last executing test programs: 22m56.82565362s ago: executing program 3 (id=1581): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, 0x44, 0x9, 0x0, 0x0, {0x2}}, 0x14}}, 0x24000044) 22m56.140367772s ago: executing program 3 (id=1586): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=@del={0xe0, 0x11, 0x41f, 0x30bd2c, 0x25dfdbff, {{'ccm-aes-ce\x00'}, '\x00', '\x00', 0x3400, 0x200}}, 0xe0}, 0x1, 0x0, 0x0, 0x44090}, 0x84000) 22m55.520066723s ago: executing program 3 (id=1591): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x380, 0x190, 0x1170, 0x1398, 0x190, 0x1170, 0x2b0, 0x1398, 0x1398, 0x2b0, 0x1398, 0x3, 0x0, {[{{@ipv6={@empty, @private2={0xfc, 0x2, '\x00', 0x1}, [0xffffff7f, 0x0, 0xff000000], [0xffffff00], 'ip6tnl0\x00', 'veth0_to_hsr\x00', {0xff}, {}, 0x6, 0x0, 0x0, 0x53}, 0x0, 0x128, 0x190, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x1, 0x7, [0x4e23, 0x4e20, 0x4e24, 0x4e24, 0x4e22, 0x4e20, 0x4e22, 0x4e22, 0x4e23, 0x4e21, 0x4e20, 0x4e21, 0x4e20, 0x4e22, 0x4e24], [0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1]}}, @common=@frag={{0x30}, {[0x2, 0x3], 0x0, 0x12, 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x4, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @multicast2}, [0x0, 0xffffffff], [0x0, 0xffffffff], 'geneve1\x00', 'veth1_vlan\x00', {0xff}, {}, 0x0, 0x0, 0x2, 0x12}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0xb6, 0x5}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e0) 22m54.743188953s ago: executing program 3 (id=1596): syz_mount_image$cramfs(&(0x7f0000000240), &(0x7f00000006c0)='./file1\x00', 0x8080, &(0x7f0000000c40)=ANY=[], 0xfe, 0x158, &(0x7f0000000040)="$eJzs0E9LKlEYBvDnMHPV+8crF25gQSa0aEhMmbBWURoJQjZQuGlTYBMJipFQrsKIdi2Cti6soJX4FSxrYymEfYk2rl0WR8ciCPwAPb/NMM953+fAWZpravAChy50LWYzu3tmLmdueVeNeHTtpVoNy9wGoPPpvDd/EwZ25FcF2keAjO+cwHYqbU4lsw450w4DGoDIbyzIPCizf8Avmf3HO7mvjQO1od6+/kU2bWUjKhBx9TLZ93oBTMg+O4BU2rRbnfmir1J+WGnUY/7J61EFJzHf2A/rrJ97zFM9Onz1x60gYd5fIiLk3nOg7n8KVMqtZiO+bMwD0PUZARSCoZbx2IiFCmdQN+z7wLoABD7uscHtURMOHAvgvNvVvhVOALVSx8j8nS1Z9zsOFC8g8sXkpiL/fwKKBtF/DhsGEIMGiIiIiIiIiIiIiIiIiIjo23gLAAD//03YXHc=") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) 22m53.593986319s ago: executing program 3 (id=1602): r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000040)={0x3, 0x5, 0xfffffff7}) 22m51.949564971s ago: executing program 3 (id=1610): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000b5403340861a22753635010203010902120001000000000904"], 0x0) syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000440)={0x34, &(0x7f0000000240)={0x40, 0x1d, 0x2, 'BK'}, 0x0, 0x0, 0x0, 0x0, 0x0}) 22m49.146917574s ago: executing program 32 (id=1610): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000b5403340861a22753635010203010902120001000000000904"], 0x0) syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000440)={0x34, &(0x7f0000000240)={0x40, 0x1d, 0x2, 'BK'}, 0x0, 0x0, 0x0, 0x0, 0x0}) 19m18.310894012s ago: executing program 5 (id=2681): openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) close(0x3) 19m17.72149427s ago: executing program 5 (id=2686): syz_mount_image$bfs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES8=0x0, @ANYRES16], 0x1, 0x86, &(0x7f0000000480)="$eJzs0qENAjEABdDPrYFgA3a4UQgSHAqCun1YhRHYAIHFQJoWQT0hubyX/Ca/31T0+rwsMyWrKXl1DsfTbrOvZ5ilIcnYUv5A6fexbou23x7n7Sf/fi8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/MKQdd+/Lt4BAAD//9+0I9A=") symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 19m16.170511173s ago: executing program 5 (id=2695): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)=@allocspi={0x108, 0x16, 0x1, 0x0, 0x0, {{{@in, @in6=@private2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@local, 0x0, 0x33}, @in=@broadcast, {0x5, 0x1}, {0x0, 0x4}, {0x0, 0x1}, 0x0, 0x0, 0xa}, 0x5, 0x5}, [@etimer_thresh={0x8, 0xc, 0xca1e}, @tfcpad={0x8, 0x24, 0x6}]}, 0x108}, 0x1, 0x0, 0x0, 0x1}, 0x4000080) 19m15.514461829s ago: executing program 5 (id=2698): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000480)={[{@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@sys_tz}, {@keep_last_dots}, {}, {}, {@gid}, {@utf8}, {@sys_tz}, {@sys_tz}, {@time_offset={'time_offset', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}]}, 0xfe, 0x152d, &(0x7f00000034c0)="$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") mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0) 19m14.396839522s ago: executing program 5 (id=2702): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10, &(0x7f0000000140)={[{@rodir}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@fat=@usefree}, {@shortname_mixed}, {@utf8}, {@numtail}, {@utf8no}, {@fat=@check_normal}, {@fat=@codepage={'codepage', 0x3d, '874'}}, {@fat=@check_strict}, {@shortname_winnt}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}]}, 0x3, 0x27b, &(0x7f0000000640)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) 19m13.568323579s ago: executing program 5 (id=2706): r0 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x2, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000002100)="0800a9fc0da6b30a", 0x8}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="18000000000000000000000007000000890704ac1414aa0011000000000000000100000001"], 0x30}, 0x4040810) 19m11.376464037s ago: executing program 33 (id=2706): r0 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x2, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000002100)="0800a9fc0da6b30a", 0x8}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="18000000000000000000000007000000890704ac1414aa0011000000000000000100000001"], 0x30}, 0x4040810) 12m41.574649343s ago: executing program 0 (id=4399): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f00000005c0)=[{0x6}]}) symlink(0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0502103, &(0x7f00000001c0)={0x0, 0x9, 0xb50}) 12m40.718454234s ago: executing program 0 (id=4402): r0 = syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x0, 0x400}, &(0x7f0000000240), &(0x7f0000000100)) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) io_uring_register$IORING_REGISTER_NAPI(r0, 0x1b, &(0x7f0000000040)={0xffffff01, 0x3}, 0x1) 12m39.933550747s ago: executing program 0 (id=4406): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)={0x3c, r1, 0x1, 0x0, 0x25dfdbff, {0x49}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x73}}}]}, 0x3c}}, 0x0) 12m39.037592843s ago: executing program 0 (id=4410): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 12m37.071367501s ago: executing program 0 (id=4417): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x20008c0, &(0x7f0000000680)=ANY=[@ANYBLOB="757466383d302c757466383d302c757466383d312c73686f72746e616d653d6c6f7765722c636865636b3d7374726963742c756e695f786c6174653d312c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c757466383d312c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c696f636861727365743d6d61637475726b6973682c757466383d312c008c66543f5d9819a000d4e83c546404a071cad2145d3fb8a62515f51f30c9e8ee65d81f17556db1fbd9bba8311ff6c51e26fbc301f624c68ff373cb5fde2e2938a0247b42fa7b274ded"], 0x1, 0x35e, &(0x7f0000000240)="$eJzs3T2IXNUXAPAzebMzm0D+u8UfgoLwtBN0SSIWWm0IGwhOozL4UYiD2ajsrIEdHEyKnayNWAqWWtlZaGGRWgRF7CxsjSBRsdB0AYNXZubtzJud/UpgExd/v2I4ufecd++d92Be3u7cfXUxVi7MxMWbN2/E7GwlqotnF+NWJeYji01XU0q9mFQLAOCwupVS/JmG9llSOeApAQAHbPD5//rxUsu7X++Wn3z6A8ChV/z//+huObM7dVw6kCkBAAds6vn/IxPdtckf9VdLvxUAABxWz7/08jNnGhHP5flsxOp73Wa3GU+P+89cjDejHctxMubidsTwRqH/Uhm8njvfWDqZ53kvfpmPZr+i24xY7XWbwzuFM9mgvh6nYi7mi/ribiOllJ37orF0Kh+IiKu9wfixWuk2Z+JYMf6Px2I5Tkce/5+qjzjfWDqdFwdorm7W9yI2xs8t+vNfiLn4/rW4FO24EP3azduaxtL6qTw/mxoT9d1mfZA3tOMTEAAAAAAAAAAAAAAAAAAAAAAAuCsL+cj8aP+bNN6/Z2Fhm/7B/jjD+mJ/oI3h/kCpniKlP955vPl+FhP7A23dn6fbrMaR+7t0AAAAAAAAAAAAAAAAAAAA+NfoXK5Fq91eXutcvrJSDnprnctHIqLf8ta3n311NKZz9giqxRilrrxourLSStlmcsomcoog6w/eTmnQ8um10YzLOfXRKradRn3nrnb7+MM/fzRueSjbPPLf45wsRlX9tYySsy3TKAer/xtO6U7eqFFweo+c6ymlncrXX5muikpE9c5P3O5B6gff3HjjgSc6J54ctHyZhh59bO6F6x9+8ttKq90fOQZnsLbWuZ1WWsW/t7/Ydg6y0vVTiWFQKV8J1d3KNyZbWtkPv7/44Aff7W/0VG55e5ucbLicz7d21fpBDN6BLV1Hh0EtyseZ2ebi3yu4i3N64uPF1rX1n37d9xBjNuoAAAAAAAAAAAAAAAAAAIB7ovRd8ULxZd+Z3aqeevbgZwYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA98747/+Xgo2plv0Ef/Viuqu+vNaJqN3vZQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8B/3TwAAAP//4xxvMQ==") r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 12m34.612051773s ago: executing program 0 (id=4424): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "d67a854a7a4124a915206fdb2797cafe8b5f3000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4044010) 12m30.44564242s ago: executing program 34 (id=4424): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "d67a854a7a4124a915206fdb2797cafe8b5f3000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4044010) 3m49.408051941s ago: executing program 1 (id=6073): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000021c0)='/proc/timer_list\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000180)={0x2020}, 0x2024) lseek(r0, 0xfffffffffffffff5, 0x1) 3m47.740663183s ago: executing program 1 (id=6078): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.io_service_time\x00', 0x275a, 0x0) unshare(0x22020600) linkat(r0, &(0x7f0000000000)='./file0\x00', r0, 0x0, 0x1400) 3m46.165018636s ago: executing program 1 (id=6081): timer_create(0x3, 0x0, &(0x7f00000001c0)=0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x80000}, {0x5c}, {0x6, 0x0, 0x0, 0x7ffffe39}]}) timer_settime(r0, 0x1, &(0x7f0000000240)={{}, {0x77359400}}, 0x0) 3m44.280741354s ago: executing program 1 (id=6086): r0 = getegid() syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x2000802, &(0x7f0000000200)=ANY=[@ANYBLOB='iocharset=macceltic,time_offset=0x0000000000000003,gid=', @ANYRESHEX=r0, @ANYBLOB="2c666d61736b3d30303030303000303030263030303030303030303030362c696f636861727365743d63703836332c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030322c6e616d65636173653d312c6572726f72733d72656d6f756e742d726f2c757466382c646d61736b3d3030303030303030303030303030303030303030a930312c00"], 0x1, 0x1537, &(0x7f00000034c0)="$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") mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x2373092, 0x0) 3m41.939659614s ago: executing program 1 (id=6090): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@getlink={0x34, 0x12, 0x1, 0x70bd25, 0x0, {0x7}, [@IFLA_IFNAME={0x14, 0x3, 'veth1_to_bridge\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 3m39.546058456s ago: executing program 1 (id=6094): syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfc, 0x15d, &(0x7f00000000c0)="$eJzs0c1qGlEUwPH/nbmOQhVbakG6qO5qKwU/aHdFnFKpi1ZoKZSuBDslAcUQIckykm0WQrYu8gFZhbyCJlmEBN3kKbJxneWEO6MM5BnOb3fOueecmXu/fp4XFJEv/d6pw2Dg/cv/bH1v/LqfTOomHwcSYX1j0zP18Py0DmtophoWQzDpqxT8X+96VqffNfGiHva7z5Z5eunVPjejGWoo49ur3GU8OGctV4a5V/CHrlclFsSvNbjpcF4JmB3BW3zcF9ayY3fVqpQD+PEwahZzLxXsjIvnZ7c/ZjfND+9r3n6lMXqXzNpF4BhXJa6t6ErmsyTQmlcrlU+JUtni450TLBihvyW34K8CbeZZBPMcsm/0b9hTcBDsWlyolPmJw4dWL/yOmhmwbedB5caddjZ20s48t7AL2lR9njBPFFSiGxFCCCGEEEIIIYQQQgghhBBCCCEijwEAAP//1upJrA==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 3m31.927840893s ago: executing program 35 (id=6094): syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfc, 0x15d, &(0x7f00000000c0)="$eJzs0c1qGlEUwPH/nbmOQhVbakG6qO5qKwU/aHdFnFKpi1ZoKZSuBDslAcUQIckykm0WQrYu8gFZhbyCJlmEBN3kKbJxneWEO6MM5BnOb3fOueecmXu/fp4XFJEv/d6pw2Dg/cv/bH1v/LqfTOomHwcSYX1j0zP18Py0DmtophoWQzDpqxT8X+96VqffNfGiHva7z5Z5eunVPjejGWoo49ur3GU8OGctV4a5V/CHrlclFsSvNbjpcF4JmB3BW3zcF9ayY3fVqpQD+PEwahZzLxXsjIvnZ7c/ZjfND+9r3n6lMXqXzNpF4BhXJa6t6ErmsyTQmlcrlU+JUtni450TLBihvyW34K8CbeZZBPMcsm/0b9hTcBDsWlyolPmJw4dWL/yOmhmwbedB5caddjZ20s48t7AL2lR9njBPFFSiGxFCCCGEEEIIIYQQQgghhBBCCCEijwEAAP//1upJrA==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 3m30.046223959s ago: executing program 2 (id=6101): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x0, @loopback}, @in={0x2, 0x4e20, @local}], 0x2c) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x48, &(0x7f0000000180)=[@in6={0xa, 0x4e20, 0x0, @loopback}, @in6={0xa, 0x4e20, 0x1, @private2, 0x740}, @in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f00000002c0)=0x10) 3m27.437926711s ago: executing program 2 (id=6107): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'geneve0\x00', 0x112}) r0 = epoll_create1(0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40088a01, &(0x7f0000000000)=0x100) 3m25.576078844s ago: executing program 2 (id=6110): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a000000010000004400000020"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000700), 0x1003, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000280)={0x0, &(0x7f0000000140)=""/83, &(0x7f0000000080), &(0x7f0000000080), 0x6, r0}, 0x38) 3m22.250323252s ago: executing program 2 (id=6115): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000003c0)='./file1\x00', 0x1c, &(0x7f0000000a00), 0x3, 0x455, &(0x7f0000001040)="$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") mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0) mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x28a5291, 0x0) 3m19.277902681s ago: executing program 2 (id=6120): r0 = syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2) readv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/58, 0x3a}], 0x1) write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000840)={0x2, 0x7}, 0x2) 3m16.984519092s ago: executing program 2 (id=6125): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x0, 0x400, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x8000) 3m9.821527408s ago: executing program 36 (id=6125): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x0, 0x400, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x8000) 11.738251371s ago: executing program 7 (id=6415): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f00000001c0)=0x8, 0x4) sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0x2, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0) 10.318164341s ago: executing program 6 (id=6416): syz_open_dev$dvb_dvr(&(0x7f0000000240), 0x0, 0x100) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r0, 0xffffffffffffffff, 0x0) 10.278961328s ago: executing program 7 (id=6417): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a43, 0x0) pread64(r0, 0x0, 0x0, 0x7) 9.344058656s ago: executing program 7 (id=6419): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086c256e0000000000000109022400010000000009041edefe030000000921000000012206000905810300"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f0000000180)={0x20, 0x0, 0xf0, {0xf0, 0x9, "7fe200cc4e9f7f6c931bdf23dc51b64379d0e81a923be79e147032e1ba02de1df5a3289f5f46e79f81000000010000000000bc58a001eaf9db4511b60984c2c215e5d64ead08cd5c63eb19000010b3dc1eeb6937dcf5201cbc4e7e1367f99bf0bcda0369d97bdb961786e9962a34ffb7d606000000ccf175756213f0e5e0715e4e63a10000755c9edca807b51c9fcc56769cf04e56b140f9d004313be85b1533445a3c2e070100000070b9c47e4f9d0c233d0b10bedacf253b97e3b9a0c544b774a2ab4844e2184e8eef6bbe14c4be71303df20d99240fb47a8d485fcd352739cff8e6ab625a46171a8fc3bfe91f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 9.230589351s ago: executing program 6 (id=6420): syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000bcb7f620e90f01d55023010203010902120001000000000904"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000080)={&(0x7f0000000040)=[{0xfffc, 0x1000, 0x4d, &(0x7f0000000180)="5ebfe7f7e98c6b827d48b4974cf4a8572934f1ee8b6f3cc214a5c98d56085b5e198bb25c4c000000006877454bcb75195ea582a5568966a732eab6ae3418b64dddd5d7f5a74356e0ffffff7ff0"}, {0xfffc, 0x2011, 0x0, 0x0}], 0x2}) 8.93827309s ago: executing program 4 (id=6421): io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280)=[@ioring_restriction_register_op], 0x1) r0 = syz_io_uring_setup(0x220, &(0x7f0000000140)={0x0, 0x4c5f, 0x1000, 0xfffffc04, 0x3e4}, &(0x7f00000001c0), &(0x7f0000000200)) io_uring_register$IORING_REGISTER_RESIZE_RINGS(r0, 0x25, 0x0, 0x1) 7.289079482s ago: executing program 4 (id=6422): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000780)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000381a7fe5000001000000300001800600040000000000060001000a0000000600020000000000040003"], 0x44}}, 0x0) 6.300403368s ago: executing program 6 (id=6423): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r0, &(0x7f00000004c0)="0434", 0x2, 0xd1, 0x0, 0x0) recvfrom$unix(r1, 0x0, 0x0, 0x10102, 0x0, 0x0) 6.170925897s ago: executing program 4 (id=6424): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0xa, &(0x7f0000000040)=0x1, 0x4) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000800)) 5.067639899s ago: executing program 7 (id=6425): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth0_to_bond\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x7c, 0x24, 0xf0b, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}, @TCA_STAB={0x4c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x2, 0x34, 0x2, 0x0, 0x1ff, 0xf1a, 0x2}}, {0x8, 0x2, [0x6, 0x0]}}, {{0x1c, 0x1, {0x9, 0xd, 0x2, 0x0, 0x0, 0x240, 0x8, 0x1}}, {0x47, 