last executing test programs: 6.596372071s ago: executing program 1 (id=11418): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="f8000000550001002cbd7000fddbdf2507000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="840103000000000000000000000000000000000108"], 0xf8}, 0x1, 0x0, 0x0, 0x884}, 0x4004004) 6.213308609s ago: executing program 1 (id=11421): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000035000b63d25a80643d66b7d80df2e2ff", 0x14}], 0x1}, 0x0) 4.887677235s ago: executing program 3 (id=11433): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x1, 0x7, 0x3}) 4.791429767s ago: executing program 1 (id=11434): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_ifreq(r0, 0x891f, &(0x7f0000000000)={'wlan1\x00', @ifru_addrs=@tipc=@name={0x1e, 0x2, 0x1, {{0x2}, 0x1}}}) 4.377911555s ago: executing program 3 (id=11437): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x40, 0xa, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x80000001}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x94}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4800}, 0x48080) 4.374533815s ago: executing program 1 (id=11438): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/comedi4\x00', 0x101000, 0x0) ioctl$COMEDI_CHANINFO(r0, 0x80306403, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000), 0x0}) 3.963301333s ago: executing program 1 (id=11440): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000240)={0x0, 0x613bacd8655d4961, 0x1000, 0x4, 0x1}, 0x1c) 3.916403374s ago: executing program 3 (id=11442): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f0000000180)) 3.670173099s ago: executing program 1 (id=11443): r0 = syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a"], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) 3.491282652s ago: executing program 3 (id=11445): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@dev={0xfe, 0x80, '\x00', 0x43}, 0x5b0, 0x1, 0x2, 0x4, 0x9, 0x2}, 0x20) 3.156951849s ago: executing program 3 (id=11446): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030528bd7000ffffffff00cf0000", @ANYRES32=0x0, @ANYBLOB="8b800000000000002000128008000100677265001400028008000600ac14143a08000700e000030a08000a00aa"], 0x48}}, 0x0) 2.276389616s ago: executing program 0 (id=11450): r0 = socket(0x1d, 0x2, 0x6) getsockopt$inet_mreqn(r0, 0x6a, 0x0, 0x0, &(0x7f00000000c0)) 2.225734177s ago: executing program 3 (id=11451): syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x84d0, 0x2000000000000000, 0x200002, 0x2, 0x2, 0x7b, 0xfffffffffffffffd, 0x107ff}) 1.997487521s ago: executing program 2 (id=11452): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, 0x0, &(0x7f00000000c0)) 1.882321223s ago: executing program 0 (id=11453): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x13, 0x1, 0x3, "2742528909000000ce0198666a0084feea0be6b8a80052d763e61f9d13f019e3"}) 1.757162656s ago: executing program 2 (id=11454): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x13}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000380)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.53147087s ago: executing program 0 (id=11455): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f0000001340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x201, 0x0, 0x0, {0xdbfa284ca5356c, 0x0, 0x5}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @nat={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x7}]}}}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @counter={{0xc}, @void}}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x7f}]}, @NFT_MSG_DELSET={0x14, 0xb, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x8}}, @NFT_MSG_NEWTABLE={0x70, 0x0, 0xa, 0xb00, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_USERDATA={0x45, 0x6, "131cf2d981766f8cee7ef304737dba9b0ec64effc8a1fdaa89a1426f22e48a41cace53ff864580bdeac7d150ac42c69751a4887262977225aeb854a733cf93f26e"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELRULE={0x64, 0x8, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_RULE_USERDATA={0x4e, 0x7, 0x1, 0x0, "0272004c2140f01847951fb1aba708e826322660288f879120f8efc8d86e98e4348913b1fa85896d8055049a0644e8847cdde8810e7c6dc309573acb5c2e2fc71f9bd374399d3784134d"}]}, @NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x301, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @dynset={{0xb}, @void}}]}, @NFT_MSG_DELRULE={0x160, 0x8, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x40, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x39}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x8}, @NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x11}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x9}]}}}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}, @NFTA_RULE_USERDATA={0xde, 0x7, 0x1, 0x0, "c25d8990b85514e0ef8eddf5b47f7a289d8dc739e0c8efae86297ee1cb0e9ebfb925854010ff352d353a289e49e5852f31b1541b0f997b791706c01fb0bfff2f38aeee59997144ece273aad5b85b7688d5758bd72828381c1be152ab67be43b1867e50c3d292179457643deacd9933cb60f7d64a1e5120cda69ecebc4d0854c774d3a4debf65d5c4704f166c1fd6e46349139825cbbb18c796491b75de28f69afd8ec5cc3c14e28fcc7638dab9e72e30aa5f3705ae3f4c0fd945958628600c97451d99393eb46b57b9efaeb7d63c3c3f14af58901a15e56991cf"}]}, @NFT_MSG_NEWTABLE={0x168, 0x0, 0xa, 0x801, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x27, 0x6, "8a386468e744ab866f20bb4cd11eb00ff05eab0677a8032d5c4d74bd7d07cd00c07935"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_TABLE_USERDATA={0xfb, 0x6, "fb7769f8189ce057f49e0bfe615f546ec119d979e1c760861b82116d597222fd15ba7d800bad4054d175389c24c89efe9459c940630732b504a13985ad41e4692c43edf682a8576d03b8323df77211a348f43cd686165c405618b829bbf9481cac4c70e6afdec4ee69e19e30c2155a76a47672a26df8d8a4fcf0d4e0ed218869a4095219510efc232d3dc1ad4844b089f9bff1ec35389289769c3157dbb2363c4e577bd43310ce3b0afc6103adeaddc2fea44e6b8848bf01079ae123a7cce9eb1dd98bd4c96a06873a7391e2e3b11da7a8cad50526fa4f6fe755ce19ad57d8a957cbd12749c9ba33dfbceab4337295955453cda0a31930"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELRULE={0x268, 0x8, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x1cc, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0xe}]}}}, {0x40, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0xf}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x9}, @NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x4}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x9f}]}}}, {0x30, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x2b0}, @NFTA_LIMIT_TYPE={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x44, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_REJECT_ICMP_CODE={0x5}, @NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x8}, @NFTA_REJECT_TYPE={0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x9}]}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x0, 0x2, 0x0, 0x1, [@NFTA_LAST_MSECS={0x0, 0x2, 0x1, 0x0, 0x60}, @NFTA_LAST_SET={0x0, 0x1, 0x1, 0x0, 0x5}, @NFTA_LAST_MSECS={0x0, 0x2, 0x1, 0x0, 0x5}, @NFTA_LAST_SET={0x0, 0x1, 0x1, 0x0, 0xfff}, @NFTA_LAST_SET={0x0, 0x1, 0x1, 0x0, 0xfffffe00}, @NFTA_LAST_SET={0x0, 0x1, 0x1, 0x0, 0x81}, @NFTA_LAST_MSECS={0x0, 0x2, 0x1, 0x0, 0xfffffffffffffff9}]}}}, {0x4c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x18}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_REDIR_FLAGS={0x8}, @NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x56}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x49}]}}}, {0x74, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x64, 0x2, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8000000000000000}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x9}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8000}]}}}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_FIB_FLAGS={0x2a, 0x3, 0x1, 0x0, 0x39}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FIB_RESULT={0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x5, 0x0, 0x0, {0x1}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x704}, 0x1, 0x0, 0x0, 0x800}, 0x8000) 1.437896592s ago: executing program 2 (id=11456): r0 = syz_open_dev$video4linux(&(0x7f0000000240), 0x3, 0x2e00) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000000)={0x0, 0x0, 0x3015, 0x4, 0x4, 0x80000002, 0x81, 0x2}) 1.165436907s ago: executing program 0 (id=11457): r0 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x2, 0x3, @multicast1}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000002100)="0800a9fc0da6b30a", 0x8}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="30000000000000000000000007000000890704"], 0x30}, 0x18) 1.157196468s ago: executing program 2 (id=11458): r0 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80044100, &(0x7f0000000080)) 875.100033ms ago: executing program 2 (id=11459): syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file1\x00', 0x2000c12, &(0x7f0000000440)={[{@check_relaxed}, {@utf8}, {@unhide}, {@cruft}, {@overriderock}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@check_strict}, {@hide}, {@unhide}, {@map_off}, {@unhide}, {@session={'session', 0x3d, 0x1f}}]}, 0x4, 0xa09, &(0x7f0000003280)="$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") mount$nfs(&(0x7f0000000100)='...', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0) 639.711418ms ago: executing program 0 (id=11460): r0 = syz_open_dev$video(&(0x7f0000000280), 0x5, 0x181100) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000002c0)={0x3, 0x8, 0x3, "7bccf8731d332c176774e5be9f9d5ed55a073ce5b5b2664dc1c36171856448c1", 0x4c314356}) 270.133615ms ago: executing program 2 (id=11461): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001b40)={r0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 0s ago: executing program 0 (id=11462): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}}}, 0x30) kernel console output (not intermixed with test programs): alid length. [ 1231.349128][T28837] loop0: detected capacity change from 0 to 8192 [ 1231.904227][T28863] ax25_connect(): syz.1.9999 uses autobind, please contact jreuter@yaina.de [ 1231.939710][T28860] vlan0: entered promiscuous mode [ 1232.368809][T28880] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10008'. [ 1232.475706][T28884] loop3: detected capacity change from 0 to 1024 [ 1232.581017][T28884] fuse: Invalid rootmode [ 1232.606575][T28887] loop1: detected capacity change from 0 to 256 [ 1232.662025][T27717] hfsplus: b-tree write err: -5, ino 4 [ 1232.807633][T28887] FAT-fs (loop1): Directory bread(block 64) failed [ 1232.826043][T28887] FAT-fs (loop1): Directory bread(block 65) failed [ 1232.862043][T28887] FAT-fs (loop1): Directory bread(block 66) failed [ 1232.877599][T28887] FAT-fs (loop1): Directory bread(block 67) failed [ 1232.895465][T28887] FAT-fs (loop1): Directory bread(block 68) failed [ 1232.908060][T28887] FAT-fs (loop1): Directory bread(block 69) failed [ 1232.914900][T28891] loop0: detected capacity change from 0 to 2048 [ 1232.945979][T28895] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1232.951815][T28887] FAT-fs (loop1): Directory bread(block 70) failed [ 1232.995219][T28891] NILFS error (device loop0): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 1233.011380][T28887] FAT-fs (loop1): Directory bread(block 71) failed [ 1233.026021][T28887] FAT-fs (loop1): Directory bread(block 72) failed [ 1233.043718][T28887] FAT-fs (loop1): Directory bread(block 73) failed [ 1233.059598][T28891] Remounting filesystem read-only [ 1233.416703][T28903] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1233.602957][T28909] loop0: detected capacity change from 0 to 1024 [ 1233.635911][T28912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10024'. [ 1233.663365][T28909] fuse: Invalid rootmode [ 1233.705693][T28907] loop3: detected capacity change from 0 to 4096 [ 1233.740029][T28907] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1233.767483][T27717] hfsplus: b-tree write err: -5, ino 4 [ 1233.798695][T28907] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1233.849351][T28907] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1233.867157][T28907] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1233.909176][T28907] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1233.977407][T28907] ntfs: volume version 3.1. [ 1233.995192][T28907] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 1234.022301][T28907] ntfs: (device loop3): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1234.046656][T28907] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1234.087439][T28907] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1234.100004][T28922] loop2: detected capacity change from 0 to 512 [ 1234.111918][T28907] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 1234.135110][T28922] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1234.163544][T28922] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1234.174075][T28922] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 1234.203185][T28922] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1234.209751][T28922] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1234.252919][T28922] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 1234.263286][T28922] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.10028: bg 0: block 40: padding at end of block bitmap is not set [ 1234.283147][T28922] EXT4-fs (loop2): Remounting filesystem read-only [ 1234.290127][T28922] EXT4-fs (loop2): 1 truncate cleaned up [ 1234.297389][T28922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1234.370566][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1234.438164][ T5999] usb 1-1: new high-speed USB device number 38 using dummy_hcd [ 1234.554781][T28931] netlink: 'syz.3.10032': attribute type 28 has an invalid length. [ 1234.643665][ T5999] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1234.684564][ T5999] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 1234.699249][ T5999] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 1234.725651][ T5999] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 1234.763576][ T5999] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 1234.777261][ T5999] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1234.812129][ T5999] usb 1-1: Product: syz [ 1234.830734][ T5999] usb 1-1: Manufacturer: syz [ 1234.846409][ T5999] usb 1-1: SerialNumber: syz [ 1234.863839][ T5999] usb 1-1: config 0 descriptor?? [ 1234.880324][ T5999] garmin_gps 1-1:0.0: Garmin GPS usb/tty converter detected [ 1234.896773][ T5999] garmin_gps ttyUSB0: garmin_write_bulk - usb_submit_urb(write bulk) failed with status = -8 [ 1234.930745][ T5999] garmin_gps: probe of ttyUSB0 failed with error -8 [ 1235.068180][T28947] netlink: 'syz.1.10040': attribute type 8 has an invalid length. [ 1235.098259][T28947] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.10040'. [ 1235.150065][ T5891] usb 1-1: USB disconnect, device number 38 [ 1235.164490][ T5891] garmin_gps 1-1:0.0: device disconnected [ 1235.496954][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1235.895728][T28975] bridge0: port 3(netdevsim0) entered