last executing test programs: 1.20958264s ago: executing program 0 (id=6491): r0 = socket$tipc(0x1e, 0x2, 0x0) ppoll(&(0x7f0000000340)=[{r0, 0x2000}], 0x1, &(0x7f0000000400), 0x0, 0x0) 1.164553562s ago: executing program 0 (id=6500): r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2) ioctl$FE_DISHNETWORK_SEND_LEGACY_CMD(r0, 0x6f50, 0x8) 1.076180236s ago: executing program 0 (id=6504): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000380)="6913e42561ba31252f23140a139d8508", 0x10}], 0x1) 1.030259038s ago: executing program 0 (id=6508): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x120002) mount$9p_fd(0x0, &(0x7f00000001c0)='./cgroup\x00', &(0x7f0000000240), 0x1, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 483.739616ms ago: executing program 1 (id=6553): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip6tnl0\x00', 0xfffffffffffffffe}) 458.412827ms ago: executing program 1 (id=6554): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8482c0000005e14060205cd00000e000a001000000002800000121f", 0x2e}], 0x1}, 0x0) 389.75899ms ago: executing program 2 (id=6544): mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}], [], 0x6b}}) 388.52944ms ago: executing program 4 (id=6560): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x832, 0xbbba, 0x0, 0x18, 0x0, {}, {0x0, 0xfffffffd, 0xfffffffe}, {0x0, 0xffff0000}, {0x1000000}, 0x0, 0x3f0, 0x0, 0xd613, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x9}) 345.598993ms ago: executing program 1 (id=6546): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000280)=ANY=[@ANYBLOB="e00000007f00000100e5"], 0x14) 344.481363ms ago: executing program 2 (id=6547): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/igmp6\x00') preadv(r0, &(0x7f0000002400)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1, 0x39c5, 0x0) 282.889706ms ago: executing program 4 (id=6548): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x54, 0x2, 0x6, 0x401, 0x0, 0x0, {0x7}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x5}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x54}}, 0x20004000) 282.798355ms ago: executing program 3 (id=6550): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000200)={0xee0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 253.297497ms ago: executing program 1 (id=6564): mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x1}}], [], 0x6b}}) 253.203717ms ago: executing program 2 (id=6551): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="28000000200025a729bd7000fddbdf250a0000cdff000001020001000c001400e1"], 0x28}, 0x1, 0x0, 0x0, 0x20008081}, 0x0) 253.175587ms ago: executing program 4 (id=6552): r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0) write(r0, 0x0, 0x0) 252.147767ms ago: executing program 3 (id=6556): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(r0, &(0x7f0000002080)={0xc, {"a2e3ad2107c752f91b25470987f70e06d038e7ff7fc6e5539b3264078b089b3b083468060890e0878f0e1ac6e70a9b3365959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31350d095d0636cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7dafbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85800056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dab54c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10746fc4090ac97b77e4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f5f71d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc07d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810930500ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab974c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc660db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d154d8a5ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21e5ec68cb068ea88067d905ea917bb03eefdaebdeabf2c0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x104a) 236.683488ms ago: executing program 2 (id=6558): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) lseek(r0, 0x6, 0x1) 235.512888ms ago: executing program 1 (id=6559): r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2) ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f0000000000)={0x2e, &(0x7f0000000140)=[{0x3c, '\x00', @st={0x4, [{0x3, @svalue=0xf0}, {0x3, @uvalue=0x9}, {0x1, @uvalue=0xffffffbfffffffff}, {0x2, @svalue=0x7fffffffffffffff}]}, 0x80}]}) 173.637961ms ago: executing program 4 (id=6561): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip6tnl0\x00', 0xfffffffffffffffe}) 173.513201ms ago: executing program 2 (id=6562): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8482c0000005e14060205cd00000e000a001000000002800000121f", 0x2e}], 0x1}, 0x0) 163.312521ms ago: executing program 0 (id=6563): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) futex(&(0x7f00000003c0), 0x8c, 0x1, 0x0, &(0x7f0000000500)=0x1, 0x0) 153.971842ms ago: executing program 3 (id=6565): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000280)=ANY=[@ANYBLOB="e00000007f00000100e5"], 0x14) 153.894162ms ago: executing program 4 (id=6566): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000cc0)={'lo\x00', &(0x7f0000000040)=@ethtool_drvinfo={0x3, "ff918db4b2ea864f5815795e5c517b777bf7d391e3a422329473449b6549c7ed", "1a324626a66fea4c37e166fb9b76dbb0b34a4b52c396450339b98a84de4a9567", "b767d3283bdd19a0bac6fc57d24dc8ec638ab26a47bc5f7cf96061a759cdef6c", "be8aa6a91224f0a70e95e0e200", "bf445359f87c8d9d44597e290cfd1c5ef93ac3eabc63287ff01f140e67ad238a", "7fb9d29063e003eb8f9ca834", 0x8, 0x7fff, 0x6, 0x5, 0x6}}) 152.697182ms ago: executing program 1 (id=6575): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(r0, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x104a) 91.320525ms ago: executing program 3 (id=6567): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/igmp6\x00') preadv(r0, &(0x7f0000002400)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1, 0x39c5, 0x0) 67.952856ms ago: executing program 0 (id=6568): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x832, 0xbbba, 0x0, 0x18, 0x0, {}, {0x0, 0xfffffffd, 0xfffffffe}, {0x0, 0xffff0000}, {0x1000000}, 0x0, 0x3f0, 0x0, 0xd613, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x9}) 66.879146ms ago: executing program 4 (id=6569): r0 = syz_open_dev$usbfs(&(0x7f0000000140), 0x73, 0x1501) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x2, 0xffff}, 0x8, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0}) 33.293848ms ago: executing program 3 (id=6570): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="28000000200025a729bd7000fddbdf250a0000cdff000001020001000c001400e1"], 0x28}, 0x1, 0x0, 0x0, 0x20008081}, 0x0) 31.595098ms ago: executing program 2 (id=6571): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505331, &(0x7f0000000040)={0xe, 0x8004000, 0x0, 0xfffffffd, 0xfffffffe}) 0s ago: executing program 3 (id=6572): r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0) write(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): utes in process `syz.1.2717'. [ 85.696324][T10484] loop0: detected capacity change from 0 to 256 [ 85.716515][T10484] FAT-fs (loop0): Directory bread(block 64) failed [ 85.718964][T10484] FAT-fs (loop0): Directory bread(block 65) failed [ 85.720448][T10484] FAT-fs (loop0): Directory bread(block 66) failed [ 85.721482][T10484] FAT-fs (loop0): Directory bread(block 67) failed [ 85.722573][T10484] FAT-fs (loop0): Directory bread(block 68) failed [ 85.723563][T10484] FAT-fs (loop0): Directory bread(block 69) failed [ 85.724731][T10484] FAT-fs (loop0): Directory bread(block 70) failed [ 85.725813][T10484] FAT-fs (loop0): Directory bread(block 71) failed [ 85.749995][T10484] FAT-fs (loop0): Directory bread(block 72) failed [ 85.751120][T10484] FAT-fs (loop0): Directory bread(block 73) failed [ 85.949636][T10522] netlink: 'syz.4.2757': attribute type 1 has an invalid length. [ 86.124889][T10545] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 86.634242][T10626] ebt_among: dst integrity fail: 101 [ 86.663203][T10634] __nla_validate_parse: 5 callbacks suppressed [ 86.663215][T10634] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2812'. [ 86.731422][T10641] device veth3 entered promiscuous mode [ 86.733827][T10643] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2817'. [ 86.868923][T10665] vhci_hcd: invalid port number 255 [ 86.869807][T10665] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 86.907800][T10660] loop4: detected capacity change from 0 to 8192 [ 86.915566][T10660] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 86.919086][T10670] tmpfs: Bad value for 'mpol' [ 86.921329][T10660] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 86.922810][T10660] REISERFS (device loop4): using ordered data mode [ 86.923763][T10660] reiserfs: using flush barriers [ 86.931479][T10660] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 86.934165][T10660] REISERFS (device loop4): checking transaction log (loop4) [ 87.003958][T10660] REISERFS (device loop4): Using tea hash to sort names [ 87.004115][T10669] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.006057][T10660] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 87.006392][T10669] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address [ 87.033338][T10669] bond0: (slave ip6tnl0): Error -95 calling set_mac_address [ 87.145147][T10686] loop3: detected capacity change from 0 to 64 [ 87.198422][T10690] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 87.239852][T10654] loop1: detected capacity change from 0 to 32768 [ 87.468329][T10723] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 87.665515][T10702] loop2: detected capacity change from 0 to 32768 [ 87.667974][T10746] bridge1: the hash_elasticity option has been deprecated and is always 16 [ 87.701672][T10715] loop4: detected capacity change from 0 to 32768 [ 87.713273][T10702] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 87.714984][T10702] XFS (loop2): Mounting V5 Filesystem [ 87.795789][T10715] XFS (loop4): Mounting V5 Filesystem [ 87.808146][T10702] XFS (loop2): Ending clean mount [ 87.877307][T10715] XFS (loop4): Ending clean mount [ 87.879660][T10784] loop0: detected capacity change from 0 to 256 [ 87.913562][T10784] FAT-fs (loop0): Directory bread(block 64) failed [ 87.914616][T10784] FAT-fs (loop0): Directory bread(block 65) failed [ 87.915643][T10784] FAT-fs (loop0): Directory bread(block 66) failed [ 87.916673][T10784] FAT-fs (loop0): Directory bread(block 67) failed [ 87.922303][T10784] FAT-fs (loop0): Directory bread(block 68) failed [ 87.923383][T10784] FAT-fs (loop0): Directory bread(block 69) failed [ 87.924504][T10784] FAT-fs (loop0): Directory bread(block 70) failed [ 87.925681][T10784] FAT-fs (loop0): Directory bread(block 71) failed [ 87.926724][T10784] FAT-fs (loop0): Directory bread(block 