last executing test programs: 1m0.428808182s ago: executing program 1 (id=1253): syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', 0x2000844, &(0x7f0000000000)=ANY=[], 0x1, 0x23d, &(0x7f0000000a40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0xc0185879, 0xfffffffffffffffe) 1m0.176135707s ago: executing program 1 (id=1256): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f0000000100), 0x2, 0x55a, &(0x7f0000000600)="$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") setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) truncate(&(0x7f00000002c0)='./file1\x00', 0x7fffffffffffffff) 59.867872778s ago: executing program 1 (id=1258): syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x12, &(0x7f0000000580)=ANY=[@ANYBLOB="636f6465706167653d63703733372c756d61736b3d30303030303030303030303030303030303030373737372c696f636861727365743d6d6163726f6d616e2c00c132f7d36481fcf97dccf78cfa7daf6825ef665eb163db201d6c13cd72fa3afa91aafaf54e6ba6969d3658c9240c7ec3318af10acda672b66e41b1831dfe26a89b1b2820620e55fbf859a609e57f2aab8ea8a7915d75fb4dc53bc4ac3dd3102fbf2571578726077b2b7577f55dfaa53a5bab2258b97b01aff1526a0ab78dcbb8d7485f3f185aaaa507641d3db038d754c159bb71dafcfa23b22342ed24e54f97b9092408b1de3725bb0cd05b4980d46bd9c0556fecbeeb"], 0x4, 0x339, &(0x7f0000000140)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000080)=""/49, 0x31) 59.391524305s ago: executing program 1 (id=1264): syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000140)='./file0\x00', 0x81c00a, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2cf, &(0x7f0000002080)="$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") mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0/../file0/../file0\x00', &(0x7f0000000240)='debugfs\x00', 0x0, 0x0) 59.142576929s ago: executing program 1 (id=1269): syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000c80)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x1, 0xc4d, &(0x7f0000001b40)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x8a6015, 0x0, 0x4, 0x0, &(0x7f0000000000)) mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c}) 58.671830266s ago: executing program 1 (id=1274): bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x10, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007baaf8ff00000000b7080000341200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008"], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x4, &(0x7f0000000740)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r0, 0x2f, 0x28, 0x0, &(0x7f0000000640)="c1dfb080cd21d308098e000081007e2288a8", 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 58.241874958s ago: executing program 32 (id=1274): bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x10, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007baaf8ff00000000b7080000341200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008"], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x4, &(0x7f0000000740)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r0, 0x2f, 0x28, 0x0, &(0x7f0000000640)="c1dfb080cd21d308098e000081007e2288a8", 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 15.482986913s ago: executing program 4 (id=1597): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x42}, 0xa}, 0x1c, 0x0}}], 0x1, 0x20084040) setsockopt$inet6_tcp_int(r0, 0x6, 0x17, &(0x7f0000000100)=0x3, 0x4) 15.251438766s ago: executing program 4 (id=1600): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x40, r1, 0x1, 0x4000000, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x18, 0x8, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x300}]}]}]}, 0x40}}, 0x0) 15.00730701s ago: executing program 4 (id=1602): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"}) ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f0000000000)) 14.626170318s ago: executing program 4 (id=1606): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x2000002, &(0x7f0000001000)=ANY=[@ANYBLOB="766f6c756d653d3030303030303030303036332c696f636861727365743d6d6163677265656b2c696f636861727365743d6b6f69382d72752c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c6e6f7672732c6e6f7672732c66696c657365743d30303030303030303030303030303030303030342c646d6f64653d30303030303030303030303030303030303030303131362c007732be3442cd163f564b8a695afa1b16eefc0b9d590fbf9ab8391b97ea4c0cf06c797f1a493380ce6975738b912f61be3a342f9b9ee8b8bee4aa2b525fd11b2212573ec6e7f3235ad950c58d6bf8d5318071bd000000004c67990370b984f0b3bf4b8ee680536ebf6c9386b8e46872d639e0de679325aa384473cb1be572c7320000000000000000"], 0x1, 0xc2d, &(0x7f00000001c0)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIhRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2KEmV9Pjb13Z19b+a9eesZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr96+qz7PwA8Vq76/38AAAAAAAAAAAAAADjoUhTxZKSYu7KWxqv3HfXL7b5bt8eGhrevdiRVNQ9V5cuf+pmz585/6YXBC9283J75gPr322fjtdGrlxovz96cm59aWJiabIzNtCdmJ6d2vYe91t/qZHUCGjdfvzV5/fpC4+zz5zZ9fHvg/f4njg9cHHz21DPdsmNDw8OjG0XqveVr99yQjp1meByOIk5Fiue+99PUiogi9n4u6g927Lc6UnXiZNWJsaHhqiPT7dbMYvnhSPdEFBGNnkrN7jnafiyi1vdA+7CzZsRS2fyywSfL7o3OteZb16anGiOt+cX2Ynt2ZiR1Wlv2pxFFXEgRyxGx2n/37vqiiFqk+M6xtXQtIg51z8MXq4nBO7ej2Mc+7kLZzkZfxHLxCIzZAdYfRbwaKX72zomYyNeZ6lrzhYhXy/xBxFtlvhSRyi/G+Yj3tvke8WiqRRF/WY7/xbU0WV0PuteVy19rfGXm+mxP2e515SPeH+66Ujyk+8ORLflgHPBrUz2KaFVX/LV077/ZAQAAAAAAAAAAAAAAAOB+OxJFfCZSvPIff1LNK45qXvqxi4N/OPCrvXPGn/6Q/ZRln4+IpWJ3c3IP54mBI2kkpYc8l/hxVo8i/jTP//vWw24MAAAAAAAAAAAAAAAAAADAY62In0SKF989kZajd03x9syNxtXWtenOqrDdtX+7a6avr6+vN1InmznHcy7lXM65knM1ZxS5fs5mzvGcSzmXc67kXM0Zh3L9nM2c4zmXci7nXMm5mjNquX7OZs7xnEs5l3Ou5FzNGQdk7V4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgI+TIor4RaT49jfWUqSIaEaMRydX+h926wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAUn8q4vuRovFHzTvbahGRqn87TpS/nI/m4TI/Gc3BMl+K5qWcrSprzW89hPazN32piB9Hiv7623cGPI9/X+fdna9BvPXNjXefrXXyUPfDgff7nzh+7OLg8G88vdPrtF0DTl5uz9y63RgbGh4e7dlcy0f/ZM+2gXzc4v50nYhYeOPN11vT01Pz9/6i/Arsofoj9CLVHpeeelG9iNqBaMbD6TuPgfL+/16k+N13/7N7w+/c/+vxK513d+7w8fM/27j/v7h1R7u8/9e21sv3//Kevt39/8mebS/m34301SLqizfn+o5H1BfeePNU+2brxtSNqZnzp09/eXDwy+dO9x2OqF9vT0/1vLovpwsAAAAAAAAAAAAAAADgwUlF/H6kaP14LTUi4nY1X2vg4uCzp545FIeq+Vab5m2/Nnr1UuPl2Ztz81MLC1OTjbGZ9sTs5NRuD1evpnuNDQ3vS2c+1JF9bv+R+suzc2/Mt2/88eK2nx+tX7q2sDjfmtj+4zgSRUSzd8vJqsFjQ8NVo6fbrZmq6si2k+k/ur5UxH9FionzjfT5vC3P/986w3/T/P+lrTvap/n/n+jZVh4zpSJ+Hil+56+ejs9X7Twad52zXO7vIsXJC5/L5eJwWa7bhs5zBTozA8uy/xcp/ukXm8t250M+uVH2zK5P7COiHP9jkeL7f/Hd+M28bfPzH7Yf/6Nbd7RP4/9Uz7ajm55XsOeuk8f/VKR46cm347fytg96/kf32RsncuE7z+fYp/H/VM+2gXzc374/XQcAAAAAAAAAAHik9aUi/j5S/HC4ll7I23bz9/8mt+5on/7+16d7tk3en/WKPvTFnk8qAAAAABwQfamIn0SKG4tv35lDvXn+d8/8z9/bmP85lLZ8Wv05369Vzw24n3/+12sgH3d8790GAAAAAAAAAAAAAAAAAACAAyWlIl7I66mPV/P5J3dcT30lUrzyP8/lcul4Wa67DvxA9Wv9yuzMqUvT07MTrcXWtempxuhca2KqrPtUpFj728/lukW1vnp3vfnOGu8ba7HPR4rhf+iW7azF3l2b/KmNsmfKsp+IFP/9j5vLdtex/tRG2bNl2b+JFF//l+3LHt8oe64s+91I8aOvN7plj5Zlu89H/fRG2ecnZot9GBUAAAAAAAAAAAAAAAAAAAAeN32piD+PFP97c/nOXP68/n9fz9vKW9/sWe9/i9vVOv8D1fr/O72+l/X/q+cKLO10VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HhKUcSbkWLuylpa6S/fd9Qvt2du3R4bGt6+2pFU1TxUlS9/6mfOnjv/pRcGL3Tzg+vfb5+J10avXmq8PHtzbn5qYWFqsjE2056YnZza9R72Wn+rk9UJaNx8/dbk9esLjbPPn9v08e2B9/ufOD5wcfDZU890y44NDQ+P9pSp9d3z0e+Sdth+OIr460jx3Pd+mn7YH1HE3s/Fh3x39tuRqhMnq06MDQ1XHZlut2YWyw9HuieiiGj0VGp2z9EDGIs9aUYslc0vG3yy7N7oXGu+dW16qjHSml9sL7ZnZ0ZSp7VlfxpRxIUUsRwRq/13764ving9Unzn2Fr61/6IQ93z8MUro189fXbndhT72MddKNvZ6ItYLh6BMTvA+qOIf44UP3vnRPxbf0QtOj/xhYhXy/xBxFvRGe9UfjHOR7y3zfeIR1Mtivj/cvwvrqV3+svrQfe6cvlrja/MXJ/tKdu9rjzy94cH6YBfm+pRxI+qK/5a+nf/XQMAAAAAAAAAAAAAAAAcIEX8eqR48d0TqZoffGdOcXvmRuNq69p0Z1pfd+5fd870+vr6eiN1splzPOdSzuWcKzlXc0aR6+dslllfXx/P75dyLudcybmaMw7l+jmbOcdzLuVczrmSczVn1HL9nM2c4zmXci7nXMm5mjMOyNw9AAAAAAAAAAAAAAAAAADg46Wo/knx7W+spfX+zvrS49HJFeuBfuz9MgAA//8hX/ir") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 13.779134651s ago: executing program 4 (id=1611): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes192\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 12.962899852s ago: executing program 4 (id=1615): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) landlock_create_ruleset(&(0x7f00000002c0)={0x3f2e}, 0x8, 0x0) 12.387173578s ago: executing program 33 (id=1615): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) landlock_create_ruleset(&(0x7f00000002c0)={0x3f2e}, 0x8, 0x0) 2.889471815s ago: executing program 2 (id=1657): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60) recvfrom(r0, 0x0, 0x0, 0x2021, 0x0, 0x0) 2.820119032s ago: executing program 3 (id=1659): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}}, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b30, &(0x7f0000000040)={'wlan0\x00'}) 2.677508545s ago: executing program 3 (id=1660): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42) ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2008, {0x0, 0x0, 0x0, 0xffffffffffff5bea, 0x140000, 0x0, 0x0, 0x20, 0xf19d8d2786155eda, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e833236900", "a9103939c787a16c1ca43f80026d1a8554fe581b65e7d130e04d528545f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e76720729f35239d2", "24431a1e77a68e174f000000000000000010000000004166202100", [0x0, 0x400]}}) 2.415790191s ago: executing program 3 (id=1661): syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESOCT=0x0, @ANYBLOB='\x00\x00\x00\x00=', @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0x1, 0x489, &(0x7f0000000580)="$eJzs29trHOUfx/HPd7K72Wz7+3XbpmmVgquCSsWaQ4/Gix5iqNCkOTQiRYWYbOLSnMimkhTR4o233ngjIgoKUkULIt54pb3zD1AQBL3wQgT3wgMIgszszM5ks2nS7iHd9v2CdifPfGfmOewzz7M7zwoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEinnjrZ2WVbnQsAANBIg6Mjnd2M/wAA3FXO8/kfAADgbmJy9L1MfSMFG/D+Lkqezc1dWh7r6698WJt5R7Z48e6/ZFd3z6HDR44eC15vfHyt3aNzo+dPZk7Pzy4sZvP57GRmbC43MT+Z3fQZqj2+3AGvAjKzFy9NTk3lM90He1btXk7/0rqtI917tOOEE8SO9fX3j0ZiYvFbvvoa683wE3K0T6bfHvrUBiU5qr4uNnjv1FubV4gDXiHG+vq9gszkxueW3J1DQUU4fll9iaCOGtAWVWmX3HxZojaf2eJydEKmjp8Ldk5SS1APj3pfDK9/YKwml79lbj6fl/SAmqDNbmOtcvSjTLM7khra+mZFg8XkaFmmP3oLNuzdD9z+5N42zz6TeXpuaj4SO2R+j2r28aGRbvN7U1KOBr07fsFGtjozaDh3svSWTHs+ftmbV8ibl+7oPfrEcE90hrF3g/O4sQf9+eNmxuS4HztkQ2ZO7csFAAAAAAAAQGo1R9/JVPgqEyamTU7kkXFSxQdDma3JIoB6MUdvyzQ8UvC+ho+uS2mJrO8pafZnf/XNf1vy9PzCymJu+qWlivtTyZMv5pcWxycq71abe59tiaZstI6lSnFzlJDpuT8/stJ1i/d/fylAmJsPnwzXzCTLr++9b/5fXM8UPEM6fmFvdLtilm/i+ah7TTNHSzKd2rXPX6uS0po6UzHuc5l+f2+/H+ck3MwHp00XzziVm8l2urFfy/T+v0GstyxK2/zY3WFslxtrMr05sDp2ux/bHsZ2u7H9Ml1/oXLsnjC2x419XaaFXzNBbMqNvc+P7QhjD07Mz0xWqkrgZrn9/yeZ3m3PWNA3YsX339r+/0o4FlwpP9E6fb7a/p+OpF3x+/UFt///tc/ry17/dyr3/zdk+uSL/X5cse8l/P07vf/D/v+sTNPfro5N+bG7wtiuTVdsk3Dbf79MZ/ZcK9WN3/5+C4StFm3/e8vfHXVq/52RtLR/3dbaFB2S8iuXL47PzGQX2WCDDTZKG1t9Z0IjuOP/Z+4s6ssfSvMdf/z3P6aEM6u/Xw3H/97yE9Vp/N8VSev1ZyPxmJRcml2I75WS+ZXLj+Vmx6ez09m5Q51HOg8fOt51/Fg8EUzuwq2q6+pO5Lb/NzL9s+1q6fPu6vlf5fl/qvxEdWr/3ZG01Kr5StVFh9/+V2W6//q10vcSN5r/B9//PPJg8bXUP+vU/u2RtLR/3f/VpugAAAAAAAAAAAAAAAAA0NTi5ugDmc48HrPgt2abWf+35gdodVr/1RFJm2zQ7xWqrlQAaAKOHL0j08Mq2GtuwnZpIPqKO9p/AQAA//9HASOO") mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) symlink(&(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000002c0)='.\x02\x00') 2.193663543s ago: executing program 0 (id=1662): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x0, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], 0x1, 0xf01, &(0x7f0000001e00)="$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") name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000700), 0x0) open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200a00) 1.985748303s ago: executing program 2 (id=1663): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000001080)=0x8) 1.868784745s ago: executing program 3 (id=1664): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000140)={[{@nodelalloc}, {@data_err_abort}, {@bh}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@usrjquota}, {@dioread_nolock}, {@minixdf}]}, 0x1, 0x553, &(0x7f0000001080)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 1.71254261s ago: executing program 0 (id=1665): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) set_mempolicy(0x3, &(0x7f00000002c0)=0x1ff, 0x5) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x40, 0x2) 1.692932483s ago: executing program 2 (id=1666): socket$packet(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f288476d2608054c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 1.295944712s ago: executing program 0 (id=1667): timer_create(0x2, 0x0, &(0x7f0000044000)=0x0) timer_settime(r0, 0x0, &(0x7f00000001c0)={{}, {0x0, 0x9}}, 0x0) timer_settime(r0, 0x1, &(0x7f00000000c0)={{0x77359400}, {0x0, 0x989680}}, &(0x7f0000000100)) 1.101640241s ago: executing program 0 (id=1668): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) 1.024593208s ago: executing program 3 (id=1669): r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="5800000010000300"/20, @ANYRES32=r1, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028005000c00010000001c001a8018000a8014000700fc02"], 0x58}, 0x1, 0x2}, 0x0) 523.812638ms ago: executing program 2 (id=1670): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0xc, 0xfffffffffffffffd, 0x59c}) ioctl$BLKTRACESTART(r0, 0x1274, 0x0) 359.480514ms ago: executing program 0 (id=1671): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x14, 0x5, 0x0, 0x1, @payload={{0xc, 0x20}, @val={0x4}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa0}}, 0x0) 253.685594ms ago: executing program 2 (id=1672): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_RINGS_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x90) 122.233037ms ago: executing program 3 (id=1673): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f27, 0x7, 0x1, 0x16, 0x5, 0x5, 0x8, 0x3, 0xa, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0xfffffffe, 0x7f, 0x3, 0x40000003, 0x89, 0xca9f, 0x3, 0x20001e58, 0xb, 0xe66, 0x3, 0x8, 0x4085, 0x0, 0xfffffff8]}) 97.07892ms ago: executing program 2 (id=1674): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001540)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x0, 0xb, 0x1}}}}]}, 0x40}}, 0xc0) 0s ago: executing program 0 (id=1675): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) read$FUSE(r0, &(0x7f0000000740)={0x2020}, 0x2020) write(r1, &(0x7f0000000340), 0x11000) kernel console output (not intermixed with test programs): : ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 195.947834][ T8042] syz.2.798: attempt to access beyond end of device [ 195.947834][ T8042] loop2: rw=524288, sector=0, nr_sectors = 560 limit=16 [ 195.957895][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 195.977121][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.005999][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.046623][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.071884][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.088574][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.126344][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.149911][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.182669][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.211722][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.243467][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.261446][ T8038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 196.283639][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.293711][ T8048] loop2: detected capacity change from 0 to 64 [ 196.299547][ T8038] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 196.309244][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.335668][ T23] microsoft 0003:045E:07DA.0012: unknown main item tag 0x0 [ 196.405453][ T23] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0012/input/input11 [ 196.457563][ T23] microsoft 