disabled state [ 1235.927932][T28975] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 1235.940812][T28975] bridge0: port 3(netdevsim0) entered disabled state [ 1235.975605][T28975] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1235.997220][T28979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10057'. [ 1236.433927][T28989] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1236.652954][T28983] loop2: detected capacity change from 0 to 32768 [ 1236.707998][T28983] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1237.044809][T28983] XFS (loop2): Ending clean mount [ 1237.078261][T28983] XFS (loop2): Quotacheck needed: Please wait. [ 1237.210665][T28983] XFS (loop2): Quotacheck: Done. [ 1237.419493][ T5928] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1237.708985][T29034] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 1237.726344][T29034] bridge0: port 3(netdevsim0) entered disabled state [ 1237.754283][T29034] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1238.133689][T29043] overlayfs: overlapping lowerdir path [ 1238.602393][T29061] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1238.733506][T29066] netlink: 'syz.2.10095': attribute type 30 has an invalid length. [ 1239.049240][T29073] loop2: detected capacity change from 0 to 4096 [ 1239.072743][T29073] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 1239.169531][T29073] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 1239.203073][T29073] ntfs3: loop2: Failed to load $Extend (-22). [ 1239.230841][T29073] ntfs3: loop2: Failed to initialize $Extend. [ 1239.399213][T29087] libceph: resolve '+lc' (ret=-3): failed [ 1239.415256][T29090] loop3: detected capacity change from 0 to 128 [ 1239.519991][ T786] usb 2-1: new high-speed USB device number 35 using dummy_hcd [ 1239.664964][T29096] Cannot find del_set index 4 as target [ 1239.742419][ T786] usb 2-1: Using ep0 maxpacket: 32 [ 1239.756149][ T786] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1239.785691][ T786] usb 2-1: config 7 has an invalid interface number: 187 but max is 0 [ 1239.793930][ T786] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 1239.812929][ T786] usb 2-1: config 7 has no interface number 0 [ 1239.819351][ T786] usb 2-1: config 7 interface 187 altsetting 6 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1239.833325][ T786] usb 2-1: config 7 interface 187 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1239.847867][T29102] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10112'. [ 1239.857399][ T786] usb 2-1: config 7 interface 187 has no altsetting 0 [ 1239.866337][T29102] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10112'. [ 1239.882098][ T786] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1239.900793][ T786] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1239.909515][ T786] usb 2-1: Product: syz [ 1239.914194][ T786] usb 2-1: Manufacturer: syz [ 1239.945996][ T786] usb 2-1: SerialNumber: syz [ 1240.092830][T29110] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10116'. [ 1240.102687][T29110] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10116'. [ 1240.117295][T29110] netlink: 32 bytes leftover after parsing attributes in process `syz.2.10116'. [ 1240.123029][T29106] loop0: detected capacity change from 0 to 4096 [ 1240.192975][ T786] usb 2-1: Limiting number of CPorts to U8_MAX [ 1240.218984][ T786] usb 2-1: Unknown endpoint type found, address 0x07 [ 1240.248544][ T786] usb 2-1: Not enough endpoints found in device, aborting! [ 1240.480251][ T786] usb 2-1: USB disconnect, device number 35 [ 1241.226142][T29146] delete_channel: no stack [ 1241.534211][T29152] loop3: detected capacity change from 0 to 4096 [ 1241.669756][T29152] ntfs3: loop3: ino=5, "/" directory corrupted [ 1241.915396][T29142] loop2: detected capacity change from 0 to 32768 [ 1241.977446][ T786] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 1241.986781][T29142] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 1242.018544][T29142] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 1242.084942][T29170] ERROR: device name not specified. [ 1242.127449][ T5928] ocfs2: Unmounting device (7,2) on (node local) [ 1242.139943][T29172] loop3: detected capacity change from 0 to 256 [ 1242.233640][ T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1242.258110][ T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1242.268266][T29172] FAT-fs (loop3): Directory bread(block 64) failed [ 1242.278971][T29172] FAT-fs (loop3): Directory bread(block 65) failed [ 1242.285624][T29172] FAT-fs (loop3): Directory bread(block 66) failed [ 1242.303488][ T786] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1242.328253][T29172] FAT-fs (loop3): Directory bread(block 67) failed [ 1242.336083][ T786] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1242.339798][T29176] loop0: detected capacity change from 0 to 1024 [ 1242.351917][T29172] FAT-fs (loop3): Directory bread(block 68) failed [ 1242.351953][T29172] FAT-fs (loop3): Directory bread(block 69) failed [ 1242.352052][T29172] FAT-fs (loop3): Directory bread(block 70) failed [ 1242.352081][T29172] FAT-fs (loop3): Directory bread(block 71) failed [ 1242.352192][T29172] FAT-fs (loop3): Directory bread(block 72) failed [ 1242.352219][T29172] FAT-fs (loop3): Directory bread(block 73) failed [ 1242.383613][T26672] hfsplus: b-tree write err: -5, ino 4 [ 1242.405287][ T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1242.428470][ T786] usb 2-1: config 0 descriptor?? [ 1242.439553][ T786] hub 2-1:0.0: USB hub found [ 1242.674043][ T786] hub 2-1:0.0: 9 ports detected [ 1242.684522][ T786] hub 2-1:0.0: insufficient power available to use all downstream ports [ 1242.877513][ T786] hub 2-1:0.0: hub_hub_status failed (err = -71) [ 1242.898234][ T786] hub 2-1:0.0: config failed, can't get hub status (err -71) [ 1242.956392][ T786] usb 2-1: USB disconnect, device number 36 [ 1243.219253][ T5891] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 1243.431911][ T5891] usb 4-1: Using ep0 maxpacket: 8 [ 1243.444588][ T5891] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1243.465989][ T5891] usb 4-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 1243.496026][ T5891] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1243.513630][ T5891] usb 4-1: config 0 descriptor?? [ 1243.713689][T29207] loop2: detected capacity change from 0 to 1024 [ 1243.726363][T29198] loop0: detected capacity change from 0 to 32768 [ 1243.780825][T27717] hfsplus: b-tree write err: -5, ino 4 [ 1243.803728][ T2197] usb 4-1: USB disconnect, device number 34 [ 1244.257941][T29221] netlink: 'syz.0.10166': attribute type 1 has an invalid length. [ 1244.299080][T29221] netlink: 'syz.0.10166': attribute type 2 has an invalid length. [ 1245.025679][T29223] loop1: detected capacity change from 0 to 32768 [ 1245.109702][T29223] jfs_lookup: iget failed on inum 32 [ 1245.122035][T29223] jfs_lookup: iget failed on inum 32 [ 1245.920041][T29245] loop3: detected capacity change from 0 to 32768 [ 1245.948768][T29245] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.10178 (29245) [ 1246.000857][T29245] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1246.035384][T29245] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1246.038266][T29249] loop2: detected capacity change from 0 to 32768 [ 1246.068174][T29245] BTRFS info (device loop3): using free space tree [ 1246.087071][T29249] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.10180 (29249) [ 1246.117891][T29267] loop1: detected capacity change from 0 to 4096 [ 1246.205427][T29267] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1246.230145][T29267] ntfs3: loop1: Failed to load $Extend (-22). [ 1246.266170][T29245] BTRFS info (device loop3): enabling ssd optimizations [ 1246.271989][T29267] ntfs3: loop1: Failed to initialize $Extend. [ 1246.273193][T29245] BTRFS info (device loop3): auto enabling async discard [ 1246.452535][T23959] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by udevd (23959) [ 1246.510681][ T5924] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1246.654553][T29293] xt_TCPMSS: Only works on TCP SYN packets [ 1247.375395][T29313] loop1: detected capacity change from 0 to 128 [ 1247.392198][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 1247.392215][ T28] audit: type=1326 audit(1759842268.811:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29310 comm="syz.3.10204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1247.521735][ T28] audit: type=1326 audit(1759842268.811:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29310 comm="syz.3.10204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1247.655169][ T28] audit: type=1326 audit(1759842268.867:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29310 comm="syz.3.10204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1247.730057][T29323] netlink: 'syz.0.10209': attribute type 21 has an invalid length. [ 1247.738585][ T28] audit: type=1326 audit(1759842268.867:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29310 comm="syz.3.10204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1247.780606][T29323] netlink: 132 bytes leftover after parsing attributes in process `syz.0.10209'. [ 1247.827135][T29323] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10209'. [ 1247.864508][ T28] audit: type=1326 audit(1759842268.867:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29310 comm="syz.3.10204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1248.148459][ T9359] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 1248.359484][ T9359] usb 2-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 1248.377205][ T9359] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1248.386258][ T9359] usb 2-1: Product: syz [ 1248.390492][ T9359] usb 2-1: Manufacturer: syz [ 1248.397783][ T9359] usb 2-1: SerialNumber: syz [ 1248.414172][ T9359] usb 2-1: config 0 descriptor?? [ 1248.429675][ T9359] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 1248.862438][ T9359] gspca_sq905c: sq905c_read: usb_control_msg failed (-71) [ 1248.875226][ T9359] sq905c 2-1:0.0: Reading version command failed [ 1248.907370][ T9359] sq905c: probe of 2-1:0.0 failed with error -71 [ 1248.932871][ T9359] usb 2-1: USB disconnect, device number 37 [ 1249.082362][T29364] loop3: detected capacity change from 0 to 512 [ 1249.100979][T29364] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1249.131971][T29364] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.10229: corrupted in-inode xattr: invalid ea_ino [ 1249.148978][T29364] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.10229: couldn't read orphan inode 15 (err -117) [ 1249.178461][T29364] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1249.444892][T29364] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 1249.625658][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1250.159266][T29401] vlan0: entered promiscuous mode [ 1250.357429][T29409] netlink: 3 bytes leftover after parsing attributes in process `syz.3.10246'. [ 1250.388529][T29409] 0X: renamed from caif0 [ 1250.440800][T29409] 0X: entered allmulticast mode [ 1250.468517][T29409] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 1251.250323][T29435] loop1: detected capacity change from 0 to 512 [ 1251.281498][T29435] EXT4-fs (loop1): Test dummy encryption mode enabled [ 1251.314012][T29435] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2244: inode #15: comm syz.1.10257: corrupted in-inode xattr: invalid ea_ino [ 1251.350084][T29435] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.10257: couldn't read orphan inode 15 (err -117) [ 1251.410605][T29435] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1251.590563][T29424] loop0: detected capacity change from 0 to 32768 [ 1251.599581][T29389] loop2: detected capacity change from 0 to 40435 [ 1251.611674][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1251.654020][T29389] F2FS-fs (loop2): Segment count (31) mismatch with total segments from devices (16843008) [ 1251.682393][T29424] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1251.702699][T29389] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 1251.752654][T29389] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x7ffff [ 1251.981595][T29424] XFS (loop0): Ending clean mount [ 1251.998978][ T5838] XFS (loop0): Corruption warning: Metadata has LSN (2:128) ahead of current LSN (1:640). Please unmount and run xfs_repair (>= v4.3) to resolve. [ 1252.035801][ T5838] XFS (loop0): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x10 [ 1252.080233][ T5838] XFS (loop0): Unmount and run xfs_repair [ 1252.101815][ T5838] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 1252.125064][ T5838] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 1252.161947][ T5838] 00000010: 00 00 00 00 00 00 00 10 00 00 00 02 00 00 00 80 ................ [ 1252.179684][ T5838] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 1252.199458][ T5838] 00000030: 00 00 00 00 37 43 cf 4c 00 00 24 40 00 00 40 37 ....7C.L..$@..