0x2, [0x2e7]}}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x40810}, 0x24040040) 4.406296278s ago: executing program 4 (id=6426): capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x2, 0xe, 0x13e, 0x89, 0xffffffff, 0x2}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20000000}, [@call={0x85, 0x0, 0x0, 0x7d}, @printk={@lx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 3.697570298s ago: executing program 6 (id=6427): r0 = syz_io_uring_setup(0xd79, &(0x7f0000000480)={0x0, 0x48b0, 0x10100}, &(0x7f0000001500)=0x0, &(0x7f0000003580)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_OPENAT2={0x1c, 0xb, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x2}, 0x0, 0x44}) io_uring_enter(r0, 0x64f7, 0x32aa, 0xc, 0x0, 0x0) 2.824653638s ago: executing program 7 (id=6428): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@newqdisc={0x154, 0x24, 0x3fe3aa0262d8c583, 0x70bd2c, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0x6, 0x9}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x124, 0x2, [@TCA_CHOKE_MAX_P={0x8, 0x3, 0x5}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x8, 0x4, 0x1, 0x3, 0x17, 0x10, 0x7}}]}}]}, 0x154}, 0x1, 0x0, 0x0, 0x2}, 0x0) 2.241801664s ago: executing program 4 (id=6429): setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000000)={{{@in=@remote, @in=@empty, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x32}, {0x0, 0x6}, {0xb, 0x0, 0xf2be, 0x528a43fe}}, {{}, 0x70a0eb7a598a96fa, @in6=@private1, 0x0, 0x1}}, 0xe8) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x48, &(0x7f0000000000)=ANY=[], 0x8) 1.720875263s ago: executing program 6 (id=6430): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x8080, &(0x7f0000000140)={0xa, 0x4e23, 0x3, @local, 0x2}, 0x1c) 569.397768ms ago: executing program 7 (id=6431): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) 204.080464ms ago: executing program 4 (id=6432): syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040), 0x1, 0xbac, &(0x7f00000017c0)="$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") mkdir(&(0x7f0000000080)='./bus\x00', 0x4) rmdir(&(0x7f0000000100)='./bus\x00') 0s ago: executing program 6 (id=6433): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x800802, &(0x7f0000000100)={[{@dmask={'dmask', 0x3d, 0x7}}, {@iocharset={'iocharset', 0x3d, 'cp857'}}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@errors_continue}, {@umask={'umask', 0x3d, 0x2}}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@namecase}, {@sys_tz}, {@fmask={'fmask', 0x3d, 0x7}}, {@discard}]}, 0x1, 0x152e, &(0x7f0000000380)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): 16 bytes leftover after parsing attributes in process `syz.7.5477'. [ 1457.030619][T23631] vim2m vim2m.0: vidioc_s_fmt queue busy [ 1457.474682][T23640] loop7: detected capacity change from 0 to 256 [ 1457.882366][T23640] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x246f1341, utbl_chksum : 0xe619d30d) [ 1458.300704][ T5979] udevd[5979]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 1458.313490][T16520] udevd[16520]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 1458.869647][T16520] udevd[16520]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 1458.880535][ T6390] udevd[6390]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 1460.102773][T20490] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 1460.322873][T20490] usb 3-1: Using ep0 maxpacket: 16 [ 1460.372221][T20490] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1460.439664][T20490] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1460.494695][T20490] usb 3-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00 [ 1460.546295][T20490] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1460.629634][T20490] usb 3-1: config 0 descriptor?? [ 1461.382751][T20490] razer 0003:1532:011B.001E: hidraw0: USB HID v0.00 Device [HID 1532:011b] on usb-dummy_hcd.2-1/input0 [ 1461.538336][T20490] usb 3-1: USB disconnect, device number 31 [ 1461.577853][T23691] loop1: detected capacity change from 0 to 64 [ 1461.701015][T23691] Trying to free block not in datazone [ 1461.716243][T23691] Trying to free block not in datazone [ 1461.913775][T23691] Trying to free block not in datazone [ 1462.899861][T23714] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5495'. [ 1463.447891][T23709] fido_id[23709]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 1464.476920][T20490] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 1464.709999][T20490] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1464.766258][T20490] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1464.823330][T20490] usb 3-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 1464.890717][T20490] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1465.005048][T20490] usb 3-1: config 0 descriptor?? [ 1465.791728][T20490] hid-led 0003:27B8:01ED.001F: probe with driver hid-led failed with error -71 [ 1465.931964][T20490] usb 3-1: USB disconnect, device number 32 [ 1465.948345][T23752] loop4: detected capacity change from 0 to 2048 [ 1466.064299][T23752] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1466.097865][T23752] NILFS (loop4): mounting unchecked fs [ 1466.527949][T23752] NILFS (loop4): recovery complete [ 1466.648976][T23777] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1467.103072][T23782] loop1: detected capacity change from 0 to 256 [ 1467.539095][T23782] FAT-fs (loop1): Directory bread(block 64) failed [ 1467.617232][T23782] FAT-fs (loop1): Directory bread(block 65) failed [ 1467.651956][T23782] FAT-fs (loop1): Directory bread(block 66) failed [ 1467.658828][T23782] FAT-fs (loop1): Directory bread(block 67) failed [ 1467.722391][T23782] FAT-fs (loop1): Directory bread(block 68) failed [ 1467.783752][T23782] FAT-fs (loop1): Directory bread(block 69) failed [ 1467.790763][T23782] FAT-fs (loop1): Directory bread(block 70) failed [ 1467.861859][T23782] FAT-fs (loop1): Directory bread(block 71) failed [ 1467.902875][T23782] FAT-fs (loop1): Directory bread(block 72) failed [ 1467.942217][T23782] FAT-fs (loop1): Directory bread(block 73) failed [ 1476.264506][T23911] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5542'. [ 1477.290600][T23928] loop7: detected capacity change from 0 to 256 [ 1477.415136][T23931] loop1: detected capacity change from 0 to 64 [ 1477.700153][T23921] loop6: detected capacity change from 0 to 4096 [ 1478.098140][T23939] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1481.699502][T23987] [U] „ [ 1481.705944][ T29] audit: type=1326 audit(2000000618.430:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23984 comm="syz.6.5562" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f591719c799 code=0x0 [ 1481.783579][T23990] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5564'. [ 1483.675869][T18106] usb 7-1: new full-speed USB device number 18 using dummy_hcd [ 1483.950658][T18106] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1484.045584][T18106] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1484.136884][T18106] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 1484.221839][T18106] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1484.329339][T18106] usb 7-1: config 0 descriptor?? [ 1484.343582][T24028] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5571'. [ 1484.594905][T18106] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 1484.607082][T24027] delete_channel: no stack [ 1484.700847][T18106] dvb-usb: bulk message failed: -22 (3/0) [ 1484.787336][T18106] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 1484.854515][T18106] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 1484.942654][T18106] usb 7-1: media controller created [ 1485.005273][T18106] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1485.231370][T18106] dvb-usb: bulk message failed: -22 (6/0) [ 1485.304830][T18106] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 1485.390015][T18106] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb7/7-1/input/input23 [ 1485.571381][T18106] dvb-usb: schedule remote query interval to 150 msecs. [ 1485.578799][T18106] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 1485.734783][T19444] dvb-usb: bulk message failed: -22 (1/0) [ 1485.765074][T19444] dvb-usb: error while querying for an remote control event. [ 1485.806376][T18106] usb 7-1: USB disconnect, device number 18 [ 1486.318137][T18106] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 1487.627102][ T29] audit: type=1326 audit(2000000624.330:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24096 comm="syz.1.5584" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbb43f9c799 code=0x0 [ 1489.603390][T24123] loop6: detected capacity change from 0 to 1024 [ 1489.665850][T24123] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1489.855466][T24123] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 1489.912726][T24123] System zones: 0-1, 3-36 [ 1490.066544][T24123] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1490.653370][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1490.812949][T20490] usb 2-1: new full-speed USB device number 30 using dummy_hcd [ 1491.102457][T20490] usb 2-1: config 0 has an invalid interface number: 32 but max is 0 [ 1491.140790][T20490] usb 2-1: config 0 has no interface number 0 [ 1491.191267][T20490] usb 2-1: config 0 interface 32 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1491.285063][T20490] usb 2-1: config 0 interface 32 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1491.338382][T20490] usb 2-1: config 0 interface 32 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1491.444256][T20490] usb 2-1: config 0 interface 32 has no altsetting 0 [ 1491.451304][T20490] usb 2-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00 [ 1491.572057][T20490] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1491.630839][T20490] usb 2-1: config 0 descriptor?? [ 1492.345792][T20490] uclogic 0003:145F:0212.0020: interface is invalid, ignoring [ 1492.497588][T18106] usb 2-1: USB disconnect, device number 30 [ 1492.830985][T24189] loop6: detected capacity change from 0 to 128 [ 1493.307045][T18106] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 1493.605126][T18106] usb 5-1: config 0 has no interfaces? [ 1493.611102][T18106] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb [ 1493.731887][T18106] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1493.806205][T18106] usb 5-1: config 0 descriptor?? [ 1493.957398][T24210] loop1: detected capacity change from 0 to 256 [ 1494.325199][T20490] usb 5-1: USB disconnect, device number 27 [ 1495.180680][T24236] loop6: detected capacity change from 0 to 164 [ 1495.331153][T24236] rock: directory entry would overflow storage [ 1495.380362][T24236] rock: sig=0x66, size=4, remaining=3 [ 1495.611073][T24236] rock: directory entry would overflow storage [ 1495.652111][T24236] rock: sig=0x66, size=4, remaining=3 [ 1496.866541][T24261] loop6: detected capacity change from 0 to 16 [ 1497.015032][T24261] erofs (device loop6): mounted with root inode @ nid 36. [ 1497.186703][ T29] audit: type=1800 audit(2000000633.870:264): pid=24261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5613" name="file1" dev="loop6" ino=86 res=0 errno=0 [ 1498.148266][T24287] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 1499.238731][T24302] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5624'. [ 1499.577653][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1499.585884][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1500.233253][T24318] loop2: detected capacity change from 0 to 64 [ 1500.458468][T24325] syz.2.5627: attempt to access beyond end of device [ 1500.458468][T24325] loop2: rw=8388608, sector=1024, nr_sectors = 2 limit=64 [ 1500.607752][T24325] Buffer I/O error on dev loop2, logical block 512, async page read [ 1500.663034][T24325] syz.2.5627: attempt to access beyond end of device [ 1500.663034][T24325] loop2: rw=8388608, sector=113152, nr_sectors = 2 limit=64 [ 1500.752130][T24325] Buffer I/O error on dev loop2, logical block 56576, async page read [ 1502.416992][T24338] loop7: detected capacity change from 0 to 4096 [ 1502.603157][T24338] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1503.929999][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1504.137393][T24378] loop1: detected capacity change from 0 to 256 [ 1504.523212][T24378] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1504.872431][T24378] exFAT-fs (loop1): start_clu is invalid cluster(0xffffffff) [ 1505.416080][T18106] usb 5-1: new full-speed USB device number 28 using dummy_hcd [ 1505.709182][T18106] usb 5-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1505.826560][T18106] usb 5-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1505.895512][T18106] usb 5-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1506.098377][T18106] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1506.201789][T18106] usb 5-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00 [ 1506.359001][T18106] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1506.485185][T18106] usb 5-1: config 0 descriptor?? [ 1506.563653][T24406] loop7: detected capacity change from 0 to 512 [ 1506.768574][T24406] EXT4-fs (loop7): 1 orphan inode deleted [ 1506.789332][T24406] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1507.324952][T18106] holtek 0003:1241:5015.0021: invalid report_count 1684669245 [ 1507.379422][T24417] loop2: detected capacity change from 0 to 1024 [ 1507.472698][T18106] holtek 0003:1241:5015.0021: item 0 4 1 9 parsing failed [ 1507.610707][T18106] holtek 0003:1241:5015.0021: parse failed [ 1507.671158][T18106] holtek 0003:1241:5015.0021: probe with driver holtek failed with error -22 [ 1507.765017][T24421] gretap1: entered promiscuous mode [ 1507.784506][T24417] hfsplus: bad catalog entry type [ 1507.906244][T18106] usb 5-1: USB disconnect, device number 28 [ 1507.916915][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1508.610101][T19210] hfsplus: b-tree write err: -5, ino 25 [ 1508.750561][T19210] hfsplus: b-tree write err: -5, ino 4 [ 1508.812245][T19210] hfsplus: b-tree write err: -5, ino 2 [ 1510.384688][T24448] loop1: detected capacity change from 0 to 32768 [ 1510.895853][T24459] loop6: detected capacity change from 0 to 1024 [ 1511.063294][T24463] hugetlbfs: Bad value '¶' for mount option 'size' [ 1511.063294][T24463] [ 1511.175299][T24459] hfsplus: detected inconsistent attributes file, running fsck.hfsplus is recommended. [ 1513.897443][T24488] loop2: detected capacity change from 0 to 512 [ 1515.581193][T24509] loop2: detected capacity change from 0 to 64 [ 1516.590665][T24523] ALSA: seq fatal error: cannot create timer (-22) [ 1517.309230][T24532] loop4: detected capacity change from 0 to 256 [ 1517.417608][T24520] loop1: detected capacity change from 0 to 4096 [ 1517.528745][T24532] exfat: Deprecated parameter 'namecase' [ 1517.657022][T24532] exfat: Deprecated parameter 'utf8' [ 1517.874826][T24545] loop2: detected capacity change from 0 to 128 [ 1517.886416][T18106] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 1518.004501][T24532] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1518.075037][T18106] usb 7-1: Using ep0 maxpacket: 32 [ 1518.083377][T24545] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1518.091116][T18106] usb 7-1: config 0 has an invalid interface number: 119 but max is 0 [ 1518.124514][T18106] usb 7-1: config 0 has no interface number 0 [ 1518.130455][T24544] loop7: detected capacity change from 0 to 2048 [ 1518.130940][T18106] usb 7-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1518.205281][T18106] usb 7-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 1518.220447][T18106] usb 7-1: config 0 interface 119 altsetting 0 endpoint 0x83 has an invalid bInterval 243, changing to 11 [ 1518.240619][T18106] usb 7-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid maxpacket 51074, setting to 1024 [ 1518.300700][T24520] ntfs3(loop1): failed to convert "0080" to macromanian [ 1518.314895][T24545] ext4 filesystem being mounted at /1160/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1518.331892][T24544] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1518.362869][T18106] usb 7-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 1518.380642][T24544] NILFS (loop7): mounting unchecked fs [ 1518.416878][T24520] ntfs3(loop1): failed to convert name for inode 1e. [ 1518.512500][T24520] ntfs3(loop1): ino=1f, mi_enum_attr [ 1518.518328][T24520] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1518.554325][T18106] usb 7-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 1518.596221][T18106] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1518.614635][T18106] usb 7-1: Product: syz [ 1518.619781][T18106] usb 7-1: Manufacturer: syz [ 1518.622725][T24544] NILFS (loop7): recovery complete [ 1518.628446][T18106] usb 7-1: SerialNumber: syz [ 1518.645331][T18106] usb 7-1: config 0 descriptor?? [ 1518.652688][T24545] EXT4-fs warning (device loop2): verify_group_input:137: Cannot add at group 5 (only 1 groups) [ 1518.697106][T24538] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1518.729384][T24555] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1518.885121][T18106] input: bcm5974 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.119/input/input24 [ 1519.451888][T18106] usb 7-1: USB disconnect, device number 19 [ 1519.467846][ C1] bcm5974 7-1:0.119: trackpad urb failed: -19 [ 1519.616533][ T5773] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1520.534824][T24585] genirq: Flags mismatch irq 31. 