72) failed [ 87.929621][ T4325] Bluetooth: hci1: unknown advertising packet type: 0x69 [ 87.932896][T10784] FAT-fs (loop0): Directory bread(block 73) failed [ 87.944810][ T4328] XFS (loop2): Unmounting Filesystem [ 87.982001][ T4329] XFS (loop4): Unmounting Filesystem [ 88.204539][T10813] loop1: detected capacity change from 0 to 1024 [ 88.206064][T10813] EXT4-fs: Ignoring removed mblk_io_submit option [ 88.219631][T10813] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 88.221115][T10813] EXT4-fs (loop1): Test dummy encryption mode enabled [ 88.242098][T10813] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 88.252362][T10813] EXT4-fs error (device loop1): __ext4_remount:6644: comm syz.1.2879: Abort forced by user [ 88.256146][T10813] EXT4-fs (loop1): Remounting filesystem read-only [ 88.257499][T10813] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 88.330104][ T4321] EXT4-fs (loop1): unmounting filesystem. [ 88.376506][T10843] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2888'. [ 88.398077][T10843] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 88.404212][T10842] netlink: 'syz.0.2889': attribute type 21 has an invalid length. [ 88.720868][T10900] loop2: detected capacity change from 0 to 256 [ 88.745060][T10904] --map-set only usable from mangle table [ 88.846749][T10916] fuse: blksize only supported for fuseblk [ 88.961333][T10901] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 88.962943][T10901] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 88.964431][T10901] BTRFS info (device loop3): using free space tree [ 89.116580][T10961] xt_TPROXY: Can be used only with -p tcp or -p udp [ 89.124246][T10963] overlayfs: unrecognized mount option "\{\" or missing value [ 89.143442][T10901] BTRFS info (device loop3): enabling ssd optimizations [ 89.171252][ T4320] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 89.200824][T10970] net_ratelimit: 356 callbacks suppressed [ 89.200834][T10970] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 89.330654][T10982] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 89.350435][T10987] erofs: (device loop2): mounted with root inode @ nid 36. [ 89.382815][T10994] netlink: 'syz.3.2954': attribute type 1 has an invalid length. [ 89.384072][T10994] netlink: 'syz.3.2954': attribute type 3 has an invalid length. [ 89.385301][T10994] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2954'. [ 89.644112][T11031] EXT4-fs: Ignoring removed orlov option [ 89.688105][T11031] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 89.692531][T11031] EXT4-fs error (device loop4): __ext4_remount:6644: comm syz.4.2972: Abort forced by user [ 89.695617][T11031] EXT4-fs (loop4): re-mounted. Quota mode: none. [ 89.783101][ T4329] EXT4-fs (loop4): unmounting filesystem. [ 89.931020][T11058] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 90.035654][T11077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2992'. [ 90.039609][T11077] netlink: 7 bytes leftover after parsing attributes in process `syz.2.2992'. [ 90.042138][T11077] tc_dump_action: action bad kind [ 90.106413][T11083] netlink: 'syz.0.2995': attribute type 9 has an invalid length. [ 90.247753][T11098] IPv6: ADDRCONF(NETDEV_CHANGE): rose0: link becomes ready [ 90.573154][T11151] netlink: 'syz.4.3029': attribute type 6 has an invalid length. [ 90.627368][T11157] kAFS: unable to lookup cell '(,c¾Ì' [ 90.673650][T11119] set_capacity_and_notify: 4 callbacks suppressed [ 90.673659][T11119] loop0: detected capacity change from 0 to 32768 [ 91.138158][T11235] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3071'. [ 91.164477][T11237] loop1: detected capacity change from 0 to 164 [ 91.309572][T11263] netlink: zone id is out of range [ 91.481809][T11291] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3099'. [ 91.483255][T11291] netlink: 'syz.3.3099': attribute type 1 has an invalid length. [ 91.504889][T11293] xt_ipcomp: unknown flags 2 [ 91.683565][T11326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3116'. [ 91.729623][T11333] loop2: detected capacity change from 0 to 256 [ 91.752275][T11333] FAT-fs (loop2): Directory bread(block 64) failed [ 91.753423][T11333] FAT-fs (loop2): Directory bread(block 65) failed [ 91.754531][T11333] FAT-fs (loop2): Directory bread(block 66) failed [ 91.755563][T11333] FAT-fs (loop2): Directory bread(block 67) failed [ 91.756734][T11333] FAT-fs (loop2): Directory bread(block 68) failed [ 91.775424][T11333] FAT-fs (loop2): Directory bread(block 69) failed [ 91.776571][T11333] FAT-fs (loop2): Directory bread(block 70) failed [ 91.779184][T11333] FAT-fs (loop2): Directory bread(block 71) failed [ 91.780316][T11333] FAT-fs (loop2): Directory bread(block 72) failed [ 91.781395][T11333] FAT-fs (loop2): Directory bread(block 73) failed [ 91.850218][T11350] loop4: detected capacity change from 0 to 512 [ 91.916147][T11350] Quota error (device loop4): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 91.920591][T11350] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 91.922348][T11350] EXT4-fs error (device loop4): ext4_acquire_dquot:6835: comm syz.4.3128: Failed to acquire dquot type 1 [ 91.928923][T11350] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.3128: corrupted inode contents [ 91.932625][T11350] EXT4-fs error (device loop4): ext4_dirty_inode:6137: inode #16: comm syz.4.3128: mark_inode_dirty error [ 91.946502][T11350] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.3128: corrupted inode contents [ 91.949909][ T27] audit: type=1326 audit(32802.078:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11364 comm="syz.1.3135" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa4b77128 code=0x0 [ 91.954857][T11350] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.3128: mark_inode_dirty error [ 91.962561][T11350] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.3128: corrupted inode contents [ 91.973091][T11350] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 91.974661][T11350] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.3128: corrupted inode contents [ 91.981048][T11350] EXT4-fs error (device loop4): ext4_truncate:4318: inode #16: comm syz.4.3128: mark_inode_dirty error [ 91.992190][T11350] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 91.997894][T11350] EXT4-fs (loop4): 1 truncate cleaned up [ 91.998804][T11350] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 92.024924][T11376] loop3: detected capacity change from 0 to 2048 [ 92.050421][ T4329] EXT4-fs (loop4): unmounting filesystem. [ 92.056061][T11376] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 92.336893][T11421] loop0: detected capacity change from 0 to 2048 [ 92.351339][T11421] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 92.431955][T11443] loop2: detected capacity change from 0 to 64 [ 92.490690][T11451] netlink: zone id is out of range [ 92.491553][T11451] netlink: zone id is out of range [ 92.492406][T11451] netlink: zone id is out of range [ 92.493269][T11451] netlink: zone id is out of range [ 92.494169][T11451] netlink: zone id is out of range [ 92.494999][T11451] netlink: zone id is out of range [ 92.495893][T11451] netlink: zone id is out of range [ 92.520490][T11451] netlink: zone id is out of range [ 92.573252][T11462] netlink: 'syz.3.3182': attribute type 5 has an invalid length. [ 92.647044][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 92.684998][T11471] loop1: detected capacity change from 0 to 4096 [ 92.686492][T11471] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 92.718166][T11471] ntfs: (device loop1): map_mft_record_page(): Mft record 0x6 is corrupt. Run chkdsk. [ 92.719814][T11471] ntfs: (device loop1): map_mft_record(): Failed with error code 5. [ 92.721071][T11471] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x6 as bad. Run chkdsk. [ 92.723230][T11471] ntfs: (device loop1): load_system_files(): Failed to load $Bitmap. [ 92.724781][T11471] ntfs: (device loop1): ntfs_fill_super(): Failed to load system files. [ 92.810444][ T4313] I/O error, dev loop1, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 92.823824][ T6105] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 92.878444][T11501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3202'. [ 93.127035][ T4326] Bluetooth: hci0: command 0x0406 tx timeout [ 93.364408][T11579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3239'. [ 93.368596][T11570] loop2: detected capacity change from 0 to 4096 [ 93.370004][T11570] ntfs: (device loop2): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 93.655115][T11617] binfmt_misc: register: failed to install interpreter file ./file0 [ 93.676331][T11619] loop3: detected capacity change from 0 to 2048 [ 93.685137][T11619] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=2362, location=2362 [ 93.710205][T11619] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 93.712133][T11619] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 93.718937][T11619] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 93.767476][T11599] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.3250 (11599) [ 93.778133][T11599] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 93.779827][T11599] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 93.781138][T11599] BTRFS info (device loop4): using free space tree [ 93.885209][T11653] netlink: 'syz.3.3275': attribute type 10 has an invalid length. [ 93.951765][T11599] BTRFS info (device loop4): enabling ssd optimizations [ 93.973102][ T4329] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 94.227902][T11683] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=2362, location=2362 [ 94.232981][T11683] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 94.239683][T11683] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 94.242112][T11683] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 94.274815][T11640] (syz.2.3269,11640,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 94.277727][T11640] (syz.2.3269,11640,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 94.298660][T11640] JBD2: Ignoring recovery information on journal [ 94.340171][T11654] XFS (loop0): Mounting V5 Filesystem [ 94.346911][T11640] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 94.403604][T11654] XFS (loop0): Ending clean mount [ 94.405905][T11654] XFS (loop0): Quotacheck needed: Please wait. [ 94.436784][T11654] XFS (loop0): Quotacheck: Done. [ 94.458496][ T4328] ocfs2: Unmounting device (7,2) on (node local) [ 94.517562][ T4327] XFS (loop0): Unmounting Filesystem [ 94.587264][T11703] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.3288 (11703) [ 94.612493][T11703] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 