last executing test programs: 2m57.997515869s ago: executing program 2 (id=829): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x200}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0) 2m57.619673967s ago: executing program 2 (id=834): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x2, 0x300}, {0x6e, 0x0, 0xd}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xc, 0x9, 0x0, 0x0, 0x20000f15}, {0x3, 0x0, 0x6, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2m57.128725109s ago: executing program 2 (id=841): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setrlimit(0x7, &(0x7f0000000040)) dup(r0) 2m56.822832866s ago: executing program 2 (id=844): symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') mount$9p_unix(&(0x7f00000000c0)='./file0/file0/..\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x12d7498, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 2m56.549254954s ago: executing program 2 (id=847): r0 = landlock_create_ruleset(&(0x7f0000000000)={0x0, 0x3}, 0x10, 0x0) landlock_add_rule$LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f00000000c0)={0x3}, 0x0) close(r0) 2m56.01238844s ago: executing program 2 (id=852): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newlink={0x20, 0x10, 0x401, 0x1}, 0x20}}, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e746572009c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000700003806c000080080003400000000260000b80440001800c000100636f756e746572"], 0x130}, 0x1, 0x0, 0x0, 0x8000}, 0x8880) 2m55.317745574s ago: executing program 32 (id=852): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newlink={0x20, 0x10, 0x401, 0x1}, 0x20}}, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e746572009c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000700003806c000080080003400000000260000b80440001800c000100636f756e746572"], 0x130}, 0x1, 0x0, 0x0, 0x8000}, 0x8880) 5.967720543s ago: executing program 4 (id=2515): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff024}, {0x20, 0x0, 0x0, 0xfffff034}, {0x6, 0xfc, 0x0, 0x7}]}, 0x10) sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840) 5.532173035s ago: executing program 4 (id=2520): syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f0000000140)={[{@nossd_spread}, {@nodatasum}, {@compress_force}, {@compress_algo={'compress', 0x3d, 'lzo'}}, {@flushoncommit}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x65]}}, {@nodiscard}]}, 0xfb, 0x510a, &(0x7f000000d000)="$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") r0 = open(&(0x7f0000000100)='./file1\x00', 0x14f840, 0xa4) preadv2(r0, &(0x7f0000002280)=[{&(0x7f00000011c0)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0xf) 5.230862918s ago: executing program 5 (id=2524): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f0000000140)={0x29, 0x1}) 4.222851577s ago: executing program 5 (id=2531): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0x5, @private2, 0x9}], 0x1c) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e21, 0x1641, @private2, 0xfffffff9}}, 0xfff, 0x9}, &(0x7f0000000200)=0x90) 3.959008164s ago: executing program 1 (id=2534): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0xd, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000009800000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="d22208d9c2978888ca8d8b0005dd", 0x0, 0xc000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.944435232s ago: executing program 5 (id=2538): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x3a}, 0x60) getsockopt$inet_buf(r0, 0x118, 0x26, 0x0, &(0x7f0000000240)) 2.90570713s ago: executing program 4 (id=2539): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x1b) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e) 2.75266541s ago: executing program 1 (id=2541): r0 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x0, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2}) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000003c0)={0x4, 0xf2b8, 0x4, {0x1, @sliced={0xffff, [0x5, 0xc, 0x2800, 0x4, 0xd3a6, 0x400, 0x3, 0x1, 0x7, 0x1, 0x5, 0x7ff, 0x3, 0x1, 0x6, 0x70b, 0x2, 0x3, 0x8, 0x6, 0xf, 0xc, 0x2, 0x5, 0x4, 0x10, 0x3, 0x0, 0x5, 0x9, 0x9, 0x0, 0x3, 0x3, 0x6, 0x8, 0x3, 0x7b, 0x3, 0xe22, 0xffff, 0x6, 0x7b, 0xd, 0x6, 0x3, 0x20, 0xc], 0x7}}, 0x3ff}) 2.719319192s ago: executing program 5 (id=2542): timer_create(0x2, 0x0, &(0x7f0000bbdffc)=0x0) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_gettime(r0, &(0x7f0000000000)) 2.333331728s ago: executing program 5 (id=2545): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = dup(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000a, 0x8012, r1, 0x2000) 2.311514557s ago: executing program 4 (id=2546): syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x66300, 0x0) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e04141a0c"], 0x7) 2.195200484s ago: executing program 1 (id=2547): r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$chown(0x4, r0, 0xee01, 0xee00) keyctl$chown(0x4, r0, 0x0, 0x0) 1.987423423s ago: executing program 0 (id=2550): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)={0x30, r1, 0x1, 0x3, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x4}]}, 0x30}}, 0x0) 1.778156162s ago: executing program 6 (id=2551): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000b80), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0x30, r1, 0x501, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @rand_addr=0x64010100}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'syzkaller0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x8884) 1.755547328s ago: executing program 3 (id=2552): capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd}) r0 = shmget$private(0x0, 0x800000, 0x54003f00, &(0x7f0000800000/0x800000)=nil) shmctl$SHM_UNLOCK(r0, 0xc) 1.659122089s ago: executing program 0 (id=2553): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)={0x34, r1, 0x205, 0x0, 0x2, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x1}]}, 0x34}}, 0x4000) 1.520024498s ago: executing program 1 (id=2554): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='clear_refs\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) write$binfmt_format(r0, &(0x7f0000000300)='1\x00', 0x2) 1.488670142s ago: executing program 3 (id=2556): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) fcntl$setstatus(r0, 0x4, 0x2c00) accept4(r0, 0x0, 0x0, 0x80000) 1.466590009s ago: executing program 6 (id=2557): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200), 0x103881, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000140)="3751f02b82f73ccfc7c431617753f5732f765c975ebce8947e5388c4ff26fa3893119fd147a1576d9456136ab5f15493d175754e4b666e989869d01d418adc376ca22d8077c1b54bea92b5977a41d70ebcc4735ce6c012a5fe5ab7fef98e864216699a235d615ded3292397894b34a794bc14a2edfdc6978c0c97bcb02de69264d", 0x81}, {&(0x7f0000000240)="2857e5671ef0d8e3c39651a014a3a298466c68130e5b77e37f04a5cec22a4cc681c424e649ef28c1bd78afcb20e74b1ad3ac2c75e5c03189383f8e1d3e61a1", 0x3f}, {&(0x7f0000000000)="65f2", 0x2}], 0x3) 1.272758333s ago: executing program 0 (id=2558): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)={0x24, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) 1.199771665s ago: executing program 3 (id=2559): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000001740)={'syz1\x00', {}, 0x26, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x45c) 1.169798442s ago: executing program 6 (id=2560): r0 = socket$packet(0x11, 0x2, 0x300) bind$packet(r0, &(0x7f0000000040)={0x11, 0x4}, 0x14) syz_emit_ethernet(0x16, &(0x7f0000000380)=ANY=[], 0x0) 1.012651836s ago: executing program 4 (id=2561): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x2) ioctl$TCFLSH(r0, 0x40087101, 0xffffffffffff8) 975.193728ms ago: executing program 3 (id=2562): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000000)='\n\x00\x00\x00', 0x4) 973.714785ms ago: executing program 6 (id=2563): r0 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b HID v0.03 Device [syz1] on syz0 [ 283.171789][T10275] FAT-fs (loop5): Directory bread(block 64) failed [ 283.190123][T10275] FAT-fs (loop5): Directory bread(block 65) failed [ 283.225415][T10275] FAT-fs (loop5): Directory bread(block 66) failed [ 283.249030][T10275] FAT-fs (loop5): Directory bread(block 67) failed [ 283.286933][T10275] FAT-fs (loop5): Directory bread(block 68) failed [ 283.323362][T10275] FAT-fs (loop5): Directory bread(block 69) failed [ 283.365381][T10275] FAT-fs (loop5): Directory bread(block 70) failed [ 283.368228][T10276] fido_id[10276]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 283.408736][T10283] loop3: detected capacity change from 0 to 256 [ 283.424392][T10275] FAT-fs (loop5): Directory bread(block 71) failed [ 283.468268][T10275] FAT-fs (loop5): Directory bread(block 72) failed [ 283.487476][T10285] loop1: detected capacity change from 0 to 1024 [ 283.488757][T10283] FAT-fs (loop3): Directory bread(block 64) failed [ 283.495633][T10275] FAT-fs (loop5): Directory bread(block 73) failed [ 283.555488][T10283] FAT-fs (loop3): Directory bread(block 65) failed [ 283.572393][T10280] loop6: detected capacity change from 0 to 4096 [ 283.587760][T10285] hfsplus: can't free extent: start 2889, count 1 [ 283.588209][T10283] FAT-fs (loop3): Directory bread(block 66) failed [ 283.655815][T10280] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 283.669114][T10283] FAT-fs (loop3): Directory bread(block 67) failed [ 283.700626][T10283] FAT-fs (loop3): Directory bread(block 68) failed [ 283.735263][T10280] ntfs3(loop6): ino=b, mi_enum_attr [ 283.735618][T10283] FAT-fs (loop3): Directory bread(block 69) failed [ 283.757530][T10280] ntfs3(loop6): Failed to load $Extend (-22). [ 283.783547][T10280] ntfs3(loop6): Failed to initialize $Extend. [ 283.806857][T10283] FAT-fs (loop3): Directory bread(block 70) failed [ 283.842477][T10283] FAT-fs (loop3): Directory bread(block 71) failed [ 283.850425][T10280] ntfs3(loop6): ino=5, "/" fiemap is not supported for compressed file [ 283.864221][T10283] FAT-fs (loop3): Directory bread(block 72) failed [ 283.887078][T10283] FAT-fs (loop3): Directory bread(block 73) failed [ 284.286164][T10297] loop1: detected capacity change from 0 to 512 [ 284.420613][T10301] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1848'. [ 284.803767][T10311] loop6: detected capacity change from 0 to 512 [ 284.832879][T10311] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 284.945878][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 284.945929][ T30] audit: type=1800 audit(1779197977.056:77): pid=10311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1852" name="file2" dev="loop6" ino=1048836 res=0 errno=0 [ 284.971338][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.023061][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.051040][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.090255][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.125344][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.161941][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.195810][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.244492][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.278595][T10311] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 