00200000 (comedi_parport) vs. 00200000 (virtio1-input.0) [ 1520.671938][T24586] program syz.1.5677 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1520.988241][T24591] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5678'. [ 1521.527062][T24594] loop6: detected capacity change from 0 to 512 [ 1521.667903][T24594] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 1521.806295][T24594] EXT4-fs (loop6): orphan cleanup on readonly fs [ 1521.915543][T24594] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.5681: bg 0: block 16: invalid block bitmap [ 1522.016076][T24594] loop6: lost filesystem error report for type 5 error -117 [ 1522.021641][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1522.036550][ C1] EXT4-fs (loop6): initial error at time 2000000658: ext4_validate_block_bitmap:432 [ 1522.046424][ C1] EXT4-fs (loop6): last error at time 2000000658: ext4_validate_block_bitmap:432 [ 1522.066590][T24594] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 1522.101835][T24594] loop6: lost filesystem error report for type 5 error -117 [ 1522.138536][T24594] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #13: comm syz.6.5681: attempt to clear invalid blocks 1669132790 len 1 [ 1522.229663][T24607] loop2: detected capacity change from 0 to 256 [ 1522.255343][T24594] loop6: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1522.260193][T24607] exfat: Deprecated parameter 'utf8' [ 1522.306033][T24594] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.5681: invalid indirect mapped block 4294967295 (level 1) [ 1522.401102][T24594] loop6: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1522.431240][T24594] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.5681: invalid indirect mapped block 4294967295 (level 2) [ 1522.475725][T24594] loop6: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1522.485579][T24594] EXT4-fs (loop6): 1 truncate cleaned up [ 1522.554647][T24594] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1522.629004][T24607] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 1523.076327][T24615] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5687'. [ 1523.132233][T24615] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5687'. [ 1523.168097][T24615] netlink: 'syz.1.5687': attribute type 14 has an invalid length. [ 1523.187956][T24615] netlink: 'syz.1.5687': attribute type 13 has an invalid length. [ 1523.261195][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1525.125742][T24646] tipc: Invalid UDP bearer configuration [ 1525.125975][T24646] tipc: Enabling of bearer rejected, failed to enable media [ 1527.120869][T24677] loop7: detected capacity change from 0 to 512 [ 1527.394723][T24670] loop4: detected capacity change from 0 to 32768 [ 1527.514654][T24670] (syz.4.5701,24670,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1527.555448][T24670] (syz.4.5701,24670,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1527.571573][T24670] (syz.4.5701,24670,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x656d756e, computed 0x6ffed392. Applying ECC. [ 1527.585762][T24670] (syz.4.5701,24670,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x656d756e, computed 0xb3a26753 [ 1527.599100][T24670] (syz.4.5701,24670,0):ocfs2_validate_dir_block:465 ERROR: Checksum failed for dinode 288 [ 1527.614719][T24670] (syz.4.5701,24670,0):ocfs2_read_virt_blocks:1037 ERROR: status = -5 [ 1527.625220][T24670] (syz.4.5701,24670,0):ocfs2_read_dir_block:524 ERROR: status = -5 [ 1527.634786][T24670] (syz.4.5701,24670,0):ocfs2_find_entry_el:741 ERROR: reading directory 18, offset 0 [ 1527.647039][T24670] (syz.4.5701,24670,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 1527.656566][T24670] (syz.4.5701,24670,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? [ 1527.656780][T24670] (syz.4.5701,24670,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 1527.678982][T24670] (syz.4.5701,24670,0):ocfs2_initialize_super:2198 ERROR: status = -22 [ 1527.688542][T24670] (syz.4.5701,24670,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 1528.569939][T24692] loop1: detected capacity change from 0 to 1024 [ 1528.789516][T24692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1528.896242][T24704] netlink: 92 bytes leftover after parsing attributes in process `syz.7.5708'. [ 1529.136540][T24705] loop4: detected capacity change from 0 to 128 [ 1529.278445][T24705] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1529.400956][T24705] hpfs: filesystem error: improperly stopped [ 1529.431738][T24705] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1529.477008][T24705] hpfs: You really don't want any checks? You are crazy... [ 1529.537573][T24712] loop2: detected capacity change from 0 to 8 [ 1529.572267][T24705] hpfs: hpfs_map_sector(): read error [ 1529.600621][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1529.610474][T24705] hpfs: code page support is disabled [ 1529.646534][T24705] hpfs: hpfs_map_4sectors(): unaligned read [ 1529.721299][T24705] hpfs: hpfs_map_4sectors(): unaligned read [ 1529.748115][T24705] hpfs: filesystem error: unable to find root dir [ 1529.813882][T24712] SQUASHFS error: Unable to read inode 0xa7 [ 1535.580508][T24773] loop4: detected capacity change from 0 to 32768 [ 1535.593148][T20490] IPVS: starting estimator thread 0... [ 1535.632860][T24773] (syz.4.5727,24773,0):ocfs2_read_blocks_sync:112 ERROR: status = -12 [ 1535.641768][T24773] (syz.4.5727,24773,0):ocfs2_read_locked_inode:599 ERROR: status = -12 [ 1535.650879][T24773] (syz.4.5727,24773,0):_ocfs2_get_system_file_inode:144 ERROR: status = -12 [ 1535.661466][T24773] (syz.4.5727,24773,0):ocfs2_init_local_system_inodes:496 ERROR: status=-22, sysfile=7, slot=0 [ 1535.672420][T24773] (syz.4.5727,24773,0):ocfs2_init_local_system_inodes:505 ERROR: status = -22 [ 1535.681925][T24773] (syz.4.5727,24773,0):ocfs2_mount_volume:1758 ERROR: status = -22 [ 1535.692112][T24773] (syz.4.5727,24773,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 1535.917688][T24774] IPVS: using max 192 ests per chain, 9600 per kthread [ 1536.831178][T24785] usb usb7: usbfs: interface 0 claimed by hub while 'syz.6.5729' resets device [ 1537.210504][T24789] loop1: detected capacity change from 0 to 256 [ 1537.423328][T24789] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1537.999420][T24794] loop7: detected capacity change from 0 to 1024 [ 1538.207902][T24794] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 1538.344648][T24794] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 1538.460606][T24794] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1538.632418][T24794] EXT4-fs error (device loop7): ext4_get_journal_inode:5863: inode #5: comm syz.7.5732: unexpected bad inode w/o EXT4_IGET_BAD [ 1538.779500][T24794] loop7: lost file I/O error report for ino 5 type 5 pos 0x0 len 0x0 error -117 [ 1538.781561][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 1538.798117][ C0] EXT4-fs (loop7): initial error at time 2000000675: ext4_get_journal_inode:5863: inode 5 [ 1538.808756][ C0] EXT4-fs (loop7): last error at time 2000000675: ext4_get_journal_inode:5863: inode 5 [ 1538.824254][T24794] EXT4-fs (loop7): no journal found [ 1538.829886][T24794] EXT4-fs (loop7): can't get journal size [ 1538.938373][T24794] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1539.186830][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1541.709814][T24830] loop1: detected capacity change from 0 to 4096 [ 1542.037802][T24844] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1544.087839][T24869] loop6: detected capacity change from 0 to 256 [ 1544.145933][T24869] exfat: Deprecated parameter 'utf8' [ 1544.229555][T24869] exfat: Deprecated parameter 'namecase' [ 1544.611965][T24869] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbcde3a0f, utbl_chksum : 0xe619d30d) [ 1544.982843][T24869] exFAT-fs (loop6): error, in sector 160, dentry 7 should be unused, but 0xc0 [ 1545.092939][T24869] exFAT-fs (loop6): Filesystem has been set read-only [ 1546.706234][T24894] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1547.266826][T24901] loop7: detected capacity change from 0 to 1764 [ 1547.879627][T24907] loop1: detected capacity change from 0 to 2048 [ 1547.978236][T24907] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1548.277245][T24907] syz.1.5762: attempt to access beyond end of device [ 1548.277245][T24907] loop1: rw=8912896, sector=33554430, nr_sectors = 2 limit=2048 [ 1548.300997][T24918] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1549.589749][T20490] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 1549.833807][T20490] usb 7-1: Using ep0 maxpacket: 8 [ 1549.955432][T20490] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1550.031231][T20490] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1550.100896][T20490] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1550.184979][T20490] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1551.170912][T20490] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1551.181858][T20490] usb 7-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1551.191271][T20490] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1551.224272][T20490] usb 7-1: config 0 descriptor?? [ 1551.234513][T24928] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1551.621278][T24940] loop4: detected capacity change from 0 to 32768 [ 1551.634057][T24940] workqueue: name exceeds WQ_NAME_LEN. Truncating to: gfs2-glock/__Š°"_½z#²˱1Ä [ 1551.703437][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9: Trying to join cluster "lock_nolock", "__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9" [ 1551.719786][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9: Now mounting FS (format 0)... [ 1551.756298][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9.0: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119 [ 1551.781117][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9.0: G: s:SH n:2/13 f:aqo t:SH d:EX/0 a:0 v:0 r:2 m:20 p:6 [ 1551.795538][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9.0: H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510 [ 1551.812801][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9.0: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0 [ 1551.825317][T24940] CPU: 0 UID: 0 PID: 24940 Comm: syz.4.5769 Tainted: G W L syzkaller #0 PREEMPT(full) [ 1551.825545][T24940] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 1551.825615][T24940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1551.825715][T24940] Call Trace: [ 1551.825776][T24940] [ 1551.825841][T24940] __dump_stack+0x26/0x30 [ 1551.826038][T24940] dump_stack_lvl+0x14c/0x1c0 [ 1551.826247][T24940] dump_stack+0x1e/0x25 [ 1551.826425][T24940] gfs2_withdraw+0xd5/0x270 [ 1551.826646][T24940] gfs2_consist_inode_i+0x1a9/0x240 [ 1551.826890][T24940] gfs2_jdesc_check+0x170/0x440 [ 1551.827091][T24940] init_journal+0x1380/0x3970 [ 1551.827360][T24940] ? init_inodes+0x124/0x510 [ 1551.827580][T24940] ? init_inodes+0x124/0x510 [ 1551.827793][T24940] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1551.828098][T24940] init_inodes+0x124/0x510 [ 1551.828331][T24940] gfs2_fill_super+0x3518/0x3ff0 [ 1551.828565][T24940] ? init_locking+0xed/0x500 [ 1551.828835][T24940] get_tree_bdev_flags+0x6e6/0x920 [ 1551.829066][T24940] ? __pfx_gfs2_fill_super+0x10/0x10 [ 1551.829290][T24940] ? __pfx_gfs2_fill_super+0x10/0x10 [ 1551.829513][T24940] ? __pfx_gfs2_get_tree+0x10/0x10 [ 1551.829748][T24940] get_tree_bdev+0x38/0x50 [ 1551.829957][T24940] gfs2_get_tree+0x57/0x350 [ 1551.830196][T24940] ? __pfx_gfs2_get_tree+0x10/0x10 [ 1551.830422][T24940] vfs_get_tree+0xb3/0x5d0 [ 1551.830667][T24940] do_new_mount+0x885/0x1dd0 [ 1551.830901][T24940] ? apparmor_capable+0x2a2/0x380 [ 1551.831132][T24940] ? kmsan_get_metadata+0xf1/0x160 [ 1551.831373][T24940] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1551.831633][T24940] path_mount+0x7a2/0x20b0 [ 1551.831872][T24940] ? user_path_at+0x1fc/0x330 [ 1551.832084][T24940] __se_sys_mount+0x704/0x7f0 [ 1551.832250][T24940] ? kmsan_get_metadata+0xf1/0x160 [ 1551.832508][T24940] __x64_sys_mount+0xe4/0x150 [ 1551.832688][T24940] x64_sys_call+0x39f0/0x3ea0 [ 1551.832896][T24940] do_syscall_64+0x134/0xf80 [ 1551.833090][T24940] ? clear_bhb_loop+0x50/0xa0 [ 1551.833272][T24940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1551.833450][T24940] RIP: 0033:0x7f2817d9da0a [ 1551.833574][T24940] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1551.833725][T24940] RSP: 002b:00007f2818befe58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1551.833882][T24940] RAX: ffffffffffffffda RBX: 00007f2818befee0 RCX: 00007f2817d9da0a [ 1551.834006][T24940] RDX: 0000200000000000 RSI: 0000200000000040 RDI: 00007f2818befea0 [ 1551.834133][T24940] RBP: 0000200000000000 R08: 00007f2818befee0 R09: 000000000000881d [ 1551.834248][T24940] R10: 000000000000881d R11: 0000000000000246 R12: 0000200000000040 [ 1551.834357][T24940] R13: 00007f2818befea0 R14: 000000000001272b R15: 00002000000001c0 [ 1551.834518][T24940] [ 1552.125191][T24940] gfs2: fsid=__Š°"_½z#²˱1Ä ¢ “I¡3ØÆÆåwÕÊ‚X9.0: my journal (0) is bad: -5 [ 1554.728311][ T49] Bluetooth: hci5: Opcode 0x0c03 failed: -71 [ 1554.739037][T20490] usb 7-1: USB disconnect, device number 20 [ 1555.928632][T24983] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5773'. [ 1557.958850][T25010] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5782'. [ 1558.813586][T25016] ucma_write: process 1314 (syz.6.5784) changed security contexts after opening file descriptor, this is not allowed. [ 1558.970757][T25019] sp0: Synchronizing with TNC [ 1559.105995][T25017] [U] è [ 1560.016962][T25042] loop6: detected capacity change from 0 to 256 [ 1560.092514][T20490] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 1560.435892][T20490] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1560.490569][T20490] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1560.576847][T20490] usb 2-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 1560.680575][T20490] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1560.811759][T20490] usb 2-1: config 0 descriptor?? [ 1560.874681][T25042] FAT-fs (loop6): Directory bread(block 64) failed [ 1560.970351][T25042] FAT-fs (loop6): Directory bread(block 65) failed [ 1561.017857][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1561.018235][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1561.143544][T25042] FAT-fs (loop6): Directory bread(block 66) failed [ 1561.244209][T25042] FAT-fs (loop6): Directory bread(block 67) failed [ 1561.280558][T25042] FAT-fs (loop6): Directory bread(block 68) failed [ 1561.351785][T25042] FAT-fs (loop6): Directory bread(block 69) failed [ 1561.408044][T25042] FAT-fs (loop6): Directory bread(block 70) failed [ 1561.544342][T25042] FAT-fs (loop6): Directory bread(block 71) failed [ 1561.693376][T25042] FAT-fs (loop6): Directory bread(block 72) failed [ 1561.736838][T20490] Bluetooth: Can't get version to change to load ram patch err [ 1561.771043][T25042] FAT-fs (loop6): Directory bread(block 73) failed [ 1561.841144][T20490] Bluetooth: Loading sysconfig file failed [ 1561.908451][T20490] ath3k 2-1:0.0: probe with driver ath3k failed with error -71 [ 1562.067338][T20490] usb 2-1: USB disconnect, device number 31 [ 1562.621313][T25072] loop4: detected capacity change from 0 to 128 [ 1562.988506][T25072] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 1563.062316][T25072] System zones: 1-3, 19-19, 35-36 [ 1563.370375][T25072] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 1563.540292][T25072] ext4 filesystem being mounted at /1109/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1564.732895][T20490] IPVS: starting estimator thread 0... [ 1564.748036][T25090] IPVS: sh: TCP 172.20.20.170:0 - no destination available [ 1564.846595][ T5776] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1564.900010][T25094] IPVS: using max 192 ests per chain, 9600 per kthread [ 1566.517035][T25115] loop1: detected capacity change from 0 to 256 [ 1566.866212][T25115] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3322664b, utbl_chksum : 0xe619d30d) [ 1569.039660][T25136] loop2: detected capacity change from 0 to 1024 [ 1570.173838][T25147] bond0: option arp_all_targets: invalid value (8) [ 1570.891315][ T1125] hfsplus: b-tree write err: -5, ino 25 [ 1570.981160][ T1125] hfsplus: b-tree write err: -5, ino 4 [ 1571.061135][ T1125] hfsplus: b-tree write err: -5, ino 2 [ 1571.218857][ T1125] hfsplus: b-tree write err: -5, ino 20 [ 1574.587377][T25174] loop7: detected capacity change from 0 to 1024 [ 1576.120209][ T104] hfsplus: b-tree write err: -5, ino 25 [ 1576.143710][ T29] audit: type=1326 audit(2000000712.870:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25186 comm="syz.6.5826" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f591719c799 code=0x0 [ 1576.198693][ T104] hfsplus: b-tree write err: -5, ino 4 [ 1576.241985][ T104] hfsplus: b-tree write err: -5, ino 2 [ 1580.158410][T25227] loop6: detected capacity change from 0 to 256 [ 1581.257592][T25227] FAT-fs (loop6): Directory bread(block 64) failed [ 1581.388252][T25227] FAT-fs (loop6): Directory bread(block 65) failed [ 1581.568386][T25227] FAT-fs (loop6): Directory bread(block 66) failed [ 1581.632614][T25227] FAT-fs (loop6): Directory bread(block 67) failed [ 1581.680889][T25227] FAT-fs (loop6): Directory bread(block 68) failed [ 1581.774711][T25227] FAT-fs (loop6): Directory bread(block 69) failed [ 1581.809098][T25227] FAT-fs (loop6): Directory bread(block 70) failed [ 1581.830312][T25227] FAT-fs (loop6): Directory bread(block 71) failed [ 1581.844489][T25227] FAT-fs (loop6): Directory bread(block 72) failed [ 1581.941153][T25227] FAT-fs (loop6): Directory bread(block 73) failed [ 1583.156257][T25242] loop7: detected capacity change from 0 to 4096 [ 1583.319719][T25242] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512). [ 1585.454110][T25275] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5847'. [ 1586.270468][ T49] Bluetooth: hci4: unexpected event for opcode 0x1408 [ 1586.431960][T25270] loop2: detected capacity change from 0 to 4096 [ 1586.862678][T25289] loop4: detected capacity change from 0 to 128 [ 1587.053547][T25289] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1587.162193][T25289] hpfs: filesystem error: improperly stopped [ 1587.287771][T25289] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1587.388119][T25289] hpfs: You really don't want any checks? You are crazy... [ 1587.495558][T25289] hpfs: Code page index out of array [ 1587.501046][T25289] hpfs: code page support is disabled [ 1587.584014][T25289] hpfs: hpfs_map_4sectors(): unaligned read [ 1587.590374][T25289] hpfs: hpfs_map_4sectors(): unaligned read [ 1587.690789][T25289] hpfs: filesystem error: unable to find root dir [ 1588.347360][T18707] Bluetooth: hci4: command 0x0406 tx timeout [ 1588.894532][T25299] loop6: detected capacity change from 0 to 1764 [ 1588.968829][T25305] loop7: detected capacity change from 0 to 512 [ 1589.191168][T25305] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002] [ 1589.280326][T25305] System zones: 1-12 [ 1589.312673][T25305] EXT4-fs error (device loop7): dx_probe:791: inode #2: comm syz.7.5856: Directory hole found for htree index block 0 [ 1589.332358][T25305] loop7: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 1589.352272][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 1589.368768][ C0] EXT4-fs (loop7): initial error at time 2000000726: dx_probe:791: inode 2 [ 1589.378053][ C0] EXT4-fs (loop7): last error at time 2000000726: dx_probe:791: inode 2 [ 1589.438616][T25305] EXT4-fs (loop7): Remounting filesystem read-only [ 1589.493253][T25305] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -117 [ 1589.602197][T25305] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -117 [ 1589.734668][T25305] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1589.755201][T25318] loop4: detected capacity change from 0 to 256 [ 1589.949748][T25318] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x4711949a, utbl_chksum : 0xe619d30d) [ 1590.041034][T25305] EXT4-fs: user quota file already specified [ 1590.426520][ T49] Bluetooth: hci4: command 0x0406 tx timeout [ 1590.763131][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1590.975364][T20490] usb 2-1: new high-speed USB device number 32 using dummy_hcd [ 1591.273959][T20490] usb 2-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33 [ 1591.360682][T20490] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1591.446038][T20490] usb 2-1: config 0 descriptor?? [ 1591.563997][T20490] gspca_main: sunplus-2.14.0 probing 055f:c420 [ 1592.367625][T20490] gspca_sunplus: reg_w_riv err -71 [ 1592.457784][T20490] sunplus 2-1:0.0: probe with driver sunplus failed with error -71 [ 1592.638369][T20490] usb 2-1: USB disconnect, device number 32 [ 1594.551770][T20490] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 1594.863390][T20490] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1594.997337][T20490] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1595.172091][T20490] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1595.283179][T20490] usb 7-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00 [ 1595.394394][T20490] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1595.575017][T20490] usb 7-1: config 0 descriptor?? [ 1596.285634][T25375] new mount options do not match the existing superblock, will be ignored [ 1596.484086][T25375] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 "" [ 1596.494352][T20490] wacom 0003:056A:0010.0022: Unknown device_type for 'HID 056a:0010'. Assuming pen. [ 1596.718295][T20490] wacom 0003:056A:0010.0022: hidraw0: USB HID v0.00 Device [HID 056a:0010] on usb-dummy_hcd.6-1/input0 [ 1596.927522][T20490] input: Wacom Graphire Pen as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:056A:0010.0022/input/input25 [ 1597.534599][T20490] usb 7-1: USB disconnect, device number 21 [ 1599.167124][T25413] loop1: detected capacity change from 0 to 512 [ 1599.181148][T25414] tipc: Enabling of bearer rejected, media not registered [ 1599.586548][T25413] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2808: inode #11: comm syz.1.5872: corrupted xattr block 95: invalid header [ 1599.760888][T25413] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1599.761604][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 1599.778732][ C0] EXT4-fs (loop1): initial error at time 2000000736: ext4_expand_extra_isize_ea:2808: inode 11 [ 1599.789884][ C0] EXT4-fs (loop1): last error at time 2000000736: ext4_expand_extra_isize_ea:2808: inode 11 [ 1599.869080][T25385] fido_id[25385]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory [ 1599.944278][T25413] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5872: bg 0: block 7: invalid block bitmap [ 1600.065443][T25413] loop1: lost filesystem error report for type 5 error -117 [ 1600.067215][T25413] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 1600.261030][T25413] loop1: lost filesystem error report for type 5 error -117 [ 1600.327867][T25413] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2970: inode #11: comm syz.1.5872: corrupted xattr block 95: invalid header [ 1600.512400][T25413] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1600.535593][T25413] EXT4-fs warning (device loop1): ext4_evict_inode:275: xattr delete (err -117) [ 1600.762408][T25413] EXT4-fs (loop1): 1 orphan inode deleted [ 1600.814962][T25413] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1601.074704][T25433] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5879'. [ 1601.833339][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1606.170616][T25485] loop1: detected capacity change from 0 to 128 [ 1606.911709][T20490] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 1607.102311][T20490] usb 5-1: Using ep0 maxpacket: 8 [ 1607.152328][T20490] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1607.252052][T20490] usb 5-1: too many endpoints for config 0 interface 0 altsetting 41: 36, using maximum allowed: 30 [ 1607.353907][T20490] usb 5-1: config 0 interface 0 altsetting 41 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1607.443410][T20490] usb 5-1: config 0 interface 0 altsetting 41 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1607.522686][T20490] usb 5-1: config 0 interface 0 altsetting 41 has 1 endpoint descriptor, different from the interface descriptor's value: 36 [ 1607.591287][T20490] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1607.682818][T20490] usb 5-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice=b5.00 [ 1607.803668][T20490] usb 5-1: New USB device strings: Mfr=43, Product=0, SerialNumber=0 [ 1607.852446][T20490] usb 5-1: Manufacturer: syz [ 1607.938352][T20490] usb 5-1: config 0 descriptor?? [ 1608.451013][T25507] loop1: detected capacity change from 0 to 512 [ 1608.530704][T25507] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1608.836476][T20490] itetech 0003:06CB:73F5.0023: hidraw0: USB HID v0.09 Device [syz] on usb-dummy_hcd.4-1/input0 [ 1608.975063][T25507] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5898: bg 0: block 384: padding at end of block bitmap is not set [ 1609.089253][T25507] loop1: lost filesystem error report for type 5 error -117 [ 1609.091609][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 1609.106190][ C1] EXT4-fs (loop1): initial error at time 2000000745: ext4_validate_block_bitmap:441 [ 1609.113868][T25523] loop2: detected capacity change from 0 to 164 [ 1609.116406][ C1] EXT4-fs (loop1): last error at time 2000000745: ext4_validate_block_bitmap:441 [ 1609.139517][T25507] EXT4-fs (loop1): Remounting filesystem read-only [ 1609.155737][T20490] usb 5-1: USB disconnect, device number 29 [ 1609.237033][T25507] EXT4-fs (loop1): 1 truncate cleaned up [ 1609.399970][T25507] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1610.435414][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1611.394469][T25541] loop7: detected capacity change from 0 to 4096 [ 1611.502165][T25541] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 1613.101108][T25571] loop1: detected capacity change from 0 to 2048 [ 1613.490524][T25571] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1614.223285][T25585] bridge0: entered promiscuous mode [ 1614.662474][T25590] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5914'. [ 1615.595354][T25602] loop4: detected capacity change from 0 to 128 [ 1615.645906][T25604] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5917'. [ 1615.742415][T25602] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1615.804370][T25602] hpfs: filesystem error: improperly stopped [ 1615.822389][T25602] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1615.848334][T25602] hpfs: You really don't want any checks? You are crazy... [ 1615.946402][T25602] hpfs: hpfs_map_sector(): read error [ 1616.014156][T25602] hpfs: code page support is disabled [ 1616.080749][T25602] hpfs: hpfs_map_4sectors(): unaligned read [ 1616.229028][T25602] hpfs: hpfs_map_4sectors(): unaligned read [ 1616.340550][T25602] hpfs: filesystem error: unable to find root dir [ 1617.501093][T25619] loop6: detected capacity change from 0 to 2048 [ 1617.921008][T25619] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1618.119437][T25632] loop4: detected capacity change from 0 to 512 [ 1618.660171][T25632] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5925: invalid indirect mapped block 256 (level 2) [ 1618.804862][T25632] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1618.811529][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1618.828567][ C0] EXT4-fs (loop4): initial error at time 2000000755: ext4_free_branches:1023: inode 11 [ 1618.839225][ C0] EXT4-fs (loop4): last error at time 2000000755: ext4_free_branches:1023: inode 11 [ 1619.000417][T25632] EXT4-fs (loop4): 2 truncates cleaned up [ 1619.104215][T25632] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1619.797404][ T29] audit: type=1800 audit(2000000756.490:266): pid=25632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5925" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 1620.432142][T25643] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 1621.076726][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1621.846316][T25652] loop2: detected capacity change from 0 to 512 [ 1622.072075][T25652] EXT4-fs: Ignoring removed oldalloc option [ 1622.358787][T25648] fido_id[25648]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 1622.448135][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1622.466411][T25652] EXT4-fs (loop2): 1 truncate cleaned up [ 1622.472938][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1622.608535][T25652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1624.113344][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1624.530786][T25669] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5933'. [ 1625.740376][T25676] loop7: detected capacity change from 0 to 2048 [ 1626.075889][T25683] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1630.031106][T25716] netlink: 16255 bytes leftover after parsing attributes in process `syz.7.5947'. [ 1630.585648][T25723] loop4: detected capacity change from 0 to 1024 [ 1631.639206][ T29] audit: type=1326 audit(2000000768.360:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25732 comm="syz.7.5954" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fefaf59c799 code=0x0 [ 1631.694513][ T56] hfsplus: b-tree write err: -5, ino 25 [ 1631.700864][ T56] hfsplus: b-tree write err: -5, ino 4 [ 1631.814624][ T56] hfsplus: b-tree write err: -5, ino 2 [ 1633.036841][T25740] loop4: detected capacity change from 0 to 2048 [ 1633.538857][T25744] loop1: detected capacity change from 0 to 2048 [ 1633.549040][T25740] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1633.808785][T25757] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1634.151861][T25744] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.' [ 1634.461625][T25744] Remounting filesystem read-only [ 1634.524739][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1634.894763][T25762] loop6: detected capacity change from 0 to 1024 [ 1635.350509][ T5779] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1635.941871][T25773] loop4: detected capacity change from 0 to 512 [ 1636.120575][T25773] EXT4-fs: Ignoring removed orlov option [ 1636.248393][T25773] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1636.458137][T25773] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 1636.584612][T25773] EXT4-fs error (device loop4): ext4_iget_extra_inode:5025: inode #15: comm syz.4.5962: corrupted in-inode xattr: e_value size too large [ 1636.770535][T25773] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1636.771540][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 1636.787694][ C1] EXT4-fs (loop4): initial error at time 2000000773: ext4_iget_extra_inode:5025: inode 15 [ 1636.798719][ C1] EXT4-fs (loop4): last error at time 2000000773: ext4_iget_extra_inode:5025: inode 15 [ 1636.857677][T25773] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5962: couldn't read orphan inode 15 (err -117) [ 1636.950608][T25773] loop4: lost filesystem error report for type 5 error -117 [ 1637.058819][T25786] loop2: detected capacity change from 0 to 1024 [ 1637.125630][T25773] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1637.694298][T25786] hfsplus: bad catalog entry type [ 1638.477948][T24960] hfsplus: b-tree write err: -5, ino 25 [ 1638.581034][T24960] hfsplus: b-tree write err: -5, ino 4 [ 1638.662975][T24960] hfsplus: b-tree write err: -5, ino 2 [ 1638.705851][T25798] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5969'. [ 1638.760239][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1640.220803][T19444] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 1640.628186][T19444] usb 5-1: config 0 has no interfaces? [ 1640.802168][T19444] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 1640.920461][T19444] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 1640.950163][T19444] usb 5-1: Manufacturer: syz [ 1641.003861][T19444] usb 5-1: config 0 descriptor?? [ 1641.538322][T19444] usb 5-1: USB disconnect, device number 30 [ 1641.820532][T25832] loop1: detected capacity change from 0 to 512 [ 1641.937984][T25832] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1642.163209][T25832] EXT4-fs (loop1): 1 truncate cleaned up [ 1642.262936][T25832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1642.600145][T25832] EXT4-fs error (device loop1): ext4_get_parent:1836: comm syz.1.5977: inode #2: comm syz.1.5977: iget: illegal inode # [ 1643.194412][T25852] loop6: detected capacity change from 0 to 256 [ 1643.603611][ T5779] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1645.838204][T25872] loop2: detected capacity change from 0 to 4096 [ 1646.071997][T25872] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1646.589709][T25891] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5989'. [ 1646.829125][T25872] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1646.952452][T25872] ntfs3(loop2): mft corrupted [ 1647.030802][T25872] ntfs3(loop2): Failed to load $Extend (-22). [ 1647.052100][T25872] ntfs3(loop2): Failed to initialize $Extend. [ 1647.442812][T25872] ntfs3(loop2): ino=1e, mi_enum_attr [ 1647.472361][T25872] ntfs3(loop2): ino=1e, mi_enum_attr [ 1647.619296][T25872] ntfs3(loop2): ino=1e, mi_enum_attr [ 1650.627086][T25923] xt_hashlimit: size too large, truncated to 1048576 [ 1654.142946][T20490] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 1654.393418][T20490] usb 5-1: Using ep0 maxpacket: 8 [ 1654.496987][T20490] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1654.602428][T20490] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1654.678060][T20490] usb 5-1: New USB device found, idVendor=061d, idProduct=c120, bcdDevice=e3.67 [ 1654.813768][T20490] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1654.922563][T20490] usb 5-1: config 0 descriptor?? [ 1655.260545][T19444] usb 5-1: USB disconnect, device number 31 [ 1655.882171][T20490] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 1655.950501][T25973] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6012'. [ 1656.143129][T20490] usb 7-1: config 0 has an invalid interface number: 50 but max is 0 [ 1656.221607][T20490] usb 7-1: config 0 has no interface number 0 [ 1656.308510][T20490] usb 7-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1656.491053][T20490] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc [ 1656.591303][T20490] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1656.679293][T20490] usb 7-1: Product: syz [ 1656.718866][T20490] usb 7-1: Manufacturer: syz [ 1656.801974][T20490] usb 7-1: SerialNumber: syz [ 1656.885495][T20490] usb 7-1: config 0 descriptor?? [ 1657.095860][T20490] yurex 7-1:0.50: USB YUREX device now attached to Yurex #0 [ 1657.165430][ C0] yurex 7-1:0.50: yurex_interrupt - overflow with length 8, actual length is 8 [ 1657.392175][T20490] usb 7-1: USB disconnect, device number 22 [ 1657.520374][T20490] yurex 7-1:0.50: USB YUREX #0 now disconnected [ 1657.583199][T25987] loop4: detected capacity change from 0 to 8 [ 1657.881135][T25987] SQUASHFS error: Unable to read inode 0x0 [ 1658.971221][T26004] loop2: detected capacity change from 0 to 64 [ 1659.029731][T26005] loop1: detected capacity change from 0 to 256 [ 1659.169186][T26005] exfat: Deprecated parameter 'utf8' [ 1659.257524][T26005] exfat: Deprecated parameter 'namecase' [ 1659.575903][T26005] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xf974f890, utbl_chksum : 0xe619d30d) [ 1663.872007][T20490] usb 2-1: new high-speed USB device number 33 using dummy_hcd [ 1664.111910][T20490] usb 2-1: Using ep0 maxpacket: 16 [ 1664.229054][T20490] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1664.311635][T20490] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1664.461276][T20490] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1664.592476][T20490] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1664.654476][T20490] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1664.777157][T20490] usb 2-1: config 0 descriptor?? [ 1665.486527][T20490] microsoft 0003:045E:07DA.0024: item 0 4 0 9 parsing failed [ 1665.559020][T20490] microsoft 0003:045E:07DA.0024: parse failed [ 1665.588651][T20490] microsoft 0003:045E:07DA.0024: probe with driver microsoft failed with error -22 [ 1665.752040][T20490] usb 2-1: USB disconnect, device number 33 [ 1666.482094][T26102] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0 [ 1670.007014][T26127] loop4: detected capacity change from 0 to 2048 [ 1670.147186][T26133] loop2: detected capacity change from 0 to 512 [ 1670.548119][T26127] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1670.636835][T26133] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1670.849168][T26127] cifs: Unknown parameter 'vfg.¥nkËþ4£ˆ³)b9"VÞ¿»zQ‹ß:²–®DÄ¡Þyø|51xçvûØÇ](ÛÙ¬G' [ 1671.023023][T26141] loop1: detected capacity change from 0 to 128 [ 1671.839215][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1674.545000][T26170] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6060'. [ 1676.206972][T26189] loop2: detected capacity change from 0 to 8 [ 1676.877541][T19444] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 1677.090500][T19444] usb 7-1: Using ep0 maxpacket: 16 [ 1677.261860][T19444] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1677.325668][T19444] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1677.336245][T19444] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1677.363553][T19444] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1677.379306][T19444] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1677.520556][T26198] loop4: detected capacity change from 0 to 2048 [ 1677.667669][T19444] usb 7-1: config 0 descriptor?? [ 1677.839232][T26198] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1678.173724][T26212] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1678.766462][T19444] microsoft 0003:045E:07DA.0025: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0 [ 1678.800589][T19444] microsoft 0003:045E:07DA.0025: no inputs found [ 1678.904770][T19444] microsoft 0003:045E:07DA.0025: could not initialize ff, continuing anyway [ 1679.247486][T19444] usb 7-1: USB disconnect, device number 23 [ 1681.630099][T26235] fido_id[26235]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory [ 1683.889371][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1683.897230][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1684.228112][T26265] loop6: detected capacity change from 0 to 4096 [ 1684.511184][T26265] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 1685.208476][T26265] ntfs3(loop6): Failed to read $UpCase (-4). [ 1685.249236][T26290] loop1: detected capacity change from 0 to 256 [ 1685.766920][T26290] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d) [ 1687.279660][T26302] loop6: detected capacity change from 0 to 1024 [ 1688.458925][T26305] loop7: detected capacity change from 0 to 2048 [ 1688.718185][T24943] hfsplus: b-tree write err: -5, ino 25 [ 1688.783206][T24943] hfsplus: b-tree write err: -5, ino 4 [ 1688.822707][ T1131] bond0: (slave netdevsim3): Releasing backup interface [ 1688.879578][T24943] hfsplus: b-tree write err: -5, ino 2 [ 1688.997270][T26305] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1689.083860][ T1131] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1689.197737][T26305] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1690.090290][ T1131] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1690.677739][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1690.751125][ T1131] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1691.186640][ T1131] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1691.362565][T26322] loop6: detected capacity change from 0 to 4096 [ 1692.542321][ T1131] bridge_slave_1: left allmulticast mode [ 1692.548229][ T1131] bridge_slave_1: left promiscuous mode [ 1692.672733][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state [ 1692.799420][ T1131] bridge_slave_0: left allmulticast mode [ 1692.868120][ T1131] bridge_slave_0: left promiscuous mode [ 1692.918092][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state [ 1694.491143][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1694.571872][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1694.643398][ T1131] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 1694.698048][ T1131] bond0 (unregistering): Released all slaves [ 1694.764184][ T1131] bond1 (unregistering): Released all slaves [ 1694.803030][ T1131] bond2 (unregistering): Released all slaves [ 1695.224474][ T1131] IPVS: stopping backup sync thread 9350 ... [ 1695.831058][ T1131] hsr_slave_0: left promiscuous mode [ 1695.870297][ T1131] hsr_slave_1: left promiscuous mode [ 1695.879058][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1695.909946][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1697.649428][T26367] loop6: detected capacity change from 0 to 64 [ 1698.263720][ T1131] team0 (unregistering): Port device team_slave_1 removed [ 1698.435229][ T1131] veth1_to_team (unregistering): left allmulticast mode [ 1698.819477][ T1131] team0 (unregistering): Port device team_slave_0 removed [ 1699.894604][T26383] loop4: detected capacity change from 0 to 1024 [ 1699.966540][T26383] EXT4-fs: Ignoring removed mblk_io_submit option [ 1700.110175][T26383] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1700.682523][T26383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1701.400071][T18707] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1701.420713][T18707] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1701.433804][T18707] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1701.532051][T18707] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1701.560932][T18707] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1702.362972][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1703.783659][T18707] Bluetooth: hci2: command tx timeout [ 1703.849692][ T1131] IPVS: stop unused estimator thread 0... [ 1705.359565][T18707] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 1705.369996][T18707] CPU: 0 UID: 0 PID: 18707 Comm: kworker/u9:2 Tainted: G W L syzkaller #0 PREEMPT(full) [ 1705.370225][T18707] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 1705.370294][T18707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1705.370426][T18707] Workqueue: hci4 hci_rx_work [ 1705.370626][T18707] Call Trace: [ 1705.370688][T18707] [ 1705.370749][T18707] __dump_stack+0x26/0x30 [ 1705.370950][T18707] dump_stack_lvl+0x14c/0x1c0 [ 1705.371138][T18707] dump_stack+0x1e/0x25 [ 1705.371311][T18707] sysfs_create_dir_ns+0x46c/0x540 [ 1705.371562][T18707] kobject_add_internal+0x1084/0x19b0 [ 1705.371832][T18707] kobject_add+0x2c1/0x410 [ 1705.372083][T18707] ? kmsan_get_metadata+0xf1/0x160 [ 1705.372328][T18707] device_add+0xa70/0x1c00 [ 1705.372563][T18707] hci_conn_add_sysfs+0x159/0x2e0 [ 1705.372753][T18707] le_conn_complete_evt+0x1d0a/0x2250 [ 1705.373034][T18707] hci_le_conn_complete_evt+0x157/0x260 [ 1705.373284][T18707] hci_le_meta_evt+0x6eb/0x960 [ 1705.373491][T18707] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 1705.373738][T18707] hci_event_packet+0xce2/0x1e40 [ 1705.373932][T18707] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1705.374192][T18707] hci_rx_work+0x8c3/0xfc0 [ 1705.374390][T18707] ? kmsan_get_metadata+0xf1/0x160 [ 1705.374619][T18707] ? __pfx_hci_rx_work+0x10/0x10 [ 1705.374813][T18707] process_scheduled_works+0xb82/0x1e80 [ 1705.375083][T18707] worker_thread+0xee4/0x1590 [ 1705.375311][T18707] kthread+0x53f/0x600 [ 1705.375514][T18707] ? __pfx_worker_thread+0x10/0x10 [ 1705.375715][T18707] ? __pfx_kthread+0x10/0x10 [ 1705.375920][T18707] ret_from_fork+0x20f/0x910 [ 1705.376097][T18707] ? __switch_to+0x51c/0x750 [ 1705.376311][T18707] ? __pfx_kthread+0x10/0x10 [ 1705.376516][T18707] ret_from_fork_asm+0x1a/0x30 [ 1705.376757][T18707] [ 1705.565674][T18707] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 1705.585599][T18707] Bluetooth: hci4: failed to register connection device [ 1705.901917][T18707] Bluetooth: hci2: command tx timeout [ 1706.169787][T26467] loop4: detected capacity change from 0 to 512 [ 1706.790917][T26467] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1706.930609][T26467] ext4 filesystem being mounted at /1173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1707.022841][T26495] loop2: detected capacity change from 0 to 512 [ 1707.200903][T26495] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1707.573669][T26495] EXT4-fs (loop2): 1 truncate cleaned up [ 1707.689274][T26495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1707.942376][T18707] Bluetooth: hci2: command tx timeout [ 1707.966018][T26396] chnl_net:caif_netlink_parms(): no params data found [ 1708.500114][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1709.179881][T26521] loop7: detected capacity change from 0 to 1024 [ 1709.317211][T26521] EXT4-fs: Ignoring removed orlov option [ 1709.930843][T26521] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1710.025906][T18707] Bluetooth: hci2: command tx timeout [ 1711.205699][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1711.300447][ T104] batman_adv: batadv0: Interface deactivated: netdevsim3 [ 1711.437532][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1711.525674][ T104] batman_adv: batadv0: Removing interface: netdevsim3 [ 1711.689910][ T104] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1712.653951][ T104] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1712.743616][T26572] loop4: detected capacity change from 0 to 256 [ 1713.110355][T26572] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1713.320855][T26572] exFAT-fs (loop4): start_clu is invalid cluster(0x0) [ 1713.369540][ T104] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1713.469572][ T29] audit: type=1800 audit(2000000850.190:268): pid=26572 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6126" name="file1" dev="loop4" ino=1048987 res=0 errno=0 [ 1714.054482][ T104] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1714.685223][T26396] bridge0: port 1(bridge_slave_0) entered blocking state [ 1714.746099][T26396] bridge0: port 1(bridge_slave_0) entered disabled state [ 1714.833794][T26396] bridge_slave_0: entered allmulticast mode [ 1714.862280][T26396] bridge_slave_0: entered promiscuous mode [ 1714.959578][T26396] bridge0: port 2(bridge_slave_1) entered blocking state [ 1714.992503][T26396] bridge0: port 2(bridge_slave_1) entered disabled state [ 1715.058949][T26396] bridge_slave_1: entered allmulticast mode [ 1715.115921][T26396] bridge_slave_1: entered promiscuous mode [ 1715.726861][T26396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1715.849208][T26396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1716.451531][ T104] bridge_slave_1: left allmulticast mode [ 1716.457627][ T104] bridge_slave_1: left promiscuous mode [ 1716.512110][ T104] bridge0: port 2(bridge_slave_1) entered disabled state [ 1716.561250][ T104] bridge_slave_0: left allmulticast mode [ 1716.569061][ T104] bridge0: port 1(bridge_slave_0) entered disabled state [ 1718.810078][ T104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1718.880037][ T104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1718.947037][ T104] bond0 (unregistering): Released all slaves [ 1719.109539][ T104] bond1 (unregistering): Released all slaves [ 1719.356697][T26396] team0: Port device team_slave_0 added [ 1719.595188][T26396] team0: Port device team_slave_1 added [ 1719.954198][T26658] loop7: detected capacity change from 0 to 1024 [ 1720.556864][ T104] IPVS: stopping master sync thread 15046 ... [ 1720.615705][T26658] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1720.676016][T26659] loop4: detected capacity change from 0 to 2048 [ 1720.731007][T26658] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1720.874703][T26659] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1720.990582][T26396] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1721.093962][T26396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1721.203118][T26685] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1721.322010][T26396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1721.713397][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1722.039161][T26396] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1722.120993][T26396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1722.391586][T26396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1723.250724][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1723.268750][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1723.278617][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1723.330255][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1723.358553][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1724.760098][T26396] hsr_slave_0: entered promiscuous mode [ 1724.800019][T26396] hsr_slave_1: entered promiscuous mode [ 1724.870735][T26396] debugfs: 'hsr0' already exists in 'hsr' [ 1724.902389][T26396] Cannot create hsr debugfs directory [ 1725.198646][ T104] hsr_slave_0: left promiscuous mode [ 1725.222504][T26756] loop7: detected capacity change from 0 to 1024 [ 1725.330170][T26756] EXT4-fs: Ignoring removed bh option [ 1725.391810][ T104] hsr_slave_1: left promiscuous mode [ 1725.440377][ T104] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1725.471730][ T49] Bluetooth: hci0: command tx timeout [ 1725.540607][ T104] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1725.559559][T26756] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1725.634464][ T104] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1725.637669][T26765] loop4: detected capacity change from 0 to 128 [ 1725.711169][ T104] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1725.868031][ T104] veth0_macvtap: left promiscuous mode [ 1726.258975][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1727.541928][ T49] Bluetooth: hci0: command tx timeout [ 1728.042619][T26787] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:17 to non-existent VLAN 1303 [ 1729.621968][ T49] Bluetooth: hci0: command tx timeout [ 1730.017088][ T104] team0 (unregistering): Port device team_slave_1 removed [ 1730.279473][ T104] team0 (unregistering): Port device