0003:045E:07DA.0012: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 196.518214][ T23] usb 2-1: USB disconnect, device number 13 [ 196.589566][ T27] usb 4-1: USB disconnect, device number 12 [ 196.655194][ T8051] fido_id[8051]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 196.672528][ T5176] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 196.869839][ T5176] usb 1-1: Using ep0 maxpacket: 32 [ 196.879733][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 196.924453][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 196.965143][ T5176] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 196.988716][ T5176] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 197.007630][ T8061] loop1: detected capacity change from 0 to 128 [ 197.033058][ T8061] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 197.040277][ T8065] autofs4:pid:8065:autofs_fill_super: called with bogus options [ 197.060110][ T8061] ext4 filesystem being mounted at /233/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 197.073173][ T5176] usb 1-1: config 0 descriptor?? [ 197.085799][ T5176] hub 1-1:0.0: USB hub found [ 197.136321][ T5788] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 197.290094][ T5176] hub 1-1:0.0: 29 ports detected [ 197.304597][ T5176] hub 1-1:0.0: insufficient power available to use all downstream ports [ 197.357027][ T8069] loop2: detected capacity change from 0 to 1024 [ 197.374477][ T8069] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 197.406333][ T8069] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 197.439090][ T5879] usb 4-1: Service connection timeout for: 256 [ 197.468998][ T5879] ath9k_htc 4-1:1.0: ath9k_htc: Unable to initialize HTC services [ 197.493088][ T8069] EXT4-fs error (device loop2): ext4_get_journal_inode:5807: inode #32: comm syz.2.811: iget: special inode unallocated [ 197.545747][ T5879] ath9k_htc: Failed to initialize the device [ 197.586066][ T8069] EXT4-fs (loop2): no journal found [ 197.614416][ T8069] EXT4-fs (loop2): can't get journal size [ 197.642158][ T8069] EXT4-fs (loop2): filesystem is read-only [ 197.681615][ T8069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 197.750496][ T5176] usb 1-1: USB disconnect, device number 11 [ 197.915841][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.188812][ C1] sched: RT throttling activated [ 198.196879][ T27] usb 4-1: ath9k_htc: USB layer deinitialized [ 198.582322][ T8074] loop0: detected capacity change from 0 to 1024 [ 198.780560][ T60] hfsplus: b-tree write err: -5, ino 4 [ 199.623078][ T8067] loop3: detected capacity change from 0 to 262144 [ 199.634247][ T8067] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 scanned by syz.3.810 (8067) [ 199.685963][ T8067] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 199.697383][ T8067] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 199.706878][ T8067] BTRFS info (device loop3): using free space tree [ 199.839610][ T1090] BTRFS warning (device loop3): checksum verify failed on logical 30654464 mirror 1 wanted 0x6191332ca3bfabbd found 0x1eb22ab8dd59a02d level 0 [ 199.893107][ T8067] BTRFS info (device loop3): read error corrected: ino 0 off 30654464 (dev /dev/loop3 sector 76256) [ 199.909315][ T8067] BTRFS info (device loop3): read error corrected: ino 0 off 30658560 (dev /dev/loop3 sector 76264) [ 199.922328][ T8067] BTRFS info (device loop3): read error corrected: ino 0 off 30662656 (dev /dev/loop3 sector 76272) [ 199.934336][ T8067] BTRFS info (device loop3): read error corrected: ino 0 off 30666752 (dev /dev/loop3 sector 76280) [ 199.965534][ T8067] BTRFS info (device loop3): enabling ssd optimizations [ 200.015604][ T8072] loop2: detected capacity change from 0 to 40427 [ 200.086196][ T8072] F2FS-fs (loop2): invalid crc value [ 200.268007][ T8112] loop0: detected capacity change from 0 to 1024 [ 200.276344][ T5792] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 200.310972][ T8112] EXT4-fs: Ignoring removed oldalloc option [ 200.334169][ T8112] EXT4-fs: Ignoring removed bh option [ 200.350900][ T8112] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 200.447399][ T8112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.549315][ T8072] F2FS-fs (loop2): Start checkpoint disabled! [ 200.656406][ T8112] EXT4-fs: Ignoring removed orlov option [ 200.674166][ T8112] EXT4-fs: Ignoring removed nobh option [ 200.692044][ T8072] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 200.709985][ T8112] EXT4-fs: can't change dax mount option while remounting [ 200.885551][ T28] audit: type=1800 audit(1760976182.018:46): pid=8072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.812" name="file1" dev="loop2" ino=10 res=0 errno=0 [ 200.923399][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.121751][ T8124] loop3: detected capacity change from 0 to 64 [ 201.478999][ C1] sd 0:0:1:0: [sda] tag#5085 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 201.489579][ C1] sd 0:0:1:0: [sda] tag#5085 CDB: Read(6) 08 00 00 00 00 00 [ 201.777409][ T8134] pimreg3: entered allmulticast mode [ 201.813814][ T8136] loop1: detected capacity change from 0 to 1024 [ 202.171880][ T8144] loop1: detected capacity change from 0 to 64 [ 202.285695][ T8140] loop2: detected capacity change from 0 to 4096 [ 202.299272][ T8148] netlink: 8 bytes leftover after parsing attributes in process `syz.0.838'. [ 202.345807][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.0.838'. [ 202.370852][ T8140] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 202.382937][ T8148] netlink: 'syz.0.838': attribute type 11 has an invalid length. [ 202.398188][ T8140] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 202.437193][ T8140] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 202.488997][ T8140] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 202.539041][ T8140] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 202.617759][ T8140] ntfs: volume version 3.1. [ 202.635541][ T8140] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 202.682033][ T8140] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 202.771262][ T8140] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 202.833725][ T8140] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 203.376641][ T8169] loop2: detected capacity change from 0 to 512 [ 203.499885][ T8169] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.847: invalid block [ 203.584094][ T8169] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.847: invalid indirect mapped block 4294967295 (level 1) [ 203.619281][ T8174] loop0: detected capacity change from 0 to 4096 [ 203.662219][ T8169] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.847: invalid indirect mapped block 4294967295 (level 1) [ 203.732426][ T8169] EXT4-fs (loop2): 2 truncates cleaned up [ 203.749768][ T8179] loop1: detected capacity change from 0 to 64 [ 203.770528][ T8169] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.787818][ T8182] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 204.208405][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.223491][ T8186] tipc: Started in network mode [ 204.228714][ T8186] tipc: Node identity 00000000000040000000000000000001, cluster identity 4711 [ 204.310483][ T8186] tipc: Enabling of bearer rejected, failed to enable media [ 204.515473][ T8198] loop2: detected capacity change from 0 to 512 [ 204.555734][ T8198] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 204.663403][ T8198] EXT4-fs (loop2): 1 truncate cleaned up [ 204.718132][ T8198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.903641][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.034000][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 205.263449][ T8204] loop1: detected capacity change from 0 to 32768 [ 205.290406][ T8204] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.862 (8204) [ 205.335359][ T8204] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 205.369642][ T8204] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 205.396220][ T8204] BTRFS info (device loop1): using free space tree [ 205.498714][ T8204] BTRFS info (device loop1): enabling ssd optimizations [ 205.527918][ T8204] BTRFS info (device loop1): auto enabling async discard [ 205.888088][ T5788] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 205.941384][ T8246] loop3: detected capacity change from 0 to 4096 [ 205.966719][ T8246] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 206.179252][ T8246] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 206.289140][ T8246] ntfs3: loop3: MFT: r=7, expect seq=4 instead of 7! [ 206.465692][ T8260] netlink: 64691 bytes leftover after parsing attributes in process `syz.2.881'. [ 206.504640][ T8262] loop1: detected capacity change from 0 to 128 [ 206.602871][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 206.602887][ T28] audit: type=1800 audit(1760976187.738:47): pid=8262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.882" name="file1" dev="loop1" ino=1048665 res=0 errno=0 [ 206.985710][ T8277] loop1: detected capacity change from 0 to 128 [ 207.021974][ T8277] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 207.048727][ T8277] hpfs: filesystem error: improperly stopped [ 207.065882][ T8277] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 207.086137][ T8277] hpfs: You really don't want any checks? You are crazy... [ 207.109532][ T8277] hpfs: hpfs_map_sector(): read error [ 207.114988][ T8277] hpfs: code page support is disabled [ 207.126536][ T8277] hpfs: hpfs_map_4sectors(): unaligned read [ 207.134125][ T8277] hpfs: hpfs_map_4sectors(): unaligned read [ 207.140604][ T8277] hpfs: filesystem error: unable to find root dir [ 207.776622][ T8284] loop0: detected capacity change from 0 to 32768 [ 207.791184][ T8284] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 207.930615][ T5803] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 208.120232][ T8300] loop0: detected capacity change from 0 to 4096 [ 208.272343][ T8298] loop3: detected capacity change from 0 to 32768 [ 208.286384][ T28] audit: type=1800 audit(1760976189.418:48): pid=8300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.899" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop0" ino=33 res=0 errno=0 [ 208.418615][ T8298] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 208.427030][ T28] audit: type=1326 audit(1760976189.468:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8289 comm="syz.1.894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790778efc9 code=0x7fc00000 [ 208.562239][ T8312] loop0: detected capacity change from 0 to 512 [ 208.612207][ T8298] XFS (loop3): Ending clean mount [ 208.640526][ T8312] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #17: comm syz.0.900: iget: bogus i_mode (0) [ 208.692956][ T8312] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.900: couldn't read orphan inode 17 (err -117) [ 208.734120][ T8312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.825420][ T5792] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 208.846529][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.308475][ T8310] loop1: detected capacity change from 0 to 32768 [ 209.391635][ T8310] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 209.484525][ T5788] (syz-executor,5788,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 76 [ 209.529845][ T5788] ocfs2: Unmounting device (7,1) on (node local) [ 209.720673][ T8316] loop0: detected capacity change from 0 to 32768 [ 209.979452][ T8332] loop2: detected capacity change from 0 to 512 [ 210.048954][ T8332] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.909: bad orphan inode 11862016 [ 210.098931][ T5862] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 210.112036][ T8332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 210.166323][ T8332] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.309101][ T5862] usb 4-1: Using ep0 maxpacket: 16 [ 210.341492][ T5862] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 210.359172][ T787] usb 1-1: new full-speed USB device number 12 using dummy_hcd [ 210.359606][ T5862] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 210.397101][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 210.419157][ T5862] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 210.458944][ T5862] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 210.468156][ T5862] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.531310][ T5862] usb 4-1: config 0 descriptor?? [ 210.551149][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 210.578133][ T787] usb 1-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00 [ 210.619003][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.699951][ T787] usb 1-1: config 0 descriptor?? [ 210.964045][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.012810][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.029448][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.057761][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.074518][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.088978][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.106550][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.120701][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.148499][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.173832][ T787] wacom 0003:056A:0063.0014: Unknown device_type for 'HID 056a:0063'. Assuming pen. [ 211.177457][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.211308][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.227684][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.234279][ T787] wacom 0003:056A:0063.0014: hidraw0: USB HID v0.0b Device [HID 056a:0063] on usb-dummy_hcd.0-1/input0 [ 211.256548][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.272290][ T8352] loop1: detected capacity change from 0 to 512 [ 211.281346][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.288633][ T5862] microsoft 0003:045E:07DA.0013: unknown main item tag 0x0 [ 211.302301][ T787] input: Wacom Volito2 2x3 Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:0063.0014/input/input12 [ 211.371858][ T8352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.413955][ T5862] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0013/input/input15 [ 211.419113][ T8352] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.527905][ T787] usb 1-1: USB disconnect, device number 12 [ 211.545175][ T5862] microsoft 0003:045E:07DA.0013: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 211.594924][ T5862] usb 4-1: USB disconnect, device number 13 [ 211.769825][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.806810][ T8358] fido_id[8358]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 212.081929][ T787] IPVS: starting estimator thread 0... [ 212.118470][ T8350] loop2: detected capacity change from 0 to 32768 [ 212.169362][ T8350] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.915 (8350) [ 212.181695][ T8365] IPVS: using max 19 ests per chain, 45600 per kthread [ 212.253962][ T8350] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 212.279757][ T8350] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 212.303581][ T8350] BTRFS info (device loop2): using free space tree [ 212.440946][ T8350] BTRFS info (device loop2): enabling ssd optimizations [ 212.498945][ T8350] BTRFS info (device loop2): auto enabling async discard [ 212.677455][ T28] audit: type=1800 audit(1760976193.808:50): pid=8350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.915" name="file2" dev="loop2" ino=261 res=0 errno=0 [ 213.129358][ T5862] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 213.150823][ T5793] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 213.338340][ T8412] loop1: detected capacity change from 0 to 128 [ 213.357913][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 213.389112][ T5862] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 213.431007][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 213.469155][ T5862] usb 1-1: config 0 descriptor?? [ 213.863988][ T8418] loop2: detected capacity change from 0 to 736 [ 213.917684][ T5862] lua 0003:1E7D:2C2E.0015: unbalanced collection at end of report description [ 213.961889][ T5862] lua 0003:1E7D:2C2E.0015: parse failed [ 213.992306][ T5862] lua: probe of 0003:1E7D:2C2E.0015 failed with error -22 [ 214.169110][ T5879] usb 1-1: USB disconnect, device number 13 [ 214.417660][ T28] audit: type=1326 audit(1760976195.548:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.477581][ T28] audit: type=1326 audit(1760976195.548:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.539652][ T28] audit: type=1326 audit(1760976195.558:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.588872][ T28] audit: type=1326 audit(1760976195.558:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.627450][ T8424] loop3: detected capacity change from 0 to 32768 [ 214.640407][ T28] audit: type=1326 audit(1760976195.558:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.684670][ T8424] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.941 (8424) [ 214.707149][ T28] audit: type=1326 audit(1760976195.558:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.760379][ T8424] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 214.776516][ T8436] loop2: detected capacity change from 0 to 512 [ 214.794080][ T8424] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 214.807045][ T8424] BTRFS info (device loop3): using free space tree [ 214.815337][ T28] audit: type=1326 audit(1760976195.558:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.835229][ T8436] EXT4-fs: Ignoring removed nobh option [ 214.839703][ T28] audit: type=1326 audit(1760976195.558:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.2.