94.614172][T11703] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 94.615488][T11703] BTRFS info (device loop1): using free space tree [ 94.653980][T11724] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 94.669792][T11724] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 94.767077][T11703] BTRFS info (device loop1): enabling ssd optimizations [ 94.782479][T11709] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 94.783815][T11709] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 94.794347][T11709] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 94.799946][ T6430] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 94.800975][ T6430] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 94.809858][T11744] binfmt_misc: register: failed to install interpreter file ./file0 [ 94.826177][ T6430] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 25ms [ 94.831417][ T6430] gfs2: fsid=syz:syz.0: jid=0: Done [ 94.832219][T11709] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 94.888770][ T4321] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 94.953366][T11709] gfs2: fsid=syz:syz.0: found 1 quota changes [ 95.047230][ T5132] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (5132) [ 95.091199][ T4320] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485 [ 95.093586][ T4320] CPU: 1 PID: 4320 Comm: syz-executor Not tainted syzkaller #0 [ 95.094859][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 95.096596][ T4320] Call trace: [ 95.097251][ T4320] dump_backtrace+0x1c0/0x1ec [ 95.098062][ T4320] show_stack+0x2c/0x3c [ 95.098859][ T4320] __dump_stack+0x30/0x40 [ 95.099609][ T4320] dump_stack_lvl+0xf4/0x15c [ 95.100412][ T4320] dump_stack+0x1c/0x5c [ 95.101048][ T4320] gfs2_assert_warn_i+0x16c/0x26c [ 95.101818][ T4320] gfs2_quota_cleanup+0x464/0x668 [ 95.102627][ T4320] gfs2_make_fs_ro+0x368/0x438 [ 95.103415][ T4320] gfs2_put_super+0x1e0/0x760 [ 95.104209][ T4320] generic_shutdown_super+0x130/0x324 [ 95.105153][ T4320] kill_block_super+0x70/0xdc [ 95.105972][ T4320] gfs2_kill_sb+0xc0/0xd4 [ 95.106683][ T4320] deactivate_locked_super+0xac/0x120 [ 95.107527][ T4320] deactivate_super+0xe4/0x104 [ 95.108254][ T4320] cleanup_mnt+0x390/0x418 [ 95.109032][ T4320] __cleanup_mnt+0x20/0x30 [ 95.109818][ T4320] task_work_run+0x1ec/0x278 [ 95.110619][ T4320] do_notify_resume+0x1fa0/0x2aa4 [ 95.111392][ T4320] el0_svc+0x98/0x128 [ 95.112037][ T4320] el0t_64_sync_handler+0x84/0xf0 [ 95.112842][ T4320] el0t_64_sync+0x18c/0x190 [ 95.297434][T11780] xt_connbytes: Forcing CT accounting to be enabled [ 95.304501][T11763] (syz.0.3306,11763,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 95.314998][T11763] (syz.0.3306,11763,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 95.333409][T11763] JBD2: Ignoring recovery information on journal [ 95.362343][T11759] XFS (loop2): Mounting V5 Filesystem [ 95.363976][T11763] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 95.406301][T11759] XFS (loop2): Ending clean mount [ 95.410148][T11759] XFS (loop2): Quotacheck needed: Please wait. [ 95.418822][T11763] (syz.0.3306,11763,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x438, computed 0x1cec3d0f. Applying ECC. [ 95.421741][T11763] (syz.0.3306,11763,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x438, computed 0x1cec3d0f [ 95.431198][T11763] (syz.0.3306,11763,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 95.433036][T11759] XFS (loop2): Quotacheck: Done. [ 95.452814][T11763] (syz.0.3306,11763,0):ocfs2_quota_read:201 ERROR: status = -5 [ 95.454092][T11763] (syz.0.3306,11763,0):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 95.455418][T11763] (syz.0.3306,11763,0):ocfs2_mknod:314 ERROR: status = -5 [ 95.456617][T11763] (syz.0.3306,11763,0):ocfs2_mknod:502 ERROR: status = -5 [ 95.464216][T11763] (syz.0.3306,11763,0):ocfs2_mkdir:659 ERROR: status = -5 [ 95.499294][T11774] (syz.3.3309,11774,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 95.509967][T11774] (syz.3.3309,11774,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 95.522037][ T4328] XFS (loop2): Unmounting Filesystem [ 95.527044][ T4327] ocfs2: Unmounting device (7,0) on (node local) [ 95.561810][T11774] JBD2: Ignoring recovery information on journal [ 95.562040][T11805] netlink: 'syz.0.3323': attribute type 10 has an invalid length. [ 95.608501][T11774] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 95.757443][ T4320] ocfs2: Unmounting device (7,3) on (node local) [ 95.808708][T11800] set_capacity_and_notify: 10 callbacks suppressed [ 95.808719][T11800] loop4: detected capacity change from 0 to 32768 [ 95.821660][T11800] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 95.823151][T11800] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 95.843642][T11800] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 95.846323][ T5039] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 95.854221][ T5039] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 95.889457][ T5039] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 35ms [ 95.890869][ T5039] gfs2: fsid=syz:syz.0: jid=0: Done [ 95.891680][T11800] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 95.935215][T11830] loop1: detected capacity change from 0 to 64 [ 96.030219][T11800] gfs2: fsid=syz:syz.0: found 1 quota changes [ 96.096672][T11836] loop3: detected capacity change from 0 to 4096 [ 96.100252][T11836] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 96.105735][T11836] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 96.117940][ T4329] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485 [ 96.122548][ T4329] CPU: 1 PID: 4329 Comm: syz-executor Not tainted syzkaller #0 [ 96.123693][ T4329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 96.125322][ T4329] Call trace: [ 96.125918][ T4329] dump_backtrace+0x1c0/0x1ec [ 96.126659][ T4329] show_stack+0x2c/0x3c [ 96.127324][ T4329] __dump_stack+0x30/0x40 [ 96.127996][ T4329] dump_stack_lvl+0xf4/0x15c [ 96.128742][ T4329] dump_stack+0x1c/0x5c [ 96.129387][ T4329] gfs2_assert_warn_i+0x16c/0x26c [ 96.130110][ T4329] gfs2_quota_cleanup+0x464/0x668 [ 96.130972][ T4329] gfs2_make_fs_ro+0x368/0x438 [ 96.131788][ T4329] gfs2_put_super+0x1e0/0x760 [ 96.132606][ T4329] generic_shutdown_super+0x130/0x324 [ 96.133502][ T4329] kill_block_super+0x70/0xdc [ 96.134275][ T4329] gfs2_kill_sb+0xc0/0xd4 [ 96.134950][ T4329] deactivate_locked_super+0xac/0x120 [ 96.135789][ T4329] deactivate_super+0xe4/0x104 [ 96.136586][ T4329] cleanup_mnt+0x390/0x418 [ 96.137338][ T4329] __cleanup_mnt+0x20/0x30 [ 96.138028][ T4329] task_work_run+0x1ec/0x278 [ 96.138788][ T4329] do_notify_resume+0x1fa0/0x2aa4 [ 96.139564][ T4329] el0_svc+0x98/0x128 [ 96.140246][ T4329] el0t_64_sync_handler+0x84/0xf0 [ 96.141069][ T4329] el0t_64_sync+0x18c/0x190 [ 96.199792][T11849] loop0: detected capacity change from 0 to 256 [ 96.409337][T11841] loop2: detected capacity change from 0 to 32768 [ 96.411087][T11841] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.3324 (11841) [ 96.413773][T11841] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 96.415460][T11841] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 96.416834][T11841] BTRFS info (device loop2): enabling auto defrag [ 96.418502][T11841] BTRFS info (device loop2): use no compression [ 96.419405][T11841] BTRFS info (device loop2): max_inline at 0 [ 96.420314][T11841] BTRFS info (device loop2): using free space tree [ 96.484835][T11886] xt_connbytes: Forcing CT accounting to be enabled [ 96.529943][T11841] BTRFS info (device loop2): enabling ssd optimizations [ 96.567073][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 96.653935][ T4328] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 96.862265][T11896] loop0: detected capacity change from 0 to 32768 [ 96.874040][T11930] loop3: detected capacity change from 0 to 64 [ 96.876372][T11896] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 96.882019][T11896] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 96.898860][T11896] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 96.900638][T11757] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 96.901663][T11757] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 96.925604][T11757] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 23ms [ 96.926853][T11757] gfs2: fsid=syz:syz.0: jid=0: Done [ 96.937052][T11896] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 96.940240][T11933] loop4: detected capacity change from 0 to 2048 [ 96.943034][T11933] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 97.074405][T11896] gfs2: fsid=syz:syz.0: found 1 quota changes [ 97.085789][T11924] loop1: detected capacity change from 0 to 32768 [ 97.100777][T11924] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.3372 (11924) [ 97.109273][T11924] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 97.110916][T11924] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 97.114847][T11924] BTRFS info (device loop1): enabling auto defrag [ 97.115776][T11924] BTRFS info (device loop1): use no compression [ 97.122781][T11924] BTRFS info (device loop1): max_inline at 0 [ 97.123735][T11924] BTRFS info (device loop1): using free space tree [ 97.170717][ T4327] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485 [ 97.173213][ T4327] CPU: 0 PID: 4327 Comm: syz-executor Not tainted syzkaller #0 [ 97.174468][ T4327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 97.175962][ T4327] Call trace: [ 97.176500][ T4327] dump_backtrace+0x1c0/0x1ec [ 97.177233][ T4327] show_stack+0x2c/0x3c [ 97.177968][ T4327] __dump_stack+0x30/0x40 [ 97.178738][ T4327] dump_stack_lvl+0xf4/0x15c [ 97.179513][ T4327] dump_stack+0x1c/0x5c [ 97.180245][ T4327] gfs2_assert_warn_i+0x16c/0x26c [ 97.181049][ T4327] gfs2_quota_cleanup+0x464/0x668 [ 97.181839][ T4327] gfs2_make_fs_ro+0x368/0x438 [ 97.182595][ T4327] gfs2_put_super+0x1e0/0x760 [ 97.183313][ T4327] generic_shutdown_super+0x130/0x324 [ 97.184089][ T4327] kill_block_super+0x70/0xdc [ 97.184817][ T4327] gfs2_kill_sb+0xc0/0xd4 [ 97.185464][ T4327] deactivate_locked_super+0xac/0x120 [ 97.186325][ T4327] deactivate_super+0xe4/0x104 [ 97.187028][ T4327] cleanup_mnt+0x390/0x418 [ 97.187667][ T4327] __cleanup_mnt+0x20/0x30 [ 97.188418][ T4327] task_work_run+0x1ec/0x278 [ 97.189198][ T4327] do_notify_resume+0x1fa0/0x2aa4 [ 97.190026][ T4327] el0_svc+0x98/0x128 [ 97.190681][ T4327] el0t_64_sync_handler+0x84/0xf0 [ 97.191472][ T4327] el0t_64_sync+0x18c/0x190 [ 97.361046][T11924] BTRFS info (device loop1): enabling ssd optimizations [ 97.363740][T11994] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3395'. [ 