285.320619][T10311] syz.6.1852: attempt to access beyond end of device [ 285.320619][T10311] loop6: rw=2049, sector=17179852706, nr_sectors = 64 limit=512 [ 285.631511][T10305] loop3: detected capacity change from 0 to 32768 [ 285.703227][T10305] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 285.779088][T10335] loop5: detected capacity change from 0 to 4096 [ 285.874000][T10305] XFS (loop3): Ending clean mount [ 285.950913][T10328] loop6: detected capacity change from 0 to 4096 [ 286.010317][T10328] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 286.137383][T10328] ntfs3(loop6): Failed to initialize $Extend/$Reparse. [ 286.304091][ T5783] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 286.495249][ T5783] usb 2-1: config 0 has no interfaces? [ 286.538197][ T5783] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 286.587134][ T5783] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.608972][ T5627] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 286.643313][ T5783] usb 2-1: Product: syz [ 286.662663][ T5783] usb 2-1: Manufacturer: syz [ 286.683448][ T5783] usb 2-1: SerialNumber: syz [ 286.727434][ T5783] usb 2-1: config 0 descriptor?? [ 286.749530][T10352] set_capacity_and_notify: 1 callbacks suppressed [ 286.749553][T10352] loop6: detected capacity change from 0 to 1024 [ 286.863171][T10355] loop4: detected capacity change from 0 to 64 [ 286.874521][ T47] ntfs3(loop5): ino=5, mi_enum_attr [ 287.279121][T10360] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1870'. [ 287.315072][T10362] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1872'. [ 287.610673][ T5783] usb 2-1: USB disconnect, device number 20 [ 287.898860][T10377] vlan2: entered promiscuous mode [ 287.923908][T10377] bridge0: entered promiscuous mode [ 288.097228][T10387] loop1: detected capacity change from 0 to 16 [ 288.130918][T10387] erofs (device loop1): mounted with root inode @ nid 36. [ 288.237613][T10389] loop6: detected capacity change from 0 to 1024 [ 288.254160][ T5783] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 288.443121][ T5783] usb 5-1: Using ep0 maxpacket: 16 [ 288.503958][T10383] loop4: detected capacity change from 0 to 128 [ 288.542846][T10383] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 288.703933][T10383] ext4 filesystem being mounted at /318/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 288.718351][T10402] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1888'. [ 288.784560][ T5783] usb 5-1: unable to get BOS descriptor or descriptor too short [ 288.823858][ T5783] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 288.860579][ T5783] usb 5-1: can't read configurations, error -71 [ 288.906485][T10369] loop0: detected capacity change from 0 to 32768 [ 289.089969][T10369] ea_get: invalid extended attribute [ 289.129951][T10369] ffff888054d752f8: 04 00 00 00 .... [ 289.212856][T10369] ea_get: invalid extended attribute [ 289.242502][T10369] ffff888054d752f8: 04 00 00 00 .... [ 289.418332][T10417] vlan2: entered promiscuous mode [ 289.420112][T10420] loop6: detected capacity change from 0 to 512 [ 289.448839][T10417] bridge0: entered promiscuous mode [ 289.469490][ T5636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 289.506255][T10422] loop3: detected capacity change from 0 to 1024 [ 289.555714][T10422] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 289.622776][T10422] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 2: comm syz.3.1899: lblock 2 mapped to illegal pblock 2 (length 1) [ 289.636969][T10422] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 289.639077][T10420] FAT-fs (loop6): error, fat_free: invalid cluster chain (i_pos 548) [ 289.648410][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 289.648441][ C1] EXT4-fs (loop3): initial error at time 1779197981: ext4_map_blocks:791: inode 3: block 2 [ 289.648506][ C1] EXT4-fs (loop3): last error at time 1779197981: ext4_map_blocks:791: inode 3: block 2 [ 289.662106][T10422] EXT4-fs (loop3): Remounting filesystem read-only [ 289.666414][T10420] FAT-fs (loop6): Filesystem has been set read-only [ 289.705712][T10422] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 289.713999][T10422] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 289.724274][T10422] EXT4-fs (loop3): 1 orphan inode deleted [ 289.732944][T10422] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 289.753508][T10422] EXT4-fs (loop3): shut down requested (0) [ 289.772540][T10425] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 289.953755][T10426] loop5: detected capacity change from 0 to 4096 [ 290.003855][T10426] EXT4-fs: Ignoring removed orlov option [ 290.032074][T10426] EXT4-fs (loop5): Test dummy encryption mode enabled [ 290.042411][ T5627] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.154471][T10426] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 290.406833][T10443] ALSA: seq fatal error: cannot create timer (-22) [ 290.454118][ T5628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.458894][T10445] loop1: detected capacity change from 0 to 512 [ 290.552571][T10445] EXT4-fs: Ignoring removed i_version option [ 290.593237][T10445] EXT4-fs: Ignoring removed bh option [ 290.757045][T10445] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 290.806071][T10445] ext4 filesystem being mounted at /321/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 291.119862][ T5635] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.429702][T10474] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 292.038412][ T30] audit: type=1326 audit(1779197984.126:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.117998][T10478] set_capacity_and_notify: 1 callbacks suppressed [ 292.118026][T10478] loop5: detected capacity change from 0 to 8192 [ 292.147509][ T30] audit: type=1326 audit(1779197984.146:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.273149][ T30] audit: type=1326 audit(1779197984.146:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.395988][ T30] audit: type=1326 audit(1779197984.146:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.550125][ T30] audit: type=1326 audit(1779197984.146:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.671427][ T30] audit: type=1326 audit(1779197984.146:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.777001][ T30] audit: type=1326 audit(1779197984.146:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.858002][ T30] audit: type=1326 audit(1779197984.146:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1926" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb59ce59 code=0x7ffc0000 [ 292.951146][ T30] audit: type=1326 audit(1779197984.836:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10506 comm="syz.1.1933" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f313e59ce59 code=0x0 [ 292.990403][T10516] loop4: detected capacity change from 0 to 512 [ 293.039156][T10516] EXT4-fs: Ignoring removed orlov option [ 293.097294][T10516] EXT4-fs: Ignoring removed mblk_io_submit option [ 293.196782][T10516] EXT4-fs error (device loop4): ext4_iget_extra_inode:5127: inode #15: comm syz.4.1935: corrupted in-inode xattr: e_value size too large [ 293.211996][T10516] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 293.216099][T10516] EXT4-fs error (device loop4): ext4_orphan_get:1400: comm syz.4.1935: couldn't read orphan inode 15 (err -117) [ 293.225326][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 293.225358][ C1] EXT4-fs (loop4): initial error at time 1779197985: ext4_iget_extra_inode:5127: inode 15 [ 293.225415][ C1] EXT4-fs (loop4): last error at time 1779197985: ext4_iget_extra_inode:5127: inode 15 [ 293.268779][T10516] loop4: lost filesystem error report for type 5 error -117 [ 293.277194][T10516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.535457][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.548875][T10532] loop5: detected capacity change from 0 to 1024 [ 293.641161][T10532] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 294.131221][ T5754] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 294.306811][ T5754] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.306909][T10556] loop6: detected capacity change from 0 to 256 [ 294.342773][ T5754] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.377701][ T5754] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 294.430847][ T5754] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.435232][T10556] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xba6f1341, utbl_chksum : 0xe619d30d) [ 294.488266][ T5754] usb 2-1: config 0 descriptor?? [ 294.615682][ T30] audit: type=1326 audit(1779197986.726:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.4.1955" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fed2659ce59 code=0x0 [ 294.734341][ T24] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 294.851704][ T988] usb 4-1: new low-speed USB device number 16 using dummy_hcd [ 294.915458][ T24] usb 6-1: Using ep0 maxpacket: 32 [ 294.924880][ T24] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 294.948576][ T5754] pyra 0003:1E7D:2CF6.0021: global environment stack underflow [ 294.957783][ T5754] pyra 0003:1E7D:2CF6.0021: item 0 0 1 11 parsing failed [ 294.967023][ T24] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 294.969298][ T5754] pyra 0003:1E7D:2CF6.0021: parse failed [ 294.982386][ T24] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 294.993145][ T5754] pyra 0003:1E7D:2CF6.0021: probe with driver pyra failed with error -22 [ 295.000146][ T24] usb 6-1: Product: syz [ 295.018376][ T24] usb 6-1: Manufacturer: syz [ 295.033266][ T988] usb 4-1: config 0 has an invalid interface number: 55 but max is 0 [ 295.040059][ T24] usb 6-1: SerialNumber: syz [ 295.047464][ T988] usb 4-1: config 0 has no interface number 0 [ 295.068203][ T988] usb 4-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 295.078504][ T24] usb 6-1: config 0 descriptor?? [ 295.090653][ T988] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8 [ 295.106849][T10561] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 295.118820][ T988] usb 4-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 295.136317][ T24] hub 6-1:0.0: bad descriptor, ignoring hub [ 295.148327][ T988] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 295.175456][ T24] hub 6-1:0.0: probe with driver hub failed with error -5 [ 295.180813][ T988] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8 [ 295.230742][ T988] usb 4-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 295.245928][ T5756] usb 2-1: USB disconnect, device number 21 [ 295.273742][ T988] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 295.309438][ T988] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.347739][T10580] loop0: detected capacity change from 0 to 512 [ 295.370904][ T988] usb 4-1: config 0 descriptor?? [ 295.392062][T10580] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 295.397299][T10566] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 