team_slave_0 removed [ 1731.702992][ T49] Bluetooth: hci0: command tx timeout [ 1731.888662][T26824] loop4: detected capacity change from 0 to 136 [ 1731.949240][T26779] netlink: 60 bytes leftover after parsing attributes in process `syz.7.6142'. [ 1733.949697][ T104] IPVS: stop unused estimator thread 0... [ 1734.499911][T26900] loop7: detected capacity change from 0 to 256 [ 1735.182139][T26900] FAT-fs (loop7): Directory bread(block 64) failed [ 1735.224564][T26900] FAT-fs (loop7): Directory bread(block 65) failed [ 1735.262680][T26900] FAT-fs (loop7): Directory bread(block 66) failed [ 1735.269740][T26900] FAT-fs (loop7): Directory bread(block 67) failed [ 1735.388580][T26900] FAT-fs (loop7): Directory bread(block 68) failed [ 1735.521974][T26900] FAT-fs (loop7): Directory bread(block 69) failed [ 1735.577932][T26900] FAT-fs (loop7): Directory bread(block 70) failed [ 1735.667597][T26900] FAT-fs (loop7): Directory bread(block 71) failed [ 1735.800917][T26900] FAT-fs (loop7): Directory bread(block 72) failed [ 1735.887747][T26900] FAT-fs (loop7): Directory bread(block 73) failed [ 1736.340625][T26936] loop6: detected capacity change from 0 to 512 [ 1736.490673][T26936] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1736.635425][T26947] loop4: detected capacity change from 0 to 512 [ 1736.648099][T26947] EXT4-fs: inline encryption not supported [ 1736.697423][T26947] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1736.780610][T26936] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1736.807814][T26947] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1736.877560][T26936] ext4 filesystem being mounted at /700/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1737.147997][T26947] Quota error (device loop4): do_insert_tree: Free block already used in tree: block 1 [ 1737.198062][T26947] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota [ 1737.254109][T26947] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.6162: Failed to acquire dquot type 1 [ 1737.327707][T26947] loop4: lost filesystem error report for type 5 error -5 [ 1737.331464][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1737.345982][ C0] EXT4-fs (loop4): initial error at time 2000000874: ext4_acquire_dquot:7001 [ 1737.355738][ C0] EXT4-fs (loop4): last error at time 2000000874: ext4_acquire_dquot:7001 [ 1737.385563][T26947] EXT4-fs (loop4): Remounting filesystem read-only [ 1737.431071][T26947] EXT4-fs (loop4): 1 truncate cleaned up [ 1737.494353][T26947] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1737.820056][T26396] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 1738.029297][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1738.090442][T26396] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 1738.180300][ T29] audit: type=1326 audit(2000000874.880:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1738.233438][T26947] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 1738.304975][ T29] audit: type=1326 audit(2000000874.940:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1738.401783][T26947] EXT4-fs: Cannot change journaled quota options when quota turned on [ 1738.431940][ T29] audit: type=1326 audit(2000000875.100:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1738.572229][T26396] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 1738.638634][ T29] audit: type=1326 audit(2000000875.100:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1738.756535][T26396] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 1738.871834][ T29] audit: type=1326 audit(2000000875.100:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1738.987247][ T29] audit: type=1326 audit(2000000875.110:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1739.087563][ T29] audit: type=1326 audit(2000000875.110:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26974 comm="syz.7.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaf59c799 code=0x7ffc0000 [ 1739.243765][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1741.602001][T26714] chnl_net:caif_netlink_parms(): no params data found [ 1743.919515][T27073] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6174'. [ 1744.339634][T26396] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1745.291606][T26396] 8021q: adding VLAN 0 to HW filter on device team0 [ 1745.337337][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1745.346456][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1745.699906][T24943] bridge0: port 1(bridge_slave_0) entered blocking state [ 1745.707844][T24943] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1746.329135][ T104] bridge0: port 2(bridge_slave_1) entered blocking state [ 1746.337007][ T104] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1747.458186][T27108] loop4: detected capacity change from 0 to 32768 [ 1747.524575][T27108] XFS (loop4): Metadata CRC error detected at xfs_sb_read_verify+0x5c7/0x640, xfs_sb block 0x0 [ 1747.536151][T27108] XFS (loop4): Unmount and run xfs_repair [ 1747.551172][T27108] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 1747.559177][T27108] 00000000: 58 46 53 42 00 00 00 00 00 00 00 00 00 00 10 00 XFSB............ [ 1747.576283][T27108] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1747.589785][T27108] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 1747.600699][T27108] 00000030: 00 00 00 00 00 00 00 06 00 00 00 00 00 00 11 40 ...............@ [ 1747.610459][T27108] 00000040: 00 00 00 00 00 00 11 41 00 00 00 00 00 00 11 42 .......A.......B [ 1747.625966][T27108] 00000050: 00 00 00 01 00 00 10 00 00 00 00 01 00 00 00 00 ................ [ 1747.636068][T27108] 00000060: 00 00 04 3e b4 b5 02 00 04 00 00 04 00 00 00 00 ...>............ [ 1747.645720][T27108] 00000070: 00 00 00 00 00 00 00 00 0c 09 0a 02 0c 00 00 0a ................ [ 1747.658435][T27108] XFS (loop4): SB validate failed with error -74. [ 1748.220307][T26714] bridge0: port 1(bridge_slave_0) entered blocking state [ 1748.269814][T26714] bridge0: port 1(bridge_slave_0) entered disabled state [ 1748.347296][T26714] bridge_slave_0: entered allmulticast mode [ 1748.380795][T27101] loop6: detected capacity change from 0 to 4096 [ 1748.398954][T26714] bridge_slave_0: entered promiscuous mode [ 1748.477897][T27101] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512). [ 1748.636248][T26714] bridge0: port 2(bridge_slave_1) entered blocking state [ 1748.722704][T26714] bridge0: port 2(bridge_slave_1) entered disabled state [ 1748.790062][T26714] bridge_slave_1: entered allmulticast mode [ 1748.885964][T26714] bridge_slave_1: entered promiscuous mode [ 1748.957910][T27101] ntfs3(loop6): Failed to read $UpCase (-4). [ 1750.179980][T27150] loop7: detected capacity change from 0 to 1024 [ 1750.199174][T26714] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1750.666466][T26714] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1750.690023][T27150] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1750.885317][T27150] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1752.240881][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1752.422245][T26714] team0: Port device team_slave_0 added [ 1752.657206][T26714] team0: Port device team_slave_1 added [ 1753.449936][T27207] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6187'. [ 1753.673261][T26714] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1753.680640][T26714] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1753.986730][T26714] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1754.223082][T26714] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1754.230479][T26714] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1754.297725][T26714] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1755.139811][T27243] loop7: detected capacity change from 0 to 24 [ 1755.401091][T27239] loop6: detected capacity change from 0 to 1024 [ 1755.729730][T27239] hfsplus: b-tree write err: -5, ino 2 [ 1755.907418][T26714] hsr_slave_0: entered promiscuous mode [ 1756.039474][T26714] hsr_slave_1: entered promiscuous mode [ 1756.070968][T26714] debugfs: 'hsr0' already exists in 'hsr' [ 1756.164075][T26714] Cannot create hsr debugfs directory [ 1757.060736][ T1125] hfsplus: b-tree write err: -5, ino 25 [ 1757.172994][ T1125] hfsplus: b-tree write err: -5, ino 4 [ 1757.179202][ T1125] hfsplus: b-tree write err: -5, ino 2 [ 1757.330411][ T1125] hfsplus: b-tree write err: -5, ino 26 [ 1758.796229][T27308] loop6: detected capacity change from 0 to 512 [ 1758.896056][T27308] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1759.269755][T27270] loop7: detected capacity change from 0 to 8192 [ 1762.253473][T18707] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1762.267374][T18707] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1762.279192][T18707] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1762.298875][T18707] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1762.379199][T18707] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1762.610957][T26714] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1763.029457][T26714] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1763.278328][T26714] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1763.609275][T26714] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1764.504672][ T49] Bluetooth: hci5: command tx timeout [ 1766.593110][ T49] Bluetooth: hci5: command tx timeout [ 1768.266601][T27433] loop6: detected capacity change from 0 to 4096 [ 1768.661730][ T49] Bluetooth: hci5: command tx timeout [ 1768.780031][T27433] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1768.844849][T27439] loop4: detected capacity change from 0 to 4096 [ 1769.453964][T27433] EXT4-fs: Ignoring sb option on remount [ 1769.460264][T27433] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1769.544552][T27439] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1769.642358][T27433] EXT4-fs (loop6): stripe (249) is not aligned with cluster size (16), stripe is disabled [ 1769.852501][T27433] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000. [ 1770.076582][T27439] ntfs3(loop4): ino=1a, mi_enum_attr [ 1770.161905][T27439] ntfs3(loop4): ino=1a, mi_enum_attr [ 1770.167495][T27439] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 1770.633984][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1770.743349][ T49] Bluetooth: hci5: command tx timeout [ 1771.653336][T27368] chnl_net:caif_netlink_parms(): no params data found [ 1772.968043][T27519] syz.6.6210 (27519) used obsolete PPPIOCDETACH ioctl [ 1774.696362][T26714] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1775.746136][T26714] 8021q: adding VLAN 0 to HW filter on device team0 [ 1776.249942][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 1776.257762][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1776.503365][ T57] bridge_slave_1: left allmulticast mode [ 1776.509448][ T57] bridge_slave_1: left promiscuous mode [ 1776.622308][ T57] bridge0: port 2(bridge_slave_1) entered disabled state [ 1776.771817][ T57] bridge_slave_0: left allmulticast mode [ 1776.777791][ T57] bridge_slave_0: left promiscuous mode [ 1776.843317][ T57] bridge0: port 1(bridge_slave_0) entered disabled state [ 1778.567555][T27582] loop4: detected capacity change from 0 to 2048 [ 1778.817977][T27589] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1779.403922][ T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1779.734077][ T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1779.856711][ T57] bond0 (unregistering): Released all slaves [ 1781.257482][ T57] hsr_slave_0: left promiscuous mode [ 1781.328656][ T57] hsr_slave_1: left promiscuous mode [ 1781.383326][ T57] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1781.526863][ T57] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1782.365578][T27620] loop4: detected capacity change from 0 to 256 [ 1782.374559][T18707] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1782.410558][T27623] loop6: detected capacity change from 0 to 1024 [ 1782.438829][T18707] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1782.450646][T18707] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1782.456544][T27620] exfat: Deprecated parameter 'namecase' [ 1782.470298][T18707] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1782.475515][T18707] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1783.138237][T27620] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 1783.156063][T27623] hfsplus: b-tree write err: -5, ino 2 [ 1783.818256][T24960] hfsplus: b-tree write err: -5, ino 25 [ 1783.906150][T24960] hfsplus: b-tree write err: -5, ino 4 [ 1783.991873][T24960] hfsplus: b-tree write err: -5, ino 2 [ 1783.997921][T24960] hfsplus: b-tree write err: -5, ino 26 [ 1784.663325][T18707] Bluetooth: hci2: command tx timeout [ 1785.746825][ T57] team0 (unregistering): Port device team_slave_1 removed [ 1785.956195][ T57] team0 (unregistering): Port device team_slave_0 removed [ 1786.527848][T27656] loop4: detected capacity change from 0 to 256 [ 1786.648805][T27656] exfat: Deprecated parameter 'utf8' [ 1786.741714][T18707] Bluetooth: hci2: command tx timeout [ 1786.762747][T27656] exfat: Deprecated parameter 'utf8' [ 1787.041527][T27656] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x114608e0, utbl_chksum : 0xe619d30d) [ 1787.387430][ T29] audit: type=1800 audit(2000000924.090:276): pid=27656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6234" name="bus" dev="loop4" ino=1048989 res=0 errno=0 [ 1787.599250][ T29] audit: type=1804 audit(2000000924.100:277): pid=27656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.6234" name="/newroot/1214/file1/bus" dev="loop4" ino=1048989 res=1 errno=0 [ 1788.132363][T27368] bridge0: port 1(bridge_slave_0) entered blocking state [ 1788.140168][T27368] bridge0: port 1(bridge_slave_0) entered disabled state [ 1788.235655][T27368] bridge_slave_0: entered allmulticast mode [ 1788.312314][T27368] bridge_slave_0: entered promiscuous mode [ 1788.440779][T27368] bridge0: port 2(bridge_slave_1) entered blocking state [ 1788.492669][T27368] bridge0: port 2(bridge_slave_1) entered disabled state [ 1788.558853][T27368] bridge_slave_1: entered allmulticast mode [ 1788.645614][T27368] bridge_slave_1: entered promiscuous mode [ 1788.828771][T18707] Bluetooth: hci2: command tx timeout [ 1790.177373][T27368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1790.650244][T27702] loop4: detected capacity change from 0 to 512 [ 1790.768752][T27702] EXT4-fs: Ignoring removed i_version option [ 1790.819143][T27368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1790.837770][T27702] EXT4-fs: Ignoring removed bh option [ 1790.869596][T27702] ext4: Unknown parameter 'fowner>00000000000000000000' [ 1790.902069][T18707] Bluetooth: hci2: command tx timeout [ 1791.389194][T18106] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 1791.600914][T18106] usb 5-1: Using ep0 maxpacket: 32 [ 1791.709291][T18106] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1791.758557][T18106] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1791.798253][T18106] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1791.820902][T18106] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1791.906666][T18106] usb 5-1: config 0 descriptor?? [ 1792.048624][T18106] hub 5-1:0.0: USB hub found [ 1792.233491][T18106] hub 5-1:0.0: 1 port detected [ 1792.300923][T27750] IPVS: sync thread started: state = MASTER, mcast_ifn = team_slave_0, syncid = 4, id = 0 [ 1792.458926][T18106] hub 5-1:0.0: hub_hub_status failed (err = -71) [ 1792.478641][T18106] hub 5-1:0.0: config failed, can't get hub status (err -71) [ 1792.540172][T27368] team0: Port device team_slave_0 added [ 1792.547054][T18106] usbhid 5-1:0.0: can't add hid device: -71 [ 1792.547733][T18106] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 1792.590630][T18106] usb 5-1: USB disconnect, device number 32 [ 1792.970776][T27368] team0: Port device team_slave_1 added [ 1794.430867][T27368] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1794.455166][T27368] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1794.642096][T27368] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1795.000920][T27368] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1795.135227][T27368] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1795.307319][T27368] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1796.809700][T27827] loop7: detected capacity change from 0 to 512 [ 1796.889369][T27827] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1797.317997][T27368] hsr_slave_0: entered promiscuous mode [ 1797.442065][T27368] hsr_slave_1: entered promiscuous mode [ 1797.451195][T27368] debugfs: 'hsr0' already exists in 'hsr' [ 1797.499100][T27827] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 1797.531065][T27368] Cannot create hsr debugfs directory [ 1797.658275][T27827] FAT-fs (loop7): error, fat_free: invalid cluster chain (i_pos 548) [ 1797.689085][T27827] FAT-fs (loop7): error, fat_free: invalid