97.365197][T11994] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3395'. [ 97.440426][ T4321] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 97.526280][T12012] loop0: detected capacity change from 0 to 64 [ 97.897325][T12063] xt_ecn: cannot match TCP bits for non-tcp packets [ 98.136198][T12093] netlink: 'syz.1.3441': attribute type 9 has an invalid length. [ 98.144099][T12095] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3440'. [ 98.145518][T12095] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3440'. [ 98.560009][T12160] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 98.603807][T12170] xt_ecn: cannot match TCP bits for non-tcp packets [ 98.604925][T12162] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 98.659231][T12176] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3481'. [ 98.742670][T12178] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 98.827520][T12190] EXT2-fs (loop4): warning: feature flags set on rev 0 fs, running e2fsck is recommended [ 98.841362][T12190] syz.4.3499: attempt to access beyond end of device [ 98.841362][T12190] loop4: rw=0, sector=511016, nr_sectors = 4 limit=512 [ 98.871548][ T4321] ntfs3: loop1: ntfs_sync_fs r=1a failed, -22. [ 98.874069][ T4321] ntfs3: loop1: ntfs_evict_inode r=1a failed, -22. [ 98.875083][ T4321] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 98.980098][T12210] netlink: 'syz.3.3495': attribute type 9 has an invalid length. [ 99.024914][T12217] FAT-fs (loop4): Directory bread(block 64) failed [ 99.025965][T12217] FAT-fs (loop4): Directory bread(block 65) failed [ 99.030514][T12217] FAT-fs (loop4): Directory bread(block 66) failed [ 99.031578][T12217] FAT-fs (loop4): Directory bread(block 67) failed [ 99.032704][T12217] FAT-fs (loop4): Directory bread(block 68) failed [ 99.045525][T12217] FAT-fs (loop4): Directory bread(block 69) failed [ 99.046662][T12217] FAT-fs (loop4): Directory bread(block 70) failed [ 99.050312][T12217] FAT-fs (loop4): Directory bread(block 71) failed [ 99.051410][T12217] FAT-fs (loop4): Directory bread(block 72) failed [ 99.052562][T12217] FAT-fs (loop4): Directory bread(block 73) failed [ 99.407768][T12259] netlink: 180 bytes leftover after parsing attributes in process `syz.4.3521'. [ 99.409328][T12259] netlink: 180 bytes leftover after parsing attributes in process `syz.4.3521'. [ 99.414272][T12259] netlink: 78 bytes leftover after parsing attributes in process `syz.4.3521'. [ 99.441534][T12269] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 99.474813][T12273] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 99.672755][T12298] libceph: resolve '4.' (ret=-3): failed [ 99.679083][T12263] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 99.680426][T12263] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 99.703116][T12263] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 99.705077][ T6425] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 99.706259][ T6425] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 99.747558][ T6425] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 41ms [ 99.749601][ T6425] gfs2: fsid=syz:syz.0: jid=0: Done [ 99.750513][T12263] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 99.764671][T12307] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 99.815450][T12317] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3545'. [ 99.875883][ T4328] ntfs3: loop2: ntfs_sync_fs r=1a failed, -22. [ 99.877844][ T4328] ntfs3: loop2: ntfs_evict_inode r=1a failed, -22. [ 99.878960][ T4328] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 99.943364][T12323] FAT-fs (loop3): Directory bread(block 64) failed [ 99.944491][T12323] FAT-fs (loop3): Directory bread(block 65) failed [ 99.946248][T12323] FAT-fs (loop3): Directory bread(block 66) failed [ 99.949032][T12323] FAT-fs (loop3): Directory bread(block 67) failed [ 99.955858][T12323] FAT-fs (loop3): Directory bread(block 68) failed [ 99.961087][T12323] FAT-fs (loop3): Directory bread(block 69) failed [ 99.962171][T12323] FAT-fs (loop3): Directory bread(block 70) failed [ 99.963240][T12323] FAT-fs (loop3): Directory bread(block 71) failed [ 99.964351][T12323] FAT-fs (loop3): Directory bread(block 72) failed [ 99.965414][T12323] FAT-fs (loop3): Directory bread(block 73) failed [ 100.044631][T12332] FAT-fs (loop0): Directory bread(block 64) failed [ 100.045711][T12332] FAT-fs (loop0): Directory bread(block 65) failed [ 100.046779][T12332] FAT-fs (loop0): Directory bread(block 66) failed [ 100.047917][T12332] FAT-fs (loop0): Directory bread(block 67) failed [ 100.056086][T12332] FAT-fs (loop0): Directory bread(block 68) failed [ 100.062329][T12332] FAT-fs (loop0): Directory bread(block 69) failed [ 100.063402][T12332] FAT-fs (loop0): Directory bread(block 70) failed [ 100.064525][T12332] FAT-fs (loop0): Directory bread(block 71) failed [ 100.065664][T12332] FAT-fs (loop0): Directory bread(block 72) failed [ 100.067895][T12332] FAT-fs (loop0): Directory bread(block 73) failed [ 100.183167][T12349] i2c i2c-0: Invalid block write size 34 [ 100.335347][T12375] netlink: 180 bytes leftover after parsing attributes in process `syz.0.3573'. [ 100.341091][T12370] FAT-fs (loop1): Directory bread(block 64) failed [ 100.342115][T12370] FAT-fs (loop1): Directory bread(block 65) failed [ 100.343187][T12370] FAT-fs (loop1): Directory bread(block 66) failed [ 100.360447][T12370] FAT-fs (loop1): Directory bread(block 67) failed [ 100.361515][T12370] FAT-fs (loop1): Directory bread(block 68) failed [ 100.362683][T12370] FAT-fs (loop1): Directory bread(block 69) failed [ 100.363715][T12370] FAT-fs (loop1): Directory bread(block 70) failed [ 100.364775][T12370] FAT-fs (loop1): Directory bread(block 71) failed [ 100.365854][T12370] FAT-fs (loop1): Directory bread(block 72) failed [ 100.392271][T12370] FAT-fs (loop1): Directory bread(block 73) failed [ 100.750011][T12429] FAT-fs (loop4): Directory bread(block 64) failed [ 100.751114][T12429] FAT-fs (loop4): Directory bread(block 65) failed [ 100.752167][T12429] FAT-fs (loop4): Directory bread(block 66) failed [ 100.753219][T12429] FAT-fs (loop4): Directory bread(block 67) failed [ 100.754344][T12429] FAT-fs (loop4): Directory bread(block 68) failed [ 100.755436][T12429] FAT-fs (loop4): Directory bread(block 69) failed [ 100.756469][T12429] FAT-fs (loop4): Directory bread(block 70) failed [ 100.771019][T12429] FAT-fs (loop4): Directory bread(block 71) failed [ 100.772291][T12429] FAT-fs (loop4): Directory bread(block 72) failed [ 100.773494][T12429] FAT-fs (loop4): Directory bread(block 73) failed [ 100.842949][T12441] libceph: resolve '4.' (ret=-3): failed [ 101.032483][T12468] i2c i2c-0: Invalid block write size 34 [ 101.058397][T12475] netlink: 'syz.3.3627': attribute type 1 has an invalid length. [ 101.121396][T12486] set_capacity_and_notify: 11 callbacks suppressed [ 101.121406][T12486] loop2: detected capacity change from 0 to 256 [ 101.137182][T12486] FAT-fs (loop2): Directory bread(block 64) failed [ 101.138270][T12486] FAT-fs (loop2): Directory bread(block 65) failed [ 101.143332][T12486] FAT-fs (loop2): Directory bread(block 66) failed [ 101.144436][T12486] FAT-fs (loop2): Directory bread(block 67) failed [ 101.159131][T12486] FAT-fs (loop2): Directory bread(block 68) failed [ 101.160191][T12486] FAT-fs (loop2): Directory bread(block 69) failed [ 101.161201][T12486] FAT-fs (loop2): Directory bread(block 70) failed [ 101.165168][T12486] FAT-fs (loop2): Directory bread(block 71) failed [ 101.166242][T12486] FAT-fs (loop2): Directory bread(block 72) failed [ 101.174040][T12486] FAT-fs (loop2): Directory bread(block 73) failed [ 101.487221][T12529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 102.194926][T12631] netlink: 'syz.1.3698': attribute type 1 has an invalid length. [ 102.213512][T12633] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 102.410087][T12652] __nla_validate_parse: 11 callbacks suppressed [ 102.410097][T12652] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3712'. [ 102.413423][T12652] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3712'. [ 102.414876][T12652] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3712'. [ 102.810426][T12693] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3729'. [ 102.843420][T12698] loop1: detected capacity change from 0 to 256 [ 102.872925][T12698] FAT-fs (loop1): Directory bread(block 64) failed [ 102.874090][T12698] FAT-fs (loop1): Directory bread(block 65) failed [ 102.875141][T12698] FAT-fs (loop1): Directory bread(block 66) failed [ 102.876263][T12698] FAT-fs (loop1): Directory bread(block 67) failed [ 102.886679][T12698] FAT-fs (loop1): Directory bread(block 68) failed [ 102.888806][T12698] FAT-fs (loop1): Directory bread(block 69) failed [ 102.889822][T12698] FAT-fs (loop1): Directory bread(block 70) failed [ 102.890925][T12698] FAT-fs (loop1): Directory bread(block 71) failed [ 102.891997][T12698] FAT-fs (loop1): Directory bread(block 72) failed [ 102.897567][T12703] netlink: 'syz.2.3737': attribute type 1 has an invalid length. [ 102.899642][T12698] FAT-fs (loop1): Directory bread(block 73) failed [ 104.015292][T12771] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3770'. [ 104.062846][T12779] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 104.167050][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 104.330944][T12812] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3789'. [ 104.560798][T12845] loop2: detected capacity change from 0 to 256 [ 104.582397][T12847] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3810'. [ 104.590741][T12845] FAT-fs (loop2): Directory bread(block 64) failed [ 104.591838][T12845] FAT-fs (loop2): Directory bread(block 65) failed [ 104.594961][T12845] FAT-fs (loop2): Directory bread(block 66) failed [ 104.596015][T12845] FAT-fs (loop2): Directory bread(block 67) failed [ 104.607197][T12845] FAT-fs (loop2): Directory bread(block 68) failed [ 104.608196][T12845] FAT-fs (loop2): Directory bread(block 69) failed [ 104.611624][T12845] FAT-fs (loop2): Directory bread(block 70) failed [ 104.612653][T12845] FAT-fs (loop2): Directory bread(block 71) failed [ 104.613703][T12845] FAT-fs (loop2): Directory bread(block 72) failed [ 104.614736][T12845] FAT-fs (loop2): Directory bread(block 73) failed [ 104.629812][T12853] device veth3 entered promiscuous mode [ 104.708518][T12864] netlink: 'syz.1.3826': attribute type 1 has an invalid length. [ 104.828026][T12875] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3823'. [ 105.071775][T12912] ebt_among: dst integrity fail: 101 [ 105.165532][T12930] vhci_hcd: invalid port number 255 [ 105.166380][T12930] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 