295.419481][T10566] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 295.476548][T10580] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1959: bad orphan inode 13 [ 295.499165][ T988] ldusb 4-1:0.55: LD USB Device #1 now attached to major 180 minor 1 [ 295.538969][T10580] loop0: lost filesystem error report for type 5 error -117 [ 295.539430][T10580] ext4_test_bit(bit=12, block=18) = 1 [ 295.546853][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 295.546886][ C0] EXT4-fs (loop0): last error at time 1779197987: ext4_orphan_get:1423 [ 295.572890][T10580] is_bad_inode(inode)=0 [ 295.588267][ T5756] usb 6-1: USB disconnect, device number 14 [ 295.615887][T10580] NEXT_ORPHAN(inode)=0 [ 295.633852][T10580] max_ino=32 [ 295.649225][T10580] i_nlink=1 [ 295.702797][T10580] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 295.773862][ T5756] usb 4-1: USB disconnect, device number 16 [ 295.811217][ T5756] ldusb 4-1:0.55: LD USB Device #1 now disconnected [ 295.949567][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 295.949616][T10573] loop6: detected capacity change from 0 to 32768 [ 295.966310][T10573] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1957 (10573) [ 296.096117][T10573] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 296.143890][T10573] BTRFS info (device loop6): using crc32c checksum algorithm [ 296.292499][T10573] BTRFS info (device loop6): enabling ssd optimizations [ 296.304354][T10573] BTRFS info (device loop6): turning on flush-on-commit [ 296.358291][T10607] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 296.369427][T10573] BTRFS info (device loop6): enabling free space tree [ 296.379094][T10573] BTRFS info (device loop6): enabling auto defrag [ 296.385657][T10573] BTRFS info (device loop6): use lzo compression, level 1 [ 296.392915][T10573] BTRFS info (device loop6): max_inline set to 4096 [ 296.729033][ T7831] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 296.809340][T10624] netlink: 'syz.4.1970': attribute type 1 has an invalid length. [ 296.879713][T10619] loop3: detected capacity change from 0 to 4096 [ 296.935888][T10619] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 297.050041][T10619] ntfs3(loop3): ino=19, mi_enum_attr [ 297.082857][T10619] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 297.246289][T10619] ntfs3(loop3): failed to convert "c46c" to iso8859-13 [ 297.306006][T10619] ntfs3(loop3): ino=20, mi_enum_attr [ 298.329925][T10662] loop4: detected capacity change from 0 to 512 [ 298.377121][T10662] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 298.553875][T10668] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1990'. [ 298.602361][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 298.602385][ T30] audit: type=1800 audit(1779197990.706:89): pid=10662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1986" name="file2" dev="loop4" ino=1048844 res=0 errno=0 [ 298.633304][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 298.670955][T10672] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 298.686058][T10668] netlink: 43 bytes leftover after parsing attributes in process `syz.5.1990'. [ 298.713076][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 298.785367][T10668] netlink: 'syz.5.1990': attribute type 6 has an invalid length. [ 298.796440][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 298.823950][T10668] netlink: 'syz.5.1990': attribute type 5 has an invalid length. [ 298.836093][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 298.886930][T10668] netlink: 43 bytes leftover after parsing attributes in process `syz.5.1990'. [ 298.904662][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 298.948058][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 299.024444][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 299.051975][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 299.089236][T10662] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 299.163686][T10662] syz.4.1986: attempt to access beyond end of device [ 299.163686][T10662] loop4: rw=2049, sector=17179852706, nr_sectors = 64 limit=512 [ 299.379356][T10679] loop0: detected capacity change from 0 to 4096 [ 299.972647][ T5756] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 300.011569][ T5638] Bluetooth: hci0: command 0x0406 tx timeout [ 300.011816][ T5629] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 300.192293][ T5756] usb 6-1: Using ep0 maxpacket: 16 [ 300.217258][ T5756] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 300.281140][ T5756] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 300.317430][ T5756] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 300.376120][ T5756] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 300.406664][ T5756] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 300.467892][ T5756] usb 6-1: config 0 descriptor?? [ 300.586160][T10719] netlink: 'syz.6.2009': attribute type 8 has an invalid length. [ 300.725502][T10721] No buffer was provided with the request [ 300.973387][ T5756] microsoft 0003:045E:07DA.0022: ignoring exceeding usage max [ 300.986463][T10728] loop4: detected capacity change from 0 to 8 [ 300.997600][T10727] loop1: detected capacity change from 0 to 512 [ 301.014274][ T5756] microsoft 0003:045E:07DA.0022: ignoring exceeding usage max [ 301.019384][T10727] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 301.185430][ T5756] microsoft 0003:045E:07DA.0022: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0 [ 301.234633][ T5756] microsoft 0003:045E:07DA.0022: no inputs found [ 301.265258][ T30] audit: type=1800 audit(1779197993.376:90): pid=10727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2011" name="file2" dev="loop1" ino=1048845 res=0 errno=0 [ 301.280903][ T5756] microsoft 0003:045E:07DA.0022: could not initialize ff, continuing anyway [ 301.322817][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.378845][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.389490][ T5756] usb 6-1: USB disconnect, device number 15 [ 301.438882][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.507120][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.560500][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.579149][T10732] fido_id[10732]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 301.614552][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.707038][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.727821][T10706] loop3: detected capacity change from 0 to 32768 [ 301.749252][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.805317][T10727] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 301.846910][T10709] loop0: detected capacity change from 0 to 32768 [ 301.855436][T10727] syz.1.2011: attempt to access beyond end of device [ 301.855436][T10727] loop1: rw=2049, sector=17179852706, nr_sectors = 64 limit=512 [ 301.989309][T10709] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 302.166003][T10709] XFS (loop0): Ending clean mount [ 302.530428][T10760] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2021'. [ 302.559261][T10759] loop1: detected capacity change from 0 to 764 [ 302.649311][T10759] Symlink component flag not implemented [ 302.703206][T10759] Symlink component flag not implemented (116) [ 302.747376][ T5634] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 302.897953][T10765] loop6: detected capacity change from 0 to 1024 [ 302.938000][T10765] EXT4-fs: inline encryption not supported [ 302.986691][T10765] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 303.153079][T10765] EXT4-fs error (device loop6): ext4_free_blocks:6717: comm syz.6.2022: Freeing blocks not in datazone - block = 0, count = 4096 [ 303.168391][T10765] loop6: lost filesystem error report for type 5 error -117 [ 303.176352][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 303.190164][ C0] EXT4-fs (loop6): initial error at time 1779197995: ext4_free_blocks:6717 [ 303.192147][T10765] EXT4-fs (loop6): Remounting filesystem read-only [ 303.198807][ C0] EXT4-fs (loop6): last error at time 1779197995: ext4_free_blocks:6717 [ 303.283005][T10765] EXT4-fs (loop6): 1 orphan inode deleted [ 303.302910][ T36] EXT4-fs (loop6): Quota write (off=2048, len=1024) cancelled because transaction is not started [ 303.330779][T10765] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 303.380609][T10772] loop1: detected capacity change from 0 to 1024 [ 303.392616][ T36] Quota error (device loop6): write_blk: dquota write failed [ 303.417781][ T36] Quota error (device loop6): remove_free_dqentry: Can't write block (2) with free entries [ 303.460300][ T36] EXT4-fs (loop6): Quota write (off=2048, len=1024) cancelled because transaction is not started [ 303.477238][T10772] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 303.501615][T10739] loop4: detected capacity change from 0 to 32768 [ 303.534480][ T36] Quota error (device loop6): write_blk: dquota write failed [ 303.573716][ T36] Quota error (device loop6): free_dqentry: Can't move quota data block (2) to free list [ 303.630543][ T36] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started [ 303.682254][ T36] Quota error (device loop6): v2_write_file_info: Can't write info structure [ 303.812099][ T7831] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.901052][T10775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2025'. [ 303.955956][T10778] 9pnet_fd: Insufficient options for proto=fd [ 304.079820][T10754] loop5: detected capacity change from 0 to 32768 [ 304.244266][T10786] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2030'. [ 304.278096][T10786] netlink: 35 bytes leftover after parsing attributes in process `syz.0.2030'. [ 304.320057][T10786] netlink: 'syz.0.2030': attribute type 5 has an invalid length. [ 304.352359][T10786] netlink: 'syz.0.2030': attribute type 6 has an invalid length. [ 304.375611][T10786] netlink: 35 bytes leftover after parsing attributes in process `syz.0.2030'. [ 305.039695][T10804] loop1: detected capacity change from 0 to 1024 [ 305.077038][T10804] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 305.402311][T10812] loop6: detected capacity change from 0 to 1024 [ 305.548887][T10816] syz.5.2045 uses obsolete (PF_INET,SOCK_PACKET) [ 305.934402][T10827] loop0: detected capacity change from 0 to 256 [ 306.068822][T10827] FAT-fs (loop0): Directory bread(block 64) failed [ 306.109160][T10827] FAT-fs (loop0): Directory bread(block 65) failed [ 306.148682][T10827] FAT-fs (loop0): Directory bread(block 66) failed [ 306.177092][T10835] loop3: detected capacity change from 0 to 512 [ 306.183181][T10827] FAT-fs (loop0): Directory bread(block 67) failed [ 306.211714][T10835] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 306.215795][T10827] FAT-fs (loop0): Directory bread(block 68) failed [ 306.301298][T10827] FAT-fs (loop0): Directory bread(block 69) failed [ 306.345024][T10827] FAT-fs (loop0): Directory bread(block 70) failed [ 306.382420][T10827] FAT-fs (loop0): Directory bread(block 71) failed [ 306.410166][ T30] audit: type=1800 