@7 [ 1252.243053][ T5838] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 1252.254588][ T5838] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1252.263494][ T5838] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1252.292609][ T5838] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1252.330220][ T5999] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 1252.340062][T29424] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1d7/0x2d0" at daddr 0x10 len 4 error 74 [ 1252.357563][T29424] XFS (loop0): Failed to initialize disk quotas. [ 1252.498844][ T5919] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1252.562682][ T5999] usb 4-1: Using ep0 maxpacket: 16 [ 1252.590942][ T5999] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1252.608096][ T5999] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1252.616170][ T5999] usb 4-1: Product: syz [ 1252.641941][ T5999] usb 4-1: Manufacturer: syz [ 1252.646968][ T5999] usb 4-1: SerialNumber: syz [ 1252.679758][ T5999] r8152-cfgselector 4-1: config 0 descriptor?? [ 1253.141782][ T5999] r8152-cfgselector 4-1: Unknown version 0x0000 [ 1253.153027][ T5999] r8152-cfgselector 4-1: USB disconnect, device number 35 [ 1253.246251][T29489] loop1: detected capacity change from 0 to 64 [ 1253.470810][T29495] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.10284'. [ 1253.916000][T29509] xt_ipcomp: unknown flags 12 [ 1254.283932][T29497] loop2: detected capacity change from 0 to 32768 [ 1255.303993][T29549] program syz.3.10311 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1255.726342][T29566] loop2: detected capacity change from 0 to 1764 [ 1256.209944][T29584] netlink: 'syz.3.10328': attribute type 21 has an invalid length. [ 1256.241235][T29588] program syz.2.10327 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1257.192204][T29618] loop2: detected capacity change from 0 to 4096 [ 1257.222040][T29618] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1257.240998][T29618] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1257.273074][T29618] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1257.304561][T29618] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1257.345251][T29618] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1257.401627][T29618] ntfs: volume version 3.1. [ 1257.422815][T29618] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 1257.439299][T29618] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1257.458973][T29618] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1257.471423][T29618] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1257.505495][T29618] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 1257.630587][T29640] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10351'. [ 1257.907176][T29661] gre1: entered allmulticast mode [ 1258.050105][T29668] loop1: detected capacity change from 0 to 2048 [ 1258.106616][T29668] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1258.237252][T29679] netlink: 144 bytes leftover after parsing attributes in process `syz.3.10362'. [ 1258.808565][T29711] loop2: detected capacity change from 0 to 512 [ 1258.926473][T29711] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters [ 1258.984053][T29711] EXT4-fs (loop2): Remounting filesystem read-only [ 1258.991309][T29711] EXT4-fs (loop2): 1 truncate cleaned up [ 1259.004359][T29711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1259.183244][T29739] netlink: 'syz.0.10380': attribute type 15 has an invalid length. [ 1259.214067][T29739] netlink: 24 bytes leftover after parsing attributes in process `syz.0.10380'. [ 1259.225596][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1259.579045][T29759] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10386'. [ 1259.672367][T29767] tmpfs: Bad value for 'mpol' [ 1259.863421][T29773] loop3: detected capacity change from 0 to 2048 [ 1259.927568][T29773] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1260.309913][T29797] IPv6: addrconf: prefix option has invalid lifetime [ 1260.555078][T29806] loop0: detected capacity change from 0 to 256 [ 1261.335327][T29855] netlink: 'syz.1.10414': attribute type 8 has an invalid length. [ 1261.543448][T29867] loop0: detected capacity change from 0 to 256 [ 1262.079503][T29904] netlink: 10 bytes leftover after parsing attributes in process `syz.0.10428'. [ 1262.142448][T29900] loop2: detected capacity change from 0 to 2048 [ 1262.191956][T29900] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1262.199309][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1262.204377][T29900] ext4 filesystem being mounted at /2581/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1262.210645][ T1291] ieee802154 phy1 wpan1: encryption failed: -22 [ 1262.234689][T29900] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.10426: bg 0: block 345: padding at end of block bitmap is not set [ 1262.411012][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1262.785869][T29937] loop0: detected capacity change from 0 to 1024 [ 1262.860320][T29935] loop1: detected capacity change from 0 to 4096 [ 1262.867168][T29937] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1262.899052][T29937] ext4 filesystem being mounted at /2605/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1262.918543][T29935] ntfs3: loop1: It is recommened to use chkdsk. [ 1262.972794][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00 [ 1263.003459][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1263.017650][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00 [ 1263.034969][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00 [ 1263.088948][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc0c00 [ 1263.129145][T29911] loop3: detected capacity change from 0 to 32768 [ 1263.152080][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc1c00 [ 1263.192836][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc2c00 [ 1263.218490][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc4c00 [ 1263.246100][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffc8c00 [ 1263.266631][T29956] loop2: detected capacity change from 0 to 1024 [ 1263.266648][T29935] ntfs3: loop1: try to read out of volume at offset 0x3fffffd0c00 [ 1263.285520][T29957] loop0: detected capacity change from 0 to 512 [ 1263.304100][T29956] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1263.331108][T29956] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1263.386254][T29957] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1263.420356][T29956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1263.526075][T29957] ext4 filesystem being mounted at /2606/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1263.619696][T29956] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.10439: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 1263.795631][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1263.844205][T29977] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 1263.901795][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1264.102806][T29989] IPv6: Can't replace route, no match found [ 1264.474012][T30012] loop1: detected capacity change from 0 to 512 [ 1264.562311][T30012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1264.589211][T30012] ext4 filesystem being mounted at /2541/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1264.765227][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1265.122687][T30047] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10460'. [ 1265.283130][T30059] netlink: 'syz.2.10463': attribute type 27 has an invalid length. [ 1265.294462][T30059] netlink: 'syz.2.10463': attribute type 3 has an invalid length. [ 1265.310900][T30059] netlink: 132 bytes leftover after parsing attributes in process `syz.2.10463'. [ 1265.418216][T30060] loop1: detected capacity change from 0 to 2048 [ 1265.472718][T30060] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1265.524451][T30071] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1265.676378][T30078] overlayfs: conflicting options: nfs_export=on,index=off [ 1265.750581][T30080] netlink: 56 bytes leftover after parsing attributes in process `syz.3.10469'. [ 1265.771953][T30080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10469'. [ 1265.878725][T30091] netlink: 'syz.2.10472': attribute type 30 has an invalid length. [ 1266.312490][T30116] loop1: detected capacity change from 0 to 256 [ 1266.321321][T30116] exfat: Deprecated parameter 'utf8' [ 1266.326719][T30116] exfat: Deprecated parameter 'namecase' [ 1266.334571][T30116] exfat: Deprecated parameter 'namecase' [ 1266.341665][T30116] exfat: Deprecated parameter 'utf8' [ 1266.396563][T30116] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d) [ 1267.270976][T30123] loop2: detected capacity change from 0 to 32768 [ 1267.371454][T30123] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1267.480334][T30123] XFS (loop2): Ending clean mount [ 1267.550195][T30191] netlink: 208 bytes leftover after parsing attributes in process `syz.1.10498'. [ 1267.669805][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.682574][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.695009][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.708045][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.720651][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.733065][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.745524][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.757937][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.770314][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.782764][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1267.890577][ T5928] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1268.479302][T30207] loop1: detected capacity change from 0 to 2048 [ 1268.676748][T30207] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1268.754177][T30207] ext4 filesystem being mounted at /2555/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1268.906776][T30207] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.10504: bg 0: block 345: padding at end of block bitmap is not set [ 1269.062237][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1271.457979][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1271.457998][ T28] audit: type=1326 audit(1759842291.338:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30282 comm="syz.0.10529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e1db8eec9 code=0x7ffc0000 [ 1271.597494][ T28] audit: type=1326 audit(1759842291.338:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30282 comm="syz.0.10529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e1db8eec9 code=0x7ffc0000 [ 1271.709953][ T28] audit: type=1326 audit(1759842291.366:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30282 comm="syz.0.10529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f6e1db8eec9 code=0x7ffc0000 [ 1271.872912][ T28] audit: type=1326 audit(1759842291.366:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30282 comm="syz.0.10529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e1db8eec9 code=0x7ffc0000 [ 1272.890507][T30276] loop1: detected capacity change from 0 to 32768 [ 1273.022499][ C1] net_ratelimit: 11932 callbacks suppressed [ 1273.022519][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.040998][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.053498][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.065981][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.078357][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.090859][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.103361][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.115838][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.128310][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.140751][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1273.589283][T30294] loop0: detected capacity change from 0 to 32768 [ 1273.911416][T30328] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10545'. [ 1273.992825][T30328] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10545'. [ 1274.988182][T30343] loop3: detected capacity change from 0 to 4096 [ 1275.087599][T30343] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1275.254404][T30343] ntfs: (device loop3): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1275.325203][T30343] ntfs: (device loop3): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1275.389205][T30343] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1275.450255][T30343] ntfs: (device loop3): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1275.585726][T30343] ntfs: volume version 3.1. [ 1275.641418][T30343] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index buffer (VCN 0x0) of directory inode 0x5 has a size (24) differing from the directory specified size (4096). Directory inode is corrupt or driver bug. [ 1275.986087][T30365] nvme_fabrics: missing parameter 'transport=%s' [ 1276.035323][T30365] nvme_fabrics: missing parameter 'nqn=%s' [ 1277.771590][T30412] loop3: detected capacity change from 0 to 4096 [ 1277.779321][T30412] __ntfs_warning: 4 callbacks suppressed [ 1277.779339][T30412] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1277.887507][T30412] ntfs: volume version 3.1. [ 1278.202155][T30431] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.10577'. [ 1278.380054][ C1] net_ratelimit: 11237 callbacks suppressed [ 1278.380076][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.387729][T30434] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10578'. [ 1278.398704][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.419888][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.432289][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.444766][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.457191][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.469618][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.482063][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.494518][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.506941][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1278.529372][T30434] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10578'. [ 1278.564007][T30441] xt_l2tp: wrong L2TP version: 0 [ 1278.600328][T30434] netlink: 52 bytes leftover after parsing attributes in process `syz.2.10578'. [ 1279.306864][T30454] block device autoloading is deprecated and will be removed. [ 1279.324359][T30460] netlink: 168 bytes leftover after parsing attributes in process `syz.3.10585'. [ 1279.350758][T30461] loop1: detected capacity change from 0 to 1024 [ 1279.826513][T30472] netlink: 16 bytes leftover after parsing attributes in process `syz.1.10586'. [ 1280.492352][T30494] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10595'. [ 1280.562906][ T28] audit: type=1400 audit(1759842299.847:110): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=30497 comm="syz.0.10596" [ 1280.843218][T30505] netlink: 64985 bytes leftover after parsing attributes in process `syz.1.10598'. [ 1281.879612][T30539] loop2: detected capacity change from 0 to 16 [ 1281.927989][T30539] erofs: (device loop2): mounted with root inode @ nid 36. [ 1281.938291][T30540] netlink: 'syz.3.10610': attribute type 1 has an invalid length. [ 1282.010516][T30539] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1282.157641][T30539] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -10 in[58, 4038] out[1851] [ 1282.195162][T30539] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 1282.893869][T30569] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10618'. [ 1282.902920][T30569] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10618'. [ 1283.737948][ C1] net_ratelimit: 12044 callbacks suppressed [ 1283.737972][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.756375][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.768778][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.781284][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.793757][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.806210][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.818795][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.831250][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.843718][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1283.856154][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1284.729452][T30557] loop1: detected capacity change from 0 to 40427 [ 1284.747248][T30612] netlink: 'syz.0.10632': attribute type 1 has an invalid length. [ 1284.801449][T30557] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1284.818510][T30612] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.10632'. [ 1284.858444][T30616] loop2: detected capacity change from 0 to 16 [ 1284.872722][T30557] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1284.942609][T30616] erofs: (device loop2): mounted with root inode @ nid 36. [ 1284.973576][T30557] F2FS-fs (loop1): invalid crc_offset: 33558524 [ 1285.031215][T30557] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1285.591941][T30557] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1285.641346][T30557] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1287.195506][T30678] netlink: 2 bytes leftover after parsing attributes in process `syz.3.10648'. [ 1287.217214][T30680] CIFS mount error: No usable UNC path provided in device string! [ 1287.217214][T30680] [ 1287.261202][T30680] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1288.089152][T30703] netlink: 'syz.3.10657': attribute type 7 has an invalid length. [ 1288.145503][T30703] netlink: 140 bytes leftover after parsing attributes in process `syz.3.10657'. [ 1288.978992][T30731] IPv6: NLM_F_CREATE should be specified when creating new route [ 1289.095699][ C1] net_ratelimit: 12343 callbacks suppressed [ 1289.095718][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.114130][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.126635][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.139133][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.151561][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.164045][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.176514][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.189065][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.201546][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.214012][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1289.555879][T30745] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10669'. [ 1289.564983][T30745] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10669'. [ 1289.778634][T30752] loop3: detected capacity change from 0 to 512 [ 1289.804013][T30743] loop1: detected capacity change from 0 to 4096 [ 1290.036108][T30743] ntfs3: loop1: ino=5, "/" directory corrupted [ 1290.043245][T30743] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1290.060254][T30752] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 1290.102042][T30752] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 1290.202059][T30752] EXT4-fs (loop3): 1 truncate cleaned up [ 1290.246542][T30752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1290.324444][T30752] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1291.631748][T30796] loop3: detected capacity change from 0 to 512 [ 1291.695054][T30796] EXT4-fs: inline encryption not supported [ 1291.778732][T30796] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.10679: casefold flag without casefold feature [ 1291.844407][T30796] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.10679: couldn't read orphan inode 15 (err -117) [ 1291.893861][T30803] vivid-002: disconnect [ 1291.920231][T30801] vivid-002: reconnect [ 1291.927131][T30796] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1292.276324][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1294.125956][T30862] loop3: detected capacity change from 0 to 256 [ 1294.398438][T30862] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1294.453365][ C1] net_ratelimit: 12453 callbacks suppressed [ 1294.453383][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.471915][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.484604][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.497112][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.509609][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.522108][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.534671][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.547147][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.559584][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.572157][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1294.762381][T30879] netlink: 'syz.0.10707': attribute type 10 has an invalid length. [ 1294.939459][T30879] team0: Port device macvlan1 added [ 1295.930579][T30912] UBIFS error (pid: 30912): cannot open "./file0", error -22 [ 1296.938003][T30938] xt_ecn: cannot match TCP bits for non-tcp packets [ 1296.979026][T30928] loop3: detected capacity change from 0 to 8192 [ 1297.041656][T30928] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1297.129632][T30945] loop0: detected capacity change from 0 to 64 [ 1297.159250][T30928] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 1297.168568][T30928] REISERFS (device loop3): using ordered data mode [ 1297.295658][T30928] reiserfs: using flush barriers [ 1297.361129][T30928] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1297.405042][T30945] Trying to free block not in datazone [ 1297.494681][T30928] REISERFS (device loop3): checking transaction log (loop3) [ 1298.068347][T30928] REISERFS (device loop3): Using tea hash to sort names [ 1298.092485][T30928] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 1298.313970][T30969] netlink: 'syz.0.10733': attribute type 6 has an invalid length. [ 1298.803859][T30982] trusted_key: encrypted_key: hex blob is missing [ 1299.811059][ C1] net_ratelimit: 12089 callbacks suppressed [ 1299.811081][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.829761][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.842377][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.855003][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.867625][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.880228][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.892871][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.905529][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.918134][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1299.930733][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1300.084570][T31003] loop0: detected capacity change from 0 to 4096 [ 1300.159493][T31003] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 1300.203504][T31003] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 1300.809641][T26672] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 1300.848745][ T5919] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 1300.869807][ T5919] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1300.876853][ T5919] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 1300.971397][T26672] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 1301.205060][T31044] xt_NFQUEUE: number of total queues is 0 [ 1301.568640][T31057] netlink: 36 bytes leftover after parsing attributes in process `syz.3.10760'. [ 1302.246200][T31077] loop0: detected capacity change from 0 to 512 [ 1302.334541][T31073] loop2: detected capacity change from 0 to 4096 [ 1302.365647][T31073] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1302.474736][T31077] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.10767: bg 0: block 393: padding at end of block bitmap is not set [ 1302.561816][T31077] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 1302.568509][T31073] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 1302.716559][T31077] EXT4-fs (loop0): 2 truncates cleaned up [ 1302.775358][T31077] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1302.841252][T31073] ntfs3: loop2: failed to convert "c46c" to macceltic [ 1303.245272][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1303.801972][T31069] loop3: detected capacity change from 0 to 40427 [ 1303.884053][T31069] F2FS-fs (loop3): invalid crc value [ 1304.023381][T31069] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1304.367350][T31069] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1304.736100][T31132] netlink: 76 bytes leftover after parsing attributes in process `syz.0.10779'. [ 1305.168987][ C1] net_ratelimit: 11610 callbacks suppressed [ 1305.169007][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.187476][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.200019][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.212588][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.225171][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.237767][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.250377][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.262938][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.275579][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.288135][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1305.478127][T31151] loop2: detected capacity change from 0 to 256 [ 1305.537732][T31151] exfat: Deprecated parameter 'namecase' [ 1305.621945][T31151] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d) [ 1305.997173][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1306.926567][T31190] batadv1: entered allmulticast mode [ 1307.206773][T31190] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 1307.493275][T31205] loop1: detected capacity change from 0 to 64 [ 1307.734279][ T28] audit: type=1800 audit(1759842325.254:111): pid=31189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.10796" name="/newroot/2719/file0" dev="tmpfs" ino=14201 res=0 errno=0 [ 1308.619188][T31232] loop2: detected capacity change from 0 to 512 [ 1308.725394][T31232] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1308.914332][T31232] ext4 filesystem being mounted at /2675/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1309.176437][T31243] xt_CT: No such helper "pptp" [ 1309.362513][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1309.671435][T31265] netlink: 'syz.3.10815': attribute type 1 has an invalid length. [ 1310.103402][T31271] loop2: detected capacity change from 0 to 4096 [ 1310.449046][T31290] loop0: detected capacity change from 0 to 256 [ 1310.526329][ C1] net_ratelimit: 12432 callbacks suppressed [ 1310.526346][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.545183][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.557641][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.570199][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.582632][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.595176][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.607763][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.620284][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.632788][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.645273][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1310.672511][T31290] FAT-fs (loop0): Directory bread(block 64) failed [ 1310.697405][T31290] FAT-fs (loop0): Directory bread(block 65) failed [ 1310.704122][T31290] FAT-fs (loop0): Directory bread(block 66) failed [ 1310.778476][T31288] loop1: detected capacity change from 0 to 4096 [ 1310.797088][T31290] FAT-fs (loop0): Directory bread(block 67) failed [ 1310.803809][T31290] FAT-fs (loop0): Directory bread(block 68) failed [ 1310.872241][T31290] FAT-fs (loop0): Directory bread(block 69) failed [ 1310.913349][T31290] FAT-fs (loop0): Directory bread(block 70) failed [ 1310.919954][T31290] FAT-fs (loop0): Directory bread(block 71) failed [ 1311.044768][T31288] ntfs: volume version 3.1. [ 1311.066658][T31290] FAT-fs (loop0): Directory bread(block 72) failed [ 1311.122749][T31290] FAT-fs (loop0): Directory bread(block 73) failed [ 1312.137643][T31323] loop0: detected capacity change from 0 to 1024 [ 1312.359213][T31323] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1312.402657][T31336] loop3: detected capacity change from 0 to 256 [ 1312.497747][T31336] FAT-fs (loop3): Directory bread(block 64) failed [ 1312.546572][T31336] FAT-fs (loop3): Directory bread(block 65) failed [ 1312.622551][T31336] FAT-fs (loop3): Directory bread(block 66) failed [ 1312.629254][T31336] FAT-fs (loop3): Directory bread(block 67) failed [ 1312.709279][T31336] FAT-fs (loop3): Directory bread(block 68) failed [ 1312.758319][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1312.776926][T31336] FAT-fs (loop3): Directory bread(block 69) failed [ 1312.836828][T31336] FAT-fs (loop3): Directory bread(block 70) failed [ 1312.843445][T31336] FAT-fs (loop3): Directory bread(block 71) failed [ 1312.894616][T31336] FAT-fs (loop3): Directory bread(block 72) failed [ 1313.007509][T31336] FAT-fs (loop3): Directory bread(block 73) failed [ 1313.296779][T31336] syz.3.10832: attempt to access beyond end of device [ 1313.296779][T31336] loop3: rw=2051, sector=1224, nr_sectors = 32 limit=256 [ 1314.455403][T31372] loop1: detected capacity change from 0 to 1024 [ 1314.494969][ T28] audit: type=1326 audit(1759842331.584:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31375 comm="syz.2.10845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29cc58eec9 code=0x7ffc0000 [ 1314.605847][ T28] audit: type=1326 audit(1759842331.603:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31375 comm="syz.2.10845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29cc58eec9 code=0x7ffc0000 [ 1314.776394][ T28] audit: type=1326 audit(1759842331.612:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31375 comm="syz.2.10845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f29cc58eec9 code=0x7ffc0000 [ 1314.942985][ T28] audit: type=1326 audit(1759842331.612:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31375 comm="syz.2.10845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29cc58eec9 code=0x7ffc0000 [ 1315.127097][ T28] audit: type=1326 audit(1759842331.622:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31375 comm="syz.2.10845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29cc58eec9 code=0x7ffc0000 [ 1315.602510][T31350] loop0: detected capacity change from 0 to 32768 [ 1315.884297][ C1] net_ratelimit: 11993 callbacks suppressed [ 1315.884314][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.902706][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.915158][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.916437][T31350] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1315.927676][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.948397][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.960885][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.973356][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.985841][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1315.998339][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1316.011183][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1316.129655][T31350] XFS (loop0): Ending clean mount [ 1316.306741][T31419] loop2: detected capacity change from 0 to 16 [ 1316.390287][T31419] erofs: (device loop2): mounted with root inode @ nid 36. [ 1316.547388][T31419] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress 1929 in[58, 4038] out[2639] [ 1316.638257][T31419] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 39 of nid 36 [ 1316.665540][ T5919] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1317.202593][T31436] loop2: detected capacity change from 0 to 8 [ 1317.231064][T31436] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1317.252220][T23959] udevd[23959]: incorrect cramfs checksum on /dev/loop2 [ 1317.337145][T31436] cramfs: Error -5 while decompressing! [ 1317.423019][T31436] cramfs: ffffffff96fdb348(26)->ffff888057b23000(4096) [ 1317.466629][T31436] cramfs: Error -3 while decompressing! [ 1317.498974][T31436] cramfs: ffffffff96fdb362(26)->ffff88805a39d000(4096) [ 1317.531037][T31436] cramfs: Error -3 while decompressing! [ 1317.574051][T31436] cramfs: ffffffff96fdb37c(16)->ffff888050fef000(4096) [ 1317.620353][T31436] cramfs: Error -5 while decompressing! [ 1317.674203][T31436] cramfs: ffffffff96fdb348(26)->ffff888057b23000(4096) [ 1317.723198][ T28] audit: type=1800 audit(1759842334.586:117): pid=31436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.10859" name="file2" dev="loop2" ino=348 res=0 errno=0 [ 1317.920663][T31411] loop1: detected capacity change from 0 to 32768 [ 1317.997427][T31446] mmap: syz.2.10860 (31446): VmData 37457920 exceed data ulimit 131072. Update limits or use boot option ignore_rlimit_data. [ 1318.121234][T31411] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1318.200869][ T5921] ocfs2: Unmounting device (7,1) on (node local) [ 1318.544816][T31429] loop3: detected capacity change from 0 to 32768 [ 1318.879776][T31448] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 1319.264503][T31469] loop3: detected capacity change from 0 to 1024 [ 1319.583096][T26672] hfsplus: b-tree write err: -5, ino 4 [ 1319.856204][T31485] binfmt_misc: register: failed to install interpreter file ./bus [ 1320.006800][T31488] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 1320.361134][T31495] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878) [ 1320.416141][T31495] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 1320.510719][T31497] nfs: Unexpected value for 'lock' [ 1321.132227][T31482] loop0: detected capacity change from 0 to 32768 [ 1321.242026][ C1] net_ratelimit: 11725 callbacks suppressed [ 1321.242043][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.260442][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.272872][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.279094][T31510] loop2: detected capacity change from 0 to 1024 [ 1321.285269][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.303906][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.306302][T31482] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 1321.316333][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.337527][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.349984][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.362512][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.375002][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1321.402247][T31510] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 1321.637811][T31482] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 57088 but max bitmap bits of 2048 [ 1321.784345][T31482] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1321.846334][T31482] OCFS2: File system is now read-only. [ 1321.872365][T31482] (syz.0.10868,31482,0):ocfs2_search_chain:1761 ERROR: status = -30 [ 1321.916339][T31482] (syz.0.10868,31482,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 1321.946099][T31482] (syz.0.10868,31482,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 1321.967712][T31482] (syz.0.10868,31482,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 1322.022476][T31482] (syz.0.10868,31482,0):ocfs2_claim_new_inode:2216 ERROR: status = -30 [ 1322.030798][T31482] (syz.0.10868,31482,0):ocfs2_claim_new_inode:2231 ERROR: status = -30 [ 1322.246600][T31482] (syz.0.10868,31482,0):ocfs2_mknod_locked:639 ERROR: status = -30 [ 1322.285462][T31482] (syz.0.10868,31482,0):ocfs2_mknod:385 ERROR: status = -30 [ 1322.329558][T31482] (syz.0.10868,31482,0):ocfs2_mknod:502 ERROR: status = -30 [ 1322.391023][T31482] (syz.0.10868,31482,0):ocfs2_create:676 ERROR: status = -30 [ 1322.586780][ T5919] ocfs2: Unmounting device (7,0) on (node local) [ 1324.201479][T31532] loop3: detected capacity change from 0 to 32768 [ 1324.384989][T31532] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1324.723757][T31594] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10899'. [ 1324.791415][T31532] XFS (loop3): Ending clean mount [ 1324.851327][T31596] netlink: 'syz.2.10902': attribute type 1 has an invalid length. [ 1325.267511][ T5924] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1325.303630][T31607] loop2: detected capacity change from 0 to 8 [ 1325.575820][T31607] SQUASHFS error: Failed to read block 0x6de: -5 [ 1325.582237][T31607] SQUASHFS error: Unable to read metadata cache entry [6dc] [ 1325.685377][T31607] SQUASHFS error: Failed to read block 0x63a: -5 [ 1325.716868][T31607] SQUASHFS error: Unable to read metadata cache entry [638] [ 1325.757248][T31607] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 1326.447406][T31634] loop3: detected capacity change from 0 to 1024 [ 1326.590212][T31634] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1326.599725][ C1] net_ratelimit: 12194 callbacks suppressed [ 1326.599751][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.620597][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.633029][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.645451][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.657923][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.670374][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.677647][T31634] ext4 filesystem being mounted at /2745/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1326.682868][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.705304][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.717812][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.730216][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1326.748604][T31646] veth0_vlan: left promiscuous mode [ 1326.783571][T31646] vlan0: entered promiscuous mode [ 1326.846971][T31646] veth0_vlan: entered promiscuous mode [ 1326.854608][T31634] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 1327.221260][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1327.587226][T31656] loop2: detected capacity change from 0 to 4096 [ 1327.696831][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 1327.744219][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 1327.752184][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 1327.851327][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc0c00 [ 1327.927890][T31675] loop3: detected capacity change from 0 to 1024 [ 1328.010238][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc1c00 [ 1328.059284][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1328.064666][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc2c00 [ 1328.073471][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc4c00 [ 1328.079241][ T1291] ieee802154 phy1 wpan1: encryption failed: -22 [ 1328.112048][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffc8c00 [ 1328.186040][T31680] raw_sendmsg: syz.0.10924 forgot to set AF_INET. Fix it! [ 1328.294786][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffd0c00 [ 1328.363681][T31656] ntfs3: loop2: try to read out of volume at offset 0x3fffffe0c00 [ 1329.546029][T31711] veth3: entered promiscuous mode [ 1329.557147][T31724] loop1: detected capacity change from 0 to 512 [ 1329.566532][T31711] veth3: entered allmulticast mode [ 1329.599266][T31724] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1329.674580][T31724] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 1329.724580][T31724] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.10935: invalid indirect mapped block 2683928664 (level 1) [ 1329.809163][T31724] EXT4-fs (loop1): Remounting filesystem read-only [ 1329.835393][T31724] EXT4-fs (loop1): 1 truncate cleaned up [ 1329.959238][T31724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1330.212457][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1330.381976][T31752] loop3: detected capacity change from 0 to 16 [ 1330.422903][T31752] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1330.431578][T31754] loop0: detected capacity change from 0 to 512 [ 1330.464994][T31754] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1330.698619][T31754] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 1331.957285][ C1] net_ratelimit: 12046 callbacks suppressed [ 1331.957305][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1331.975712][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1331.988189][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.000641][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.013166][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.025624][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.033897][T31802] loop1: detected capacity change from 0 to 1024 [ 1332.038216][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.056815][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.069333][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.081826][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1332.355363][T27713] hfsplus: b-tree write err: -5, ino 4 [ 1333.923499][T31856] loop0: detected capacity change from 0 to 512 [ 1333.978671][T31856] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1334.013903][T31856] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1334.180453][T31856] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.10972: bad orphan inode 131083 [ 1334.280713][T31856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1334.450483][T31874] netlink: 44 bytes leftover after parsing attributes in process `syz.2.10976'. [ 1334.517371][T31877] loop3: detected capacity change from 0 to 16 [ 1334.579289][T31877] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 1334.654674][T31877] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 1334.716998][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1335.002839][T31890] loop0: detected capacity change from 0 to 8 [ 1335.049240][T31890] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1335.140526][T31890] cramfs: Error -3 while decompressing! [ 1335.152064][T23959] udevd[23959]: incorrect cramfs checksum on /dev/loop0 [ 1335.218967][T31890] cramfs: ffffffff96fdb348(26)->ffff8880586ff000(4096) [ 1335.225916][T31890] cramfs: Error -3 while decompressing! [ 1335.304741][T31890] cramfs: ffffffff96fdb362(26)->ffff8880488d8000(4096) [ 1335.334870][T23959] udevd[23959]: incorrect cramfs checksum on /dev/loop0 [ 1335.347366][T31890] cramfs: Error -3 while decompressing! [ 1335.378357][T31890] cramfs: ffffffff96fdb348(26)->ffff8880586ff000(4096) [ 1335.542537][T31897] loop2: detected capacity change from 0 to 4096 [ 1335.613295][T31897] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1335.663721][T31877] erofs: DAX unsupported by block device. Turning off DAX. [ 1335.688009][T31906] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10984'. [ 1335.721792][T31877] erofs: (device loop3): mounted with root inode @ nid 36. [ 1336.022018][ T5922] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -4045 in[4096, 0] out[9000] [ 1336.091684][T31877] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -4045 in[4096, 0] out[8192] [ 1336.152988][ T28] audit: type=1800 audit(1759842351.839:118): pid=31877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.10977" name="file2" dev="loop3" ino=89 res=0 errno=0 [ 1336.470718][T31917] loop0: detected capacity change from 0 to 4096 [ 1337.058415][T31917] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1337.246540][T31897] ntfs3: loop2: failed to convert "c46c" to koi8-r [ 1337.314961][ C1] net_ratelimit: 12659 callbacks suppressed [ 1337.314979][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.333397][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.345845][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.358296][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.370779][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.383294][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.395789][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.408220][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.420702][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1337.433112][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1338.389734][T31957] xt_connbytes: Forcing CT accounting to be enabled [ 1338.441123][T31957] xt_bpf: check failed: parse error [ 1338.475876][T31962] kernel read not supported for file /!selinuxwk1m9ɞ*T#jYmVvm(p-QZ#{ (pid: 31962 comm: syz.0.10998) [ 1339.140411][T31980] loop2: detected capacity change from 0 to 512 [ 1339.161554][T31981] loop3: detected capacity change from 0 to 512 [ 1339.228371][T31981] EXT4-fs: inline encryption not supported [ 1339.295074][T31981] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1339.301935][T31981] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1339.446934][T31981] EXT4-fs (loop3): 1 truncate cleaned up [ 1339.495779][T31981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1339.732490][T31981] EXT4-fs error (device loop3): ext4_find_extent:900: inode #15: comm syz.3.11003: inode has invalid extent depth: 25964 [ 1339.887742][T31981] fs-verity (loop3, inode 15): Error -117 getting verity descriptor size [ 1340.204590][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1341.622959][T31997] loop0: detected capacity change from 0 to 32768 [ 1341.754512][T31997] jfs_lookup: iget failed on inum 32 [ 1341.762284][T31997] jfs_lookup: iget failed on inum 32 [ 1342.116857][T32030] xt_TCPMSS: Only works on TCP SYN packets [ 1342.185292][T32004] loop2: detected capacity change from 0 to 32768 [ 1342.354793][T32004] jfs: Unrecognized mount option "1844674407370955161501777777777777777777777V?Cp~'~8pٻ젌|^(coM)0177777777777777777777718446744073709551615" or missing value [ 1342.672771][ C1] net_ratelimit: 11260 callbacks suppressed [ 1342.672793][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.691269][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.703841][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.716405][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.736368][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.749043][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.761664][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.774284][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.786945][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1342.799789][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1344.208824][T32072] netlink: 36 bytes leftover after parsing attributes in process `syz.0.11029'. [ 1344.256805][T32072] D`: renamed from hsr_slave_1 (while UP) [ 1344.302377][T32078] xt_hashlimit: size too large, truncated to 1048576 [ 1344.324502][T32078] xt_hashlimit: max too large, truncated to 1048576 [ 1345.084701][T32096] loop3: detected capacity change from 0 to 512 [ 1345.145452][T32098] CIFS mount error: No usable UNC path provided in device string! [ 1345.145452][T32098] [ 1345.167610][T32096] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1345.207176][T32098] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1345.274784][T32096] FAT-fs (loop3): FAT read failed (blocknr 1568) [ 1346.546287][T32135] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 