105.194879][T12933] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 105.227021][T12927] loop1: detected capacity change from 0 to 8192 [ 105.247835][T12927] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 105.249830][T12927] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 105.251369][T12927] REISERFS (device loop1): using ordered data mode [ 105.252377][T12927] reiserfs: using flush barriers [ 105.260756][T12927] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 105.265700][T12927] REISERFS (device loop1): checking transaction log (loop1) [ 105.279028][T12942] loop0: detected capacity change from 0 to 64 [ 105.332223][T12927] REISERFS (device loop1): Using tea hash to sort names [ 105.333392][T12927] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 105.547847][T12962] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 105.616894][T12974] bridge3: the hash_elasticity option has been deprecated and is always 16 [ 105.661144][T12947] loop4: detected capacity change from 0 to 32768 [ 105.841536][T13005] loop2: detected capacity change from 0 to 256 [ 105.853745][ T4325] Bluetooth: hci2: unknown advertising packet type: 0x69 [ 105.862667][T13005] FAT-fs (loop2): Directory bread(block 64) failed [ 105.864874][T13005] FAT-fs (loop2): Directory bread(block 65) failed [ 105.865960][T13005] FAT-fs (loop2): Directory bread(block 66) failed [ 105.871520][T13005] FAT-fs (loop2): Directory bread(block 67) failed [ 105.872590][T13005] FAT-fs (loop2): Directory bread(block 68) failed [ 105.875998][T13005] FAT-fs (loop2): Directory bread(block 69) failed [ 105.881037][T13005] FAT-fs (loop2): Directory bread(block 70) failed [ 105.882203][T13005] FAT-fs (loop2): Directory bread(block 71) failed [ 105.883277][T13005] FAT-fs (loop2): Directory bread(block 72) failed [ 105.894561][T13005] FAT-fs (loop2): Directory bread(block 73) failed [ 106.020953][T12997] loop1: detected capacity change from 0 to 32768 [ 106.083529][T12997] XFS (loop1): Mounting V5 Filesystem [ 106.104386][T13030] loop4: detected capacity change from 0 to 1024 [ 106.105896][T13030] EXT4-fs: Ignoring removed mblk_io_submit option [ 106.161483][T12997] XFS (loop1): Ending clean mount [ 106.163061][T13030] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 106.175654][T13030] EXT4-fs (loop4): Test dummy encryption mode enabled [ 106.202104][T13030] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 106.220497][T13030] EXT4-fs error (device loop4): __ext4_remount:6644: comm syz.4.3895: Abort forced by user [ 106.237108][T13030] EXT4-fs (loop4): Remounting filesystem read-only [ 106.238235][T13030] EXT4-fs (loop4): re-mounted. Quota mode: writeback. [ 106.272361][ T4321] XFS (loop1): Unmounting Filesystem [ 106.284865][ T4329] EXT4-fs (loop4): unmounting filesystem. [ 106.408882][T13017] loop0: detected capacity change from 0 to 32768 [ 106.462277][T13017] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 106.466583][T13017] XFS (loop0): Mounting V5 Filesystem [ 106.532861][T13017] XFS (loop0): Ending clean mount [ 106.562014][T13079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3912'. [ 106.563480][T13079] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 106.640230][ T4327] XFS (loop0): Unmounting Filesystem [ 106.642588][T13085] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 106.679730][T13090] netlink: 'syz.1.3902': attribute type 21 has an invalid length. [ 106.830448][T13109] --map-set only usable from mangle table [ 106.893113][T13121] fuse: blksize only supported for fuseblk [ 107.035485][T13141] loop1: detected capacity change from 0 to 256 [ 107.194692][T13161] overlayfs: unrecognized mount option "\{\" or missing value [ 107.288542][T13171] net_ratelimit: 724 callbacks suppressed [ 107.288554][T13171] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 107.294114][T13175] xt_TPROXY: Can be used only with -p tcp or -p udp [ 107.343234][T13180] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 107.375630][T13183] loop0: detected capacity change from 0 to 16 [ 107.387430][T13183] erofs: (device loop0): mounted with root inode @ nid 36. [ 107.437268][T13157] loop1: detected capacity change from 0 to 32768 [ 107.439037][T13157] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.3952 (13157) [ 107.453980][T13157] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 107.455633][T13157] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 107.460014][T13191] netlink: 'syz.2.3970': attribute type 1 has an invalid length. [ 107.461434][T13191] netlink: 'syz.2.3970': attribute type 3 has an invalid length. [ 107.467294][T13157] BTRFS info (device loop1): using free space tree [ 107.468545][T13191] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3970'. [ 107.637074][T13157] BTRFS info (device loop1): enabling ssd optimizations [ 107.733014][ T4321] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 107.766267][T13255] loop3: detected capacity change from 0 to 1024 [ 107.782198][T13255] EXT4-fs: Ignoring removed orlov option [ 107.817076][T13255] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 107.835013][T13255] EXT4-fs error (device loop3): __ext4_remount:6644: comm syz.3.3988: Abort forced by user [ 107.841354][T13255] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 107.880790][ T4320] EXT4-fs (loop3): unmounting filesystem. [ 107.982573][T13285] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4004'. [ 107.984019][T13285] netlink: 7 bytes leftover after parsing attributes in process `syz.3.4004'. [ 107.985424][T13285] tc_dump_action: action bad kind [ 108.065465][T13292] netlink: 'syz.4.4009': attribute type 9 has an invalid length. [ 108.514516][T13361] netlink: 'syz.3.4043': attribute type 6 has an invalid length. [ 108.721805][T13389] kAFS: unable to lookup cell '(,c¾Ì' [ 108.856740][T13385] loop3: detected capacity change from 0 to 32768 [ 109.301946][T13452] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4086'. [ 109.362538][T13463] loop4: detected capacity change from 0 to 164 [ 109.461854][T13478] netlink: zone id is out of range [ 109.653426][T13509] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4114'. [ 109.654936][T13509] netlink: 'syz.4.4114': attribute type 1 has an invalid length. [ 109.696383][T13512] xt_ipcomp: unknown flags 2 [ 109.883578][T13545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4132'. [ 109.970575][T13559] loop3: detected capacity change from 0 to 256 [ 110.003354][T13559] FAT-fs (loop3): Directory bread(block 64) failed [ 110.004442][T13559] FAT-fs (loop3): Directory bread(block 65) failed [ 110.005516][T13559] FAT-fs (loop3): Directory bread(block 66) failed [ 110.006559][T13559] FAT-fs (loop3): Directory bread(block 67) failed [ 110.013272][T13565] loop0: detected capacity change from 0 to 512 [ 110.017344][T13559] FAT-fs (loop3): Directory bread(block 68) failed [ 110.018354][T13559] FAT-fs (loop3): Directory bread(block 69) failed [ 110.019412][T13559] FAT-fs (loop3): Directory bread(block 70) failed [ 110.020520][T13559] FAT-fs (loop3): Directory bread(block 71) failed [ 110.021698][T13559] FAT-fs (loop3): Directory bread(block 72) failed [ 110.036820][T13559] FAT-fs (loop3): Directory bread(block 73) failed [ 110.101196][T13565] __quota_error: 7 callbacks suppressed [ 110.101208][T13565] Quota error (device loop0): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 110.103673][T13565] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 110.105185][T13565] EXT4-fs error (device loop0): ext4_acquire_dquot:6835: comm syz.0.4154: Failed to acquire dquot type 1 [ 110.128294][T13565] EXT4-fs error (device loop0): ext4_do_update_inode:5272: inode #16: comm syz.0.4154: corrupted inode contents [ 110.136945][T13565] EXT4-fs error (device loop0): ext4_dirty_inode:6137: inode #16: comm syz.0.4154: mark_inode_dirty error [ 110.151646][T13565] EXT4-fs error (device loop0): ext4_do_update_inode:5272: inode #16: comm syz.0.4154: corrupted inode contents [ 110.166763][ T27] audit: type=1326 audit(32820.288:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13583 comm="syz.4.4152" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4d77128 code=0x0 [ 110.166866][T13565] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.4154: mark_inode_dirty error [ 110.210584][T13565] EXT4-fs error (device loop0): ext4_do_update_inode:5272: inode #16: comm syz.0.4154: corrupted inode contents [ 110.224783][T13565] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 110.237074][T13565] EXT4-fs error (device loop0): ext4_do_update_inode:5272: inode #16: comm syz.0.4154: corrupted inode contents [ 110.243474][T13565] EXT4-fs error (device loop0): ext4_truncate:4318: inode #16: comm syz.0.4154: mark_inode_dirty error [ 110.250782][T13565] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 110.252608][T13565] EXT4-fs (loop0): 1 truncate cleaned up [ 110.253596][T13565] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 110.364125][ T4327] EXT4-fs (loop0): unmounting filesystem. [ 110.567101][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 110.579164][T13639] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 110.740423][T13666] loop0: detected capacity change from 0 to 64 [ 110.754830][T13669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4192'. [ 110.896383][T13684] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 110.962559][T13696] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4208'. [ 110.986397][T13701] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4209'. [ 111.131379][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 111.143718][T13720] infiniband syz2: set active [ 111.147386][ T14] lo speed is unknown, defaulting to 1000 [ 111.267852][T13745] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4241'. [ 111.288758][T13742] device veth3 entered promiscuous mode [ 111.332044][T13753] ebt_among: dst integrity fail: 101 [ 111.367577][T13750] device veth5 entered promiscuous mode [ 111.377283][ T4326] Bluetooth: hci4: command 0x0406 tx timeout [ 111.446102][T13759] loop2: detected capacity change from 0 to 8192 [ 111.448329][T13759] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 111.450327][T13759] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 111.451930][T13759] REISERFS (device loop2): using ordered data mode [ 111.452922][T13759] reiserfs: using flush barriers [ 111.455029][T13759] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 111.457591][T13759] REISERFS (device loop2): checking transaction log (loop2) [ 111.500725][T13759] REISERFS (device loop2): Using tea hash to sort names [ 111.502600][T13759] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 