audit(1779197998.516:91): pid=10835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2051" name="file2" dev="loop3" ino=1048846 res=0 errno=0 [ 306.426650][T10827] FAT-fs (loop0): Directory bread(block 72) failed [ 306.459636][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.486442][T10827] FAT-fs (loop0): Directory bread(block 73) failed [ 306.499413][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.539539][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.588737][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.631440][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.667020][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.699628][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.732207][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.761512][T10835] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 306.793332][T10835] syz.3.2051: attempt to access beyond end of device [ 306.793332][T10835] loop3: rw=2049, sector=17179852706, nr_sectors = 64 limit=512 [ 307.136687][T10856] loop0: detected capacity change from 0 to 128 [ 307.402560][T10836] loop6: detected capacity change from 0 to 32768 [ 307.449522][T10836] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2053 (10836) [ 307.487798][T10862] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2066'. [ 307.547029][T10836] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 307.587713][T10836] BTRFS info (device loop6): using crc32c checksum algorithm [ 307.823231][T10836] BTRFS info (device loop6): setting nodatasum [ 307.877481][T10836] BTRFS info (device loop6): enabling ssd optimizations [ 307.916654][T10836] BTRFS info (device loop6): disabling tree log [ 307.956924][T10836] BTRFS info (device loop6): turning on async discard [ 308.004550][T10836] BTRFS info (device loop6): enabling free space tree [ 308.047912][T10836] BTRFS info (device loop6): enabling auto defrag [ 308.347660][ T7831] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 308.377576][T10901] netlink: 10 bytes leftover after parsing attributes in process `syz.0.2077'. [ 308.386834][T10904] loop4: detected capacity change from 0 to 8 [ 308.439973][T10901] netlink: 10 bytes leftover after parsing attributes in process `syz.0.2077'. [ 308.601694][T10899] loop5: detected capacity change from 0 to 4096 [ 308.784376][T10899] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 308.942653][T10899] ntfs3(loop5): failed to convert "0080" to ascii [ 309.004214][T10899] ntfs3(loop5): failed to convert name for inode 1e. [ 309.041603][T10899] ntfs3(loop5): ino=1f, mi_enum_attr [ 309.662618][T10893] loop3: detected capacity change from 0 to 32768 [ 309.770449][T10893] XFS (loop3): Mounting V5 filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d in no-recovery mode. Filesystem will be inconsistent. [ 310.029390][T10940] loop4: detected capacity change from 0 to 64 [ 310.090913][ T5627] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 310.713878][T10950] loop1: detected capacity change from 0 to 4096 [ 310.899347][T10964] loop5: detected capacity change from 0 to 512 [ 311.017595][T10964] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.086626][T10964] ext4 filesystem being mounted at /346/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 311.137356][T10964] EXT4-fs (loop5): resizing filesystem from 128 to 1 blocks [ 311.154040][T10964] EXT4-fs warning (device loop5): ext4_resize_fs:2041: can't shrink FS - resize aborted [ 311.409814][ T5628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.445288][ T5756] usb 4-1: new full-speed USB device number 17 using dummy_hcd [ 311.621767][ T5756] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 311.653081][T10979] loop6: detected capacity change from 0 to 4096 [ 311.674242][ T5756] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 311.695664][ T5756] usb 4-1: Product: syz [ 311.710126][T10979] NILFS (loop6): invalid segment: Checksum error in segment payload [ 311.724953][ T5756] usb 4-1: Manufacturer: syz [ 311.734813][ T5756] usb 4-1: SerialNumber: syz [ 311.741769][T10979] NILFS (loop6): trying rollback from an earlier position [ 311.765896][ T5756] usb 4-1: config 0 descriptor?? [ 311.790556][T10985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2111'. [ 311.804979][T10945] loop0: detected capacity change from 0 to 32768 [ 311.837192][T10985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2111'. [ 311.849404][T10979] NILFS (loop6): recovery complete [ 311.851213][T10985] netlink: 'syz.1.2111': attribute type 11 has an invalid length. [ 311.873825][T10985] netlink: 'syz.1.2111': attribute type 12 has an invalid length. [ 311.906410][T10986] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 311.952601][T10945] read_mapping_page failed! [ 311.979981][T10945] ERROR: (device loop0): txAbort: [ 311.979981][T10945] [ 312.050424][T10988] read_mapping_page failed! [ 312.088036][ T5756] usb 4-1: USB disconnect, device number 17 [ 312.125473][T10988] ERROR: (device loop0): txAbort: [ 312.125473][T10988] [ 312.283038][ T5915] udevd[5915]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 312.590180][T11002] loop1: detected capacity change from 0 to 256 [ 312.640429][T11002] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 312.743408][T11007] loop6: detected capacity change from 0 to 64 [ 312.850558][T11007] hfs: keylen 1794 too large [ 313.403181][T11011] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 313.412101][T11021] set_capacity_and_notify: 1 callbacks suppressed [ 313.412123][T11021] loop4: detected capacity change from 0 to 512 [ 313.491233][T11021] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 313.573881][T11011] ntfs3(loop3): failed to convert "0080" to ascii [ 313.588340][T11021] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.2128: iget: bad i_size value: 38620345925642 [ 313.632251][T11021] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 313.638868][T11021] EXT4-fs error (device loop4): ext4_orphan_get:1400: comm syz.4.2128: couldn't read orphan inode 15 (err -117) [ 313.648121][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 313.648153][ C0] EXT4-fs (loop4): initial error at time 1779198005: ext4_orphan_get:1397: inode 15 [ 313.648206][ C0] EXT4-fs (loop4): last error at time 1779198005: ext4_orphan_get:1397: inode 15 [ 313.690315][T11011] ntfs3(loop3): failed to convert name for inode 1e. [ 313.732852][T11021] loop4: lost filesystem error report for type 5 error -117 [ 313.734953][T11011] ntfs3(loop3): ino=1f, mi_enum_attr [ 313.807774][T11021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 314.175703][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 314.326863][ T5756] kernel read not supported for file /vga_arbiter (pid: 5756 comm: kworker/0:5) [ 314.336821][T11042] loop0: detected capacity change from 0 to 4096 [ 314.390650][T11042] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 314.449900][T11053] loop5: detected capacity change from 0 to 1024 [ 314.492332][T11053] EXT4-fs: Ignoring removed orlov option [ 314.560835][T11053] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 314.577125][T11042] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 314.624778][T11042] ntfs3(loop0): ino=19, mi_enum_attr [ 314.667891][T11060] loop1: detected capacity change from 0 to 1024 [ 314.708646][T11060] EXT4-fs: Ignoring removed bh option [ 314.716854][ T5628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 314.790271][T11060] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 315.119742][ T5635] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 315.299088][T11078] ALSA: mixer_oss: invalid OSS volume '' [ 315.386765][T11083] loop5: detected capacity change from 0 to 512 [ 315.467991][T11083] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 315.500746][T11083] ext4 filesystem being mounted at /356/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 315.763620][T11099] loop4: detected capacity change from 0 to 128 [ 315.818684][T11097] loop1: detected capacity change from 0 to 2048 [ 315.831689][T11099] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 315.858579][T11099] hpfs: filesystem error: improperly stopped [ 315.883546][T11099] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 315.900639][T11097] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 315.929051][T11099] hpfs: You really don't want any checks? You are crazy... [ 315.967768][T11099] hpfs: hpfs_map_sector(): read error [ 315.978355][ T5628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.993731][T11099] hpfs: code page support is disabled [ 316.025404][T11103] loop3: detected capacity change from 0 to 256 [ 316.044797][T11099] hpfs: hpfs_map_4sectors(): unaligned read [ 316.065119][T11099] hpfs: hpfs_map_4sectors(): unaligned read [ 316.099791][T11103] exfat: Deprecated parameter 'utf8' [ 316.109945][T11099] hpfs: filesystem error: unable to find root dir [ 316.181023][T11103] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72bddf51, utbl_chksum : 0xe619d30d) [ 316.278658][T11099] hpfs: hpfs_map_4sectors(): unaligned read [ 316.294547][T11106] loop6: detected capacity change from 0 to 256 [ 316.331997][T11099] hpfs: hpfs_map_sector(): read error [ 316.408712][T11106] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 316.495495][ T1308] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.502826][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 316.800111][T11117] netlink: 'syz.4.2168': attribute type 11 has an invalid length. [ 316.835398][T11117] netlink: 'syz.4.2168': attribute type 4 has an invalid length. [ 316.863513][T11117] netlink: 199780 bytes leftover after parsing attributes in process `syz.4.2168'. [ 317.047349][T11094] loop0: detected capacity change from 0 to 32768 [ 317.059157][T11123] netlink: 'syz.1.2171': attribute type 2 has an invalid length. [ 317.074503][T11094] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.2156 (11094) [ 317.143396][T11094] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 317.178573][T11094] BTRFS info (device loop0): using crc32c checksum algorithm [ 317.228799][T11126] macsec1: entered promiscuous mode [ 317.301235][T11094] BTRFS info (device loop0): enabling ssd optimizations [ 317.328265][T11094] BTRFS info (device loop0): turning on flush-on-commit [ 317.348675][T11094] BTRFS info (device loop0): enabling free space tree [ 317.359684][T11143] exfat: Deprecated parameter 'namecase' [ 317.367587][T11094] BTRFS info (device loop0): enabling auto defrag [ 317.379468][T11143] exfat: Deprecated parameter 'namecase' [ 317.387306][T11143] exfat: Deprecated parameter 'namecase' [ 317.394468][T11094] BTRFS info (device loop0): use lzo compression, level 1 [ 317.403583][T11094] BTRFS info (device loop0): max_inline set to 4096 [ 317.438979][T11143] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 317.546779][T11145] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 317.726286][ T30] audit: type=1800 audit(1779198009.836:92): pid=11094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2156" name="file1" dev="loop0" ino=260 res=0 errno=0 [ 317.894054][T11148] FAT-fs (loop1): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1) [ 317.997234][ T5634] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 318.470783][T11163] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2184'. [ 318.590443][T11156] set_capacity_and_notify: 3 callbacks suppressed [ 318.590468][T11156] loop6: detected capacity change from 0 to 4096 [ 318.762195][T11156] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 318.883022][T11156] ntfs3(loop6): failed to convert "0080" to ascii [ 318.925160][T11156] ntfs3(loop6): failed to convert name for inode 1e. [ 318.975072][T11156] ntfs3(loop6): ino=1f, mi_enum_attr [ 319.254085][T11185] loop0: detected capacity change from 0 to 64 [ 319.489842][T11191] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 319.880333][T11203] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2204'. [ 319.950438][T11207] loop1: detected capacity change from 0 to 1024 [ 319.982253][T11207] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 320.013856][T11209] loop4: detected capacity change from 0 to 512 [ 320.074650][T11209] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 320.177698][T11206] loop5: detected capacity change from 0 to 4096 [ 320.212482][T11209] EXT4-fs error (device loop4): ext4_read_inode_bitmap:138: comm syz.4.2206: Invalid inode bitmap blk 4 in block_group 0 [ 320.265003][T11209] loop4: lost filesystem error report for type 5 error -117 [ 320.322567][T11209] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.336141][T11219] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 320.840129][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.955429][T11233] binder: 11232:11233 ioctl c018620c 200000000040 returned -22 [ 321.561592][T11247] loop3: detected capacity change from 0 to 64 [ 321.796082][T11252] loop5: detected capacity change from 0 to 256 [ 321.827954][T11249] loop0: detected capacity change from 0 to 4096 [ 321.841693][T11252] exfat: Deprecated parameter 'utf8' [ 321.910024][T11249] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 321.969346][T11252] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc232f927, utbl_chksum : 0xe619d30d) [ 322.302218][T11235] loop4: detected capacity change from 0 to 32768 [ 322.380185][T11235] read_mapping_page failed! [ 322.400281][T11240] loop1: detected capacity change from 0 to 32768 [ 322.410157][T11235] ERROR: (device loop4): txAbort: [ 322.410157][T11235] [ 322.440502][T11240] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2219 (11240) [ 322.472214][T11259] read_mapping_page failed! [ 322.497856][T11259] ERROR: (device loop4): txAbort: [ 322.497856][T11259] [ 322.528770][T11240] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 322.573438][T11240] BTRFS info (device loop1): using blake2b checksum algorithm [ 322.818586][T11240] BTRFS info (device loop1): enabling ssd optimizations [ 322.888724][T11240] BTRFS info (device loop1): turning on async discard [ 322.941244][T11240] BTRFS info (device loop1): enabling free space tree [ 323.177026][T11288] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2235'. [ 323.307634][T11256] JBD2: Ignoring recovery information on journal [ 323.483757][T11256] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 323.606988][ T5635] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 323.622209][T11279] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 323.642780][T11279] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 323.835419][T11279] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 323.835631][T11291] syz.0.2236 (11291) used greatest stack depth: 17448 bytes left [ 323.851399][T11279] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 324.039818][T11279] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 324.079741][T11279] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 324.118775][ T5627] ocfs2: Unmounting device (7,3) on (node local) [ 324.171886][T11279] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 324.203499][T11279] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 324.215098][T11279] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 324.324998][T11279] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 324.433727][T11311] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2245'. [ 324.622248][ T24] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 324.792199][ T24] usb 6-1: Using ep0 maxpacket: 32 [ 324.803728][ T24] usb 6-1: config 0 has an invalid interface number: 196 but max is 0 [ 324.816087][ T24] usb 6-1: config 0 has no interface number 0 [ 324.822447][ T24] usb 6-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528 [ 324.827738][T11318] netlink: 'syz.3.2243': attribute type 178 has an invalid length. [ 324.834557][ T24] usb 6-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 324.850728][ T24] usb 6-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 324.863900][ T24] usb 6-1: config 0 interface 196 has no altsetting 0 [ 324.877528][ T24] usb 6-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a [ 324.886784][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 324.895762][ T24] usb 6-1: Product: syz [ 324.900045][ T24] usb 6-1: Manufacturer: syz [ 324.906221][ T24] usb 6-1: SerialNumber: syz [ 324.934026][ T24] usb 6-1: config 0 descriptor?? [ 324.942355][T11295] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 324.971716][ T5629] Bluetooth: hci1: command 0x0406 tx timeout [ 325.193971][T11323] set_capacity_and_notify: 1 callbacks suppressed [ 325.194025][T11323] loop3: detected capacity change from 0 to 64 [ 325.400597][ T24] ipheth 6-1:0.196: ipheth_get_macaddr: usb_control_msg: short packet: 0 bytes [ 325.449304][ T24] ipheth 6-1:0.196: probe with driver ipheth failed with error -22 [ 325.579264][T11313] loop1: detected capacity change from 0 to 32768 [ 325.626365][ T988] usb 6-1: USB disconnect, device number 16 [ 325.658389][T11313] read_mapping_page failed! [ 325.683156][T11313] ERROR: (device loop1): txAbort: [ 325.683156][T11313] [ 325.736201][T11330] read_mapping_page failed! [ 325.787832][T11330] ERROR: (device loop1): txAbort: [ 325.787832][T11330] [ 325.851224][ T5629] Bluetooth: hci4: command 0x0406 tx timeout [ 326.092116][ T5629] Bluetooth: hci3: command 0x0406 tx timeout [ 326.172648][ T5629] Bluetooth: hci5: command 0x0406 tx timeout [ 326.251270][ T5629] Bluetooth: hci0: command 0x0406 tx timeout [ 326.258191][T11279] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 326.372761][T11336] loop3: detected capacity change from 0 to 4096 [ 326.417035][T11336] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 326.509483][T11336] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 326.546725][T11342] loop5: detected capacity change from 0 to 2048 [ 326.567453][T11336] ntfs3(loop3): ino=19, mi_enum_attr [ 326.611662][T11342] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 326.713467][T11336] ntfs3(loop3): failed to convert "c46c" to maccyrillic [ 326.759111][T11336] ntfs3(loop3): ino=20, mi_enum_attr [ 326.848206][T11348] loop6: detected capacity change from 0 to 1024 [ 326.888516][T11348] EXT4-fs: Ignoring removed nomblk_io_submit option [ 326.978069][T11348] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 327.053130][ T5629] Bluetooth: hci1: command 0x0406 tx timeout [ 327.070471][T11348] System zones: 0-1, 3-36 [ 327.126890][T11348] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 327.378062][T11346] loop4: detected capacity change from 0 to 4096 [ 327.417812][T11358] loop1: detected capacity change from 0 to 64 [ 327.460328][T11358] hfs: unable to locate alternate MDB [ 327.500404][T11358] hfs: continuing without an alternate MDB [ 327.515387][ T7831] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.544028][T11346] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 327.594668][ T30] audit: type=1800 audit(1779198019.706:93): pid=11358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2264" name="file1" dev="loop1" ino=22 res=0 errno=0 [ 327.703252][T11346] ntfs3(loop4): Failed to load $Extend (-22). [ 327.788602][T11346] ntfs3(loop4): Failed to initialize $Extend. [ 327.931314][ T5629] Bluetooth: hci4: command 0x0406 tx timeout [ 328.044731][T11360] loop3: detected capacity change from 0 to 4096 [ 328.103923][T11360] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 328.171769][ T5629] Bluetooth: hci3: command 0x0406 tx timeout [ 328.242628][T11360] ntfs3(loop3): ino=1a, mi_enum_attr [ 328.261257][T11360] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 328.298834][T11360] ntfs3(loop3): ino=1a, mi_enum_attr [ 328.320119][T11360] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 328.331243][ T5629] Bluetooth: hci0: command 0x0406 tx timeout [ 328.689707][T11354] loop5: detected capacity change from 0 to 32768 [ 328.755930][T11354] ocfs2: Slot 0 on device (7,5) was already allocated to this node! [ 328.864056][T11354] JBD2: Ignoring recovery information on journal [ 328.957173][T11354] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 329.219089][T11377] loop4: detected capacity change from 0 to 4096 [ 329.326148][ T5628] ocfs2: Unmounting device (7,5) on (node local) [ 329.474491][T11372] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 329.526803][T11372] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 329.537579][T11387] exfat: Deprecated parameter 'utf8' [ 329.562120][T11372] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 329.570102][T11387] exfat: Deprecated parameter 'utf8' [ 329.600935][T11387] exfat: Deprecated parameter 'utf8' [ 329.606737][T11372] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 329.630810][T11387] exfat: Deprecated parameter 'utf8' [ 329.638433][T11372] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 329.662601][T11387] exfat: Deprecated parameter 'namecase' [ 329.730222][T11377] ntfs3(loop4): ino=5, "/" The size of extended attributes must not exceed 64KiB [ 329.739862][T11387] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 330.247857][T11399] set_capacity_and_notify: 1 callbacks suppressed [ 330.247882][T11399] loop6: detected capacity change from 0 to 2048 [ 330.309199][T11399] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 330.512948][T11408] loop3: detected capacity change from 0 to 128 [ 330.598605][T11408] befs: (loop3): invalid blocksize: 2066842815 [ 330.971523][ T5638] Bluetooth: hci1: command 0x0406 tx timeout [ 331.173951][T11430] loop0: detected capacity change from 0 to 64 [ 331.531825][ T5638] Bluetooth: hci4: command 0x0406 tx timeout [ 331.611212][ T5633] Bluetooth: hci3: command 0x0406 tx timeout [ 331.617878][ T5638] Bluetooth: hci5: command 0x0406 tx timeout [ 331.691235][ T5638] Bluetooth: hci0: command 0x0406 tx timeout [ 331.697476][T11372] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 332.212531][T11458] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2308'. [ 332.586708][T11473] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2316'. [ 332.596299][T11475] use of bytesused == 0 is deprecated and will be removed in the future, [ 332.626579][T11475] use the actual size instead. [ 