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 214.909488][ T8436] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.947: iget: bad i_size value: 38620345925642 [ 214.936329][ T8436] EXT4-fs (loop2): Remounting filesystem read-only [ 214.979509][ T8436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 215.039107][ T8424] BTRFS info (device loop3): enabling ssd optimizations [ 215.046159][ T8424] BTRFS info (device loop3): auto enabling async discard [ 215.355609][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.417623][ T5792] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 216.355708][ T8468] loop1: detected capacity change from 0 to 32768 [ 216.480783][ T8490] netlink: 24 bytes leftover after parsing attributes in process `syz.2.963'. [ 216.494162][ T5862] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 216.519187][ T8490] Zero length message leads to an empty skb [ 216.619842][ T8492] loop0: detected capacity change from 0 to 1024 [ 216.654929][ T8492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 216.672469][ T8492] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.708964][ T5862] usb 4-1: Using ep0 maxpacket: 16 [ 216.716509][ T5862] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 216.737011][ T5862] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 216.752354][ T5862] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 216.765557][ T5862] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 216.774719][ T5862] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 216.785960][ T5862] usb 4-1: config 0 descriptor?? [ 216.814919][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.245729][ T5862] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0016/input/input16 [ 217.282877][ T5862] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 217.525150][ T5862] usb 4-1: USB disconnect, device number 14 [ 217.543949][ T8510] loop1: detected capacity change from 0 to 256 [ 217.615592][ T8510] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb869ebc2, utbl_chksum : 0xe619d30d) [ 217.812533][ T8513] loop0: detected capacity change from 0 to 1024 [ 217.845407][ T8513] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 217.883914][ T8513] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 217.897440][ T8503] loop2: detected capacity change from 0 to 32768 [ 217.927135][ T8513] EXT4-fs (loop0): orphan cleanup on readonly fs [ 217.964065][ T8518] loop1: detected capacity change from 0 to 164 [ 217.987777][ T8513] EXT4-fs error (device loop0): __ext4_get_inode_loc:4489: comm syz.0.972: Invalid inode table block 0 in block_group 0 [ 218.077101][ T8503] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 218.098981][ T8513] EXT4-fs (loop0): Remounting filesystem read-only [ 218.110373][ T8513] Quota error (device loop0): write_blk: dquota write failed [ 218.118054][ T8513] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 218.216633][ T8513] EXT4-fs (loop0): 1 truncate cleaned up [ 218.292993][ T8513] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 218.351232][ T8503] XFS (loop2): Ending clean mount [ 218.380438][ T8503] XFS (loop2): Quotacheck needed: Please wait. [ 218.483652][ T8503] XFS (loop2): Quotacheck: Done. [ 218.583775][ T8525] loop1: detected capacity change from 0 to 32768 [ 218.609146][ T8525] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.975 (8525) [ 218.628502][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.680464][ T8525] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 218.708373][ T8525] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 218.749121][ T5793] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 218.759087][ T8525] BTRFS info (device loop1): force zlib compression, level 3 [ 218.766539][ T8525] BTRFS info (device loop1): enabling ssd optimizations [ 218.774917][ T8525] BTRFS info (device loop1): allowing degraded mounts [ 218.781875][ T8525] BTRFS info (device loop1): force clearing of disk cache [ 218.789559][ T8525] BTRFS info (device loop1): using free space tree [ 218.860936][ T8537] loop3: detected capacity change from 0 to 2048 [ 218.878696][ T8537] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 218.904360][ T8547] loop0: detected capacity change from 0 to 1024 [ 219.000285][ T8547] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.096304][ T8525] BTRFS info (device loop1): rebuilding free space tree [ 219.180104][ T8525] BTRFS info (device loop1): checking UUID tree [ 219.200579][ T8558] UDF-fs: error (device loop3): udf_rename: failed to find renamed entry again in directory (ino 1408) [ 219.353902][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.660681][ T5788] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 219.696341][ T8567] netlink: 8 bytes leftover after parsing attributes in process `syz.3.983'. [ 219.736214][ T8567] netlink: 'syz.3.983': attribute type 5 has an invalid length. [ 220.363608][ T8581] loop3: detected capacity change from 0 to 128 [ 220.427002][ T8581] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 220.445455][ T8581] ext4 filesystem being mounted at /227/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 220.654614][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 220.877066][ T8593] loop2: detected capacity change from 0 to 64 [ 221.055136][ T8598] loop3: detected capacity change from 0 to 256 [ 221.085542][ T8598] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0x2f9e4978, utbl_chksum : 0xe619d30d) [ 221.133060][ T8570] loop0: detected capacity change from 0 to 40427 [ 221.208677][ T8601] loop1: detected capacity change from 0 to 736 [ 221.226811][ T8570] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 221.260449][ T8602] process 'syz.2.999' launched './file2' with NULL argv: empty string added [ 221.264667][ T8570] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 221.304034][ T8570] F2FS-fs (loop0): Found nat_bits in checkpoint [ 221.551816][ T8570] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 221.559147][ T8570] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 221.615410][ T8570] F2FS-fs (loop0): Inconsistent error blkaddr:5663, sit bitmap:0 [ 221.624418][ T8570] CPU: 0 PID: 8570 Comm: syz.0.986 Not tainted syzkaller #0 [ 221.631773][ T8570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 221.641898][ T8570] Call Trace: [ 221.645230][ T8570] [ 221.648222][ T8570] dump_stack_lvl+0x16c/0x230 [ 221.652979][ T8570] ? show_regs_print_info+0x20/0x20 [ 221.658241][ T8570] ? __lock_acquire+0x1260/0x7c80 [ 221.663322][ T8570] ? f2fs_get_next_page_offset+0x690/0x690 [ 221.669196][ T8570] ? __lock_acquire+0x7c80/0x7c80 [ 221.674276][ T8570] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 221.679709][ T8570] f2fs_map_blocks+0xda2/0x3db0 [ 221.684624][ T8570] ? verify_lock_unused+0x140/0x140 [ 221.689913][ T8570] ? f2fs_get_block_locked+0xe0/0xe0 [ 221.695254][ T8570] ? __lock_acquire+0x7c80/0x7c80 [ 221.700356][ T8570] ? xa_load+0x2c0/0x2e0 [ 221.704734][ T8570] ? xa_load+0x64/0x2e0 [ 221.708945][ T8570] ? page_index+0xe7/0x470 [ 221.713427][ T8570] f2fs_mpage_readpages+0x9f5/0x1ec0 [ 221.718800][ T8570] ? detach_page_private+0x4c0/0x4c0 [ 221.724170][ T8570] ? f2fs_readahead+0x167/0x300 [ 221.729081][ T8570] ? f2fs_dirty_data_folio+0x810/0x810 [ 221.734600][ T8570] read_pages+0x177/0x840 [ 221.738997][ T8570] ? __lock_acquire+0x7c80/0x7c80 [ 221.744086][ T8570] ? page_cache_ra_unbounded+0x770/0x770 [ 221.749778][ T8570] ? folio_add_lru+0xd50/0xd50 [ 221.754711][ T8570] ? folio_add_lru+0x54f/0xd50 [ 221.759533][ T8570] ? filemap_add_folio+0x192/0x3c0 [ 221.764725][ T8570] page_cache_ra_unbounded+0x692/0x770 [ 221.770267][ T8570] force_page_cache_ra+0x2c1/0x320 [ 221.775452][ T8570] generic_fadvise+0x44f/0x730 [ 221.780285][ T8570] ? dump_task+0x5f0/0x5f0 [ 221.784756][ T8570] ? __fget_files+0x28/0x4d0 [ 221.789412][ T8570] ? __fdget+0x180/0x210 [ 221.793716][ T8570] __x64_sys_fadvise64+0x140/0x180 [ 221.798892][ T8570] do_syscall_64+0x55/0xb0 [ 221.803369][ T8570] ? clear_bhb_loop+0x40/0x90 [ 221.808102][ T8570] ? clear_bhb_loop+0x40/0x90 [ 221.812835][ T8570] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 221.818779][ T8570] RIP: 0033:0x7fd2ec78efc9 [ 221.823255][ T8570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.842917][ T8570] RSP: 002b:00007fd2ea9f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dd [ 221.851392][ T8570] RAX: ffffffffffffffda RBX: 00007fd2ec9e5fa0 RCX: 00007fd2ec78efc9 [ 221.859423][ T8570] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 221.867446][ T8570] RBP: 00007fd2ec811f91 R08: 0000000000000000 R09: 0000000000000000 [ 221.875469][ T8570] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 221.883491][ T8570] R13: 00007fd2ec9e6038 R14: 00007fd2ec9e5fa0 R15: 00007ffdc5f33a48 [ 221.891534][ T8570] [ 222.745655][ T8617] loop1: detected capacity change from 0 to 32768 [ 222.836523][ T8621] loop3: detected capacity change from 0 to 32768 [ 222.861982][ T8621] XFS: ikeep mount option is deprecated. [ 222.908230][ T8621] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 223.034949][ T8621] XFS (loop3): Ending clean mount [ 223.059433][ T8621] XFS (loop3): Quotacheck needed: Please wait. [ 223.171695][ T8621] XFS (loop3): Quotacheck: Done. [ 223.196939][ T8628] loop0: detected capacity change from 0 to 32768 [ 223.245351][ T8628] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1007 (8628) [ 223.297430][ T8628] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 223.310978][ T8628] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 223.319837][ T8628] BTRFS info (device loop0): using free space tree [ 223.401855][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 223.488510][ T8628] BTRFS info (device loop0): enabling ssd optimizations [ 223.498895][ T8628] BTRFS info (device loop0): auto enabling async discard [ 223.712194][ T8656] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 223.796706][ T5794] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 224.097990][ T8664] loop3: detected capacity change from 0 to 736 [ 224.241246][ T8666] loop2: detected capacity change from 0 to 128 [ 225.094154][ T8683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1025'. [ 225.553866][ T8702] ubi31: attaching mtd0 [ 225.566090][ T8700] tipc: Enabled bearer , priority 10 [ 225.569373][ T8702] ubi31 error: ubi_attach_mtd_dev: bad VID header (3) or data offsets (67) [ 225.886532][ T8707] loop3: detected capacity change from 0 to 8192 [ 225.935391][ T8707] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 225.949750][ T8707] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 225.960416][ T8707] REISERFS (device loop3): using ordered data mode [ 225.966992][ T8707] reiserfs: using flush barriers [ 225.988891][ T8707] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 226.019954][ T8707] REISERFS (device loop3): checking transaction log (loop3) [ 226.047680][ T8707] REISERFS (device loop3): Using r5 hash to sort names [ 226.079570][ T8718] loop2: detected capacity change from 0 to 256 [ 226.092221][ T8707] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 226.108141][ T8707] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 226.241463][ T8718] FAT-fs (loop2): Directory bread(block 64) failed [ 226.268987][ T8718] FAT-fs (loop2): Directory bread(block 65) failed [ 226.275828][ T8718] FAT-fs (loop2): Directory bread(block 66) failed [ 226.296811][ T8718] FAT-fs (loop2): Directory bread(block 67) failed [ 226.336364][ T8718] FAT-fs (loop2): Directory bread(block 68) failed [ 226.366967][ T8718] FAT-fs (loop2): Directory bread(block 69) failed [ 226.375267][ T8718] FAT-fs (loop2): Directory bread(block 70) failed [ 226.409433][ T8718] FAT-fs (loop2): Directory bread(block 71) failed [ 226.416152][ T8718] FAT-fs (loop2): Directory bread(block 72) failed [ 226.462084][ T8718] FAT-fs (loop2): Directory bread(block 73) failed [ 226.690834][ T5862] tipc: Node number set to 16385 [ 227.300697][ T8721] loop0: detected capacity change from 0 to 32768 [ 227.404883][ T8750] loop1: detected capacity change from 0 to 64 [ 227.421968][ T8721] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 227.517463][ T8721] XFS (loop0): Ending clean mount [ 227.695116][ T8759] loop2: detected capacity change from 0 to 2048 [ 227.825121][ T8765] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 227.945216][ T5794] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 228.450711][ T8768] loop1: detected capacity change from 0 to 32768 [ 228.457701][ T8774] loop0: detected capacity change from 0 to 2048 [ 228.484563][ T8774] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 228.507088][ T8768] JBD2: Ignoring recovery information on journal [ 228.533160][ T8777] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 228.701526][ T8768] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 228.874057][ T5788] ocfs2: Unmounting device (7,1) on (node local) [ 228.994806][ T8786] netlink: 'syz.0.1068': attribute type 58 has an invalid length. [ 229.028452][ T8786] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1068'. [ 229.258909][ T23] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 229.279021][ T7606] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 229.452068][ T23] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30 [ 229.475954][ T7606] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 229.494677][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 229.509033][ T7606] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.529068][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 