111.598820][T13788] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 111.728006][T13798] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 111.731943][T13793] vhci_hcd: invalid port number 255 [ 111.732904][T13793] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 111.808104][T13806] loop1: detected capacity change from 0 to 64 [ 111.845799][T13801] device veth5 entered promiscuous mode [ 111.912392][T13811] loop0: detected capacity change from 0 to 8192 [ 111.916735][T13811] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 111.919139][T13811] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 111.920728][T13811] REISERFS (device loop0): using ordered data mode [ 111.921750][T13811] reiserfs: using flush barriers [ 111.946074][T13811] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 111.956639][T13811] REISERFS (device loop0): checking transaction log (loop0) [ 112.022648][T13811] REISERFS (device loop0): Using tea hash to sort names [ 112.023937][T13811] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 112.095042][T13840] loop4: detected capacity change from 0 to 64 [ 112.197542][T13845] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 112.215532][T13849] device veth5 entered promiscuous mode [ 112.249551][T13824] loop2: detected capacity change from 0 to 32768 [ 112.370942][T13865] loop3: detected capacity change from 0 to 8192 [ 112.381082][T13872] bridge3: the hash_elasticity option has been deprecated and is always 16 [ 112.388876][T13865] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 112.391018][T13865] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 112.392551][T13865] REISERFS (device loop3): using ordered data mode [ 112.393518][T13865] reiserfs: using flush barriers [ 112.406213][T13865] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 112.411598][T13865] REISERFS (device loop3): checking transaction log (loop3) [ 112.417416][T13877] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 112.495961][T13865] REISERFS (device loop3): Using tea hash to sort names [ 112.503662][T13865] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 112.675880][T13905] bridge5: the hash_elasticity option has been deprecated and is always 16 [ 112.733779][ T4325] Bluetooth: hci4: unknown advertising packet type: 0x69 [ 112.736812][T13916] loop3: detected capacity change from 0 to 256 [ 112.761153][T13916] FAT-fs (loop3): Directory bread(block 64) failed [ 112.762249][T13916] FAT-fs (loop3): Directory bread(block 65) failed [ 112.763301][T13916] FAT-fs (loop3): Directory bread(block 66) failed [ 112.764352][T13916] FAT-fs (loop3): Directory bread(block 67) failed [ 112.765403][T13916] FAT-fs (loop3): Directory bread(block 68) failed [ 112.766372][T13916] FAT-fs (loop3): Directory bread(block 69) failed [ 112.787257][T13916] FAT-fs (loop3): Directory bread(block 70) failed [ 112.788318][T13916] FAT-fs (loop3): Directory bread(block 71) failed [ 112.789430][T13916] FAT-fs (loop3): Directory bread(block 72) failed [ 112.790423][T13916] FAT-fs (loop3): Directory bread(block 73) failed [ 112.845985][T13897] loop0: detected capacity change from 0 to 32768 [ 113.031472][T13914] loop1: detected capacity change from 0 to 32768 [ 113.037843][ T4325] Bluetooth: hci0: unknown advertising packet type: 0x69 [ 113.081698][T13914] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 113.084423][T13914] XFS (loop1): Mounting V5 Filesystem [ 113.121173][T13953] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.128085][T13914] XFS (loop1): Ending clean mount [ 113.232390][T13933] loop2: detected capacity change from 0 to 32768 [ 113.235460][ T4321] XFS (loop1): Unmounting Filesystem [ 113.334244][T13933] XFS (loop2): Mounting V5 Filesystem [ 113.370085][T13933] XFS (loop2): Ending clean mount [ 113.425003][ T4328] XFS (loop2): Unmounting Filesystem [ 113.606152][T13959] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 113.608163][T13959] XFS (loop3): Mounting V5 Filesystem [ 113.654230][T13959] XFS (loop3): Ending clean mount [ 113.725914][ T4320] XFS (loop3): Unmounting Filesystem [ 113.865426][T13971] XFS (loop0): Mounting V5 Filesystem [ 113.914658][T14009] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.921384][T13971] XFS (loop0): Ending clean mount [ 113.992803][ T4327] XFS (loop0): Unmounting Filesystem [ 114.114320][T13991] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 114.115868][T13991] XFS (loop4): Mounting V5 Filesystem [ 114.178702][T13991] XFS (loop4): Ending clean mount [ 114.252100][ T4329] XFS (loop4): Unmounting Filesystem [ 114.368060][T14043] EXT4-fs: Ignoring removed mblk_io_submit option [ 114.369527][T14043] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 114.370769][T14043] EXT4-fs (loop0): Test dummy encryption mode enabled [ 114.381563][T14043] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 114.389675][T14043] EXT4-fs error (device loop0): __ext4_remount:6644: comm syz.0.4349: Abort forced by user [ 114.391410][T14043] EXT4-fs (loop0): Remounting filesystem read-only [ 114.392472][T14043] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 114.405505][ T4327] EXT4-fs (loop0): unmounting filesystem. [ 114.551462][T14054] EXT4-fs: Ignoring removed mblk_io_submit option [ 114.552801][T14054] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 114.554194][T14054] EXT4-fs (loop2): Test dummy encryption mode enabled [ 114.571005][T14054] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 114.575733][T14059] netlink: 'syz.3.4362': attribute type 21 has an invalid length. [ 114.585584][T14054] EXT4-fs error (device loop2): __ext4_remount:6644: comm syz.2.4371: Abort forced by user [ 114.591037][T14054] EXT4-fs (loop2): Remounting filesystem read-only [ 114.592167][T14054] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 114.598618][T14063] __nla_validate_parse: 1 callbacks suppressed [ 114.598626][T14063] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4363'. [ 114.601041][T14063] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 114.626540][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 114.808898][T14094] netlink: 'syz.4.4380': attribute type 21 has an invalid length. [ 114.890791][T14107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4383'. [ 114.892320][T14107] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 115.245005][T14163] fuse: blksize only supported for fuseblk [ 115.290981][T14171] --map-set only usable from mangle table [ 115.335172][T14179] --map-set only usable from mangle table [ 115.486384][T14203] fuse: blksize only supported for fuseblk [ 115.868432][T14256] xt_TPROXY: Can be used only with -p tcp or -p udp [ 115.923545][T14263] overlayfs: unrecognized mount option "\{\" or missing value [ 115.970584][T14266] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 116.096702][T14280] xt_TPROXY: Can be used only with -p tcp or -p udp [ 116.147455][T14251] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.4460 (14251) [ 116.160816][T14251] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 116.162503][T14251] BTRFS info (device loop0): using sha256 (sha256-ce) checksum algorithm [ 116.163815][T14251] BTRFS info (device loop0): using free space tree [ 116.214083][T14300] overlayfs: unrecognized mount option "\{\" or missing value [ 116.236008][T14305] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 116.318542][T14325] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 116.326861][T14251] BTRFS info (device loop0): enabling ssd optimizations [ 116.334647][T14329] erofs: (device loop4): mounted with root inode @ nid 36. [ 116.416906][ T4327] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 116.424323][T14337] netlink: 'syz.4.4496': attribute type 1 has an invalid length. [ 116.427853][T14337] netlink: 'syz.4.4496': attribute type 3 has an invalid length. [ 116.430400][T14337] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4496'. [ 116.622288][T14357] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 116.679689][T14363] set_capacity_and_notify: 9 callbacks suppressed [ 116.679704][T14363] loop3: detected capacity change from 0 to 16 [ 116.700597][T14363] erofs: (device loop3): mounted with root inode @ nid 36. [ 116.748812][T14343] loop2: detected capacity change from 0 to 32768 [ 116.751264][T14343] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.4509 (14343) [ 116.768696][T14343] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 116.770423][T14343] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 116.771742][T14343] BTRFS info (device loop2): using free space tree [ 116.834195][T14382] tmpfs: Bad value for 'mpol' [ 116.847919][T14385] netlink: 'syz.0.4512': attribute type 1 has an invalid length. [ 116.849156][T14385] netlink: 'syz.0.4512': attribute type 3 has an invalid length. [ 116.853415][T14385] netlink: 224 bytes leftover after parsing attributes in process `syz.0.4512'. [ 116.956057][T14343] BTRFS info (device loop2): enabling ssd optimizations [ 117.013120][ T4328] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 117.130977][T14420] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address [ 117.138666][T14420] bond0: (slave ip6tnl0): Error -95 calling set_mac_address [ 117.314784][T14444] tmpfs: Bad value for 'mpol' [ 117.387676][T14454] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address [ 117.394624][T14454] bond0: (slave ip6tnl0): Error -95 calling set_mac_address [ 117.861662][T14475] tmpfs: Bad value for 'mpol' [ 117.963427][T14485] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address [ 117.965927][T14485] bond0: (slave ip6tnl0): Error -95 calling set_mac_address [ 118.020112][T14466] loop4: detected capacity change from 0 to 32768 [ 118.027116][T14466] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.4546 (14466) [ 118.035518][T14466] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 118.039471][T14466] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 118.040829][T14466] BTRFS info (device loop4): using free space tree [ 118.092703][T14466] BTRFS info (device loop4): enabling ssd optimizations [ 118.115929][ T4329] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 118.274241][ T4313] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop4 scanned by udevd (4313) [ 118.593382][T14552] loop2: detected capacity change from 0 to 1024 [ 118.597569][T14552] EXT4-fs: Ignoring removed orlov option [ 118.651736][T14552] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 118.686223][T14552] EXT4-fs error (device loop2): __ext4_remount:6644: comm syz.2.4579: Abort forced by user [ 118.697320][T14552] EXT4-fs (loop2): re-mounted. Quota mode: none. [ 118.733970][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 