332.626838][T11473] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 332.860088][T11479] loop3: detected capacity change from 0 to 128 [ 332.893336][T11479] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 332.923203][T11479] hpfs: filesystem error: improperly stopped [ 332.939997][T11479] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 332.956929][T11479] hpfs: You really don't want any checks? You are crazy... [ 332.983682][T11479] hpfs: hpfs_map_sector(): read error [ 333.008904][T11479] hpfs: code page support is disabled [ 333.028229][T11479] hpfs: hpfs_map_4sectors(): unaligned read [ 333.050012][T11479] hpfs: hpfs_map_4sectors(): unaligned read [ 333.085700][T11479] hpfs: filesystem error: unable to find root dir [ 333.171629][ T9] usb 2-1: new low-speed USB device number 22 using dummy_hcd [ 333.339309][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 333.382353][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 8 [ 333.427374][ T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 333.499889][ T9] usb 2-1: New USB device found, idVendor=1a34, idProduct=f705, bcdDevice= 0.00 [ 333.557952][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.661700][ T9] usb 2-1: config 0 descriptor?? [ 333.672613][T11483] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 333.775368][ T5638] Bluetooth: hci0: command 0x0406 tx timeout [ 334.122391][ T9] acrux 0003:1A34:F705.0023: unexpected long global item [ 334.154036][ T9] acrux 0003:1A34:F705.0023: parse failed [ 334.177309][ T9] acrux 0003:1A34:F705.0023: probe with driver acrux failed with error -22 [ 334.237563][T11503] loop3: detected capacity change from 0 to 4096 [ 334.258598][T11481] loop5: detected capacity change from 0 to 32768 [ 334.366450][T11481] JBD2: Ignoring recovery information on journal [ 334.395570][ T5783] usb 2-1: USB disconnect, device number 22 [ 334.428636][T11509] loop4: detected capacity change from 0 to 1024 [ 334.468446][T11509] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 334.497629][T11481] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 335.013810][ T5628] ocfs2: Unmounting device (7,5) on (node local) [ 335.288905][T11527] loop1: detected capacity change from 0 to 64 [ 335.851354][ T5629] Bluetooth: hci0: command 0x0406 tx timeout [ 335.915303][T11530] can0: slcan on ttyS3. [ 336.287741][T11515] loop0: detected capacity change from 0 to 32768 [ 336.340135][T11515] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 336.394156][T11515] JBD2: Ignoring recovery information on journal [ 336.430948][T11528] can0 (unregistered): slcan off ttyS3. [ 336.480922][T11515] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 336.652003][ T29] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 336.688675][T11559] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2351'. [ 336.714872][T11560] loop6: detected capacity change from 0 to 64 [ 336.831589][T11560] hfs: request for non-existent node 131072 in B*Tree [ 336.839983][ T29] usb 5-1: config 0 has an invalid interface number: 221 but max is 0 [ 336.864906][T11560] hfs: request for non-existent node 131072 in B*Tree [ 336.911496][ T29] usb 5-1: config 0 has no interface number 0 [ 336.928862][ T29] usb 5-1: config 0 interface 221 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 336.986470][ T29] usb 5-1: config 0 interface 221 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 337.004713][ T5634] ocfs2: Unmounting device (7,0) on (node local) [ 337.046784][ T29] usb 5-1: config 0 interface 221 has no altsetting 0 [ 337.084895][ T29] usb 5-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice=10.00 [ 337.150627][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 337.216293][ T29] usb 5-1: config 0 descriptor?? [ 337.255650][T11574] loop1: detected capacity change from 0 to 64 [ 337.356428][T11578] loop6: detected capacity change from 0 to 16 [ 337.371284][ T988] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 337.423445][T11578] erofs (device loop6): mounted with root inode @ nid 36. [ 337.571279][ T988] usb 6-1: Using ep0 maxpacket: 16 [ 337.598325][ T988] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 337.615195][T11581] pimreg3: entered allmulticast mode [ 337.656250][ T988] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 337.724691][ T29] uclogic 0003:5543:0522.0024: item fetching failed at offset 0/3 [ 337.728144][ T988] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 337.772653][ T29] uclogic 0003:5543:0522.0024: parse failed [ 337.811652][ T988] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 337.823054][ T29] uclogic 0003:5543:0522.0024: probe with driver uclogic failed with error -22 [ 337.864684][ T988] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 337.930088][ T988] usb 6-1: config 0 descriptor?? [ 337.941894][ T5629] Bluetooth: hci0: command 0x0406 tx timeout [ 338.005856][ T29] usb 5-1: USB disconnect, device number 18 [ 338.082655][T11592] loop3: detected capacity change from 0 to 512 [ 338.134473][T11592] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 338.228718][T11592] EXT4-fs (loop3): 1 truncate cleaned up [ 338.286428][T11592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 338.395057][ T5627] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.456389][ T988] microsoft 0003:045E:07DA.0025: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0 [ 338.505646][ T988] microsoft 0003:045E:07DA.0025: no inputs found [ 338.548266][ T988] microsoft 0003:045E:07DA.0025: could not initialize ff, continuing anyway [ 338.629398][ T988] usb 6-1: USB disconnect, device number 17 [ 338.842603][T11603] fido_id[11603]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 339.273444][T11621] loop0: detected capacity change from 0 to 1024 [ 339.529404][ T30] audit: type=1800 audit(1779198031.636:94): pid=11621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2374" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop0" ino=6 res=0 errno=0 [ 339.679539][ T30] audit: type=1326 audit(1779198031.786:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11634 comm="syz.6.2382" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1fe1b9ce59 code=0x0 [ 339.734324][T11636] loop1: detected capacity change from 0 to 512 [ 339.764109][T11636] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 339.813897][T11636] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #16: comm syz.1.2383: invalid indirect mapped block 4294967295 (level 0) [ 339.930871][T11642] loop5: detected capacity change from 0 to 1764 [ 339.939509][T11636] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 339.941124][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 339.956724][ C1] EXT4-fs (loop1): initial error at time 1779198032: ext4_free_branches:1020: inode 16 [ 339.966461][ C1] EXT4-fs (loop1): last error at time 1779198032: ext4_free_branches:1020: inode 16 [ 339.996121][T11636] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #16: comm syz.1.2383: invalid indirect mapped block 4294967295 (level 1) [ 340.033153][T11636] loop1: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 340.052803][T11636] EXT4-fs (loop1): 1 orphan inode deleted [ 340.093060][T11636] EXT4-fs (loop1): 1 truncate cleaned up [ 340.145635][T11636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.162136][T11642] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 340.393784][T11657] loop3: detected capacity change from 0 to 1024 [ 340.484587][ T5635] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.640477][T11661] hfsplus: inconsistency in B*Tree (1,0,1,0,2) [ 340.694427][T11661] hfsplus: xattr search failed [ 340.796511][T11670] bridge_slave_0: default FDB implementation only supports local addresses [ 341.131010][T11672] loop6: detected capacity change from 0 to 4096 [ 341.175677][T11679] loop3: detected capacity change from 0 to 1764 [ 341.417689][T11672] ntfs3(loop6): ino=5, "/" The size of extended attributes must not exceed 64KiB [ 341.895365][T11698] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2404'. [ 341.998130][T11701] ipvlan2: entered promiscuous mode [ 342.024334][T11701] team0: Device ipvlan2 is already an upper device of the team interface [ 342.531430][T11721] wg1: entered promiscuous mode [ 342.553359][T11721] wg1: entered allmulticast mode [ 342.600201][T11720] smc: net device wlan0 applied user defined pnetid SYZ0 [ 343.562541][T11750] loop0: detected capacity change from 0 to 1024 [ 343.627871][T11750] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 343.869144][T11761] loop1: detected capacity change from 0 to 256 [ 343.884589][T11759] usb usb9: usbfs: process 11759 (syz.3.2433) did not claim interface 0 before use [ 343.927597][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 343.983192][T11727] loop4: detected capacity change from 0 to 32768 [ 344.027505][T11761] FAT-fs (loop1): Directory bread(block 64) failed [ 344.057118][T11761] FAT-fs (loop1): Directory bread(block 65) failed [ 344.065095][T11761] FAT-fs (loop1): Directory bread(block 66) failed [ 344.073548][T11761] FAT-fs (loop1): Directory bread(block 67) failed [ 344.080915][T11761] FAT-fs (loop1): Directory bread(block 68) failed [ 344.088030][T11761] FAT-fs (loop1): Directory bread(block 69) failed [ 344.096068][T11727] JBD2: Ignoring recovery information on journal [ 344.111601][T11761] FAT-fs (loop1): Directory bread(block 70) failed [ 344.118342][T11761] FAT-fs (loop1): Directory bread(block 71) failed [ 344.125610][T11761] FAT-fs (loop1): Directory bread(block 72) failed [ 344.134509][T11761] FAT-fs (loop1): Directory bread(block 73) failed [ 344.241490][T11727] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 344.297948][T11768] loop5: detected capacity change from 0 to 512 [ 344.360838][T11768] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 344.441585][T11768] EXT4-fs (loop5): 1 truncate cleaned up [ 344.515215][T11768] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 344.561181][ T30] audit: type=1326 audit(1779198036.666:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 344.651490][ T30] audit: type=1326 audit(1779198036.666:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 344.698540][T11768] EXT4-fs error (device loop5): ext4_generic_delete_entry:2672: inode #2: block 13: comm syz.5.2437: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 344.752653][ T30] audit: type=1326 audit(1779198036.706:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f05f535d68e code=0x7ffc0000 [ 344.832683][T11768] EXT4-fs (loop5): Remounting filesystem read-only [ 344.865118][T11768] EXT4-fs warning (device loop5): ext4_rename_delete:3737: inode #2: comm syz.5.2437: Deleting old file: nlink 5, error=-117 [ 344.891721][ T30] audit: type=1326 audit(1779198036.706:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 344.933016][ T5636] ocfs2: Unmounting device (7,4) on (node local) [ 345.013475][ T30] audit: type=1326 audit(1779198036.706:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 345.075298][ T30] audit: type=1326 audit(1779198036.726:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 345.150415][ T5628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.173809][ T30] audit: type=1326 audit(1779198036.726:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 345.274628][ T30] audit: type=1326 audit(1779198036.726:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11775 comm="syz.3.2442" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05f539ce59 code=0x7ffc0000 [ 345.334727][T11793] pimreg3: entered allmulticast mode [ 345.538708][T11799] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2451'. [ 345.626647][T11801] loop4: detected capacity change from 0 to 512 [ 345.663966][T11801] EXT4-fs: Ignoring removed orlov option [ 345.733398][T11801] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 345.765073][T11786] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 345.779273][T11786] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 345.786306][T11786] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 345.792741][T11786] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 345.800757][T11786] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 345.808307][T11786] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 345.827943][T11801] ext4 filesystem being mounted at /406/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 346.034555][T11815] loop5: detected capacity change from 0 to 8 [ 346.145190][T11815] SQUASHFS error: Unable to read inode 0xa7 [ 346.284176][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.772976][T11830] loop5: detected capacity change from 0 to 128 [ 346.815361][T11830] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 346.872905][T11830] hpfs: filesystem error: improperly stopped [ 346.893733][T11830] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 346.932273][T11830] hpfs: You really don't want any checks? You are crazy... [ 346.958972][T11830] hpfs: Code page index out of array [ 346.984688][T11830] hpfs: code page support is disabled [ 347.021654][T11830] hpfs: hpfs_map_4sectors(): unaligned read [ 347.046320][T11830] hpfs: hpfs_map_4sectors(): unaligned read [ 347.061501][ T5629] Bluetooth: hci1: command 0x0406 tx timeout [ 347.070755][T11830] hpfs: filesystem error: unable to find root dir [ 347.206380][T11834] loop6: detected capacity change from 0 to 4096 [ 347.352503][T11840] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 347.851274][ T5629] Bluetooth: hci4: command 0x0c1a tx timeout [ 347.851869][ T5638] Bluetooth: hci0: command 0x0406 tx timeout [ 347.857353][ T5629] Bluetooth: hci5: command 0x0406 tx timeout [ 347.863394][ T5633] Bluetooth: hci3: command 0x0406 tx timeout [ 347.898240][T11856] loop3: detected capacity change from 0 to 1764 [ 348.028145][T11856] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 348.299348][T11860] loop0: detected capacity change from 0 to 4096 [ 348.334059][T11864] loop6: detected capacity change from 0 to 1024 [ 348.440081][T11866] loop3: detected capacity change from 0 to 1024 [ 349.295832][T11887] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2489'. [ 349.850078][T11902] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2497'. [ 349.933157][ T5633] Bluetooth: hci0: command 0x0406 tx timeout [ 350.021499][T11910] loop0: detected capacity change from 0 to 512 [ 350.045261][T11910] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 350.098458][T11910] EXT4-fs (loop0): 1 truncate cleaned up [ 350.148207][T11910] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.442146][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.582702][ T5756] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 350.765456][ T5756] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 350.781206][ T5756] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 350.828054][ T5756] usb 4-1: config 220 has an invalid descriptor of length 9, skipping remainder of the config [ 350.842072][ T5756] usb 4-1: config 220 has no interface number 2 [ 350.849579][ T5756] usb 4-1: config 220 interface 1 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 64 [ 350.866989][ T5756] usb 4-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12 [ 350.881960][ T5756] usb 4-1: config 220 interface 0 has no altsetting 0 [ 350.888768][ T5756] usb 4-1: config 220 interface 76 has no altsetting 0 [ 350.898746][ T5756] usb 4-1: config 220 interface 1 has no altsetting 0 [ 350.908809][ T5756] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 350.929870][ T5756] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 350.951202][ T5756] usb 4-1: Product: syz [ 350.970732][ T5756] usb 4-1: Manufacturer: syz [ 350.997576][ T5756] usb 4-1: SerialNumber: syz [ 351.138184][T11936] loop0: detected capacity change from 0 to 64 [ 351.167323][T11937] loop6: detected capacity change from 0 to 512 [ 351.242536][ T5756] uvcvideo 4-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 351.246658][T11937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 351.279285][ T5756] uvcvideo 4-1:220.0: No valid video chain found. [ 351.332048][T11941] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2512'. [ 351.342709][ T5756] usb 4-1: selecting invalid altsetting 0 [ 351.405902][T11937] EXT4-fs warning (device loop6): verify_group_input:136: Cannot add at group 3 (only 1 groups) [ 351.459099][ T5756] usb 4-1: selecting invalid altsetting 0 [ 351.477397][ T5756] usbtest 4-1:220.1: probe with driver usbtest failed with error -22 [ 351.555680][ T5756] usb 4-1: USB disconnect, device number 18 [ 351.710376][ T7831] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.017917][T11952] loop0: detected capacity change from 0 to 1024 [ 352.043931][T11952] EXT4-fs: Ignoring removed bh option [ 352.064031][T11952] EXT4-fs: Ignoring removed bh option [ 352.110515][T11952] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 352.120317][T11946] loop1: detected capacity change from 0 to 4096 [ 352.172743][T11960] loop6: detected capacity change from 0 to 256 [ 352.181142][T11946] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 352.275239][T11960] exfat: Deprecated parameter 'namecase' [ 352.286987][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.310627][T11960] exfat: Deprecated parameter 'namecase' [ 352.428113][T11960] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 352.500698][T11946] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 352.586193][T11946] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 353.111312][ T5756] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 353.282572][ T5756] usb 4-1: Using ep0 maxpacket: 16 [ 353.305843][ T5756] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 353.335416][ T5756] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 353.370295][ T5756] usb 4-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00 [ 353.398507][ T5756] usb 4-1: New USB device strings: Mfr=34, Product=0, SerialNumber=0 [ 353.430071][ T5756] usb 4-1: Manufacturer: syz [ 353.506302][ T5756] usb 4-1: config 0 descriptor?? [ 353.575285][T11962] loop4: detected capacity change from 0 to 32768 [ 353.611920][T11962] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2520 (11962) [ 353.634350][T11985] ipvlan2: entered promiscuous mode [ 353.647528][T11985] team0: Device ipvlan2 is already an upper device of the team interface [ 353.670599][T11962] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 353.738396][T11962] BTRFS info (device loop4): using crc32c checksum algorithm [ 353.943278][T11962] BTRFS info (device loop4): enabling ssd optimizations [ 353.961175][T11962] BTRFS info (device loop4): turning on flush-on-commit [ 353.993193][ T5756] creative-sb0540 0003:041E:3100.0026: item fetching failed at offset 4/5 [ 354.009754][T11962] BTRFS info (device loop4): enabling free space tree [ 354.012010][ T5756] creative-sb0540 0003:041E:3100.0026: parse failed [ 354.034465][ T5756] creative-sb0540 0003:041E:3100.0026: probe with driver creative-sb0540 failed with error -22 [ 354.056229][T11962] BTRFS info (device loop4): enabling auto defrag [ 354.069041][T12008] loop0: detected capacity change from 0 to 512 [ 354.083352][T11962] BTRFS info (device loop4): use lzo compression, level 1 [ 354.116343][T12008] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 354.130353][T11962] BTRFS info (device loop4): max_inline set to 4096 [ 354.180260][T12008] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #16: comm syz.0.2535: invalid indirect mapped block 4294967295 (level 0) [ 354.302079][T12008] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 354.311177][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 354.326823][ C1] EXT4-fs (loop0): initial error at time 1779198046: ext4_free_branches:1020: inode 16 [ 354.327261][T12008] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #16: comm syz.0.2535: invalid indirect mapped block 4294967295 (level 1) [ 354.336534][ C1] EXT4-fs (loop0): last error at time 1779198046: ext4_free_branches:1020: inode 16 [ 354.375775][ T5756] usb 4-1: USB disconnect, device number 19 [ 354.435607][T12008] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 354.448229][T12008] EXT4-fs (loop0): 1 orphan inode deleted [ 354.520579][ T30] audit: type=1800 audit(1779198046.626:104): pid=11962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2520" name="file1" dev="loop4" ino=260 res=0 errno=0 [ 354.525867][T12008] EXT4-fs (loop0): 1 truncate cleaned up [ 354.593465][T12008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 354.665903][ T5636] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 354.897120][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.205159][ T30] audit: type=1326 audit(1779198048.316:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12051 comm="syz.1.2554" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f313e59ce59 code=0x0 [ 356.264824][T12033] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 356.308239][T12033] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 356.332558][T12033] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 356.362354][T12033] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 356.394280][T12033] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 356.418127][T12033] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 356.678166][T12065] CIFS: VFS: UNC: path must begin with // or \\ [ 356.694612][T12065] CIFS: VFS: Malformed UNC in devname [ 357.060650][T12075] loop0: detected capacity change from 0 to 512 [ 357.088544][T12075] EXT4-fs: Ignoring removed orlov option [ 357.115762][T12079] loop5: detected capacity change from 0 to 1024 [ 357.185136][T12075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 357.237244][T12075] ext4 filesystem being mounted at /421/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 357.300659][ T30] audit: type=1800 audit(1779198049.406:106): pid=12079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2566" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=6 res=0 errno=0 [ 357.361871][ T5634] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.611218][ T5633] Bluetooth: hci1: command 0x0406 tx timeout [ 357.625154][T12093] loop0: detected capacity change from 0 to 512 [ 