1347.010483][T32149] loop0: detected capacity change from 0 to 256 [ 1347.546002][T32165] loop3: detected capacity change from 0 to 164 [ 1347.630990][T32165] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1347.739195][T32165] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1347.812931][T32165] Symlink component flag not implemented [ 1347.871852][T32165] Symlink component flag not implemented [ 1348.030518][ C1] net_ratelimit: 12000 callbacks suppressed [ 1348.030539][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.048997][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.061524][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.074021][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.086532][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.099024][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.111699][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.124169][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.136666][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.149120][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1348.528068][T32193] xt_CONNSECMARK: invalid mode: 66 [ 1349.184547][T32207] loop3: detected capacity change from 0 to 1024 [ 1349.251272][T32207] EXT4-fs: Ignoring removed bh option [ 1349.341952][T32207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1349.527802][ T5891] usb 3-1: new high-speed USB device number 36 using dummy_hcd [ 1349.696185][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1349.753990][ T5891] usb 3-1: Using ep0 maxpacket: 8 [ 1349.780966][ T5891] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1349.807650][ T5891] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 1349.840326][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1349.866472][ T5891] usb 3-1: Product: syz [ 1349.878641][ T5891] usb 3-1: Manufacturer: syz [ 1349.903426][ T5891] usb 3-1: SerialNumber: syz [ 1349.953897][ T5891] usb 3-1: config 0 descriptor?? [ 1349.985843][ T5891] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found [ 1350.228563][ T5891] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected [ 1350.260712][ T5891] snd_usb_toneport: probe of 3-1:0.0 failed with error -22 [ 1350.533263][ T5891] usb 3-1: USB disconnect, device number 36 [ 1350.763249][T32258] netlink: 'syz.1.11083': attribute type 75 has an invalid length. [ 1351.012325][T32263] loop0: detected capacity change from 0 to 1764 [ 1351.365373][T32263] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1351.466919][T32277] loop2: detected capacity change from 0 to 64 [ 1352.090624][T32293] loop0: detected capacity change from 0 to 256 [ 1352.246760][T32293] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 1353.007526][T32315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11096'. [ 1353.045585][T32315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11096'. [ 1353.348793][T32269] loop3: detected capacity change from 0 to 40427 [ 1353.388258][ C1] net_ratelimit: 12453 callbacks suppressed [ 1353.388276][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.406664][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.419074][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.423327][T32269] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 1353.431505][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.451293][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.463895][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.476349][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.488691][T32269] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1353.488776][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.509292][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.521747][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1353.595453][T32269] F2FS-fs (loop3): build fault injection attr: rate: 18446, type: 0x7ffff [ 1353.668832][T32269] F2FS-fs (loop3): invalid crc value [ 1353.738474][T32269] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1354.152485][T32269] F2FS-fs (loop3): Start checkpoint disabled! [ 1354.224667][T32347] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11104'. [ 1354.229082][T32269] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1354.229122][T32269] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 1354.333194][T32347] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 1355.557163][T32375] loop3: detected capacity change from 0 to 4096 [ 1355.600230][T32375] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1356.028108][T32375] ntfs3: loop3: failed to convert "c46c" to cp932 [ 1356.922086][T32415] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11124'. [ 1357.075748][T32421] loop0: detected capacity change from 0 to 1024 [ 1357.242049][T32421] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1357.349894][T32421] ext4 filesystem being mounted at /2779/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1357.455415][T32436] netlink: 'syz.2.11129': attribute type 8 has an invalid length. [ 1358.222309][T32462] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 1358.253094][T32462] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 1358.745922][ C1] net_ratelimit: 12200 callbacks suppressed [ 1358.745939][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.764620][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.777155][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.789794][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.802371][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.815098][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.827603][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.840372][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.853044][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1358.865680][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1359.447824][T32497] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11147'. [ 1359.725955][T32503] netlink: 'syz.3.11148': attribute type 2 has an invalid length. [ 1360.374884][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1361.210757][T32546] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11161'. [ 1362.236490][T32521] loop2: detected capacity change from 0 to 32768 [ 1362.312032][T32521] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.11153 (32521) [ 1362.473670][T32521] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1362.540551][T32521] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 1362.617318][T32521] BTRFS info (device loop2): force zlib compression, level 3 [ 1362.624831][T32521] BTRFS info (device loop2): setting nodatasum [ 1362.685009][T32521] BTRFS info (device loop2): max_inline at 0 [ 1362.691084][T32521] BTRFS info (device loop2): using free space tree [ 1363.054573][T32521] BTRFS info (device loop2): auto enabling async discard [ 1363.424328][T32561] loop3: detected capacity change from 0 to 32768 [ 1363.440381][T32556] loop0: detected capacity change from 0 to 32768 [ 1363.511115][ T5928] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1363.597864][T32561] overlayfs: missing 'lowerdir' [ 1363.871888][T32556] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt [ 1363.871888][T32556] [ 1363.968511][T32556] ERROR: (device loop0): remounting filesystem as read-only [ 1363.985897][ T28] audit: type=1800 audit(1759842377.853:119): pid=32596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.11170" name="/" dev="sockfs" ino=79815 res=0 errno=0 [ 1364.075005][T32556] xtLookup: xtSearch returned -5 [ 1364.103690][ C1] net_ratelimit: 12320 callbacks suppressed [ 1364.103713][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.122031][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.134450][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.146823][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.159365][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.171737][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.184138][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.196545][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.208998][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1364.221456][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1366.274599][T32655] xt_hashlimit: max too large, truncated to 1048576 [ 1366.549300][T32657] loop2: detected capacity change from 0 to 4096 [ 1367.515375][T32685] loop3: detected capacity change from 0 to 8 [ 1367.723052][T32685] SQUASHFS error: Failed to read block 0x1ec: -5 [ 1367.794345][T32685] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1368.973704][T32733] SET target dimension over the limit! [ 1369.041632][T32735] loop2: detected capacity change from 0 to 64 [ 1369.461603][ C1] net_ratelimit: 12680 callbacks suppressed [ 1369.461620][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.480148][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.492662][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.505309][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.517842][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.530407][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.542948][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.555476][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.568038][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.580605][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1369.981754][T32766] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11218'. [ 1370.006177][T32766] netlink: 312 bytes leftover after parsing attributes in process `syz.2.11218'. [ 1370.032252][T32766] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11218'. [ 1370.398120][ T306] loop3: detected capacity change from 0 to 2048 [ 1370.556222][ T315] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.11222'. [ 1370.576913][ T306] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1370.884112][ T5924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1371.338134][ T337] loop3: detected capacity change from 0 to 256 [ 1371.386579][ T337] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1371.466210][ T337] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1371.569709][ T337] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1372.691406][ T373] loop3: detected capacity change from 0 to 256 [ 1372.746563][ T379] loop0: detected capacity change from 0 to 8 [ 1372.829605][ T373] FAT-fs (loop3): Directory bread(block 64) failed [ 1372.852393][ T373] FAT-fs (loop3): Directory bread(block 65) failed [ 1372.857945][ T379] SQUASHFS error: Failed to read block 0x1ec: -5 [ 1372.859078][ T373] FAT-fs (loop3): Directory bread(block 66) failed [ 1372.918598][ T373] FAT-fs (loop3): Directory bread(block 67) failed [ 1372.925393][ T373] FAT-fs (loop3): Directory bread(block 68) failed [ 1372.937084][ T379] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1372.961782][ T373] FAT-fs (loop3): Directory bread(block 69) failed [ 1372.968583][ T373] FAT-fs (loop3): Directory bread(block 70) failed [ 1373.056360][ T373] FAT-fs (loop3): Directory bread(block 71) failed [ 1373.063057][ T373] FAT-fs (loop3): Directory bread(block 72) failed [ 1373.073741][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1373.117768][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1373.132606][ T373] FAT-fs (loop3): Directory bread(block 73) failed [ 1373.185900][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1373.276108][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1373.328631][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1373.454639][ T383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11240'. [ 1374.818982][ C1] net_ratelimit: 12613 callbacks suppressed [ 1374.819001][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.837387][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.849867][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.862326][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.874970][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.887497][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.900079][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.912468][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.924934][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1374.937420][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1377.020112][ T507] __nla_validate_parse: 38 callbacks suppressed [ 1377.020131][ T507] netlink: 20 bytes leftover after parsing attributes in process `syz.2.11271'. [ 1377.337414][ T461] loop1: detected capacity change from 0 to 32768 [ 1377.402672][ T461] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.11263 (461) [ 1377.460030][ T514] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11273'. [ 1377.508181][ T461] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1377.529852][ T514] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11273'. [ 1377.556209][ T461] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1377.635065][ T461] BTRFS info (device loop1): using free space tree [ 1378.081775][ T461] BTRFS info (device loop1): enabling ssd optimizations [ 1378.092741][ T461] BTRFS info (device loop1): auto enabling async discard [ 1378.685693][ T5921] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1378.878635][ T561] loop2: detected capacity change from 0 to 256 [ 1379.109975][ T561] FAT-fs (loop2): Directory bread(block 64) failed [ 1379.150164][ T28] audit: type=1326 audit(1759842392.039:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=565 comm="syz.3.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1379.201905][ T561] FAT-fs (loop2): Directory bread(block 65) failed [ 1379.220807][ T561] FAT-fs (loop2): Directory bread(block 66) failed [ 1379.293348][ T561] FAT-fs (loop2): Directory bread(block 67) failed [ 1379.321788][ T28] audit: type=1326 audit(1759842392.039:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=565 comm="syz.3.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1379.344995][ T561] FAT-fs (loop2): Directory bread(block 68) failed [ 1379.359825][ T573] loop1: detected capacity change from 0 to 256 [ 1379.385873][ T561] FAT-fs (loop2): Directory bread(block 69) failed [ 1379.392573][ T561] FAT-fs (loop2): Directory bread(block 70) failed [ 1379.506572][ T561] FAT-fs (loop2): Directory bread(block 71) failed [ 1379.518009][ T573] FAT-fs (loop1): Directory bread(block 64) failed [ 1379.535106][ T28] audit: type=1326 audit(1759842392.076:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=565 comm="syz.3.