118.897046][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 118.972206][T14593] loop3: detected capacity change from 0 to 2048 [ 118.978759][T14593] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.079325][T14609] loop1: detected capacity change from 0 to 1024 [ 119.080847][T14609] EXT4-fs: Ignoring removed orlov option [ 119.087993][T14606] loop4: detected capacity change from 0 to 2048 [ 119.091861][T14606] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.126054][T14609] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 119.137619][T14609] EXT4-fs error (device loop1): __ext4_remount:6644: comm syz.1.4602: Abort forced by user [ 119.140392][T14609] EXT4-fs (loop1): re-mounted. Quota mode: none. [ 119.178161][ T4321] EXT4-fs (loop1): unmounting filesystem. [ 119.331170][T14632] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4618'. [ 119.333593][T14632] netlink: 7 bytes leftover after parsing attributes in process `syz.4.4618'. [ 119.337250][T14632] tc_dump_action: action bad kind [ 119.436450][T14644] netlink: 'syz.3.4624': attribute type 9 has an invalid length. [ 119.771426][T14675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4635'. [ 119.782427][T14675] netlink: 7 bytes leftover after parsing attributes in process `syz.0.4635'. [ 119.783820][T14675] tc_dump_action: action bad kind [ 119.806606][T14681] netlink: 'syz.2.4639': attribute type 9 has an invalid length. [ 121.973395][T14806] netlink: 'syz.0.4701': attribute type 6 has an invalid length. [ 121.978722][T14807] kAFS: unable to lookup cell '(,c¾Ì' [ 122.189495][T14833] netlink: 'syz.1.4717': attribute type 6 has an invalid length. [ 122.243598][T14837] kAFS: unable to lookup cell '(,c¾Ì' [ 122.339287][T14827] loop4: detected capacity change from 0 to 32768 [ 122.699959][T14855] loop1: detected capacity change from 0 to 32768 [ 123.229603][T14956] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4780'. [ 123.280468][T14963] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4793'. [ 123.347688][T14971] loop3: detected capacity change from 0 to 164 [ 123.597688][T15013] loop0: detected capacity change from 0 to 164 [ 123.644653][T15018] netlink: zone id is out of range [ 123.675301][T15023] netlink: zone id is out of range [ 124.067593][T15083] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4840'. [ 124.077067][T15083] netlink: 'syz.0.4840': attribute type 1 has an invalid length. [ 124.237962][T15109] xt_ipcomp: unknown flags 2 [ 124.306942][T15119] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4859'. [ 124.316422][T15119] netlink: 'syz.1.4859': attribute type 1 has an invalid length. [ 124.336611][T15126] xt_ipcomp: unknown flags 2 [ 124.396647][T15131] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4876'. [ 124.625299][T15167] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4880'. [ 124.721554][T15186] loop1: detected capacity change from 0 to 256 [ 124.754054][T15186] FAT-fs (loop1): Directory bread(block 64) failed [ 124.755193][T15186] FAT-fs (loop1): Directory bread(block 65) failed [ 124.756323][T15186] FAT-fs (loop1): Directory bread(block 66) failed [ 124.763561][T15186] FAT-fs (loop1): Directory bread(block 67) failed [ 124.764654][T15186] FAT-fs (loop1): Directory bread(block 68) failed [ 124.765805][T15186] FAT-fs (loop1): Directory bread(block 69) failed [ 124.766886][T15186] FAT-fs (loop1): Directory bread(block 70) failed [ 124.781632][T15186] FAT-fs (loop1): Directory bread(block 71) failed [ 124.782784][T15186] FAT-fs (loop1): Directory bread(block 72) failed [ 124.783965][T15186] FAT-fs (loop1): Directory bread(block 73) failed [ 125.054262][ T27] audit: type=1326 audit(32835.178:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15230 comm="syz.2.4914" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f977128 code=0x0 [ 125.066526][T15234] loop3: detected capacity change from 0 to 512 [ 125.080688][T15241] loop0: detected capacity change from 0 to 256 [ 125.100488][T15234] Quota error (device loop3): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 125.102122][T15234] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 125.103683][T15234] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.4918: Failed to acquire dquot type 1 [ 125.112364][T15241] FAT-fs (loop0): Directory bread(block 64) failed [ 125.113433][T15241] FAT-fs (loop0): Directory bread(block 65) failed [ 125.114540][T15241] FAT-fs (loop0): Directory bread(block 66) failed [ 125.115596][T15241] FAT-fs (loop0): Directory bread(block 67) failed [ 125.116674][T15241] FAT-fs (loop0): Directory bread(block 68) failed [ 125.117430][T15234] EXT4-fs error (device loop3): ext4_do_update_inode:5272: inode #16: comm syz.3.4918: corrupted inode contents [ 125.120819][T15234] EXT4-fs error (device loop3): ext4_dirty_inode:6137: inode #16: comm syz.3.4918: mark_inode_dirty error [ 125.123020][T15241] FAT-fs (loop0): Directory bread(block 69) failed [ 125.123198][T15234] EXT4-fs error (device loop3): ext4_do_update_inode:5272: inode #16: comm syz.3.4918: corrupted inode contents [ 125.124243][T15241] FAT-fs (loop0): Directory bread(block 70) failed [ 125.132206][T15234] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz.3.4918: mark_inode_dirty error [ 125.135552][T15234] EXT4-fs error (device loop3): ext4_do_update_inode:5272: inode #16: comm syz.3.4918: corrupted inode contents [ 125.144944][T15241] FAT-fs (loop0): Directory bread(block 71) failed [ 125.145988][T15241] FAT-fs (loop0): Directory bread(block 72) failed [ 125.147529][T15234] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 125.149520][T15234] EXT4-fs error (device loop3): ext4_do_update_inode:5272: inode #16: comm syz.3.4918: corrupted inode contents [ 125.149612][T15241] FAT-fs (loop0): Directory bread(block 73) failed [ 125.153809][T15234] EXT4-fs error (device loop3): ext4_truncate:4318: inode #16: comm syz.3.4918: mark_inode_dirty error [ 125.156934][T15234] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 125.163922][T15234] EXT4-fs (loop3): 1 truncate cleaned up [ 125.167175][T15234] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 125.246836][ T4320] EXT4-fs (loop3): unmounting filesystem. [ 125.285814][T15259] loop2: detected capacity change from 0 to 512 [ 125.287756][ T4326] Bluetooth: hci2: command 0x0406 tx timeout [ 125.306126][T15259] Quota error (device loop2): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 125.307923][T15259] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 125.309578][T15259] EXT4-fs error (device loop2): ext4_acquire_dquot:6835: comm syz.2.4938: Failed to acquire dquot type 1 [ 125.323274][T15259] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4938: corrupted inode contents [ 125.325426][T15259] EXT4-fs error (device loop2): ext4_dirty_inode:6137: inode #16: comm syz.2.4938: mark_inode_dirty error [ 125.348185][T15259] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4938: corrupted inode contents [ 125.359816][T15259] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.4938: mark_inode_dirty error [ 125.361818][T15259] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4938: corrupted inode contents [ 125.364804][T15259] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 125.366460][T15259] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4938: corrupted inode contents [ 125.387488][T15259] EXT4-fs error (device loop2): ext4_truncate:4318: inode #16: comm syz.2.4938: mark_inode_dirty error [ 125.389477][T15259] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 125.391286][ T27] audit: type=1326 audit(32835.518:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15272 comm="syz.0.4932" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1377128 code=0x0 [ 125.392888][T15259] EXT4-fs (loop2): 1 truncate cleaned up [ 125.397642][T15259] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 125.451852][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 125.527238][ T4325] Bluetooth: hci1: command 0x0406 tx timeout [ 125.791573][T15329] loop3: detected capacity change from 0 to 64 [ 125.834687][T15334] netlink: 'syz.4.4962': attribute type 5 has an invalid length. [ 125.927484][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.928531][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.172015][T15350] loop0: detected capacity change from 0 to 32768 [ 126.174016][T15350] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 126.175284][T15350] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 126.188717][T15350] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 126.190573][ T6104] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 126.191727][ T6104] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 126.203612][ T6104] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 11ms [ 126.204903][ T6104] gfs2: fsid=syz:syz.0: jid=0: Done [ 126.205836][T15350] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 126.353497][T15375] sock: sock_timestamping_bind_phc: sock not bind to device [ 126.420323][T15382] netlink: 'syz.2.4980': attribute type 5 has an invalid length. [ 126.575807][T15402] sock: sock_timestamping_bind_phc: sock not bind to device [ 126.656391][T15416] netlink: 'syz.0.5002': attribute type 5 has an invalid length. [ 126.665380][T15415] sock: sock_timestamping_bind_phc: sock not bind to device [ 126.702566][T15420] netlink: 'syz.3.5005': attribute type 1 has an invalid length. [ 126.877180][T15392] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 126.878548][T15392] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 126.902008][T15444] sock: sock_timestamping_bind_phc: sock not bind to device [ 126.910462][T15392] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 126.915241][ T4369] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 126.916320][ T4369] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 126.944800][ T4369] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 28ms [ 126.946105][ T4369] gfs2: fsid=syz:syz.0: jid=0: Done [ 126.947186][T15392] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 126.954809][T15448] netlink: 'syz.1.5020': attribute type 1 has an invalid length. [ 127.274064][T15485] netlink: 'syz.4.5034': attribute type 1 has an invalid length. [ 127.463482][T15515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5061'. [ 127.514937][T15523] netlink: 'syz.2.5054': attribute type 1 has an invalid length. [ 127.603351][T15534] netlink: 'syz.1.5062': attribute type 10 has an invalid length. [ 127.622626][T15534] device veth1_macvtap left promiscuous mode [ 127.710990][T15504] set_capacity_and_notify: 2 callbacks suppressed [ 