357.643447][T12094] ------------[ cut here ]------------ [ 357.649807][T12094] 1 [ 357.649823][T12094] WARNING: net/ipv4/route.c:1275 at ip_rt_bug+0x2b/0x150, CPU#1: syz.1.2572/12094 [ 357.661556][T12094] Modules linked in: [ 357.665732][T12094] CPU: 1 UID: 0 PID: 12094 Comm: syz.1.2572 Tainted: G L syzkaller #0 PREEMPT(full) [ 357.676766][T12094] Tainted: [L]=SOFTLOCKUP [ 357.681115][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 357.691217][T12094] RIP: 0010:ip_rt_bug+0x2b/0x150 [ 357.696179][T12094] Code: 0f 1e fa 41 54 55 53 48 89 d3 48 83 ec 08 e8 bc a1 1a f8 66 90 e8 b5 a1 1a f8 ba 02 00 00 00 48 89 de 31 ff e8 d6 15 6c ff 90 <0f> 0b 90 48 83 c4 08 31 c0 5b 5d 41 5c e9 be 54 22 f7 e8 8e a1 1a [ 357.715835][T12094] RSP: 0018:ffffc9000740f380 EFLAGS: 00010283 [ 357.721953][T12094] RAX: 0000000000000f16 RBX: ffff888076a72a00 RCX: ffffc90005f19000 [ 357.729983][T12094] RDX: 0000000000080000 RSI: ffffffff895a0324 RDI: ffffffff8c1c4200 [ 357.738031][T12094] RBP: ffff888076a72a00 R08: 0000000000000001 R09: 0000000000000000 [ 357.746045][T12094] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888026fb8000 [ 357.754058][T12094] R13: ffff88801c7cad00 R14: 0000000000000000 R15: ffff888076a72a58 [ 357.762173][T12094] FS: 00007f313f3c96c0(0000) GS:ffff88812446d000(0000) knlGS:0000000000000000 [ 357.771153][T12094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 357.777752][T12094] CR2: 0000001b34720ff8 CR3: 000000007b3a7000 CR4: 0000000000350ef0 [ 357.785776][T12094] Call Trace: [ 357.789058][T12094] [ 357.792021][T12094] ? __pfx_ip_rt_bug+0x10/0x10 [ 357.796810][T12094] ip_push_pending_frames+0x29e/0x300 [ 357.802239][T12094] icmp_push_reply+0x30e/0x450 [ 357.807053][T12094] __icmp_send+0x11b4/0x2c70 [ 357.811725][T12094] ? __pfx___icmp_send+0x10/0x10 [ 357.816700][T12094] ? __pfx_ip_route_input_slow+0x10/0x10 [ 357.818693][T12093] EXT4-fs: Ignoring removed orlov option [ 357.822395][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.833726][T12094] ? __lock_acquire+0x4a5/0x2630 [ 357.838718][T12094] ? __ip_options_compile+0x604/0x16a0 [ 357.844314][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.849987][T12094] ? ip_route_input_noref+0x15f/0x2e0 [ 357.855447][T12094] ip_options_compile+0xb6/0x100 [ 357.860429][T12094] ? __pfx_ip_options_compile+0x10/0x10 [ 357.866054][T12094] ? __pfx_ip_rcv_finish+0x10/0x10 [ 357.871238][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.876922][T12094] ip_rcv_finish_core+0x693/0x2c30 [ 357.882125][T12094] ip_rcv+0x1c0/0x3c0 [ 357.886147][T12094] ? __pfx_ip_rcv+0x10/0x10 [ 357.890684][T12094] __netif_receive_skb_one_core+0x197/0x1e0 [ 357.897671][T12094] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 357.904173][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.909881][T12094] ? lock_acquire+0x1b1/0x370 [ 357.910667][T12093] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 357.914628][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.914691][T12094] __netif_receive_skb+0x1f/0x120 [ 357.933484][T12094] netif_receive_skb+0x13b/0x7f0 [ 357.938442][T12094] ? tun_build_skb.constprop.0+0x9b5/0x18f0 [ 357.944430][T12094] ? __pfx_netif_receive_skb+0x10/0x10 [ 357.949931][T12094] tun_rx_batched.isra.0+0x3f6/0x750 [ 357.955319][T12094] ? __pfx_tun_rx_batched.isra.0+0x10/0x10 [ 357.961211][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.966917][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.972611][T12094] ? rcu_is_watching+0x12/0xc0 [ 357.977412][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.983118][T12094] tun_get_user+0x1e31/0x3c20 [ 357.987859][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 357.993574][T12094] ? __pfx_tun_get_user+0x10/0x10 [ 357.998647][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.004368][T12094] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 358.009878][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.015600][T12094] ? find_held_lock+0x2b/0x80 [ 358.020325][T12094] ? tun_get+0x191/0x370 [ 358.024645][T12094] ? tun_get+0x191/0x370 [ 358.028926][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.034647][T12094] tun_chr_write_iter+0xdc/0x200 [ 358.039638][T12094] vfs_write+0x6ac/0x1070 [ 358.044055][T12094] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 358.049653][T12094] ? __pfx_vfs_write+0x10/0x10 [ 358.054496][T12094] ? find_held_lock+0x2b/0x80 [ 358.059254][T12094] ksys_write+0x12a/0x250 [ 358.063676][T12094] ? __pfx_ksys_write+0x10/0x10 [ 358.068578][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.074327][T12094] ? rcu_is_watching+0x12/0xc0 [ 358.079143][T12094] do_syscall_64+0x10b/0xf80 [ 358.083814][T12094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.089733][T12094] RIP: 0033:0x7f313e55d68e [ 358.094193][T12094] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 358.113880][T12094] RSP: 002b:00007f313f3c8fb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 358.122356][T12094] RAX: ffffffffffffffda RBX: 00007f313f3c96c0 RCX: 00007f313e55d68e [ 358.130386][T12094] RDX: 000000000000005a RSI: 00002000000002c0 RDI: 00000000000000c8 [ 358.138416][T12094] RBP: 00007f313e632d6f R08: 0000000000000000 R09: 0000000000000000 [ 358.146433][T12094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.154466][T12094] R13: 00007f313e816038 R14: 00007f313e815fa0 R15: 00007ffe2ed21158 [ 358.162512][T12094] [ 358.165544][T12094] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 358.172835][T12094] CPU: 1 UID: 0 PID: 12094 Comm: syz.1.2572 Tainted: G L syzkaller #0 PREEMPT(full) [ 358.183804][T12094] Tainted: [L]=SOFTLOCKUP [ 358.188127][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 358.198191][T12094] Call Trace: [ 358.201479][T12094] [ 358.204417][T12094] dump_stack_lvl+0x100/0x190 [ 358.209126][T12094] vpanic+0x552/0x970 [ 358.213133][T12094] ? __pfx_vpanic+0x10/0x10 [ 358.217673][T12094] panic+0xd1/0xe0 [ 358.221417][T12094] ? __pfx_panic+0x10/0x10 [ 358.225881][T12094] check_panic_on_warn.cold+0x19/0x34 [ 358.231283][T12094] ? ip_rt_bug+0x2b/0x150 [ 358.235639][T12094] __warn.cold+0x191/0x328 [ 358.240081][T12094] __report_bug+0x296/0x3d0 [ 358.244624][T12094] ? ip_rt_bug+0x2b/0x150 [ 358.248984][T12094] ? __pfx___report_bug+0x10/0x10 [ 358.254077][T12094] ? ip_rt_bug+0x2b/0x150 [ 358.258430][T12094] report_bug+0xb2/0x220 [ 358.262713][T12094] ? ip_rt_bug+0x2b/0x150 [ 358.267061][T12094] handle_bug+0x16a/0x2a0 [ 358.271507][T12094] exc_invalid_op+0x17/0x50 [ 358.276037][T12094] asm_exc_invalid_op+0x1a/0x20 [ 358.280921][T12094] RIP: 0010:ip_rt_bug+0x2b/0x150 [ 358.285869][T12094] Code: 0f 1e fa 41 54 55 53 48 89 d3 48 83 ec 08 e8 bc a1 1a f8 66 90 e8 b5 a1 1a f8 ba 02 00 00 00 48 89 de 31 ff e8 d6 15 6c ff 90 <0f> 0b 90 48 83 c4 08 31 c0 5b 5d 41 5c e9 be 54 22 f7 e8 8e a1 1a [ 358.305495][T12094] RSP: 0018:ffffc9000740f380 EFLAGS: 00010283 [ 358.311571][T12094] RAX: 0000000000000f16 RBX: ffff888076a72a00 RCX: ffffc90005f19000 [ 358.319540][T12094] RDX: 0000000000080000 RSI: ffffffff895a0324 RDI: ffffffff8c1c4200 [ 358.327518][T12094] RBP: ffff888076a72a00 R08: 0000000000000001 R09: 0000000000000000 [ 358.335575][T12094] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888026fb8000 [ 358.343547][T12094] R13: ffff88801c7cad00 R14: 0000000000000000 R15: ffff888076a72a58 [ 358.351535][T12094] ? sk_skb_reason_drop+0x114/0x1b0 [ 358.356762][T12094] ? __pfx_ip_rt_bug+0x10/0x10 [ 358.361532][T12094] ip_push_pending_frames+0x29e/0x300 [ 358.366941][T12094] icmp_push_reply+0x30e/0x450 [ 358.371730][T12094] __icmp_send+0x11b4/0x2c70 [ 358.376353][T12094] ? __pfx___icmp_send+0x10/0x10 [ 358.381318][T12094] ? __pfx_ip_route_input_slow+0x10/0x10 [ 358.386975][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.392626][T12094] ? __lock_acquire+0x4a5/0x2630 [ 358.397599][T12094] ? __ip_options_compile+0x604/0x16a0 [ 358.403101][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.408750][T12094] ? ip_route_input_noref+0x15f/0x2e0 [ 358.414234][T12094] ip_options_compile+0xb6/0x100 [ 358.419203][T12094] ? __pfx_ip_options_compile+0x10/0x10 [ 358.424770][T12094] ? __pfx_ip_rcv_finish+0x10/0x10 [ 358.429915][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.435571][T12094] ip_rcv_finish_core+0x693/0x2c30 [ 358.440716][T12094] ip_rcv+0x1c0/0x3c0 [ 358.444727][T12094] ? __pfx_ip_rcv+0x10/0x10 [ 358.449255][T12094] __netif_receive_skb_one_core+0x197/0x1e0 [ 358.455189][T12094] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 358.461640][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.467290][T12094] ? lock_acquire+0x1b1/0x370 [ 358.471982][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.477637][T12094] __netif_receive_skb+0x1f/0x120 [ 358.482670][T12094] netif_receive_skb+0x13b/0x7f0 [ 358.487613][T12094] ? tun_build_skb.constprop.0+0x9b5/0x18f0 [ 358.493537][T12094] ? __pfx_netif_receive_skb+0x10/0x10 [ 358.499019][T12094] tun_rx_batched.isra.0+0x3f6/0x750 [ 358.504337][T12094] ? __pfx_tun_rx_batched.isra.0+0x10/0x10 [ 358.510179][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.515826][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.521475][T12094] ? rcu_is_watching+0x12/0xc0 [ 358.526261][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.531949][T12094] tun_get_user+0x1e31/0x3c20 [ 358.536673][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.542321][T12094] ? __pfx_tun_get_user+0x10/0x10 [ 358.547373][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.553024][T12094] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 358.558516][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.564160][T12094] ? find_held_lock+0x2b/0x80 [ 358.568867][T12094] ? tun_get+0x191/0x370 [ 358.573131][T12094] ? tun_get+0x191/0x370 [ 358.577397][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.583056][T12094] tun_chr_write_iter+0xdc/0x200 [ 358.588024][T12094] vfs_write+0x6ac/0x1070 [ 358.592381][T12094] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 358.598315][T12094] ? __pfx_vfs_write+0x10/0x10 [ 358.603103][T12094] ? find_held_lock+0x2b/0x80 [ 358.607836][T12094] ksys_write+0x12a/0x250 [ 358.612193][T12094] ? __pfx_ksys_write+0x10/0x10 [ 358.617070][T12094] ? srso_alias_return_thunk+0x5/0xfbef5 [ 358.622716][T12094] ? rcu_is_watching+0x12/0xc0 [ 358.627510][T12094] do_syscall_64+0x10b/0xf80 [ 358.632113][T12094] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.638019][T12094] RIP: 0033:0x7f313e55d68e [ 358.642447][T12094] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 358.662149][T12094] RSP: 002b:00007f313f3c8fb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 358.670574][T12094] RAX: ffffffffffffffda RBX: 00007f313f3c96c0 RCX: 00007f313e55d68e [ 358.678546][T12094] RDX: 000000000000005a RSI: 00002000000002c0 RDI: 00000000000000c8 [ 358.686517][T12094] RBP: 00007f313e632d6f R08: 0000000000000000 R09: 0000000000000000 [ 358.694492][T12094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.702467][T12094] R13: 00007f313e816038 R14: 00007f313e815fa0 R15: 00007ffe2ed21158 [ 358.710465][T12094] [ 358.713696][T12094] Kernel Offset: disabled [ 358.718010][T12094] Rebooting in 86400 seconds..