229.548485][ T7606] usb 2-1: config 0 descriptor?? [ 229.553788][ T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33 [ 229.579811][ T7606] cp210x 2-1:0.0: cp210x converter detected [ 229.593468][ T23] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00 [ 229.612460][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.625876][ T23] usb 4-1: config 0 descriptor?? [ 230.197333][ T7606] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 230.219674][ T7606] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 230.251701][ T7606] usb 2-1: cp210x converter now attached to ttyUSB0 [ 230.259307][ T23] usb 4-1: string descriptor 0 read error: -71 [ 230.281730][ T23] uclogic 0003:5543:006E.0017: failed retrieving string descriptor #200: -71 [ 230.296838][ T7606] usb 2-1: USB disconnect, device number 14 [ 230.310492][ T23] uclogic 0003:5543:006E.0017: failed retrieving pen parameters: -71 [ 230.317180][ T8808] loop0: detected capacity change from 0 to 32768 [ 230.329604][ T7606] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 230.339188][ T23] uclogic 0003:5543:006E.0017: failed probing pen v2 parameters: -71 [ 230.347381][ T23] uclogic 0003:5543:006E.0017: failed probing parameters: -71 [ 230.361055][ T7606] cp210x 2-1:0.0: device disconnected [ 230.376414][ T8808] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop0 scanned by syz.0.1080 (8808) [ 230.387159][ T23] uclogic: probe of 0003:5543:006E.0017 failed with error -71 [ 230.432537][ T23] usb 4-1: USB disconnect, device number 15 [ 230.510785][ T8808] BTRFS info (device loop0): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 230.559946][ T8808] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 230.590487][ T8808] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 230.608861][ T8808] BTRFS info (device loop0): use lzo compression, level 0 [ 230.617188][ T8808] BTRFS info (device loop0): using free space tree [ 230.773638][ T8808] BTRFS info (device loop0): enabling ssd optimizations [ 230.781951][ T8808] BTRFS info (device loop0): auto enabling async discard [ 230.973685][ T8842] loop2: detected capacity change from 0 to 512 [ 230.988728][ T5794] BTRFS info (device loop0): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 231.008686][ T8842] EXT4-fs (loop2): Test dummy encryption mode enabled [ 231.030539][ T8842] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 231.063787][ T8842] EXT4-fs (loop2): Errors on filesystem, clearing orphan list. [ 231.120290][ T8842] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.439823][ T8855] loop1: detected capacity change from 0 to 256 [ 231.541310][ T8855] FAT-fs (loop1): Directory bread(block 64) failed [ 231.574223][ T8855] FAT-fs (loop1): Directory bread(block 65) failed [ 231.589693][ T8855] FAT-fs (loop1): Directory bread(block 66) failed [ 231.619168][ T8855] FAT-fs (loop1): Directory bread(block 67) failed [ 231.625870][ T8855] FAT-fs (loop1): Directory bread(block 68) failed [ 231.671206][ T8855] FAT-fs (loop1): Directory bread(block 69) failed [ 231.677922][ T8855] FAT-fs (loop1): Directory bread(block 70) failed [ 231.704341][ T8842] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 231.713646][ T8855] FAT-fs (loop1): Directory bread(block 71) failed [ 231.740355][ T8842] EXT4-fs error (device loop2): ext4_add_entry:2486: inode #2: comm syz.2.1088: Directory hole found for htree leaf block 0 [ 231.764515][ T8855] FAT-fs (loop1): Directory bread(block 72) failed [ 231.798921][ T8855] FAT-fs (loop1): Directory bread(block 73) failed [ 231.937429][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.440851][ T8880] loop0: detected capacity change from 0 to 1024 [ 232.787407][ T60] hfsplus: b-tree write err: -5, ino 4 [ 233.087375][ T8870] loop3: detected capacity change from 0 to 32768 [ 233.158683][ T8870] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 233.254443][ T5862] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 233.318017][ T8870] XFS (loop3): Ending clean mount [ 233.449913][ T5862] usb 1-1: Using ep0 maxpacket: 16 [ 233.466225][ T5792] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 233.475959][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 233.498982][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 233.536105][ T5862] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 233.559699][ T5862] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 233.582088][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.619898][ T5862] usb 1-1: config 0 descriptor?? [ 233.733380][ T8890] loop2: detected capacity change from 0 to 32768 [ 233.800426][ T8890] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 233.976735][ T8890] XFS (loop2): Ending clean mount [ 234.037202][ T5862] microsoft 0003:045E:07DA.0018: item 0 4 0 11 parsing failed [ 234.047357][ T5862] microsoft 0003:045E:07DA.0018: parse failed [ 234.053674][ T5862] microsoft: probe of 0003:045E:07DA.0018 failed with error -22 [ 234.184424][ T8918] nbd: must specify a size in bytes for the device [ 234.244611][ T5862] usb 1-1: USB disconnect, device number 14 [ 234.254206][ T5793] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 234.561262][ T8906] loop1: detected capacity change from 0 to 40427 [ 234.579065][ T8906] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 234.604033][ T8906] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 234.632050][ T8906] F2FS-fs (loop1): build fault injection attr: rate: 27486, type: 0x7ffff [ 234.662466][ T8906] F2FS-fs (loop1): invalid crc value [ 234.683513][ T8906] F2FS-fs (loop1): Found nat_bits in checkpoint [ 234.761983][ T8927] loop3: detected capacity change from 0 to 512 [ 234.803937][ T8927] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 234.809680][ T8929] loop2: detected capacity change from 0 to 256 [ 234.861018][ T8906] F2FS-fs (loop1): Try to recover 1th superblock, ret: -30 [ 234.871337][ T8929] exfat: Deprecated parameter 'utf8' [ 234.876794][ T8929] exfat: Deprecated parameter 'utf8' [ 234.888970][ T8906] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 234.921261][ T8927] EXT4-fs (loop3): 1 truncate cleaned up [ 234.938609][ T8927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.976642][ T8927] EXT4-fs error (device loop3): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.3.1119: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 234.991425][ T8929] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 235.098888][ T8927] EXT4-fs (loop3): Remounting filesystem read-only [ 235.123317][ T8927] EXT4-fs warning (device loop3): ext4_rename_delete:3778: inode #2: comm syz.3.1119: Deleting old file: nlink 5, error=-117 [ 235.345155][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.583692][ T8948] loop0: detected capacity change from 0 to 256 [ 236.004226][ T8957] loop3: detected capacity change from 0 to 256 [ 236.040225][ T8957] exfat: Deprecated parameter 'namecase' [ 236.068506][ T8957] exfat: Deprecated parameter 'utf8' [ 236.120660][ T8957] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 236.422193][ T8965] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1134'. [ 236.650756][ T8947] loop2: detected capacity change from 0 to 32768 [ 236.710346][ T8947] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 236.885638][ T8947] XFS (loop2): Ending clean mount [ 237.143171][ T5793] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 237.220130][ T8996] loop3: detected capacity change from 0 to 1024 [ 237.489913][ T9000] loop1: detected capacity change from 0 to 128 [ 237.580356][ T9000] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 237.643984][ T9000] ext4 filesystem being mounted at /337/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 237.751824][ T9000] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 4294965625 (only 1 groups) [ 237.907603][ T5788] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 238.453805][ T9018] loop1: detected capacity change from 0 to 512 [ 238.482439][ T9018] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 238.495339][ T9007] loop3: detected capacity change from 0 to 32768 [ 238.533845][ T9018] EXT4-fs (loop1): 1 truncate cleaned up [ 238.552078][ T9018] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.617025][ T9007] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 238.627746][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.721894][ T9026] loop2: detected capacity change from 0 to 1024 [ 238.841163][ T9035] loop1: detected capacity change from 0 to 256 [ 238.883151][ T9007] XFS (loop3): Ending clean mount [ 239.021378][ T60] hfsplus: b-tree write err: -5, ino 4 [ 239.151740][ T5792] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 239.182475][ T9038] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1161'. [ 239.635723][ T9049] devtmpfs: Cannot disable swap on remount [ 239.726358][ T9031] loop0: detected capacity change from 0 to 32768 [ 239.785000][ T9031] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 239.903864][ T9031] (syz.0.1158,9031,0):ocfs2_verify_group_and_input:420 ERROR: add a group which is in the current volume. [ 239.959037][ T9031] (syz.0.1158,9031,1):ocfs2_group_add:503 ERROR: status = -22 [ 240.135230][ T5794] ocfs2: Unmounting device (7,0) on (node local) [ 240.308535][ T9046] loop1: detected capacity change from 0 to 40427 [ 240.391070][ T9046] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 240.398104][ T9046] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 240.479428][ T9046] F2FS-fs (loop1): invalid crc value [ 240.546913][ T9046] F2FS-fs (loop1): Found nat_bits in checkpoint [ 240.755846][ T9046] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 240.783535][ T9046] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 240.974015][ T9064] f2fs_ckpt-7:1: attempt to access beyond end of device [ 240.974015][ T9064] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 241.015055][ T9064] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 241.267392][ T9056] loop2: detected capacity change from 0 to 32768 [ 241.380153][ T9056] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 241.479872][ T9056] XFS (loop2): Ending clean mount [ 241.493440][ T9056] XFS (loop2): Quotacheck needed: Please wait. [ 241.660380][ T9056] XFS (loop2): Quotacheck: Done. [ 241.832253][ T9063] loop0: detected capacity change from 0 to 40427 [ 241.919317][ T9063] F2FS-fs (loop0): invalid crc value [ 241.928048][ T5793] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 241.985549][ T9063] F2FS-fs (loop0): Found nat_bits in checkpoint [ 242.228913][ T9063] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 242.276197][ T9106] loop3: detected capacity change from 0 to 64 [ 242.517784][ T9109] program syz.1.1169 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 242.595857][ T9106] syz.3.1175: attempt to access beyond end of device [ 242.595857][ T9106] loop3: rw=2049, sector=65, nr_sectors = 1 limit=64 [ 242.621974][ T9110] program syz.1.1169 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 242.649296][ T9106] Buffer I/O error on dev loop3, logical block 65, lost async page write [ 242.657981][ T9106] syz.3.1175: attempt to access beyond end of device [ 242.657981][ T9106] loop3: rw=2049, sector=66, nr_sectors = 1 limit=64 [ 242.681349][ T9110] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 242.684667][ T9106] Buffer I/O error on dev loop3, logical block 66, lost async page write [ 242.759151][ T9106] syz.3.1175: attempt to access beyond end of device [ 242.759151][ T9106] loop3: rw=2049, sector=67, nr_sectors = 1 limit=64 [ 242.819303][ T9106] Buffer I/O error on dev loop3, logical block 67, lost async page write [ 242.869875][ T9106] syz.3.1175: attempt to access beyond end of device [ 242.869875][ T9106] loop3: rw=2049, sector=68, nr_sectors = 1 limit=64 [ 242.947681][ T9115] TCP: TCP_TX_DELAY enabled [ 242.947777][ T9106] Buffer I/O error on dev loop3, logical block 68, lost async page write [ 242.958574][ T9106] syz.3.1175: attempt to access beyond end of device [ 242.958574][ T9106] loop3: rw=2049, sector=72, nr_sectors = 1 limit=64 [ 243.009028][ T9106] Buffer I/O error on dev loop3, logical block 72, lost async page write [ 243.017578][ T9106] syz.3.1175: attempt to access beyond end of device [ 243.017578][ T9106] loop3: rw=2049, sector=73, nr_sectors = 1 limit=64 [ 243.057083][ T9119] loop1: detected capacity change from 0 to 512 [ 243.063560][ T9106] Buffer I/O error on dev loop3, logical block 73, lost async page write [ 243.083851][ T9106] syz.3.1175: attempt to access beyond end of device [ 243.083851][ T9106] loop3: rw=2049, sector=76, nr_sectors = 1 limit=64 [ 243.099695][ T9119] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 243.130995][ T9119] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 243.139474][ T9106] Buffer I/O error on dev loop3, logical block 76, lost async page write [ 243.180912][ T9119] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 243.215111][ T9106] syz.3.1175: attempt to access beyond end of device [ 243.215111][ T9106] loop3: rw=2049, sector=77, nr_sectors = 1 limit=64 [ 243.246107][ T9119] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 243.271415][ T9106] Buffer I/O error on dev loop3, logical block 77, lost async page write [ 243.279279][ T9119] System zones: 0-2, 18-18, 34-34 [ 243.283898][ T9106] syz.3.1175: attempt to access beyond end of device [ 243.283898][ T9106] loop3: rw=2049, sector=78, nr_sectors = 760 limit=64 [ 243.306299][ T9119] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.1178: iget: bad i_size value: 360287970189639680 [ 243.343655][ T9119] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.1178: couldn't read orphan inode 15 (err -117) [ 243.392594][ T9119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.544707][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.816386][ T9138] loop2: detected capacity change from 0 to 512 [ 243.847350][ T9138] EXT4-fs: Ignoring removed oldalloc option [ 243.862373][ T9138] EXT4-fs (loop2): orphan cleanup on readonly fs [ 243.869807][ T9138] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 243.894671][ T9138] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 243.926827][ T9138] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.1184: attempt to clear invalid blocks 2 len 1 [ 243.939507][ T23] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 243.953835][ T9138] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1184: invalid indirect mapped block 1819239214 (level 0) [ 243.995793][ T9138] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1184: invalid indirect mapped block 1819239214 (level 1) [ 244.017773][ T9138] EXT4-fs (loop2): 1 truncate cleaned up [ 244.025281][ T9138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 244.141721][ T23] usb 2-1: Using ep0 maxpacket: 32 [ 244.148302][ T9143] loop3: detected capacity change from 0 to 1024 [ 244.156844][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 244.179137][ T23] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 244.207870][ T9143] hfsplus: bad catalog entry type [ 244.213497][ T23] usb 2-1: New USB device found, idVendor=056a, idProduct=030e, bcdDevice= 0.00 [ 244.228865][ T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.241369][ T9138] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 244.259387][ T23] usb 2-1: config 0 descriptor?? [ 244.300018][ T60] hfsplus: b-tree write err: -5, ino 4 [ 244.307004][ T9138] EXT4-fs error (device loop2): __ext4_remount:6743: comm syz.2.1184: Abort forced by user [ 244.326569][ T9145] pim6reg: entered allmulticast mode [ 244.334977][ T9138] EXT4-fs (loop2): Remounting filesystem read-only [ 244.344369][ T9138] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 244.379019][ T9145] pim6reg: left allmulticast mode [ 244.493451][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.702083][ T23] wacom 0003:056A:030E.0019: Unknown device_type for 'HID 056a:030e'. Assuming pen. [ 244.736155][ T23] wacom 0003:056A:030E.0019: hidraw0: USB HID v0.07 Device [HID 056a:030e] on usb-dummy_hcd.1-1/input0 [ 244.770110][ T23] input: Wacom Intuos S Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:030E.0019/input/input17 [ 244.922521][ T23] usb 2-1: USB disconnect, device number 15 [ 244.989982][ T9154] fido_id[9154]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 245.154258][ T9162] ptrace attach of "./syz-executor exec"[5794] was attempted by ""[9162] [ 245.401556][ T9149] loop3: detected capacity change from 0 to 32768 [ 245.462430][ T9149] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 245.644383][ T9182] netlink: 'syz.1.1201': attribute type 41 has an invalid length. [ 245.666875][ T9149] XFS (loop3): Ending clean mount [ 245.723070][ T9149] XFS (loop3): Quotacheck needed: Please wait. [ 245.837808][ T9149] XFS (loop3): Quotacheck: Done. [ 245.956644][ T5792] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 246.521478][ T9201] loop3: detected capacity change from 0 to 128 [ 246.527159][ T9199] smc: net device bond0 applied user defined pnetid SYZ2 [ 246.560024][ T9201] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 246.576076][ T9201] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 247.017815][ T9191] loop1: detected capacity change from 0 to 32768 [ 247.049099][ T9191] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.1206 (9191) [ 247.087480][ T9191] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 247.125663][ T9191] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 247.146550][ T9191] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8) [ 247.168604][ T9191] BTRFS info (device loop1): use lzo compression, level 0 [ 247.207103][ T9191] BTRFS info (device loop1): using free space tree [ 247.279702][ T5796] Bluetooth: hci3: command 0x0c1a tx timeout [ 247.314110][ T9191] BTRFS info (device loop1): enabling ssd optimizations [ 247.345092][ T9191] BTRFS info (device loop1): auto enabling async discard [ 247.548210][ T5788] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 248.115947][ T9220] loop2: detected capacity change from 0 to 32768 [ 248.263646][ T9220] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 248.509786][ T9220] XFS (loop2): Ending clean mount [ 248.629965][ T9243] loop3: detected capacity change from 0 to 32768 [ 248.747045][ T5793] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 248.818974][ T7606] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 249.021162][ T7606] usb 2-1: Using ep0 maxpacket: 32 [ 249.036470][ T7606] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.097587][ T7606] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 249.120160][ T7606] usb 2-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.40 [ 249.146315][ T7606] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.180927][ T7606] usb 2-1: config 0 descriptor?? [ 249.327530][ T9272] macsec1: entered promiscuous mode [ 249.368932][ T9272] macsec1: entered allmulticast mode [ 249.627600][ T7606] magicmouse 0003:05AC:0265.001A: hidraw0: USB HID v0.00 Device [HID 05ac:0265] on usb-dummy_hcd.1-1/input0 [ 249.832384][ T23] usb 2-1: USB disconnect, device number 16 [ 249.948903][ T7606] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 250.151118][ T7606] usb 1-1: Using ep0 maxpacket: 16 [ 250.170438][ T7606] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 250.193301][ T7606] usb 1-1: New USB device found, idVendor=044e, idProduct=121e, bcdDevice= 0.00 [ 250.213193][ T7606] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.233032][ T7606] usb 1-1: config 0 descriptor?? [ 250.410322][ T9283] loop3: detected capacity change from 0 to 40427 [ 250.433361][ T9283] F2FS-fs (loop3): heap/no_heap options were deprecated [ 250.485406][ T9283] F2FS-fs (loop3): invalid crc value [ 250.539862][ T9283] F2FS-fs (loop3): Found nat_bits in checkpoint [ 250.668082][ T7606] hid-alps 0003:044E:121E.001B: hidraw0: USB HID v0.03 Device [HID 044e:121e] on usb-dummy_hcd.0-1/input0 [ 250.732672][ T9283] F2FS-fs (loop3): Start checkpoint disabled! [ 250.770144][ T9283] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 250.794715][ T9293] loop2: detected capacity change from 0 to 32768 [ 250.834211][ T9293] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.1240 (9293) [ 250.854893][ T7606] usb 1-1: USB disconnect, device number 15 [ 250.900747][ T787] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 250.954446][ T9293] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 250.966448][ T9293] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 250.976329][ T9293] BTRFS info (device loop2): using free space tree [ 251.106726][ T9293] BTRFS info (device loop2): enabling ssd optimizations [ 251.130111][ T787] usb 2-1: Using ep0 maxpacket: 16 [ 251.144507][ T9293] BTRFS info (device loop2): auto enabling async discard [ 251.169463][ T787] usb 2-1: config 156 has too many interfaces: 43, using maximum allowed: 32 [ 251.191337][ T787] usb 2-1: config 156 has an invalid descriptor of length 1, skipping remainder of the config [ 251.212577][ T787] usb 2-1: config 156 has 0 interfaces, different from the descriptor's value: 43 [ 251.249425][ T787] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 251.258548][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 251.287078][ T787] usb 2-1: Product: syz [ 251.297204][ T787] usb 2-1: Manufacturer: syz [ 251.307328][ T787] usb 2-1: SerialNumber: syz [ 251.339409][ T5793] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 251.447963][ T9318] loop3: detected capacity change from 0 to 128 [ 251.536120][ T9318] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 251.554169][ T9318] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.616291][ T787] usb 2-1: USB disconnect, device number 17 [ 251.643851][ T9318] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.1243: No space for directory leaf checksum. Please run e2fsck -D. [ 251.688546][ T9318] EXT4-fs error (device loop3): htree_dirblock_to_tree:1083: inode #2: comm syz.3.1243: Directory block failed checksum [ 251.704123][ T9324] tipc: Enabling of bearer rejected, failed to enable media [ 251.878010][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 252.038268][ T28] audit: type=1326 audit(1760976233.168:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9329 comm="syz.2.1249" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x0 [ 252.411232][ T9341] loop1: detected capacity change from 0 to 512 [ 252.438518][ T9341] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 252.723012][ T9349] loop1: detected capacity change from 0 to 1024 [ 252.747399][ T9349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.964244][ T9353] loop0: detected capacity change from 0 to 1024 [ 252.978316][ T5788] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.988711][ T9353] hfsplus: Filesystem is marked locked, mounting read-only. [ 253.057889][ T9353] hfsplus: filesystem is marked locked, leaving read-only. [ 253.179049][ T9359] loop1: detected capacity change from 0 to 64 [ 253.523704][ T9369] loop1: detected capacity change from 0 to 256 [ 253.594500][ T5788] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 253.612011][ T5788] FAT-fs (loop1): Filesystem has been set read-only [ 253.625453][ T5788] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 253.699382][ T9371] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1268'. [ 253.727827][ T9371] nbd: must specify a device to reconfigure [ 253.935669][ T9376] team_slave_0: entered promiscuous mode [ 253.941924][ T9376] team_slave_1: entered promiscuous mode [ 253.975813][ T9376] macsec2: entered promiscuous mode [ 253.983892][ T9376] team0: entered promiscuous mode [ 253.996061][ T9376] team0: Device macsec2 is already an upper device of the team interface [ 254.080973][ T9376] team0: left promiscuous mode [ 254.086529][ T9376] team_slave_0: left promiscuous mode [ 254.092089][ T9376] team_slave_1: left promiscuous mode [ 254.377258][ T60] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.565411][ T60] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.821642][ T60] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 255.010546][ T60] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 255.301415][ T5804] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 255.323620][ T5804] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 255.333113][ T5804] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 255.340972][ T9410] sp0: Synchronizing with TNC [ 255.359191][ T5804] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 255.374508][ T9413] loop2: detected capacity change from 0 to 2048 [ 255.381253][ T5804] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 255.392000][ T5804] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 255.423890][ T9406] [U] è [ 255.484725][ T9413] loop2: p1 < > p3 [ 255.512702][ T9413] loop2: p3 size 54016 extends beyond EOD, truncated [ 255.737662][ T5803] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 255.873085][ T5803] udevd[5803]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 255.883979][ T6711] udevd[6711]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 255.926541][ T6711] udevd[6711]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 255.955626][ T5803] udevd[5803]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 256.090782][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.097288][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.478208][ T9408] chnl_net:caif_netlink_parms(): no params data found [ 256.481946][ T9409] loop3: detected capacity change from 0 to 32768 [ 256.559902][ T9409] XFS (loop3): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 256.745129][ T9409] XFS (loop3): Ending clean mount [ 256.822769][ T9409] Invalid ELF header len 10 [ 256.928596][ T5792] XFS (loop3): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 257.167214][ T9408] bridge0: port 1(bridge_slave_0) entered blocking state [ 257.187373][ T9408] bridge0: port 1(bridge_slave_0) entered disabled state [ 257.207244][ T9408] bridge_slave_0: entered allmulticast mode [ 257.235599][ T9408] bridge_slave_0: entered promiscuous mode [ 257.383062][ T9408] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.390550][ T9408] bridge0: port 2(bridge_slave_1) entered disabled state [ 257.399042][ T9408] bridge_slave_1: entered allmulticast mode [ 257.411824][ T9408] bridge_slave_1: entered promiscuous mode [ 257.451783][ T5804] Bluetooth: hci0: command tx timeout [ 257.534975][ T9421] loop2: detected capacity change from 0 to 65536 [ 257.592640][ T9421] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 257.639958][ T9452] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1293'. [ 257.660540][ T9421] XFS (loop2): Ending clean mount [ 257.690708][ T9408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 257.700648][ T9421] XFS (loop2): Quotacheck needed: Please wait. [ 257.704763][ T9408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 257.877675][ T9421] XFS (loop2): Quotacheck: Done. [ 257.883199][ T9408] team0: Port device team_slave_0 added [ 257.918230][ T9408] team0: Port device team_slave_1 added [ 258.032797][ T5793] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 258.354392][ T9408] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 258.381829][ T9408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 258.463499][ T9408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 258.587165][ T9408] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 258.608883][ T9408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 258.703109][ T9408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 258.806451][ T60] hsr_slave_0: left promiscuous mode [ 258.855534][ T60] hsr_slave_1: left promiscuous mode [ 258.894097][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 258.906991][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 258.921310][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 258.938925][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 258.950367][ T60] bridge_slave_1: left allmulticast mode [ 258.956085][ T60] bridge_slave_1: left promiscuous mode [ 258.975092][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.022708][ T60] bridge_slave_0: left allmulticast mode [ 259.046365][ T60] bridge_slave_0: left promiscuous mode [ 259.056527][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.142936][ T60] veth1_macvtap: left promiscuous mode [ 259.149667][ T60] veth0_macvtap: left promiscuous mode [ 259.159690][ T60] veth1_vlan: left promiscuous mode [ 259.165710][ T60] veth0_vlan: left promiscuous mode [ 259.519435][ T5804] Bluetooth: hci0: command tx timeout [ 259.855224][ T9491] loop3: detected capacity change from 0 to 32768 [ 260.288951][ T5176] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 260.485644][ T5176] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 260.496105][ T5176] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 260.508286][ T5176] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.522878][ T60] team0 (unregistering): Port device team_slave_1 removed [ 260.531888][ T5176] usb 4-1: config 0 descriptor?? [ 260.541777][ T5176] pwc: Askey VC010 type 2 USB webcam detected. [ 260.604123][ T60] team0 (unregistering): Port device team_slave_0 removed [ 260.672716][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 260.740310][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 261.162740][ T5176] pwc: recv_control_msg error -71 req 02 val 2700 [ 261.177005][ T5176] pwc: recv_control_msg error -71 req 02 val 2c00 [ 261.199531][ T5176] pwc: recv_control_msg error -71 req 04 val 1000 [ 261.240200][ T5176] pwc: recv_control_msg error -71 req 04 val 1300 [ 261.247201][ T5176] pwc: recv_control_msg error -71 req 04 val 1400 [ 261.254762][ T5176] pwc: recv_control_msg error -71 req 02 val 2000 [ 261.266510][ T5176] pwc: recv_control_msg error -71 req 02 val 2100 [ 261.273763][ T5176] pwc: recv_control_msg error -71 req 04 val 1500 [ 261.282028][ T5176] pwc: recv_control_msg error -71 req 02 val 2500 [ 261.289113][ T5176] pwc: recv_control_msg error -71 req 02 val 2400 [ 261.321600][ T5176] pwc: recv_control_msg error -71 req 02 val 2600 [ 261.328667][ T5176] pwc: recv_control_msg error -71 req 02 val 2900 [ 261.337562][ T5176] pwc: recv_control_msg error -71 req 02 val 2800 [ 261.348881][ T5176] pwc: recv_control_msg error -71 req 04 val 1100 [ 261.356703][ T5176] pwc: recv_control_msg error -71 req 04 val 1200 [ 261.414541][ T5176] pwc: Registered as video103. [ 261.443150][ T5176] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input20 [ 261.504253][ T5176] usb 4-1: USB disconnect, device number 16 [ 261.599035][ T5804] Bluetooth: hci0: command tx timeout [ 261.715489][ T60] bond0 (unregistering): Released all slaves [ 261.932815][ T9408] hsr_slave_0: entered promiscuous mode [ 261.977833][ T9408] hsr_slave_1: entered promiscuous mode [ 262.707906][ T9501] loop3: detected capacity change from 0 to 32768 [ 262.727027][ T9501] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.1306 (9501) [ 262.807122][ T9501] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 262.838108][ T9501] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 262.847966][ T9501] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 262.873698][ T9408] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 262.896154][ T9501] BTRFS info (device loop3): use lzo compression, level 0 [ 262.906993][ T9519] loop0: detected capacity change from 0 to 64 [ 262.918493][ T9501] BTRFS info (device loop3): using free space tree [ 262.972269][ T9408] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 263.015758][ T9408] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 263.044154][ T9408] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 263.174960][ T9501] BTRFS info (device loop3): enabling ssd optimizations [ 263.188269][ T9501] BTRFS info (device loop3): auto enabling async discard [ 263.575144][ T9408] 8021q: adding VLAN 0 to HW filter on device bond0 [ 263.599476][ T5792] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 263.677547][ T9408] 8021q: adding VLAN 0 to HW filter on device team0 [ 263.684597][ T5804] Bluetooth: hci0: command tx timeout [ 263.781474][ T1079] bridge0: port 1(bridge_slave_0) entered blocking state [ 263.788701][ T1079] bridge0: port 1(bridge_slave_0) entered forwarding state [ 263.861475][ T6711] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 9 /dev/loop3 scanned by udevd (6711) [ 263.985351][ T1132] bridge0: port 2(bridge_slave_1) entered blocking state [ 263.992600][ T1132] bridge0: port 2(bridge_slave_1) entered forwarding state [ 264.392103][ T60] IPVS: stop unused estimator thread 0... [ 264.672205][ T9578] netlink: 'syz.3.1323': attribute type 3 has an invalid length. [ 264.997440][ T9591] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1327'. [ 265.060477][ T9408] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 265.338683][ T9600] loop0: detected capacity change from 0 to 512 [ 265.389149][ T9600] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 265.427127][ T9600] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 265.509024][ T9600] EXT4-fs (loop0): 1 truncate cleaned up [ 265.516202][ T9600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 265.564484][ T9600] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.015229][ T9408] veth0_vlan: entered promiscuous mode [ 266.072544][ T9408] veth1_vlan: entered promiscuous mode [ 266.198647][ T9408] veth0_macvtap: entered promiscuous mode [ 266.230303][ T9408] veth1_macvtap: entered promiscuous mode [ 266.315811][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.358108][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.396970][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.421610][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.441882][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 266.457313][ T9628] loop2: detected capacity change from 0 to 512 [ 266.466606][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.506405][ T9408] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 266.522220][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 266.549116][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.574415][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 266.599759][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.627884][ T9408] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 266.654612][ T9628] EXT4-fs error (device loop2): ext4_do_update_inode:5236: inode #16: comm syz.2.1336: corrupted inode contents [ 266.673713][ T9408] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 266.702133][ T9408] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 266.723000][ T9628] EXT4-fs error (device loop2): ext4_dirty_inode:6112: inode #16: comm syz.2.1336: mark_inode_dirty error [ 266.745820][ T9625] bond0: option packets_per_slave: invalid value (18446744071562067968) [ 266.763985][ T9628] EXT4-fs error (device loop2): ext4_do_update_inode:5236: inode #16: comm syz.2.1336: corrupted inode contents [ 266.777899][ T9625] bond0: option packets_per_slave: allowed values 0 - 65535 [ 266.795576][ T9618] loop0: detected capacity change from 0 to 32768 [ 266.804065][ T9628] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1336: mark_inode_dirty error [ 266.840741][ T9408] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.851477][ T9408] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.863383][ T9628] EXT4-fs error (device loop2): ext4_do_update_inode:5236: inode #16: comm syz.2.1336: corrupted inode contents [ 266.880017][ T9408] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.889315][ T9628] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem [ 266.900056][ T9408] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 266.910262][ T9628] EXT4-fs error (device loop2): ext4_do_update_inode:5236: inode #16: comm syz.2.1336: corrupted inode contents [ 266.927526][ T9618] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 266.980682][ T9628] EXT4-fs error (device loop2): ext4_truncate:4294: inode #16: comm syz.2.1336: mark_inode_dirty error [ 267.069159][ T9628] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem [ 267.114882][ T9628] EXT4-fs (loop2): 1 truncate cleaned up [ 267.118955][ T9618] XFS (loop0): Ending clean mount [ 267.142079][ T9628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.150511][ T1079] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 267.177153][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.191466][ T9618] XFS (loop0): Quotacheck needed: Please wait. [ 267.210079][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.235381][ T9628] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 267.239592][ T1079] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 1 [ 267.299567][ T9618] XFS (loop0): Quotacheck: Done. [ 267.373895][ T9652] syz.3.1338 (9652): drop_caches: 4 [ 267.453185][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.483497][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.592179][ T5794] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 267.650784][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.726974][ T9657] netlink: 'syz.3.1341': attribute type 1 has an invalid length. [ 267.735298][ T9657] netlink: 'syz.3.1341': attribute type 2 has an invalid length. [ 268.291908][ T9666] Invalid ELF header magic: != ELF [ 269.287110][ T9668] loop3: detected capacity change from 0 to 32768 [ 269.321723][ T9668] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 269.355108][ T9668] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 269.407486][ T9668] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 269.439718][ T9668] BTRFS info (device loop3): use zstd compression, level 3 [ 269.467417][ T9668] BTRFS info (device loop3): using free space tree [ 269.763976][ T9668] BTRFS info (device loop3): enabling ssd optimizations [ 269.794767][ T9668] BTRFS info (device loop3): auto enabling async discard [ 269.863789][ T9730] loop0: detected capacity change from 0 to 16 [ 269.942003][ T9730] erofs: (device loop0): mounted with root inode @ nid 36. [ 270.013579][ T9730] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36 [ 270.085752][ T9730] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -23 in[64, 4032] out[172] [ 270.129924][ T5792] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 270.166289][ T9730] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 0 of nid 36 [ 270.195135][ T9730] erofs: (device loop0): erofs_readdir: fail to readdir of logical block 0 of nid 36 [ 270.399128][ T9699] loop2: detected capacity change from 0 to 32768 [ 270.482210][ T9699] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 270.501543][ T9748] gretap0: entered promiscuous mode [ 270.508593][ T9748] vlan2: entered promiscuous mode [ 270.731309][ T9699] XFS (loop2): Ending clean mount [ 270.753191][ T9699] XFS (loop2): Quotacheck needed: Please wait. [ 270.822104][ T5803] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop3 scanned by udevd (5803) [ 270.874695][ T9699] XFS (loop2): Quotacheck: Done. [ 271.184393][ T5793] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 271.480184][ T9771] overlayfs: missing 'lowerdir' [ 273.082999][ T9782] loop3: detected capacity change from 0 to 32768 [ 273.123682][ T9782] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.1374 (9782) [ 273.191082][ T9782] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 273.241945][ T9782] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 273.298515][ T9782] BTRFS info (device loop3): enabling auto defrag [ 273.325222][ T9782] BTRFS info (device loop3): force clearing of disk cache [ 273.347380][ T9782] BTRFS info (device loop3): max_inline at 0 [ 273.368993][ T9782] BTRFS info (device loop3): turning on sync discard [ 273.384915][ T9782] BTRFS info (device loop3): using free space tree [ 273.764964][ T9782] BTRFS info (device loop3): enabling ssd optimizations [ 273.777946][ T9782] BTRFS info (device loop3): rebuilding free space tree [ 274.077097][ T28] audit: type=1800 audit(1760976255.208:60): pid=9782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1374" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 274.122586][ T9850] loop2: detected capacity change from 0 to 1024 [ 274.299765][ T5792] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 274.314795][ T1079] hfsplus: b-tree write err: -5, ino 4 [ 274.330270][ T23] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 274.518899][ T23] usb 5-1: Using ep0 maxpacket: 8 [ 274.549814][ T23] usb 5-1: config 0 has an invalid interface number: 107 but max is 0 [ 274.564605][ T23] usb 5-1: config 0 has no interface number 0 [ 274.622461][ T23] usb 5-1: New USB device found, idVendor=04b8, idProduct=0602, bcdDevice= 1.10 [ 274.639357][ T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 274.676298][ T23] usb 5-1: Product: syz [ 274.685123][ T23] usb 5-1: Manufacturer: syz [ 274.696214][ T23] usb 5-1: SerialNumber: syz [ 274.708233][ T23] usb 5-1: config 0 descriptor?? [ 274.739236][ T28] audit: type=1326 audit(1760976255.858:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 274.780410][ T23] usb-storage 5-1:0.107: USB Mass Storage device detected [ 274.812634][ T28] audit: type=1326 audit(1760976255.858:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 274.859963][ T28] audit: type=1326 audit(1760976255.878:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 274.914886][ T23] usb-storage 5-1:0.107: Quirks match for vid 04b8 pid 0602: 1 [ 274.965848][ T28] audit: type=1326 audit(1760976255.878:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 275.059021][ T23] usb 5-1: USB disconnect, device number 2 [ 275.121582][ T28] audit: type=1326 audit(1760976255.878:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 275.193614][ T28] audit: type=1326 audit(1760976255.888:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 275.266627][ T28] audit: type=1326 audit(1760976255.898:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dda78efc9 code=0x7ffc0000 [ 275.759062][ T5836] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 275.947339][ T5836] usb 4-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64 [ 275.968047][ T5836] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 275.987236][ T5836] usb 4-1: Product: syz [ 275.994916][ T5836] usb 4-1: Manufacturer: syz [ 276.004899][ T5836] usb 4-1: SerialNumber: syz [ 276.025657][ T5836] usb 4-1: config 0 descriptor?? [ 276.059185][ T5836] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state. [ 276.085159][ T5836] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 276.109585][ T5836] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0)) [ 276.119108][ T5836] usb 4-1: media controller created [ 276.156398][ T9885] loop4: detected capacity change from 0 to 32768 [ 276.167662][ T5836] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 276.213519][ T9885] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 276.269825][ T9880] digitv: more than 2 i2c messages at a time is not handled yet. TODO. [ 276.310831][ T9885] XFS (loop4): Ending clean mount [ 276.345188][ T9885] XFS (loop4): Quotacheck needed: Please wait. [ 276.468204][ T9885] XFS (loop4): Quotacheck: Done. [ 276.474096][ T5836] DVB: Unable to find symbol mt352_attach() [ 276.604621][ T5836] DVB: Unable to find symbol nxt6000_attach() [ 276.612502][ T5836] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)' [ 276.643765][ T5836] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input21 [ 276.671716][ T5836] dvb-usb: schedule remote query interval to 1000 msecs. [ 276.672868][ T9408] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 276.689060][ T5836] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected. [ 276.705431][ T5836] dvb-usb: bulk message failed: -22 (7/0) [ 276.725064][ T5836] dvb-usb: bulk message failed: -22 (7/0) [ 276.737382][ T5836] usb 4-1: USB disconnect, device number 17 [ 276.840223][ T5836] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected. [ 277.788967][ T27] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 277.985600][ T27] usb 4-1: config 0 has an invalid interface number: 117 but max is 0 [ 277.996432][ T27] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 278.018917][ T27] usb 4-1: config 0 has no interface number 0 [ 278.029149][ T27] usb 4-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 278.038975][ T9942] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1421'. [ 278.049187][ T27] usb 4-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 278.081670][ T27] usb 4-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 278.091112][ T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 278.111265][ T27] usb 4-1: Product: syz [ 278.121281][ T27] usb 4-1: Manufacturer: syz [ 278.137134][ T27] usb 4-1: SerialNumber: syz [ 278.170090][ T27] usb 4-1: config 0 descriptor?? [ 278.861211][ T5836] usb 4-1: USB disconnect, device number 18 [ 278.975263][ T9936] loop4: detected capacity change from 0 to 65536 [ 279.014278][ T9936] XFS (loop4): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 279.246088][ T9936] XFS (loop4): Ending clean mount [ 279.262289][ T9936] XFS (loop4): Quotacheck needed: Please wait. [ 279.379328][ T9936] XFS (loop4): Quotacheck: Done. [ 279.488120][ T9967] loop2: detected capacity change from 0 to 2048 [ 279.597617][ T9408] XFS (loop4): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 280.059344][ T9979] netlink: 'syz.2.1434': attribute type 1 has an invalid length. [ 280.326696][ T9987] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1437'. [ 280.368620][ T9987] tc_dump_action: action bad kind [ 280.585043][ T9998] loop3: detected capacity change from 0 to 128 [ 280.637957][ T28] audit: type=1800 audit(1760976261.768:68): pid=9998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1442" name="file1" dev="loop3" ino=1048708 res=0 errno=0 [ 280.687172][T10002] loop4: detected capacity change from 0 to 64 [ 280.751971][ T28] audit: type=1800 audit(1760976261.888:69): pid=10002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1443" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 281.797933][T10035] loop2: detected capacity change from 0 to 256 [ 281.870320][T10035] FAT-fs (loop2): Directory bread(block 64) failed [ 281.878414][T10035] FAT-fs (loop2): Directory bread(block 65) failed [ 281.885867][T10035] FAT-fs (loop2): Directory bread(block 66) failed [ 281.899211][T10035] FAT-fs (loop2): Directory bread(block 67) failed [ 281.916227][T10035] FAT-fs (loop2): Directory bread(block 68) failed [ 281.943393][T10035] FAT-fs (loop2): Directory bread(block 69) failed [ 281.959671][T10035] FAT-fs (loop2): Directory bread(block 70) failed [ 281.976529][T10035] FAT-fs (loop2): Directory bread(block 71) failed [ 281.989006][T10035] FAT-fs (loop2): Directory bread(block 72) failed [ 282.008048][T10035] FAT-fs (loop2): Directory bread(block 73) failed [ 282.038046][T10039] loop4: detected capacity change from 0 to 4096 [ 282.171702][T10043] loop3: detected capacity change from 0 to 16 [ 282.192596][T10043] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 282.226709][T10043] erofs: (device loop3): mounted with root inode @ nid 36. [ 282.435102][T10045] loop2: detected capacity change from 0 to 128 [ 282.472478][T10045] EXT4-fs (loop2): Test dummy encryption mode enabled [ 282.513809][T10045] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 282.587610][T10045] ext4 filesystem being mounted at /386/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 282.773008][T10045] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 282.892238][T10061] overlayfs: maximum fs stacking depth exceeded [ 282.911717][ T5793] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 283.104209][T10069] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1469'. [ 283.609913][T10087] loop2: detected capacity change from 0 to 256 [ 283.690150][ T5836] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 283.709241][T10087] FAT-fs (loop2): Directory bread(block 64) failed [ 283.724618][T10087] FAT-fs (loop2): Directory bread(block 65) failed [ 283.739074][T10087] FAT-fs (loop2): Directory bread(block 66) failed [ 283.767169][T10087] FAT-fs (loop2): Directory bread(block 67) failed [ 283.784840][T10087] FAT-fs (loop2): Directory bread(block 68) failed [ 283.797839][T10087] FAT-fs (loop2): Directory bread(block 69) failed [ 283.805628][T10087] FAT-fs (loop2): Directory bread(block 70) failed [ 283.812976][T10087] FAT-fs (loop2): Directory bread(block 71) failed [ 283.821434][T10087] FAT-fs (loop2): Directory bread(block 72) failed [ 283.828165][T10087] FAT-fs (loop2): Directory bread(block 73) failed [ 283.903114][ T5836] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 283.923050][ T5836] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.946380][ T5836] usb 4-1: Product: syz [ 283.959025][ T5836] usb 4-1: Manufacturer: syz [ 283.981434][ T5836] usb 4-1: SerialNumber: syz [ 284.004598][ T5836] usb 4-1: config 0 descriptor?? [ 284.226350][ T5836] usb 4-1: Firmware version (0.0) predates our first public release. [ 284.249007][ T5836] usb 4-1: Please update to version 0.2 or newer [ 284.399417][ T5836] usb 4-1: USB disconnect, device number 19 [ 284.493472][T10099] loop0: detected capacity change from 0 to 4096 [ 284.726825][T10106] loop2: detected capacity change from 0 to 1024 [ 284.760435][T10099] ntfs3: loop0: failed to convert "0080" to cp775 [ 284.796037][T10099] ntfs3: loop0: failed to convert name for inode 1e. [ 284.850996][T10106] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 284.878581][T10095] loop4: detected capacity change from 0 to 40427 [ 284.939183][T10095] F2FS-fs (loop4): Small segment_count (9 < 1 * 24) [ 284.948179][T10095] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 285.034214][T10095] F2FS-fs (loop4): Found nat_bits in checkpoint [ 285.293031][T10095] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 285.312921][T10095] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 285.360834][T10122] loop3: detected capacity change from 0 to 256 [ 285.440615][T10122] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d) [ 285.645782][ T9408] syz-executor: attempt to access beyond end of device [ 285.645782][ T9408] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 285.694372][ T9408] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 285.806888][ T28] audit: type=1800 audit(1760976266.928:70): pid=10106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1486" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 285.929582][T10135] loop0: detected capacity change from 0 to 256 [ 286.010103][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.050664][ T28] audit: type=1800 audit(1760976267.178:71): pid=10135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1494" name="file1" dev="loop0" ino=1048732 res=0 errno=0 [ 286.342308][T10143] loop2: detected capacity change from 0 to 256 [ 286.436552][T10143] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 287.169593][T10138] loop3: detected capacity change from 0 to 32768 [ 287.258305][T10138] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 287.385325][T10138] XFS (loop3): Ending clean mount [ 287.520671][T10138] XFS (loop3): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 287.585770][T10184] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1504'. [ 287.624368][T10184] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1504'. [ 287.637564][T10186] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1504'. [ 287.765036][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 287.931151][T10195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1508'. [ 288.227787][T10205] ptrace attach of "./syz-executor exec"[9408] was attempted by " [ 288.404565][T10212] loop4: detected capacity change from 0 to 1024 [ 288.576211][T10212] hfsplus: bad catalog entry type [ 288.657774][ T48] hfsplus: b-tree write err: -5, ino 4 [ 288.757608][T10222] loop4: detected capacity change from 0 to 512 [ 288.771169][T10222] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 288.895157][T10222] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.945530][T10222] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 288.973219][T10222] EXT4-fs (loop4): resizing filesystem from 128 to 1 blocks [ 288.985400][T10222] EXT4-fs warning (device loop4): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 289.110264][ T9408] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.395369][T10236] loop4: detected capacity change from 0 to 1024 [ 289.447889][T10232] loop2: detected capacity change from 0 to 4096 [ 289.487949][T10232] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 289.498586][T10236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 289.594626][T10244] loop0: detected capacity change from 0 to 512 [ 289.605892][T10232] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 289.643155][T10232] ntfs3: loop2: mft corrupted [ 289.648104][T10232] ntfs3: loop2: Failed to load $Extend (-22). [ 289.684602][T10244] FAT-fs (loop0): Invalid FSINFO signature: 0x41610002, 0x61417272 (sector = 1) [ 289.720776][T10232] ntfs3: loop2: Failed to initialize $Extend. [ 289.834813][T10244] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fff0005) [ 289.879226][T10244] FAT-fs (loop0): Filesystem has been set read-only [ 289.908695][T10232] ntfs3: loop2: ino=1e, "file1" failed to parse mft record [ 289.918386][T10232] ntfs3: loop2: ino=1e, "file1" attr_set_size [ 290.075702][ T5794] FAT-fs (loop0): Invalid FSINFO signature: 0x41610002, 0x61417272 (sector = 1) [ 290.388119][T10262] loop3: detected capacity change from 0 to 256 [ 290.425777][ T28] audit: type=1800 audit(1760976271.538:72): pid=10236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1519" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 290.488036][T10262] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1526'. [ 290.535784][ T9408] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.771080][T10271] loop0: detected capacity change from 0 to 1024 [ 290.870941][T10265] loop2: detected capacity change from 0 to 4096 [ 290.905378][T10265] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 291.404240][T10292] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1534'. [ 291.915645][T10309] loop0: detected capacity change from 0 to 64 [ 292.095152][T10309] hfs: request for non-existent node 1280 in B*Tree [ 292.123024][T10309] hfs: request for non-existent node 1280 in B*Tree [ 292.423753][T10287] loop4: detected capacity change from 0 to 32768 [ 292.433661][T10287] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.1533 (10287) [ 292.527152][T10287] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 292.550552][T10323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1545'. [ 292.583394][T10287] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 292.620603][T10287] BTRFS info (device loop4): setting nodatasum [ 292.654672][T10287] BTRFS info (device loop4): using free space tree [ 292.971758][T10287] BTRFS info (device loop4): enabling ssd optimizations [ 293.018990][T10287] BTRFS info (device loop4): auto enabling async discard [ 293.444615][T10360] loop2: detected capacity change from 0 to 2048 [ 293.445611][ T9408] BTRFS info (device loop4): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 293.536948][T10360] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.634090][T10360] ext4 filesystem being mounted at /417/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 293.755378][ T5836] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 293.862583][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.999085][ T5836] usb 4-1: Using ep0 maxpacket: 8 [ 294.037733][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.079313][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.127304][ T5836] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 294.171920][ T5836] usb 4-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 294.220395][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.291019][ T5836] usb 4-1: config 0 descriptor?? [ 294.453731][T10390] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1562'. [ 294.759362][ T5836] nzxt-kraken2 0003:1E71:170E.001C: hidraw0: USB HID v0.04 Device [HID 1e71:170e] on usb-dummy_hcd.3-1/input0 [ 294.791883][ T28] audit: type=1326 audit(1760976275.918:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.4.1567" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0948f8efc9 code=0x0 [ 294.923953][ T7606] usb 4-1: USB disconnect, device number 20 [ 295.064590][T10406] fido_id[10406]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 295.412919][T10424] loop0: detected capacity change from 0 to 128 [ 295.854499][ T23] IPVS: starting estimator thread 0... [ 295.906225][T10441] vivid-002: disconnect [ 295.927847][T10436] vivid-002: reconnect [ 295.948988][T10437] IPVS: using max 20 ests per chain, 48000 per kthread [ 296.334191][T10454] loop0: detected capacity change from 0 to 256 [ 296.407525][T10454] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 296.581704][T10460] loop3: detected capacity change from 0 to 4096 [ 296.717120][T10469] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 296.898049][T10460] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 296.969816][T10460] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=12) [ 296.985403][T10476] sch_fq: defrate 4294967295 ignored. [ 297.070595][T10460] Remounting filesystem read-only [ 297.099137][T10460] NILFS (loop3): error -5 truncating bmap (ino=12) [ 297.304327][ T5792] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 297.344406][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=18 [ 297.360522][ T5792] NILFS (loop3): discard dirty block: blocknr=0, size=4096 [ 297.368117][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=2 [ 297.406431][ T5792] NILFS (loop3): discard dirty block: blocknr=14, size=4096 [ 297.431137][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=6 [ 297.449802][ T5792] NILFS (loop3): discard dirty block: blocknr=23, size=4096 [ 297.460756][ T5792] NILFS (loop3): discard dirty page: offset=4096, ino=6 [ 297.499463][ T5792] NILFS (loop3): discard dirty block: blocknr=24, size=4096 [ 297.518974][ T5792] NILFS (loop3): discard dirty page: offset=8192, ino=6 [ 297.526094][ T5792] NILFS (loop3): discard dirty block: blocknr=25, size=4096 [ 297.561001][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=3 [ 297.567783][ T5792] NILFS (loop3): discard dirty block: blocknr=28, size=4096 [ 297.606012][ T5792] NILFS (loop3): discard dirty page: offset=4096, ino=3 [ 297.628809][ T5792] NILFS (loop3): discard dirty block: blocknr=29, size=4096 [ 297.636656][ T5792] NILFS (loop3): discard dirty page: offset=270336, ino=3 [ 297.678052][ T5792] NILFS (loop3): discard dirty block: blocknr=0, size=4096 [ 298.241244][T10515] veth0_macvtap: left promiscuous mode [ 298.364486][T10517] loop4: detected capacity change from 0 to 2048 [ 298.423381][T10517] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 298.612556][T10517] overlayfs: upper fs needs to support d_type. [ 298.652683][T10517] overlayfs: cleanup of 'work/#7' failed (-2) [ 298.686644][T10517] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 298.709027][T10517] overlayfs: failed to set xattr on upper [ 298.728978][T10517] overlayfs: ...falling back to redirect_dir=nofollow. [ 298.749666][T10517] overlayfs: ...falling back to index=off. [ 298.759850][T10517] overlayfs: ...falling back to uuid=null. [ 298.774112][T10528] loop2: detected capacity change from 0 to 1024 [ 298.806514][T10528] EXT4-fs: Ignoring removed orlov option [ 298.845014][T10532] loop0: detected capacity change from 0 to 128 [ 298.908620][T10528] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 298.955045][T10532] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1610'. [ 298.955067][ T6711] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 299.000300][T10528] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2802: inode #12: comm syz.2.1609: corrupted in-inode xattr: bad magic number in in-inode xattr [ 299.049335][T10528] EXT4-fs (loop2): Remounting filesystem read-only [ 299.200122][ T9408] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 299.231517][ T9408] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 299.246240][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 299.394879][T10509] loop3: detected capacity change from 0 to 40427 [ 299.423828][T10509] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x7ffff [ 299.457666][T10509] F2FS-fs (loop3): Image doesn't support compression [ 299.474741][T10509] F2FS-fs (loop3): Image doesn't support compression [ 299.485756][T10542] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1613'. [ 299.524828][ C0] vkms_vblank_simulate: vblank timer overrun [ 299.533892][T10509] F2FS-fs (loop3): invalid crc value [ 299.557661][T10509] F2FS-fs (loop3): Found nat_bits in checkpoint [ 299.636701][T10509] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 299.682612][T10547] loop2: detected capacity change from 0 to 64 [ 299.744760][T10547] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 299.833586][ T5792] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0 [ 299.852386][ T5792] F2FS-fs (loop3): invalid blkaddr: 1535, type: 10, run fsck to fix. [ 299.880084][ T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.127076][ T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.268369][ T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.404372][ T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.444250][ T28] audit: type=1326 audit(1760976281.578:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.0.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ec78efc9 code=0x7ffc0000 [ 300.496516][ T28] audit: type=1326 audit(1760976281.578:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.0.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ec78efc9 code=0x7ffc0000 [ 300.518952][ C0] vkms_vblank_simulate: vblank timer overrun [ 300.560450][ T28] audit: type=1326 audit(1760976281.578:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.0.