cluster chain (i_pos 548) [ 1798.028983][T27861] loop6: detected capacity change from 0 to 512 [ 1798.166059][T27837] loop4: detected capacity change from 0 to 4096 [ 1798.448644][T27861] EXT4-fs (loop6): 1 orphan inode deleted [ 1798.510782][ T104] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 1798.542122][T27837] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1798.549439][T27861] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1798.707729][ T104] EXT4-fs error (device loop6): ext4_release_dquot:7037: comm kworker/u8:5: Failed to release dquot type 1 [ 1798.739981][T27861] ext4 filesystem being mounted at /729/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1799.188771][T27861] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 1800.138693][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1801.260426][ T34] bridge_slave_1: left allmulticast mode [ 1801.321668][ T34] bridge_slave_1: left promiscuous mode [ 1801.331197][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 1801.442166][T27950] netlink: 36 bytes leftover after parsing attributes in process `syz.6.6257'. [ 1801.564634][ T34] bridge_slave_0: left allmulticast mode [ 1801.610582][ T34] bridge_slave_0: left promiscuous mode [ 1801.698972][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 1803.559924][ T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1803.628589][ T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1803.656579][ T34] bond0 (unregistering): Released all slaves [ 1804.208820][T27621] chnl_net:caif_netlink_parms(): no params data found [ 1804.541243][ T34] hsr_slave_0: left promiscuous mode [ 1804.682168][ T34] hsr_slave_1: left promiscuous mode [ 1804.723213][ T34] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1804.797213][ T34] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1806.363980][T28002] loop6: detected capacity change from 0 to 512 [ 1806.532278][T28002] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.6267: invalid indirect mapped block 4294967295 (level 1) [ 1806.569249][T28002] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1806.570158][T28002] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.6267: invalid indirect mapped block 4294967295 (level 1) [ 1806.580135][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1806.580252][ C1] EXT4-fs (loop6): initial error at time 2000000943: ext4_free_branches:1023: inode 11 [ 1806.580450][ C1] EXT4-fs (loop6): last error at time 2000000943: ext4_free_branches:1023: inode 11 [ 1806.658498][T28002] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1806.772225][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1806.797761][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1806.806690][T28002] EXT4-fs (loop6): 2 truncates cleaned up [ 1806.908101][T28002] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1807.118593][ T34] team0 (unregistering): Port device team_slave_1 removed [ 1807.278017][ T34] team0 (unregistering): Port device team_slave_0 removed [ 1807.403094][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1808.180968][T28014] loop6: detected capacity change from 0 to 64 [ 1808.310902][T28017] netlink: 216 bytes leftover after parsing attributes in process `syz.4.6270'. [ 1808.329085][T28017] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6270'. [ 1808.378059][T28017] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6270'. [ 1809.511930][T28001] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6266'. [ 1810.674643][T28070] loop7: detected capacity change from 0 to 256 [ 1811.454544][T28070] FAT-fs (loop7): Directory bread(block 64) failed [ 1811.485982][T28070] FAT-fs (loop7): Directory bread(block 65) failed [ 1811.557651][T28070] FAT-fs (loop7): Directory bread(block 66) failed [ 1811.646723][T28070] FAT-fs (loop7): Directory bread(block 67) failed [ 1811.744902][T28070] FAT-fs (loop7): Directory bread(block 68) failed [ 1811.840268][T28070] FAT-fs (loop7): Directory bread(block 69) failed [ 1811.949780][T28070] FAT-fs (loop7): Directory bread(block 70) failed [ 1812.037139][T28070] FAT-fs (loop7): Directory bread(block 71) failed [ 1812.107795][T28070] FAT-fs (loop7): Directory bread(block 72) failed [ 1812.210530][T28070] FAT-fs (loop7): Directory bread(block 73) failed [ 1813.328043][T27368] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 1813.588174][T27368] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 1814.342188][T27368] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 1814.633197][T27368] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 1814.850340][T27621] bridge0: port 1(bridge_slave_0) entered blocking state [ 1814.888617][T27621] bridge0: port 1(bridge_slave_0) entered disabled state [ 1814.938951][T27621] bridge_slave_0: entered allmulticast mode [ 1815.020120][T27621] bridge_slave_0: entered promiscuous mode [ 1815.295813][T27621] bridge0: port 2(bridge_slave_1) entered blocking state [ 1815.337829][T27621] bridge0: port 2(bridge_slave_1) entered disabled state [ 1815.397443][T27621] bridge_slave_1: entered allmulticast mode [ 1815.499536][T27621] bridge_slave_1: entered promiscuous mode [ 1816.554780][T27621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1816.757305][T27621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1816.978442][T28174] netlink: 68 bytes leftover after parsing attributes in process `syz.4.6284'. [ 1817.028752][T28174] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6284'. [ 1817.045936][T28174] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6284'. [ 1817.717269][T27621] team0: Port device team_slave_0 added [ 1817.797326][T27621] team0: Port device team_slave_1 added [ 1818.799632][T28217] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6288'. [ 1818.866860][T27621] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1818.968913][T27621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1819.057574][ T29] audit: type=1326 audit(2000000955.750:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1819.190963][T27621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1819.235867][ T29] audit: type=1326 audit(2000000955.860:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1819.389073][T27621] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1819.417440][T27621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1819.517361][ T29] audit: type=1326 audit(2000000955.860:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1819.677565][T27621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1819.837580][ T29] audit: type=1326 audit(2000000955.860:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1820.176973][ T29] audit: type=1326 audit(2000000955.880:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1820.412170][ T29] audit: type=1326 audit(2000000955.910:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1820.637393][ T29] audit: type=1326 audit(2000000955.910:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1820.679370][ T29] audit: type=1326 audit(2000000955.910:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.6.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591719c799 code=0x7ffc0000 [ 1821.300337][T27621] hsr_slave_0: entered promiscuous mode [ 1821.414237][T27621] hsr_slave_1: entered promiscuous mode [ 1821.518212][T27621] debugfs: 'hsr0' already exists in 'hsr' [ 1821.616384][T27621] Cannot create hsr debugfs directory [ 1822.285301][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1822.298334][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1822.322822][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1822.351057][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1822.397477][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1822.602748][T28283] loop6: detected capacity change from 0 to 512 [ 1822.698205][T28283] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1823.180451][T28283] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1823.305934][T28283] ext4 filesystem being mounted at /743/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1824.254756][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1824.587556][T18707] Bluetooth: hci0: command tx timeout [ 1824.623064][T28291] loop4: detected capacity change from 0 to 4096 [ 1824.816484][T28291] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 1825.561196][T28291] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 1826.421043][T28376] loop7: detected capacity change from 0 to 512 [ 1826.667337][T18707] Bluetooth: hci0: command tx timeout [ 1826.859059][T28376] EXT4-fs (loop7): 1 truncate cleaned up [ 1827.022951][T28376] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1828.380742][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1828.741702][T18707] Bluetooth: hci0: command tx timeout [ 1829.508896][T28424] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.6303'. [ 1830.827641][T18707] Bluetooth: hci0: command tx timeout [ 1830.869996][T28432] loop4: detected capacity change from 0 to 4096 [ 1831.416384][T28432] ntfs3(loop4): ino=b, mi_enum_attr [ 1831.495236][T28432] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1831.571974][T28432] ntfs3(loop4): Failed to load $Extend (-22). [ 1831.578660][T28432] ntfs3(loop4): Failed to initialize $Extend. [ 1832.260043][T28482] loop6: detected capacity change from 0 to 64 [ 1833.148307][T28273] chnl_net:caif_netlink_parms(): no params data found [ 1835.158383][T27621] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1835.357305][T24776] bridge_slave_1: left allmulticast mode [ 1835.477837][T24776] bridge_slave_1: left promiscuous mode [ 1835.532961][T24776] bridge0: port 2(bridge_slave_1) entered disabled state [ 1835.788356][T24776] bridge_slave_0: left allmulticast mode [ 1835.807565][T24776] bridge_slave_0: left promiscuous mode [ 1835.817811][T24776] bridge0: port 1(bridge_slave_0) entered disabled state [ 1836.622197][T28565] loop6: detected capacity change from 0 to 64 [ 1837.020256][T28563] loop4: detected capacity change from 0 to 1024 [ 1837.110720][T28563] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1837.217373][T28563] EXT4-fs: Ignoring removed mblk_io_submit option [ 1837.450394][T28563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1837.482749][T28563] ext4 filesystem being mounted at /1238/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1837.807538][T24776] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1838.079460][T24776] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1838.182005][T28581] loop6: detected capacity change from 0 to 512 [ 1838.259319][T24776] bond0 (unregistering): Released all slaves [ 1838.274103][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1838.370607][T28581] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1838.468814][T28581] ext4 filesystem being mounted at /753/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1838.474113][T27621] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1838.858219][T27621] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1839.127469][T27621] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1839.339962][T11832] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1839.995012][T24776] hsr_slave_0: left promiscuous mode [ 1840.115752][T24776] hsr_slave_1: left promiscuous mode [ 1840.191144][T24776] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1840.317946][T24776] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1843.434252][T24776] team0 (unregistering): Port device team_slave_1 removed [ 1843.507537][T18106] kernel read not supported for file /dsp1 (pid: 18106 comm: kworker/1:0) [ 1843.826788][T24776] team0 (unregistering): Port device team_slave_0 removed [ 1843.872973][ T49] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1843.927340][ T49] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1843.937852][ T49] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1843.974988][ T49] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1843.987668][ T49] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1845.030772][T28633] loop7: detected capacity change from 0 to 256 [ 1845.301133][T28633] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 1846.118350][T18707] Bluetooth: hci5: command tx timeout [ 1848.198311][T18707] Bluetooth: hci5: command tx timeout [ 1848.481084][T28273] bridge0: port 1(bridge_slave_0) entered blocking state [ 1848.573115][T28273] bridge0: port 1(bridge_slave_0) entered disabled state [ 1848.581017][T28273] bridge_slave_0: entered allmulticast mode [ 1848.706956][T28273] bridge_slave_0: entered promiscuous mode [ 1849.175362][T28273] bridge0: port 2(bridge_slave_1) entered blocking state [ 1849.297930][T28273] bridge0: port 2(bridge_slave_1) entered disabled state [ 1849.345581][T28273] bridge_slave_1: entered allmulticast mode [ 1849.475496][T28273] bridge_slave_1: entered promiscuous mode [ 1849.540809][T28686] loop7: detected capacity change from 0 to 2048 [ 1849.730068][T28686] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1850.127771][T28710] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1850.287623][T18707] Bluetooth: hci5: command tx timeout [ 1851.170321][T28273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1851.905703][T28741] tmpfs: Bad value for 'mpol' [ 1852.039521][T28273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1852.345448][T18707] Bluetooth: hci5: command tx timeout [ 1853.835712][T28273] team0: Port device team_slave_0 added [ 1853.975351][T28273] team0: Port device team_slave_1 added [ 1854.435795][T18707] Bluetooth: hci5: command tx timeout [ 1854.928649][T28795] loop7: detected capacity change from 0 to 128 [ 1855.143161][T28795] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1855.222427][T28795] ext4 filesystem being mounted at /406/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1856.234426][T28273] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1856.348490][T28273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1856.615067][T28273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1856.712369][T28273] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1856.720036][T28273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1856.758995][T18704] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1856.947135][T28273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1857.429926][T28620] chnl_net:caif_netlink_parms(): no params data found [ 1859.221139][T28903] loop6: detected capacity change from 0 to 256 [ 1859.298468][T28903] exfat: Deprecated parameter 'namecase' [ 1859.660059][T28903] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 1859.889118][T28887] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR [ 1860.582900][T28273] hsr_slave_0: entered promiscuous mode [ 1860.617675][T28273] hsr_slave_1: entered promiscuous mode [ 1860.714456][T28273] debugfs: 'hsr0' already exists in 'hsr' [ 1860.778467][T28273] Cannot create hsr debugfs directory [ 1860.996719][ T1131] bridge_slave_1: left allmulticast mode [ 1861.086268][ T1131] bridge_slave_1: left promiscuous mode [ 1861.143001][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state [ 1861.348230][ T1131] bridge_slave_0: left allmulticast mode [ 1861.387840][ T1131] bridge_slave_0: left promiscuous mode [ 1861.443699][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state [ 1861.696819][T28950] loop7: detected capacity change from 0 to 512 [ 1861.930315][T28950] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.6359: bg 0: block 5: invalid block bitmap [ 1862.008632][T28950] loop7: lost filesystem error report for type 5 error -117 [ 1862.011633][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 1862.026472][ C0] EXT4-fs (loop7): initial error at time 2000000998: ext4_validate_block_bitmap:432 [ 1862.036427][ C0] EXT4-fs (loop7): last error at time 2000000998: ext4_validate_block_bitmap:432 [ 1862.052298][T28950] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 1862.097787][T28950] loop7: lost filesystem error report for type 5 error -117 [ 1862.137533][T28950] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.6359: invalid indirect mapped block 3 (level 2) [ 1862.215737][T28950] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1862.217455][T28950] EXT4-fs (loop7): 1 orphan inode deleted [ 1862.277711][T28950] EXT4-fs (loop7): 1 truncate cleaned up [ 1862.380288][T28950] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1862.760168][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1862.853866][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1862.920619][T18704] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1862.930583][ T1131] bond0 (unregistering): Released all slaves [ 1863.862812][ T1131] hsr_slave_0: left promiscuous mode [ 1863.899269][ T1131] hsr_slave_1: left promiscuous mode [ 1863.970963][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1864.074512][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1864.657893][T28982] loop4: detected capacity change from 0 to 