incorrect gi model size [ 517.954365][T10405] netem: change failed [ 518.149979][ T5875] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 518.273135][T10399] loop2: detected capacity change from 0 to 4096 [ 518.303277][T10399] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 518.359090][ T5875] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 518.371651][ T5875] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 518.392241][ T5875] usb 4-1: config 0 descriptor?? [ 518.412467][ T5875] cp210x 4-1:0.0: cp210x converter detected [ 518.614814][T10399] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 518.623690][T10399] ntfs3(loop2): Failed to load $Extend (-22). [ 518.630918][T10399] ntfs3(loop2): Failed to initialize $Extend. [ 518.919598][ T5875] usb 4-1: cp210x converter now attached to ttyUSB0 [ 519.100233][T10419] loop0: detected capacity change from 0 to 64 [ 519.110515][ T5881] usb 4-1: USB disconnect, device number 10 [ 519.134445][ T5881] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 519.201047][ T5881] cp210x 4-1:0.0: device disconnected [ 519.233231][T10419] syz.0.1934: attempt to access beyond end of device [ 519.233231][T10419] loop0: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 519.248692][T10419] Buffer I/O error on dev loop0, logical block 134217734, async page read [ 519.468978][T10423] loop2: detected capacity change from 0 to 64 [ 521.959378][T10471] loop0: detected capacity change from 0 to 512 [ 522.058668][T10471] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 522.207890][T10471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 522.224341][T10471] ext4 filesystem being mounted at /420/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 522.917834][ T5819] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 523.003877][T10486] loop3: detected capacity change from 0 to 2048 [ 523.149253][T10486] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 523.241742][T10486] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.1960: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 523.504134][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.708105][T10500] loop5: detected capacity change from 0 to 256 [ 523.748382][T10500] exfat: Deprecated parameter 'utf8' [ 523.753947][T10500] exfat: Deprecated parameter 'utf8' [ 523.902869][T10500] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36d2a6b4, utbl_chksum : 0xe619d30d) [ 524.113050][T10508] hsr0: entered promiscuous mode [ 524.474710][T10512] vim2m vim2m.0: vidioc_s_fmt queue busy [ 524.495852][ T1101] ===================================================== [ 524.503183][ T1101] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0xfe/0x9a0 [ 524.511613][ T1101] n_tty_receive_buf_closing+0xfe/0x9a0 [ 524.517680][ T1101] n_tty_receive_buf_common+0x19d5/0x2540 [ 524.523628][ T1101] n_tty_receive_buf2+0x4c/0x60 [ 524.529130][ T1101] tty_ldisc_receive_buf+0xc6/0x2c0 [ 524.534511][ T1101] tty_port_default_receive_buf+0xd7/0x1a0 [ 524.541151][ T1101] flush_to_ldisc+0x43e/0xe30 [ 524.546122][ T1101] process_scheduled_works+0xb8e/0x1d80 [ 524.551951][ T1101] worker_thread+0xedf/0x1590 [ 524.557066][ T1101] kthread+0xd59/0xf00 [ 524.561312][ T1101] ret_from_fork+0x1e3/0x310 [ 524.566444][ T1101] ret_from_fork_asm+0x1a/0x30 [ 524.571429][ T1101] [ 524.573829][ T1101] Uninit was stored to memory at: [ 524.580168][ T1101] n_tty_receive_buf_closing+0xf7/0x9a0 [ 524.587437][ T1101] n_tty_receive_buf_common+0x19d5/0x2540 [ 524.599658][ T1101] n_tty_receive_buf2+0x4c/0x60 [ 524.604736][ T1101] tty_ldisc_receive_buf+0xc6/0x2c0 [ 524.612315][ T1101] tty_port_default_receive_buf+0xd7/0x1a0 [ 524.618502][ T1101] flush_to_ldisc+0x43e/0xe30 [ 524.623447][ T1101] process_scheduled_works+0xb8e/0x1d80 [ 524.629389][ T1101] worker_thread+0xedf/0x1590 [ 524.634280][ T1101] kthread+0xd59/0xf00 [ 524.638838][ T1101] ret_from_fork+0x1e3/0x310 [ 524.643586][ T1101] ret_from_fork_asm+0x1a/0x30 [ 524.648745][ T1101] [ 524.651148][ T1101] Uninit was created at: [ 524.655690][ T1101] __kmalloc_noprof+0x95f/0x1310 [ 524.660900][ T1101] __tty_buffer_request_room+0x3d4/0x7a0 [ 524.667092][ T1101] __tty_insert_flip_string_flags+0x157/0x6f0 [ 524.673361][ T1101] uart_insert_char+0x368/0x930 [ 524.678581][ T1101] serial8250_read_char+0x1ba/0x670 [ 524.683958][ T1101] serial8250_handle_irq+0x930/0x1110 [ 524.689678][ T1101] serial8250_default_handle_irq+0x116/0x330 [ 524.701283][ T1101] serial8250_interrupt+0xc8/0x400 [ 524.708378][ T1101] __handle_irq_event_percpu+0x11f/0xbf0 [ 524.714221][ T1101] handle_irq_event+0xe0/0x2a0 [ 524.719554][ T1101] handle_edge_irq+0x2a9/0xb50 [ 524.724531][ T1101] __common_interrupt+0x9d/0x180 [ 524.729990][ T1101] common_interrupt+0x94/0xb0 [ 524.734915][ T1101] asm_common_interrupt+0x2b/0x40 [ 524.740241][ T1101] [ 524.742712][ T1101] CPU: 1 UID: 0 PID: 1101 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT(none) [ 524.752626][ T1101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 524.763697][ T1101] Workqueue: events_unbound flush_to_ldisc [ 524.769902][ T1101] ===================================================== [ 524.777063][ T1101] Disabling lock debugging due to kernel taint [ 524.783510][ T1101] Kernel panic - not syncing: kmsan.panic set ... [ 524.790068][ T1101] CPU: 1 UID: 0 PID: 1101 Comm: kworker/u8:6 Tainted: G B syzkaller #0 PREEMPT(none) [ 524.801309][ T1101] Tainted: [B]=BAD_PAGE [ 524.805558][ T1101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 524.815934][ T1101] Workqueue: events_unbound flush_to_ldisc [ 524.821979][ T1101] Call Trace: [ 524.825481][ T1101] [ 524.828511][ T1101] __dump_stack+0x26/0x30 [ 524.833030][ T1101] dump_stack_lvl+0x53/0x270 [ 524.837910][ T1101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 524.844102][ T1101] dump_stack+0x1e/0x25 [ 524.848454][ T1101] vpanic+0x361/0xc50 [ 524.852639][ T1101] panic+0x15d/0x160 [ 524.871268][ T1101] kmsan_report+0x31c/0x320 [ 524.876147][ T1101] ? __msan_warning+0x1b/0x30 [ 524.880982][ T1101] ? n_tty_receive_buf_closing+0xfe/0x9a0 [ 524.886946][ T1101] ? n_tty_receive_buf_common+0x19d5/0x2540 [ 524.893099][ T1101] ? n_tty_receive_buf2+0x4c/0x60 [ 524.898314][ T1101] ? tty_ldisc_receive_buf+0xc6/0x2c0 [ 524.904043][ T1101] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 524.910389][ T1101] ? flush_to_ldisc+0x43e/0xe30 [ 524.915398][ T1101] ? process_scheduled_works+0xb8e/0x1d80 [ 524.921471][ T1101] ? worker_thread+0xedf/0x1590 [ 524.926508][ T1101] ? kthread+0xd59/0xf00 [ 524.930879][ T1101] ? ret_from_fork+0x1e3/0x310 [ 524.935776][ T1101] ? ret_from_fork_asm+0x1a/0x30 [ 524.940892][ T1101] ? ret_from_fork_asm+0x1a/0x30 [ 524.946007][ T1101] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 524.952482][ T1101] ? kmsan_get_metadata+0xfb/0x160 [ 524.957743][ T1101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 524.963723][ T1101] ? __update_load_avg_cfs_rq+0xe9/0x1010 [ 524.969652][ T1101] ? __update_load_avg_se+0xd02/0x11c0 [ 524.975426][ T1101] ? kmsan_get_metadata+0xfb/0x160 [ 524.980705][ T1101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 524.986681][ T1101] ? kmsan_get_metadata+0xfb/0x160 [ 524.991976][ T1101] __msan_warning+0x1b/0x30 [ 524.996615][ T1101] n_tty_receive_buf_closing+0xfe/0x9a0 [ 525.002410][ T1101] n_tty_receive_buf_common+0x19d5/0x2540 [ 525.008361][ T1101] ? _raw_spin_trylock_bh+0xb1/0xc0 [ 525.013734][ T1101] ? stack_depot_save_flags+0x35/0x7b0 [ 525.019536][ T1101] n_tty_receive_buf2+0x4c/0x60 [ 525.024675][ T1101] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 525.030420][ T1101] tty_ldisc_receive_buf+0xc6/0x2c0 [ 525.035809][ T1101] tty_port_default_receive_buf+0xd7/0x1a0 [ 525.041988][ T1101] flush_to_ldisc+0x43e/0xe30 [ 525.046859][ T1101] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 525.053547][ T1101] ? __pfx_flush_to_ldisc+0x10/0x10 [ 525.058922][ T1101] process_scheduled_works+0xb8e/0x1d80 [ 525.064716][ T1101] worker_thread+0xedf/0x1590 [ 525.069610][ T1101] kthread+0xd59/0xf00 [ 525.073816][ T1101] ? __pfx_worker_thread+0x10/0x10 [ 525.079130][ T1101] ? __pfx_kthread+0x10/0x10 [ 525.083862][ T1101] ret_from_fork+0x1e3/0x310 [ 525.088597][ T1101] ? __pfx_kthread+0x10/0x10 [ 525.093346][ T1101] ret_from_fork_asm+0x1a/0x30 [ 525.098326][ T1101] [ 525.101803][ T1101] Kernel Offset: disabled [ 525.106208][ T1101] Rebooting in 86400 seconds..