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1379.600755][ T561] FAT-fs (loop2): Directory bread(block 72) failed [ 1379.607361][ T561] FAT-fs (loop2): Directory bread(block 73) failed [ 1379.629860][ T573] FAT-fs (loop1): Directory bread(block 65) failed [ 1379.676913][ T573] FAT-fs (loop1): Directory bread(block 66) failed [ 1379.683534][ T573] FAT-fs (loop1): Directory bread(block 67) failed [ 1379.790468][ T28] audit: type=1326 audit(1759842392.076:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=565 comm="syz.3.11284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1379.812747][ C0] vkms_vblank_simulate: vblank timer overrun [ 1379.841671][ T573] FAT-fs (loop1): Directory bread(block 68) failed [ 1379.888243][ T573] FAT-fs (loop1): Directory bread(block 69) failed [ 1379.895234][ T573] FAT-fs (loop1): Directory bread(block 70) failed [ 1380.048509][ T573] FAT-fs (loop1): Directory bread(block 71) failed [ 1380.055231][ T573] FAT-fs (loop1): Directory bread(block 72) failed [ 1380.149702][ T573] FAT-fs (loop1): Directory bread(block 73) failed [ 1380.176928][ C1] net_ratelimit: 12503 callbacks suppressed [ 1380.176947][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.195793][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.208228][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.220687][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.233197][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.245681][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.258190][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.270961][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.283510][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1380.296500][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1381.271433][ T605] dlm: non-version read from control device 36 [ 1381.403474][ T608] loop2: detected capacity change from 0 to 512 [ 1381.439688][ T608] EXT4-fs: Ignoring removed mblk_io_submit option [ 1381.585214][ T608] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1381.639991][ T608] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1381.715692][ T608] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 1381.812769][ T608] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 1381.879198][ T28] audit: type=1400 audit(1759842394.591:124): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=618 comm="syz.3.11296" [ 1381.941867][ T608] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 1382.003849][ T608] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.11294: bg 0: block 40: padding at end of block bitmap is not set [ 1382.080472][ T608] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 1382.155652][ T608] EXT4-fs (loop2): 1 truncate cleaned up [ 1382.162705][ T608] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1382.322944][ T626] loop0: detected capacity change from 0 to 4096 [ 1382.552576][ T608] EXT4-fs error (device loop2): ext4_get_link:104: inode #16: comm syz.2.11294: bad symlink. [ 1382.582054][ T626] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1382.771558][ T5928] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1382.819052][ T28] audit: type=1326 audit(1759842395.480:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=642 comm="syz.3.11302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1382.879943][ T5919] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1383.012967][ T28] audit: type=1326 audit(1759842395.498:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=642 comm="syz.3.11302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1383.194517][ T28] audit: type=1326 audit(1759842395.517:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=642 comm="syz.3.11302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1383.317759][ T28] audit: type=1326 audit(1759842395.517:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=642 comm="syz.3.11302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89118eec9 code=0x7ffc0000 [ 1385.044013][ T702] loop2: detected capacity change from 0 to 64 [ 1385.110862][ T702] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1385.239740][ T710] netlink: 'syz.0.11323': attribute type 8 has an invalid length. [ 1385.261840][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 1385.261857][ T28] audit: type=1800 audit(1759842397.743:130): pid=702 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11320" name="file1" dev="loop2" ino=8 res=0 errno=0 [ 1385.534441][ C1] net_ratelimit: 12142 callbacks suppressed [ 1385.534460][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.552990][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.565497][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.577990][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.590495][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.602990][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.615574][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.628067][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.640561][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.653065][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1385.753748][ T724] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 1387.718438][ T734] loop1: detected capacity change from 0 to 32768 [ 1387.822787][ T734] JBD2: Ignoring recovery information on journal [ 1387.995467][ T782] lo: entered promiscuous mode [ 1388.043260][ T734] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1388.371201][ T792] netlink: 24 bytes leftover after parsing attributes in process `syz.2.11347'. [ 1388.418403][ T734] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024 [ 1388.443582][ T794] sctp: [Deprecated]: syz.0.11348 (pid 794) Use of int in maxseg socket option. [ 1388.443582][ T794] Use struct sctp_assoc_value instead [ 1388.511855][ T792] veth3: entered allmulticast mode [ 1388.550479][ T734] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1388.605981][ T734] OCFS2: File system is now read-only. [ 1388.611556][ T734] (syz.1.11330,734,0):ocfs2_search_chain:1761 ERROR: status = -30 [ 1388.689374][ T734] (syz.1.11330,734,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 1388.697444][ T734] (syz.1.11330,734,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 1388.787546][ T734] (syz.1.11330,734,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 1388.828407][ T813] netlink: 'syz.0.11350': attribute type 1 has an invalid length. [ 1388.845903][ T734] (syz.1.11330,734,0):__ocfs2_claim_clusters:2355 ERROR: status = -30 [ 1388.901509][ T734] (syz.1.11330,734,0):__ocfs2_claim_clusters:2363 ERROR: status = -30 [ 1388.935161][ T734] (syz.1.11330,734,0):ocfs2_block_group_alloc_contig:433 ERROR: status = -30 [ 1388.944023][ T734] (syz.1.11330,734,0):ocfs2_block_group_alloc:705 ERROR: status = -30 [ 1389.008021][ T734] (syz.1.11330,734,0):ocfs2_block_group_alloc:758 ERROR: status = -30 [ 1389.072961][ T734] (syz.1.11330,734,0):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30 [ 1389.091500][ T815] loop3: detected capacity change from 0 to 4096 [ 1389.118751][ T734] (syz.1.11330,734,0):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30 [ 1389.127358][ T734] (syz.1.11330,734,0):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30 [ 1389.236640][ T734] (syz.1.11330,734,0):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30 [ 1389.288296][ T734] (syz.1.11330,734,0):ocfs2_expand_inline_dir:2841 ERROR: status = -30 [ 1389.296651][ T734] (syz.1.11330,734,0):ocfs2_extend_dir:3205 ERROR: status = -30 [ 1389.406455][ T734] (syz.1.11330,734,0):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30 [ 1389.415242][ T734] (syz.1.11330,734,0):ocfs2_mknod:298 ERROR: status = -30 [ 1389.502050][ T734] (syz.1.11330,734,0):ocfs2_mknod:502 ERROR: status = -30 [ 1389.549814][ T734] (syz.1.11330,734,0):ocfs2_create:676 ERROR: status = -30 [ 1389.719848][ T734] syz.1.11330 (734) used greatest stack depth: 17712 bytes left [ 1389.802974][ T836] loop2: detected capacity change from 0 to 256 [ 1389.838674][ T5921] ocfs2: Unmounting device (7,1) on (node local) [ 1389.928127][ T836] FAT-fs (loop2): Directory bread(block 64) failed [ 1389.976248][ T836] FAT-fs (loop2): Directory bread(block 65) failed [ 1389.982977][ T836] FAT-fs (loop2): Directory bread(block 66) failed [ 1390.111584][ T836] FAT-fs (loop2): Directory bread(block 67) failed [ 1390.118405][ T836] FAT-fs (loop2): Directory bread(block 68) failed [ 1390.197513][ T836] FAT-fs (loop2): Directory bread(block 69) failed [ 1390.204595][ T836] FAT-fs (loop2): Directory bread(block 70) failed [ 1390.293395][ T836] FAT-fs (loop2): Directory bread(block 71) failed [ 1390.300129][ T836] FAT-fs (loop2): Directory bread(block 72) failed [ 1390.396487][ T836] FAT-fs (loop2): Directory bread(block 73) failed [ 1390.892283][ C1] net_ratelimit: 13015 callbacks suppressed [ 1390.892301][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.910709][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.923161][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.935250][ T860] SET target dimension over the limit! [ 1390.935599][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.953098][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.965556][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.978003][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1390.990499][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1391.002960][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1391.015363][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1391.371917][ T872] netlink: 24 bytes leftover after parsing attributes in process `syz.3.11368'. [ 1391.824779][ T923] netlink: 'syz.3.11371': attribute type 10 has an invalid length. [ 1391.927591][ T923] netlink: 40 bytes leftover after parsing attributes in process `syz.3.11371'. [ 1392.238328][ T923] batman_adv: batadv0: Adding interface: virt_wifi0 [ 1392.272336][ T923] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1392.432876][ T923] batman_adv: batadv0: Interface activated: virt_wifi0 [ 1392.853081][ T957] kernel read not supported for file / ԢW)S- (pid: 957 comm: syz.3.11379) [ 1392.995429][ T28] audit: type=1800 audit(1759842404.915:131): pid=957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.11379" name=20019CCFFCD4A25729EB5393A7C72DEB dev="mqueue" ino=81272 res=0 errno=0 [ 1393.050365][ T960] loop1: detected capacity change from 0 to 2048 [ 1393.144838][ T28] audit: type=1400 audit(1759842405.121:132): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=964 comm="syz.0.11382" [ 1393.298850][ T973] PKCS8: Unsupported PKCS#8 version [ 1393.331941][ T977] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1393.508866][ T960] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1393.615348][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1393.621840][ T1291] ieee802154 phy1 wpan1: encryption failed: -22 [ 1393.632228][ T960] Remounting filesystem read-only [ 1393.817977][ T5921] NILFS (loop1): discard dirty page: offset=4096, ino=6 [ 1393.886469][ T5921] NILFS (loop1): discard dirty block: blocknr=39, size=1024 [ 1393.924398][ T5921] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1393.982827][ T5921] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1394.036208][ T5921] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1394.045498][ T5921] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1394.089919][ T990] netlink: 'syz.0.11388': attribute type 29 has an invalid length. [ 1394.163330][ T5921] NILFS (loop1): discard dirty page: offset=0, ino=3 [ 1394.192352][ T5921] NILFS (loop1): discard dirty block: blocknr=42, size=1024 [ 1394.256652][ T5921] NILFS (loop1): discard dirty block: blocknr=43, size=1024 [ 1394.296649][ T5921] NILFS (loop1): discard dirty block: blocknr=44, size=1024 [ 1394.314341][ T5921] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1394.736885][ T1018] sock: sock_timestamping_bind_phc: sock not bind to device [ 1394.988332][ T5891] usb 3-1: new high-speed USB device number 37 using dummy_hcd [ 1395.180610][ T1031] netlink: 300 bytes leftover after parsing attributes in process `syz.1.11397'. [ 1395.230740][ T5891] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1395.260699][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1395.277254][ T5891] usb 3-1: Product: syz [ 1395.303970][ T5891] usb 3-1: Manufacturer: syz [ 1395.308646][ T5891] usb 3-1: SerialNumber: syz [ 1395.374455][ T5891] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1395.427745][ T966] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1395.876135][ C0] usb 3-1: ath: unknown panic pattern! [ 1395.916041][ T1053] loop0: detected capacity change from 0 to 256 [ 1396.134370][ T5891] usb 3-1: USB disconnect, device number 37 [ 1396.250160][ C1] net_ratelimit: 12078 callbacks suppressed [ 1396.250179][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.268586][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.281068][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.293572][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.293900][ T1053] FAT-fs (loop0): Directory bread(block 64) failed [ 1396.305979][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.324993][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.337510][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.350000][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.362470][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.374929][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1396.388643][ T1053] FAT-fs (loop0): Directory bread(block 65) failed [ 1396.419617][ T1053] FAT-fs (loop0): Directory bread(block 66) failed [ 1396.475804][ T1053] FAT-fs (loop0): Directory bread(block 67) failed [ 1396.493484][ T1053] FAT-fs (loop0): Directory bread(block 68) failed [ 1396.506701][ T1053] FAT-fs (loop0): Directory bread(block 69) failed [ 1396.525896][ T1053] FAT-fs (loop0): Directory bread(block 70) failed [ 1396.537405][ T1053] FAT-fs (loop0): Directory bread(block 71) failed [ 1396.558578][ T1053] FAT-fs (loop0): Directory bread(block 72) failed [ 1396.570710][ T1053] FAT-fs (loop0): Directory bread(block 73) failed [ 1396.606229][ T966] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1396.651552][ T966] ath9k_htc: Failed to initialize the device [ 1396.682641][ T5891] usb 3-1: ath9k_htc: USB layer deinitialized [ 1398.037973][ T1101] loop0: detected capacity change from 0 to 1024 [ 1398.414389][T27721] hfsplus: b-tree write err: -5, ino 4 [ 1399.174446][ T1135] netlink: 'syz.3.11422': attribute type 3 has an invalid length. [ 1399.343675][ T1143] netlink: 16 bytes leftover after parsing attributes in process `syz.0.11424'. [ 1399.539176][ T1146] netlink: 152 bytes leftover after parsing attributes in process `syz.2.11425'. [ 1400.402159][ T1169] binder: 1167:1169 ioctl c018620c 200000000380 returned -1 [ 1400.890990][ T1184] netlink: 'syz.0.11436': attribute type 1 has an invalid length. [ 1401.309902][ T1195] loop0: detected capacity change from 0 to 256 [ 1401.426558][ T1195] FAT-fs (loop0): Directory bread(block 64) failed [ 1401.433206][ T1195] FAT-fs (loop0): Directory bread(block 65) failed [ 1401.533003][ T1195] FAT-fs (loop0): Directory bread(block 66) failed [ 1401.539594][ T1195] FAT-fs (loop0): Directory bread(block 67) failed [ 1401.607930][ C1] net_ratelimit: 12430 callbacks suppressed [ 