4096 [ 1864.903909][T28987] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1865.275523][ T1131] team0 (unregistering): Port device team_slave_1 removed [ 1865.410131][ T1131] team0 (unregistering): Port device team_slave_0 removed [ 1866.120140][T28992] loop4: detected capacity change from 0 to 512 [ 1866.270595][T28992] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 1866.290898][T28992] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 1866.302620][T28992] System zones: 0-1, 15-15, 18-18, 34-34 [ 1866.338818][T28992] EXT4-fs (loop4): orphan cleanup on readonly fs [ 1866.352315][T28992] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0 [ 1866.364171][T28992] EXT4-fs warning (device loop4): ext4_enable_quotas:7236: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1866.385282][T28992] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 1866.400482][T28992] EXT4-fs (loop4): 1 truncate cleaned up [ 1866.430327][T28992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1866.960857][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1867.750313][T29022] loop4: detected capacity change from 0 to 512 [ 1867.797507][T29022] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1868.152595][T29022] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.6365: bad orphan inode 131083 [ 1868.200963][T29022] loop4: lost filesystem error report for type 5 error -117 [ 1868.201470][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1868.216055][ C0] EXT4-fs (loop4): initial error at time 2000001004: ext4_orphan_get:1417 [ 1868.217655][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 1868.225210][ C0] EXT4-fs (loop4): last error at time 2000001004: ext4_orphan_get:1417 [ 1868.252179][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 1868.360373][T29022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1869.481088][ T5776] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1869.681148][T28620] bridge0: port 1(bridge_slave_0) entered blocking state [ 1869.717961][T28620] bridge0: port 1(bridge_slave_0) entered disabled state [ 1869.802492][T28620] bridge_slave_0: entered allmulticast mode [ 1869.909168][T28620] bridge_slave_0: entered promiscuous mode [ 1870.317765][T28620] bridge0: port 2(bridge_slave_1) entered blocking state [ 1870.339699][T28620] bridge0: port 2(bridge_slave_1) entered disabled state [ 1870.408225][T28620] bridge_slave_1: entered allmulticast mode [ 1870.449005][T28620] bridge_slave_1: entered promiscuous mode [ 1871.290610][T28620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1871.946518][T29111] gretap0: entered promiscuous mode [ 1872.087699][T28620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1872.927889][T29143] loop6: detected capacity change from 0 to 128 [ 1873.167467][T28620] team0: Port device team_slave_0 added [ 1873.348350][T29143] FAT-fs (loop6): error, corrupted directory (invalid entries) [ 1873.800584][T28620] team0: Port device team_slave_1 added [ 1873.838284][T29158] tipc: New replicast peer: 100.1.1.1 [ 1873.908686][T29158] tipc: Enabled bearer , priority 10 [ 1874.736806][T29184] loop7: detected capacity change from 0 to 164 [ 1874.762216][T28620] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1874.837181][T28620] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1875.008277][T29184] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 1875.074900][T28620] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1875.148895][T29191] loop6: detected capacity change from 0 to 1024 [ 1875.212579][T28620] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1875.244095][T28620] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1875.412193][T29191] hfsplus: bad catalog entry type [ 1875.480737][T28620] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1875.601516][T26405] tipc: Node number set to 11614 [ 1876.294490][ T56] hfsplus: b-tree write err: -5, ino 25 [ 1876.345504][ T56] hfsplus: b-tree write err: -5, ino 4 [ 1876.433652][ T56] hfsplus: b-tree write err: -5, ino 2 [ 1877.336136][T29238] loop6: detected capacity change from 0 to 64 [ 1877.400333][T28620] hsr_slave_0: entered promiscuous mode [ 1877.486791][T28620] hsr_slave_1: entered promiscuous mode [ 1877.599693][T28620] debugfs: 'hsr0' already exists in 'hsr' [ 1877.632100][T28620] Cannot create hsr debugfs directory [ 1877.653309][T29238] syz.6.6381: attempt to access beyond end of device [ 1877.653309][T29238] loop6: rw=8388608, sector=1024, nr_sectors = 2 limit=64 [ 1877.702448][T29238] Buffer I/O error on dev loop6, logical block 512, async page read [ 1877.805696][T29238] syz.6.6381: attempt to access beyond end of device [ 1877.805696][T29238] loop6: rw=8388608, sector=113152, nr_sectors = 2 limit=64 [ 1877.956121][T29238] Buffer I/O error on dev loop6, logical block 56576, async page read [ 1878.978766][T29266] Bluetooth: MGMT ver 1.23 [ 1879.450177][T28273] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 1879.820468][T29286] loop6: detected capacity change from 0 to 64 [ 1881.270981][T29288] loop4: detected capacity change from 0 to 4096 [ 1882.310264][T29288] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 1883.342403][ T49] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1883.390647][ T49] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1883.418440][ T49] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1883.458798][ T49] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1883.500251][ T49] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1884.259216][T29371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6391'. [ 1884.745557][T29371] team0: Port device team_slave_0 removed [ 1885.708841][ T49] Bluetooth: hci2: command tx timeout [ 1887.085942][T29416] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 1887.085942][T29416] The task syz.7.6394 (29416) triggered the difference, watch for misbehavior. [ 1887.597630][T29428] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 1887.790769][ T49] Bluetooth: hci2: command tx timeout [ 1888.659170][T28620] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1888.983831][T28620] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1889.869643][ T49] Bluetooth: hci2: command tx timeout [ 1890.005795][T28620] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1890.245590][T29468] loop4: detected capacity change from 0 to 128 [ 1890.461134][T28620] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1890.543891][T29468] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1890.596962][T29475] netlink: 80 bytes leftover after parsing attributes in process `syz.6.6400'. [ 1890.628623][T29468] ext4 filesystem being mounted at /1267/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1891.784417][ T5776] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1891.951624][ T49] Bluetooth: hci2: command tx timeout [ 1894.178266][T29356] chnl_net:caif_netlink_parms(): no params data found [ 1895.583295][ T57] bridge_slave_1: left allmulticast mode [ 1895.589382][ T57] bridge_slave_1: left promiscuous mode [ 1895.676577][T29577] loop6: detected capacity change from 0 to 8 [ 1895.679989][ T57] bridge0: port 2(bridge_slave_1) entered disabled state [ 1895.883497][ T57] bridge_slave_0: left allmulticast mode [ 1895.964805][ T57] bridge_slave_0: left promiscuous mode [ 1896.004042][ T57] bridge0: port 1(bridge_slave_0) entered disabled state [ 1897.127776][ T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1897.297820][ T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1897.451152][ T57] bond0 (unregistering): Released all slaves [ 1898.308138][ T57] hsr_slave_0: left promiscuous mode [ 1898.408223][ T57] hsr_slave_1: left promiscuous mode [ 1898.471002][ T57] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1898.527405][ T57] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1900.165031][T14399] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 1900.351536][T14399] usb 7-1: Using ep0 maxpacket: 32 [ 1900.505348][T14399] usb 7-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 1900.547491][T14399] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1900.598350][T14399] usb 7-1: Product: syz [ 1900.610292][T14399] usb 7-1: Manufacturer: syz [ 1900.669829][T14399] usb 7-1: SerialNumber: syz [ 1900.700054][ T57] team0 (unregistering): Port device team_slave_1 removed [ 1900.708191][T14399] usb 7-1: config 0 descriptor?? [ 1900.789637][T14399] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state. [ 1900.901646][T14399] dvb-usb: bulk message failed: -22 (2/0) [ 1900.970837][T14399] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 1901.021983][ T57] team0 (unregistering): Port device team_slave_0 removed [ 1901.053313][T14399] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold) [ 1901.068936][T29610] cxusb: i2c wr: len=80 is too big! [ 1901.068936][T29610] [ 1901.173422][T14399] usb 7-1: media controller created [ 1901.640202][T14399] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1901.728684][T29632] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6422'. [ 1902.057644][T14399] usb 7-1: selecting invalid altsetting 7 [ 1902.120751][T14399] cxusb: set interface failed [ 1902.172156][T14399] dvb-usb: bulk message failed: -22 (1/0) [ 1903.286151][T14399] DVB: Unable to find symbol lgdt330x_attach() [ 1903.325612][T14399] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold' [ 1904.752192][T29659] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6425'. [ 1904.765808][T14399] rc_core: IR keymap rc-dvico-portable not found [ 1904.791135][T14399] Registered IR keymap rc-empty [ 1904.863480][T14399] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.6/usb7/7-1/rc/rc0 [ 1904.903126][T29356] bridge0: port 1(bridge_slave_0) entered blocking state [ 1904.967793][T29356] bridge0: port 1(bridge_slave_0) entered disabled state [ 1905.027181][T14399] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.6/usb7/7-1/rc/rc0/input28 [ 1905.045844][T29356] bridge_slave_0: entered allmulticast mode [ 1905.125397][T29356] bridge_slave_0: entered promiscuous mode [ 1905.208258][T14399] dvb-usb: schedule remote query interval to 100 msecs. [ 1905.250881][T18707] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1905.300898][T14399] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected. [ 1905.315318][T18707] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1905.340573][T29356] bridge0: port 2(bridge_slave_1) entered blocking state [ 1905.370717][T18707] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1905.403106][ T9] dvb-usb: bulk message failed: -22 (1/0) [ 1905.418392][T18707] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1905.453518][T18707] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1905.473355][T29356] bridge0: port 2(bridge_slave_1) entered disabled state [ 1905.511925][ T9] dvb-usb: bulk message failed: -22 (1/0) [ 1905.553200][T14399] usb 7-1: USB disconnect, device number 24 [ 1905.587826][T29356] bridge_slave_1: entered allmulticast mode [ 1905.713080][T29356] bridge_slave_1: entered promiscuous mode [ 1907.019520][T14399] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected. [ 1907.540904][T29356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1907.558121][T18707] Bluetooth: hci0: command tx timeout [ 1907.795796][T29356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1909.038127][T29356] team0: Port device team_slave_0 added [ 1909.306244][T24960] ===================================================== [ 1909.314486][T24960] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x77e/0xf00 [ 1909.323780][T24960] n_tty_receive_buf_closing+0x77e/0xf00 [ 1909.329941][T24960] n_tty_receive_buf_common+0x19c6/0x2610 [ 1909.341900][T24960] n_tty_receive_buf2+0x4c/0x60 [ 1909.347081][T24960] tty_ldisc_receive_buf+0xc6/0x2c0 [ 1909.358358][T24960] tty_port_default_receive_buf+0xd7/0x1a0 [ 1909.372364][T24960] flush_to_ldisc+0x43e/0xe40 [ 1909.377383][T24960] process_scheduled_works+0xb82/0x1e80 [ 1909.389749][T24960] worker_thread+0xee4/0x1590 [ 1909.402385][T24960] kthread+0x53f/0x600 [ 1909.406725][T24960] ret_from_fork+0x20f/0x910 [ 1909.417896][T24960] ret_from_fork_asm+0x1a/0x30 [ 1909.426901][T29356] team0: Port device team_slave_1 added [ 1909.440462][T24960] [ 1909.448824][T24960] Uninit was created at: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1909.459274][T24960] __kmalloc_noprof+0x486/0x1680 [ 1909.472593][T24960] __tty_buffer_request_room+0x3d4/0x7a0 [ 1909.478606][T24960] __tty_insert_flip_string_flags+0x157/0x6e0 [ 1909.492005][T24960] uart_insert_char+0x368/0x930 [ 1909.497457][T24960] serial8250_read_char+0x1ba/0x670 [ 1909.509937][T24960] serial8250_handle_irq_locked+0x6d4/0xa40 [ 1909.522694][T24960] serial8250_handle_irq+0x187/0x730 [ 1909.528355][T24960] serial8250_default_handle_irq+0x116/0x370 [ 1909.540547][T24960] serial8250_interrupt+0xcb/0x420 [ 1909.552130][T24960] __handle_irq_event_percpu+0x13c/0xf90 [ 1909.558363][T24960] handle_irq_event+0xe0/0x2a0 [ 1909.572717][T24960] handle_edge_irq+0x2a9/0xb30 [ 1909.577876][T24960] __common_interrupt+0x9d/0x180 [ 1909.589958][T24960] common_interrupt+0x94/0xb0 [ 1909.602255][T24960] asm_common_interrupt+0x2b/0x40 [ 1909.607699][T24960] [ 1909.610341][T24960] CPU: 1 UID: 0 PID: 24960 Comm: kworker/u8:13 Tainted: G W L syzkaller #0 PREEMPT(full) [ 1909.628252][T24960] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 1909.631666][T18707] Bluetooth: hci0: command tx timeout [ 1909.639716][T24960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1909.656201][T24960] Workqueue: events_unbound flush_to_ldisc [ 1909.670541][T24960] ===================================================== [ 1909.684623][T24960] Disabling lock debugging due to kernel taint [ 1909.829986][T29757] loop6: detected capacity change from 0 to 256 [ 1909.879219][T29757] exfat: Deprecated parameter 'namecase' [ 1910.009421][T24960] Kernel panic - not syncing: kmsan.panic set ... [ 1910.016250][T24960] CPU: 1 UID: 0 PID: 24960 Comm: kworker/u8:13 Tainted: G B W L syzkaller #0 PREEMPT(full) [ 1910.028004][T24960] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP [ 1910.034737][T24960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1910.045675][T24960] Workqueue: events_unbound flush_to_ldisc [ 1910.052081][T24960] Call Trace: [ 1910.055615][T24960] [ 1910.058920][T24960] __dump_stack+0x26/0x30 [ 1910.063572][T24960] dump_stack_lvl+0x50/0x1c0 [ 1910.068740][T24960] ? dump_stack+0x12/0x25 [ 1910.073976][T24960] dump_stack+0x1e/0x25 [ 1910.078653][T24960] vpanic+0x7b4/0x1430 [ 1910.083076][T24960] panic+0x15d/0x160 [ 1910.087371][T24960] kmsan_report+0x31a/0x320 [ 1910.092245][T24960] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1910.098439][T24960] ? __msan_warning+0x1b/0x30 [ 1910.103580][T24960] ? n_tty_receive_buf_closing+0x77e/0xf00 [ 1910.109636][T24960] ? n_tty_receive_buf_common+0x19c6/0x2610 [ 1910.115960][T24960] ? n_tty_receive_buf2+0x4c/0x60 [ 1910.121335][T24960] ? tty_ldisc_receive_buf+0xc6/0x2c0 [ 1910.127317][T24960] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 1910.133700][T24960] ? flush_to_ldisc+0x43e/0xe40 [ 1910.139023][T24960] ? process_scheduled_works+0xb82/0x1e80 [ 1910.145044][T24960] ? worker_thread+0xee4/0x1590 [ 1910.150399][T24960] ? kthread+0x53f/0x600 [ 1910.154999][T24960] ? ret_from_fork+0x20f/0x910 [ 1910.160015][T24960] ? ret_from_fork_asm+0x1a/0x30 [ 1910.165219][T24960] ? kmsan_get_metadata+0xf1/0x160 [ 1910.170731][T24960] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1910.176938][T24960] ? rpm_suspend+0xa4/0x26d0 [ 1910.182075][T24960] ? kmsan_get_metadata+0xf1/0x160 [ 1910.187487][T24960] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 1910.194253][T24960] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1910.200792][T24960] ? kmsan_get_metadata+0xf1/0x160 [ 1910.206188][T24960] __msan_warning+0x1b/0x30 [ 1910.210978][T24960] n_tty_receive_buf_closing+0x77e/0xf00 [ 1910.216921][T24960] n_tty_receive_buf_common+0x19c6/0x2610 [ 1910.222999][T24960] n_tty_receive_buf2+0x4c/0x60 [ 1910.228166][T24960] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 1910.233955][T24960] tty_ldisc_receive_buf+0xc6/0x2c0 [ 1910.239476][T24960] tty_port_default_receive_buf+0xd7/0x1a0 [ 1910.245689][T24960] flush_to_ldisc+0x43e/0xe40 [ 1910.250882][T24960] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 1910.257872][T24960] ? __pfx_flush_to_ldisc+0x10/0x10 [ 1910.263619][T24960] process_scheduled_works+0xb82/0x1e80 [ 1910.269672][T24960] worker_thread+0xee4/0x1590 [ 1910.274925][T24960] kthread+0x53f/0x600 [ 1910.279466][T24960] ? __pfx_worker_thread+0x10/0x10 [ 1910.285325][T24960] ? __pfx_kthread+0x10/0x10 [ 1910.290166][T24960] ret_from_fork+0x20f/0x910 [ 1910.294999][T24960] ? __switch_to+0x51c/0x750 [ 1910.299846][T24960] ? __pfx_kthread+0x10/0x10 [ 1910.304945][T24960] ret_from_fork_asm+0x1a/0x30 [ 1910.310179][T24960] [ 1910.314114][T24960] Kernel Offset: disabled [ 1910.318607][T24960] Rebooting in 86400 seconds..