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7fd2ec78efc9 code=0x7ffc0000 [ 300.582752][ C0] vkms_vblank_simulate: vblank timer overrun [ 300.639110][ T28] audit: type=1326 audit(1760976281.578:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.0.1618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ec78efc9 code=0x7ffc0000 [ 300.949473][ T787] usb 4-1: new full-speed USB device number 21 using dummy_hcd [ 301.182285][ T5796] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 301.195278][ T5796] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 301.206506][ T5796] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 301.211652][ T787] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 301.215790][ T5796] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 301.234459][ T787] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 301.235576][ T5796] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 301.253988][ T5796] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 301.325190][ T787] usb 4-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 301.369851][ T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 301.448504][ T787] usb 4-1: config 0 descriptor?? [ 301.553443][T10561] loop0: detected capacity change from 0 to 32768 [ 301.876232][T10580] loop0: detected capacity change from 0 to 512 [ 301.902173][ T787] zydacron 0003:13EC:0006.001D: unknown main item tag 0x6 [ 301.942317][ T787] zydacron 0003:13EC:0006.001D: hidraw0: USB HID v0.00 Device [HID 13ec:0006] on usb-dummy_hcd.3-1/input0 [ 301.996816][T10580] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 302.053868][T10580] ext4 filesystem being mounted at /375/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 302.115820][ T787] usb 4-1: USB disconnect, device number 21 [ 302.215424][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 302.426925][T10594] Bluetooth: MGMT ver 1.22 [ 302.538388][T10597] loop2: detected capacity change from 0 to 1024 [ 302.779775][ T1137] hfsplus: b-tree write err: -5, ino 4 [ 302.853483][T10601] loop3: detected capacity change from 0 to 256 [ 303.132328][T10566] chnl_net:caif_netlink_parms(): no params data found [ 303.336122][ T11] hsr_slave_0: left promiscuous mode [ 303.359829][ T5796] Bluetooth: hci0: command tx timeout [ 303.369251][ T11] hsr_slave_1: left promiscuous mode [ 303.455917][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 303.479362][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 303.512195][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 303.535059][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 303.568389][ T11] bridge_slave_1: left allmulticast mode [ 303.578923][ T11] bridge_slave_1: left promiscuous mode [ 303.595054][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 303.613712][ T11] bridge_slave_0: left allmulticast mode [ 303.627747][ T11] bridge_slave_0: left promiscuous mode [ 303.643210][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 303.716075][T10603] loop0: detected capacity change from 0 to 32768 [ 303.730409][T10603] XFS: noikeep mount option is deprecated. [ 303.758963][ T5836] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 303.776820][ T11] veth1_macvtap: left promiscuous mode [ 303.791089][ T11] veth0_macvtap: left promiscuous mode [ 303.814436][T10603] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 303.822506][ T11] veth1_vlan: left promiscuous mode [ 303.827895][ T11] veth0_vlan: left promiscuous mode [ 303.846554][T10603] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 303.959250][ T5836] usb 4-1: Using ep0 maxpacket: 32 [ 303.971505][ T5836] usb 4-1: too many configurations: 17, using maximum allowed: 8 [ 303.979617][T10603] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 304.012222][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.037769][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.064938][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.083403][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.103144][T10603] XFS (loop0): Starting recovery (logdev: internal) [ 304.120814][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.135742][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.163867][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.179067][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.206937][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.229768][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.236887][T10603] XFS (loop0): Ending recovery (logdev: internal) [ 304.262713][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.289244][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.310413][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.318502][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.342432][ T5836] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 304.372188][ T5836] usb 4-1: config 0 has no interface number 0 [ 304.397507][ T5836] usb 4-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2 [ 304.426218][T10611] loop2: detected capacity change from 0 to 32768 [ 304.441468][ T5836] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 304.459100][ T23] XFS (loop0): Metadata corruption detected at xfs_btree_lookup_get_block+0x516/0x640, xfs_bnobt block 0x8 [ 304.468881][ T5836] usb 4-1: Product: syz [ 304.510140][ T23] XFS (loop0): Unmount and run xfs_repair [ 304.514346][ T5836] usb 4-1: Manufacturer: syz [ 304.522422][T10611] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1635 (10611) [ 304.538305][ T23] XFS (loop0): xfs_inactive_ifree: xfs_ifree returned error -117 [ 304.552344][ T5836] usb 4-1: SerialNumber: syz [ 304.556184][ T5794] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 304.583873][ T5836] usb 4-1: config 0 descriptor?? [ 304.588172][ T23] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_inactive_ifree+0x1d1/0x380 (fs/xfs/xfs_inode.c:1633). Shutting down filesystem. [ 304.616482][ T5836] etas_es58x 4-1:0.2: Starting syz syz (Serial Number syz) [ 304.670291][ T23] XFS (loop0): Please unmount the filesystem and rectify the problem(s) [ 304.673066][T10611] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 304.714954][T10611] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 304.726601][T10611] BTRFS info (device loop2): using free space tree [ 304.836171][ T5836] etas_es58x 4-1:0.2: could not retrieve the product info string [ 305.069386][T10611] BTRFS info (device loop2): enabling ssd optimizations [ 305.095310][T10611] BTRFS info (device loop2): auto enabling async discard [ 305.267313][ T5793] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 305.448539][ T5796] Bluetooth: hci0: command tx timeout [ 305.562471][ T6711] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (6711) [ 306.183189][ T11] team0 (unregistering): Port device team_slave_1 removed [ 306.254702][ T11] team0 (unregistering): Port device team_slave_0 removed [ 306.317759][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 306.383627][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 307.225275][T10664] loop3: detected capacity change from 0 to 32768 [ 307.472282][ T11] bond0 (unregistering): Released all slaves [ 307.519968][ T5796] Bluetooth: hci0: command tx timeout [ 307.925794][ T5836] usb 4-1: USB disconnect, device number 22 [ 307.963612][ T5836] etas_es58x 4-1:0.2: Disconnecting syz syz [ 308.266605][T10566] bridge0: port 1(bridge_slave_0) entered blocking state [ 308.285888][T10566] bridge0: port 1(bridge_slave_0) entered disabled state [ 308.319014][T10685] loop0: detected capacity change from 0 to 256 [ 308.340323][T10566] bridge_slave_0: entered allmulticast mode [ 308.347827][T10566] bridge_slave_0: entered promiscuous mode [ 308.498238][T10566] bridge0: port 2(bridge_slave_1) entered blocking state [ 308.538970][T10566] bridge0: port 2(bridge_slave_1) entered disabled state [ 308.547013][T10566] bridge_slave_1: entered allmulticast mode [ 308.601185][T10566] bridge_slave_1: entered promiscuous mode [ 308.752989][T10566] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 308.768549][T10566] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 308.888211][T10566] team0: Port device team_slave_0 added [ 308.932658][T10566] team0: Port device team_slave_1 added [ 309.033790][T10566] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 309.048956][T10566] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 309.098891][T10566] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 309.130496][T10566] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 309.149531][T10683] loop2: detected capacity change from 0 to 32768 [ 309.157711][T10566] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 309.205995][T10699] loop0: detected capacity change from 0 to 8192 [ 309.214648][T10566] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 309.233150][T10699] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 309.259207][T10699] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 309.271690][T10699] REISERFS (device loop0): using ordered data mode [ 309.281641][T10699] reiserfs: using flush barriers [ 309.343680][T10683] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 309.395645][T10699] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 309.431279][T10714] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1655'. [ 309.470910][T10699] REISERFS (device loop0): checking transaction log (loop0) [ 309.502760][T10699] REISERFS (device loop0): Using r5 hash to sort names [ 309.508280][T10566] hsr_slave_0: entered promiscuous mode [ 309.530725][T10683] XFS (loop2): Ending clean mount [ 309.532898][T10699] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 309.555274][T10566] hsr_slave_1: entered promiscuous mode [ 309.574503][T10714] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1655'. [ 309.586771][T10699] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 309.609344][ T5796] Bluetooth: hci0: command tx timeout [ 309.616107][T10716] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1655'. [ 309.636702][T10683] XFS (loop2): Quotacheck needed: Please wait. [ 309.773490][T10683] XFS (loop2): Quotacheck: Done. [ 309.927788][ T5793] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 310.361104][T10726] loop0: detected capacity change from 0 to 64 [ 310.477586][T10728] loop3: detected capacity change from 0 to 128 [ 310.636892][T10728] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 310.692437][T10728] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 310.746802][T10733] loop0: detected capacity change from 0 to 4096 [ 310.809797][T10734] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 311.003434][T10566] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 311.034668][T10566] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 311.103294][T10566] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 311.143191][T10740] loop3: detected capacity change from 0 to 1024 [ 311.163810][T10740] EXT4-fs: Ignoring removed bh option [ 311.174299][T10566] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 311.182221][T10740] EXT4-fs: Ignoring removed nobh option [ 311.215943][T10740] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 311.335116][T10740] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.562029][T10566] 8021q: adding VLAN 0 to HW filter on device bond0 [ 311.615977][T10566] 8021q: adding VLAN 0 to HW filter on device team0 [ 311.687313][ T1079] bridge0: port 1(bridge_slave_0) entered blocking state [ 311.694585][ T1079] bridge0: port 1(bridge_slave_0) entered forwarding state [ 311.797360][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 311.806322][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 311.900038][T10566] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 312.210248][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.709802][T10566] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 312.786835][T10786] general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN [ 312.798639][T10786] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f] [ 312.807143][T10786] CPU: 1 PID: 10786 Comm: syz.3.1673 Not tainted syzkaller #0 [ 312.814640][T10786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.824742][T10786] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0 [ 312.830347][T10786] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 49 b9 df f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 28 b9 df f9 4d 8b 24 24 48 83 c3 [ 312.850018][T10786] RSP: 0018:ffffc900043afa80 EFLAGS: 00010206 [ 312.856146][T10786] RAX: 0000000000000005 RBX: ffff888028f1dd80 RCX: 0000000000080000 [ 312.864180][T10786] RDX: ffffc9000d8f5000 RSI: 0000000000000984 RDI: 0000000000000985 [ 312.872206][T10786] RBP: 0000000000000001 R08: ffff88802bcd992f R09: 1ffff1100579b325 [ 312.880219][T10786] R10: dffffc0000000000 R11: ffffed100579b326 R12: 0000000000000028 [ 312.888299][T10786] R13: dffffc0000000000 R14: ffff88802bcd9800 R15: dffffc0000000000 [ 312.896284][T10786] FS: 00007f94e7f676c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 312.905262][T10786] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 312.911865][T10786] CR2: 000000110c27a596 CR3: 0000000025601000 CR4: 00000000003506e0 [ 312.919855][T10786] Call Trace: [ 312.923149][T10786] [ 312.926093][T10786] pcl818_detach+0x66/0xd0 [ 312.930538][T10786] comedi_device_detach_locked+0x172/0x710 [ 312.936387][T10786] comedi_unlocked_ioctl+0xccc/0xfe0 [ 312.941704][T10786] ? comedi_poll+0x8c0/0x8c0 [ 312.946337][T10786] ? __fget_files+0x28/0x4d0 [ 312.950951][T10786] ? bpf_lsm_file_ioctl+0x9/0x10 [ 312.955935][T10786] ? security_file_ioctl+0x80/0xa0 [ 312.961074][T10786] ? comedi_poll+0x8c0/0x8c0 [ 312.965683][T10786] __se_sys_ioctl+0xfd/0x170 [ 312.970289][T10786] do_syscall_64+0x55/0xb0 [ 312.974731][T10786] ? clear_bhb_loop+0x40/0x90 [ 312.979419][T10786] ? clear_bhb_loop+0x40/0x90 [ 312.984106][T10786] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 312.990014][T10786] RIP: 0033:0x7f94e718efc9 [ 312.994442][T10786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.014065][T10786] RSP: 002b:00007f94e7f67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 313.022501][T10786] RAX: ffffffffffffffda RBX: 00007f94e73e5fa0 RCX: 00007f94e718efc9 [ 313.030581][T10786] RDX: 0000000000000000 RSI: 0000000040946400 RDI: 0000000000000003 [ 313.038571][T10786] RBP: 00007f94e7211f91 R08: 0000000000000000 R09: 0000000000000000 [ 313.046559][T10786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.054565][T10786] R13: 00007f94e73e6038 R14: 00007f94e73e5fa0 R15: 00007fff4d929f58 [ 313.062654][T10786] [ 313.065697][T10786] Modules linked in: [ 313.084513][T10786] ---[ end trace 0000000000000000 ]--- [ 313.108847][T10786] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0 [ 313.118265][T10786] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 49 b9 df f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 28 b9 df f9 4d 8b 24 24 48 83 c3 [ 313.169138][T10786] RSP: 0018:ffffc900043afa80 EFLAGS: 00010206 [ 313.183307][T10786] RAX: 0000000000000005 RBX: ffff888028f1dd80 RCX: 0000000000080000 [ 313.215002][T10786] RDX: ffffc9000d8f5000 RSI: 0000000000000984 RDI: 0000000000000985 [ 313.225256][T10786] RBP: 0000000000000001 R08: ffff88802bcd992f R09: 1ffff1100579b325 [ 313.241957][T10786] R10: dffffc0000000000 R11: ffffed100579b326 R12: 0000000000000028 [ 313.266993][T10786] R13: dffffc0000000000 R14: ffff88802bcd9800 R15: dffffc0000000000 [ 313.280632][T10786] FS: 00007f94e7f676c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 313.299400][T10786] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 313.310716][T10786] CR2: 00007f2407cd0fe8 CR3: 0000000025601000 CR4: 00000000003506f0 [ 313.320118][T10786] Kernel panic - not syncing: Fatal exception [ 313.326584][T10786] Kernel Offset: disabled [ 313.330928][T10786] Rebooting in 86400 seconds..