1401.607950][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.626409][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.629283][ T1195] FAT-fs (loop0): Directory bread(block 68) failed [ 1401.638953][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.657377][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.669922][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.682445][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.694980][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.707493][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.720006][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.732518][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1401.742221][ T1195] FAT-fs (loop0): Directory bread(block 69) failed [ 1401.752089][ T1206] (syz.2.11444,1206,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 1401.816521][ T1195] FAT-fs (loop0): Directory bread(block 70) failed [ 1401.824714][ T1206] (syz.2.11444,1206,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 1401.853604][ T1195] FAT-fs (loop0): Directory bread(block 71) failed [ 1401.872637][ T1195] FAT-fs (loop0): Directory bread(block 72) failed [ 1401.903677][ T1195] FAT-fs (loop0): Directory bread(block 73) failed [ 1402.170829][ T1223] loop2: detected capacity change from 0 to 256 [ 1402.182232][ T1195] FAT-fs (loop0): Filesystem has been set read-only [ 1402.185630][ T28] audit: type=1800 audit(1759842413.574:133): pid=1195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.11441" name="cpu.stat" dev="loop0" ino=1048702 res=0 errno=0 [ 1402.201057][ T1195] FAT-fs (loop0): error, invalid access to FAT (entry 0x00006c61) [ 1402.232763][ C1] vkms_vblank_simulate: vblank timer overrun [ 1402.314526][ T1223] exfat: Deprecated parameter 'utf8' [ 1402.399031][ T1223] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1402.402738][ T9359] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 1403.266781][ T9359] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1403.354814][ T9359] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1403.402042][ T9359] usb 2-1: config 1 has no interface number 0 [ 1403.423093][ T9359] usb 2-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1403.676483][ T9359] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1403.737208][ T1257] netlink: 36 bytes leftover after parsing attributes in process `syz.0.11455'. [ 1403.751147][ T9359] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1403.926374][ T9359] usb 2-1: Product: syz [ 1403.945503][ T9359] usb 2-1: Manufacturer: syz [ 1403.988406][ T9359] usb 2-1: SerialNumber: syz [ 1404.208608][ T9359] usb 2-1: selecting invalid altsetting 1 [ 1404.393708][ T1270] loop2: detected capacity change from 0 to 1764 [ 1404.402703][ T1240] loop3: detected capacity change from 0 to 32768 [ 1404.429503][ T1240] (syz.3.11451,1240,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1404.552770][ T1240] (syz.3.11451,1240,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1404.588843][ T1270] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 1404.711357][ T1240] JBD2: Ignoring recovery information on journal [ 1404.798427][ T9359] cdc_ncm 2-1:1.1: failed GET_NTB_PARAMETERS [ 1404.824096][ T9359] cdc_ncm 2-1:1.1: bind() failure [ 1404.912742][ T1240] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1404.936735][ T9359] usb 2-1: USB disconnect, device number 38 [ 1405.301325][ T1240] [ 1405.303718][ T1240] ====================================================== [ 1405.310762][ T1240] WARNING: possible circular locking dependency detected [ 1405.317898][ T1240] syzkaller #0 Not tainted [ 1405.322328][ T1240] ------------------------------------------------------ [ 1405.329445][ T1240] syz.3.11451/1240 is trying to acquire lock: [ 1405.335525][ T1240] ffff8880741ca608 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_acquire_dquot+0x67b/0xaf0 [ 1405.344987][ T1240] [ 1405.344987][ T1240] but task is already holding lock: [ 1405.352366][ T1240] ffff88805ca8dbe0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_lock_global_qf+0x1e9/0x270 [ 1405.363277][ T1240] [ 1405.363277][ T1240] which lock already depends on the new lock. [ 1405.363277][ T1240] [ 1405.373704][ T1240] [ 1405.373704][ T1240] the existing dependency chain (in reverse order) is: [ 1405.382738][ T1240] [ 1405.382738][ T1240] -> #6 (&ocfs2_quota_ip_alloc_sem_key){++++}-{3:3}: [ 1405.391646][ T1240] down_write+0x97/0x1f0 [ 1405.396451][ T1240] ocfs2_lock_global_qf+0x1e9/0x270 [ 1405.402207][ T1240] ocfs2_acquire_dquot+0x2a1/0xaf0 [ 1405.407882][ T1240] dqget+0x77c/0xeb0 [ 1405.412328][ T1240] dquot_set_dqblk+0x2b/0xf90 [ 1405.417569][ T1240] quota_setquota+0x4b0/0x530 [ 1405.422823][ T1240] __se_sys_quotactl+0x27b/0x950 [ 1405.428348][ T1240] do_syscall_64+0x55/0xb0 [ 1405.433315][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.439768][ T1240] [ 1405.439768][ T1240] -> #5 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{3:3}: [ 1405.450413][ T1240] down_write+0x97/0x1f0 [ 1405.455210][ T1240] ocfs2_lock_global_qf+0x1cb/0x270 [ 1405.460957][ T1240] ocfs2_acquire_dquot+0x2a1/0xaf0 [ 1405.466612][ T1240] dqget+0x77c/0xeb0 [ 1405.471055][ T1240] dquot_set_dqblk+0x2b/0xf90 [ 1405.476371][ T1240] quota_setquota+0x4b0/0x530 [ 1405.481597][ T1240] __se_sys_quotactl+0x27b/0x950 [ 1405.487085][ T1240] do_syscall_64+0x55/0xb0 [ 1405.492044][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.498508][ T1240] [ 1405.498508][ T1240] -> #4 (&dquot->dq_lock){+.+.}-{3:3}: [ 1405.506197][ T1240] __mutex_lock+0x129/0xcc0 [ 1405.511258][ T1240] dqget+0x6fc/0xeb0 [ 1405.515707][ T1240] dquot_transfer+0x2f9/0x6d0 [ 1405.520932][ T1240] ext4_setattr+0x87d/0x1c90 [ 1405.526069][ T1240] notify_change+0xb0d/0xe10 [ 1405.531203][ T1240] chown_common+0x3f9/0x5a0 [ 1405.536256][ T1240] do_fchownat+0x168/0x270 [ 1405.541232][ T1240] __x64_sys_lchown+0x85/0x90 [ 1405.546463][ T1240] do_syscall_64+0x55/0xb0 [ 1405.551432][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.557901][ T1240] [ 1405.557901][ T1240] -> #3 (&ei->xattr_sem){++++}-{3:3}: [ 1405.565498][ T1240] down_read+0x46/0x2e0 [ 1405.570212][ T1240] ext4_setattr+0x86b/0x1c90 [ 1405.575406][ T1240] notify_change+0xb0d/0xe10 [ 1405.580540][ T1240] chown_common+0x3f9/0x5a0 [ 1405.585595][ T1240] do_fchownat+0x168/0x270 [ 1405.590650][ T1240] __x64_sys_chown+0x82/0x90 [ 1405.595796][ T1240] do_syscall_64+0x55/0xb0 [ 1405.600768][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.607221][ T1240] [ 1405.607221][ T1240] -> #2 (jbd2_handle){++++}-{0:0}: [ 1405.614564][ T1240] start_this_handle+0x1e9d/0x20c0 [ 1405.620221][ T1240] jbd2__journal_start+0x2bb/0x5b0 [ 1405.625889][ T1240] jbd2_journal_start+0x2a/0x40 [ 1405.631291][ T1240] ocfs2_start_trans+0x376/0x6c0 [ 1405.636788][ T1240] ocfs2_modify_bh+0xe9/0x470 [ 1405.642015][ T1240] ocfs2_local_read_info+0x13fd/0x1770 [ 1405.648021][ T1240] dquot_load_quota_sb+0x757/0xb80 [ 1405.653688][ T1240] dquot_load_quota_inode+0x2dc/0x5d0 [ 1405.659622][ T1240] ocfs2_enable_quotas+0x1c7/0x440 [ 1405.665288][ T1240] ocfs2_fill_super+0x3f6d/0x4d90 [ 1405.670865][ T1240] mount_bdev+0x22b/0x2d0 [ 1405.675740][ T1240] legacy_get_tree+0xea/0x180 [ 1405.680965][ T1240] vfs_get_tree+0x8c/0x280 [ 1405.685923][ T1240] do_new_mount+0x24b/0xa40 [ 1405.690992][ T1240] __se_sys_mount+0x2da/0x3c0 [ 1405.696221][ T1240] do_syscall_64+0x55/0xb0 [ 1405.701198][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.707655][ T1240] [ 1405.707655][ T1240] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 1405.716192][ T1240] down_read+0x46/0x2e0 [ 1405.720901][ T1240] ocfs2_start_trans+0x36a/0x6c0 [ 1405.726392][ T1240] ocfs2_modify_bh+0xe9/0x470 [ 1405.731625][ T1240] ocfs2_local_read_info+0x13fd/0x1770 [ 1405.737645][ T1240] dquot_load_quota_sb+0x757/0xb80 [ 1405.743312][ T1240] dquot_load_quota_inode+0x2dc/0x5d0 [ 1405.749248][ T1240] ocfs2_enable_quotas+0x1c7/0x440 [ 1405.754919][ T1240] ocfs2_fill_super+0x3f6d/0x4d90 [ 1405.760489][ T1240] mount_bdev+0x22b/0x2d0 [ 1405.765366][ T1240] legacy_get_tree+0xea/0x180 [ 1405.770594][ T1240] vfs_get_tree+0x8c/0x280 [ 1405.775553][ T1240] do_new_mount+0x24b/0xa40 [ 1405.780604][ T1240] __se_sys_mount+0x2da/0x3c0 [ 1405.785819][ T1240] do_syscall_64+0x55/0xb0 [ 1405.790788][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.797244][ T1240] [ 1405.797244][ T1240] -> #0 (sb_internal#3){.+.+}-{0:0}: [ 1405.804753][ T1240] __lock_acquire+0x2ddb/0x7c80 [ 1405.810148][ T1240] lock_acquire+0x197/0x410 [ 1405.815207][ T1240] ocfs2_start_trans+0x26b/0x6c0 [ 1405.820792][ T1240] ocfs2_acquire_dquot+0x67b/0xaf0 [ 1405.826450][ T1240] dqget+0x77c/0xeb0 [ 1405.830898][ T1240] dquot_set_dqblk+0x2b/0xf90 [ 1405.836128][ T1240] quota_setquota+0x4b0/0x530 [ 1405.841355][ T1240] __se_sys_quotactl+0x27b/0x950 [ 1405.846851][ T1240] do_syscall_64+0x55/0xb0 [ 1405.851810][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1405.858268][ T1240] [ 1405.858268][ T1240] other info that might help us debug this: [ 1405.858268][ T1240] [ 1405.868512][ T1240] Chain exists of: [ 1405.868512][ T1240] sb_internal#3 --> &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7 --> &ocfs2_quota_ip_alloc_sem_key [ 1405.868512][ T1240] [ 1405.885508][ T1240] Possible unsafe locking scenario: [ 1405.885508][ T1240] [ 1405.892979][ T1240] CPU0 CPU1 [ 1405.898366][ T1240] ---- ---- [ 1405.903747][ T1240] lock(&ocfs2_quota_ip_alloc_sem_key); [ 1405.909408][ T1240] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7); [ 1405.919334][ T1240] lock(&ocfs2_quota_ip_alloc_sem_key); [ 1405.927510][ T1240] rlock(sb_internal#3); [ 1405.931876][ T1240] [ 1405.931876][ T1240] *** DEADLOCK *** [ 1405.931876][ T1240] [ 1405.940037][ T1240] 4 locks held by syz.3.11451/1240: [ 1405.945249][ T1240] #0: ffff8880741ca0e0 (&type->s_umount_key#70){++++}-{3:3}, at: super_lock+0x167/0x360 [ 1405.955148][ T1240] #1: ffff88804b7200a8 (&dquot->dq_lock){+.+.}-{3:3}, at: ocfs2_acquire_dquot+0x294/0xaf0 [ 1405.965216][ T1240] #2: ffff88805ca8df58 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{3:3}, at: ocfs2_lock_global_qf+0x1cb/0x270 [ 1405.978234][ T1240] #3: ffff88805ca8dbe0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_lock_global_qf+0x1e9/0x270 [ 1405.989592][ T1240] [ 1405.989592][ T1240] stack backtrace: [ 1405.995518][ T1240] CPU: 0 PID: 1240 Comm: syz.3.11451 Not tainted syzkaller #0 [ 1406.003000][ T1240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1406.013074][ T1240] Call Trace: [ 1406.016377][ T1240] [ 1406.019330][ T1240] dump_stack_lvl+0x16c/0x230 [ 1406.024035][ T1240] ? load_image+0x3b0/0x3b0 [ 1406.028567][ T1240] ? show_regs_print_info+0x20/0x20 [ 1406.033801][ T1240] ? print_circular_bug+0x12b/0x1a0 [ 1406.039033][ T1240] check_noncircular+0x2bd/0x3c0 [ 1406.044005][ T1240] ? print_deadlock_bug+0x5d0/0x5d0 [ 1406.049236][ T1240] ? lockdep_lock+0xe0/0x220 [ 1406.053858][ T1240] ? _find_first_zero_bit+0xd3/0x100 [ 1406.059181][ T1240] __lock_acquire+0x2ddb/0x7c80 [ 1406.064082][ T1240] ? verify_lock_unused+0x140/0x140 [ 1406.069306][ T1240] ? verify_lock_unused+0x140/0x140 [ 1406.074525][ T1240] ? mark_lock+0x94/0x320 [ 1406.078879][ T1240] ? verify_lock_unused+0x140/0x140 [ 1406.084101][ T1240] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 1406.090116][ T1240] ? lock_chain_count+0x20/0x20 [ 1406.094994][ T1240] lock_acquire+0x197/0x410 [ 1406.099524][ T1240] ? ocfs2_acquire_dquot+0x67b/0xaf0 [ 1406.104841][ T1240] ? __might_sleep+0xe0/0xe0 [ 1406.109463][ T1240] ? do_raw_spin_lock+0x121/0x2c0 [ 1406.114527][ T1240] ? read_lock_is_recursive+0x20/0x20 [ 1406.119923][ T1240] ? __rwlock_init+0x150/0x150 [ 1406.124721][ T1240] ? do_raw_spin_unlock+0x121/0x230 [ 1406.129955][ T1240] ocfs2_start_trans+0x26b/0x6c0 [ 1406.134928][ T1240] ? ocfs2_acquire_dquot+0x67b/0xaf0 [ 1406.140249][ T1240] ? ocfs2_recovery_exit+0x50/0x50 [ 1406.145391][ T1240] ? do_raw_spin_unlock+0x121/0x230 [ 1406.150629][ T1240] ? _raw_spin_unlock+0x28/0x40 [ 1406.155516][ T1240] ? ocfs2_qinfo_unlock+0x11e/0x140 [ 1406.160760][ T1240] ocfs2_acquire_dquot+0x67b/0xaf0 [ 1406.165904][ T1240] ? ocfs2_destroy_dquot+0x50/0x50 [ 1406.171047][ T1240] ? do_raw_spin_unlock+0x121/0x230 [ 1406.176280][ T1240] dqget+0x77c/0xeb0 [ 1406.180224][ T1240] dquot_set_dqblk+0x2b/0xf90 [ 1406.184947][ T1240] ? __might_fault+0xaa/0x120 [ 1406.189659][ T1240] quota_setquota+0x4b0/0x530 [ 1406.194375][ T1240] ? quota_getnextquota+0x490/0x490 [ 1406.199640][ T1240] ? bpf_lsm_capable+0x9/0x10 [ 1406.204357][ T1240] ? do_quotactl+0x72f/0x860 [ 1406.208999][ T1240] __se_sys_quotactl+0x27b/0x950 [ 1406.213978][ T1240] ? __x64_sys_quotactl+0xb0/0xb0 [ 1406.219045][ T1240] ? lockdep_hardirqs_on+0x98/0x150 [ 1406.224283][ T1240] do_syscall_64+0x55/0xb0 [ 1406.228729][ T1240] ? clear_bhb_loop+0x40/0x90 [ 1406.233431][ T1240] ? clear_bhb_loop+0x40/0x90 [ 1406.238139][ T1240] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1406.244103][ T1240] RIP: 0033:0x7fd89118eec9 [ 1406.248541][ T1240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1406.268186][ T1240] RSP: 002b:00007fd89202c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3 [ 1406.276625][ T1240] RAX: ffffffffffffffda RBX: 00007fd8913e5fa0 RCX: 00007fd89118eec9 [ 1406.284618][ T1240] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffff80000800 [ 1406.292615][ T1240] RBP: 00007fd891211f91 R08: 0000000000000000 R09: 0000000000000000 [ 1406.300609][ T1240] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 1406.308607][ T1240] R13: 00007fd8913e6038 R14: 00007fd8913e5fa0 R15: 00007ffc6293d858 [ 1406.316624][ T1240] [ 1406.512405][ T5924] ocfs2: Unmounting device (7,3) on (node local) [ 1406.965343][ C1] net_ratelimit: 13191 callbacks suppressed [ 1406.965362][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1406.983614][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1406.996002][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.008421][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.020698][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.032844][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.045192][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.057423][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.069641][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1407.081806][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.323170][ C1] net_ratelimit: 25317 callbacks suppressed [ 1412.323211][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.341399][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.353824][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.366195][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.378513][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.390835][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.402995][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.415235][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.427658][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1412.439843][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)