127.710999][T15504] loop4: detected capacity change from 0 to 32768 [ 127.724767][T15504] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 127.726047][T15504] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 127.729781][T15531] loop2: detected capacity change from 0 to 32768 [ 127.731856][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.734152][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 127.743041][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 127.744899][T15504] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 127.746874][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 127.747738][ T5321] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 127.749943][ T5321] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 127.761034][T15531] JBD2: Ignoring recovery information on journal [ 127.788572][ T5321] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 38ms [ 127.789942][ T5321] gfs2: fsid=syz:syz.0: jid=0: Done [ 127.790858][T15504] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 127.793437][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 127.796292][T15531] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 127.798048][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 127.810820][T15531] (syz.2.5058,15531,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 127.857472][ T4328] ocfs2: Unmounting device (7,2) on (node local) [ 127.859363][T15544] netlink: 'syz.3.5075': attribute type 10 has an invalid length. [ 127.873081][T15544] device veth1_macvtap left promiscuous mode [ 127.954239][T15551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5067'. [ 128.275514][T15582] netlink: 'syz.2.5080': attribute type 10 has an invalid length. [ 128.290596][T15582] device veth1_macvtap left promiscuous mode [ 128.384978][T15594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5085'. [ 128.385498][T15563] loop0: detected capacity change from 0 to 32768 [ 128.396701][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.412516][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.430979][T15599] loop1: detected capacity change from 0 to 1024 [ 128.435570][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 128.442309][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 128.471739][T15563] JBD2: Ignoring recovery information on journal [ 128.483537][T15599] hfsplus: catalog name length corrupted [ 128.543934][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 128.551971][T15563] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 128.584957][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 128.602673][T15563] (syz.0.5076,15563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 128.651877][T15620] device veth1_macvtap left promiscuous mode [ 128.692959][ T4327] ocfs2: Unmounting device (7,0) on (node local) [ 128.694612][T15623] netlink: 172 bytes leftover after parsing attributes in process `syz.1.5103'. [ 128.725829][T15628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5104'. [ 128.875464][T15646] loop2: detected capacity change from 0 to 1024 [ 128.923044][T15624] loop3: detected capacity change from 0 to 32768 [ 128.930767][T15646] hfsplus: catalog name length corrupted [ 128.932219][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.934256][T15652] netlink: 172 bytes leftover after parsing attributes in process `syz.0.5118'. [ 128.934513][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 128.981308][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 128.983578][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 128.986057][T15624] JBD2: Ignoring recovery information on journal [ 129.050686][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 129.054091][T15624] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 129.055640][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 129.072157][T15624] (syz.3.5113,15624,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 129.131488][ T4320] ocfs2: Unmounting device (7,3) on (node local) [ 129.260457][T15693] netlink: 172 bytes leftover after parsing attributes in process `syz.4.5133'. [ 129.272556][T15695] loop0: detected capacity change from 0 to 1024 [ 129.286922][T15695] hfsplus: catalog name length corrupted [ 129.469295][T15682] loop1: detected capacity change from 0 to 32768 [ 129.476752][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.481608][T15722] netlink: 172 bytes leftover after parsing attributes in process `syz.3.5149'. [ 129.481967][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 129.513853][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 129.521065][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 129.529685][T15682] JBD2: Ignoring recovery information on journal [ 129.575306][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 129.586353][T15682] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 129.594722][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 129.608916][T15682] (syz.1.5141,15682,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 129.622223][T15736] loop3: detected capacity change from 0 to 1024 [ 129.659790][T15736] hfsplus: catalog name length corrupted [ 129.692898][ T4321] ocfs2: Unmounting device (7,1) on (node local) [ 129.912470][T15779] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5172'. [ 129.999816][T15783] loop4: detected capacity change from 0 to 1024 [ 130.040535][T15783] hfsplus: catalog name length corrupted [ 130.194420][T15819] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5190'. [ 130.306425][T15829] hfsplus: catalog name length corrupted [ 130.759758][T15858] XFS (loop2): Mounting V5 Filesystem [ 130.822750][T15904] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 130.837483][T15858] XFS (loop2): Ending clean mount [ 130.849429][T15858] XFS (loop2): Quotacheck needed: Please wait. [ 130.861606][T15858] XFS (loop2): Quotacheck: Done. [ 130.898267][ T4329] EXT4-fs (loop4): unmounting filesystem. [ 130.909124][ T4328] XFS (loop2): Unmounting Filesystem [ 131.222495][T15927] XFS (loop0): Mounting V5 Filesystem [ 131.267425][T15927] XFS (loop0): Ending clean mount [ 131.273098][T15927] XFS (loop0): Quotacheck needed: Please wait. [ 131.299991][T15927] XFS (loop0): Quotacheck: Done. [ 131.348332][T15958] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 131.420662][ T4320] EXT4-fs (loop3): unmounting filesystem. [ 131.452951][ T4327] XFS (loop0): Unmounting Filesystem [ 131.501563][T15971] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 131.688218][T15994] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 131.749729][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 131.852408][T16007] syz.3.5274: attempt to access beyond end of device [ 131.852408][T16007] loop3: rw=2051, sector=12608, nr_sectors = 16128 limit=512 [ 131.862885][T16010] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 131.994265][T16023] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 132.024742][T16032] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 132.071095][T15996] XFS (loop1): Mounting V5 Filesystem [ 132.081327][ T4327] EXT4-fs (loop0): unmounting filesystem. [ 132.128741][T15996] XFS (loop1): Ending clean mount [ 132.135469][T15996] XFS (loop1): Quotacheck needed: Please wait. [ 132.152901][T15996] XFS (loop1): Quotacheck: Done. [ 132.242835][T16049] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 132.294903][T16058] syz.4.5291: attempt to access beyond end of device [ 132.294903][T16058] loop4: rw=2051, sector=12608, nr_sectors = 16128 limit=512 [ 132.328706][ T4321] XFS (loop1): Unmounting Filesystem [ 132.573526][T16090] syz.0.5311: attempt to access beyond end of device [ 132.573526][T16090] loop0: rw=2051, sector=12608, nr_sectors = 16128 limit=512 [ 132.691864][T16079] XFS (loop3): Mounting V5 Filesystem [ 132.767629][T16079] XFS (loop3): Ending clean mount [ 132.778130][T16105] set_capacity_and_notify: 19 callbacks suppressed [ 132.778139][T16105] loop0: detected capacity change from 0 to 1024 [ 132.781148][T16079] XFS (loop3): Quotacheck needed: Please wait. [ 132.796004][T16079] XFS (loop3): Quotacheck: Done. [ 132.866560][ T4320] XFS (loop3): Unmounting Filesystem [ 132.895975][T16118] loop2: detected capacity change from 0 to 512 [ 132.933804][T16118] syz.2.5322: attempt to access beyond end of device [ 132.933804][T16118] loop2: rw=2051, sector=12608, nr_sectors = 16128 limit=512 [ 132.969819][T16126] __nla_validate_parse: 2 callbacks suppressed [ 132.969833][T16126] netlink: 156 bytes leftover after parsing attributes in process `syz.4.5325'. [ 133.097480][T16140] libceph: resolve 'cD' (ret=-3): failed [ 133.215552][T16136] loop1: detected capacity change from 0 to 32768 [ 133.235246][T16136] XFS (loop1): Mounting V5 Filesystem [ 133.276239][T16136] XFS (loop1): Ending clean mount [ 133.291096][ T4321] XFS (loop1): Unmounting Filesystem [ 133.308135][T16155] libceph: resolve 'cD' (ret=-3): failed [ 133.695324][T16168] loop1: detected capacity change from 0 to 1024 [ 133.733575][T16171] netlink: 156 bytes leftover after parsing attributes in process `syz.2.5339'. [ 133.786006][T16178] loop1: detected capacity change from 0 to 512 [ 133.804674][T16178] syz.1.5338: attempt to access beyond end of device [ 133.804674][T16178] loop1: rw=2051, sector=12608, nr_sectors = 16128 limit=512 [ 133.839347][T16187] netlink: 156 bytes leftover after parsing attributes in process `syz.0.5359'. [ 133.869966][T16190] libceph: resolve 'cD' (ret=-3): failed [ 134.041847][T16216] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5364'. [ 134.120087][T16225] libceph: resolve 'cD' (ret=-3): failed [ 134.123656][T16226] netlink: 156 bytes leftover after parsing attributes in process `syz.1.5366'. [ 134.162940][T16193] loop3: detected capacity change from 0 to 32768 [ 134.212234][T16193] XFS (loop3): Mounting V5 Filesystem [ 134.281754][T16193] XFS (loop3): Ending clean mount [ 134.352052][ T4320] XFS (loop3): Unmounting Filesystem [ 134.366324][T16256] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5379'. [ 134.485770][T16269] loop4: detected capacity change from 0 to 128 [ 134.503779][T16269] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 134.510005][T16269] EXT4-fs warning (device loop4): ext4_group_extend:1870: can't shrink FS - resize aborted [ 134.551042][ T4329] EXT4-fs (loop4): unmounting filesystem. [ 134.680419][T16290] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5397'. [ 134.703194][T16255] loop0: detected capacity change from 0 to 32768 [ 134.710466][T16296] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 134.750016][T16306] loop2: detected capacity change from 0 to 128 [ 134.769209][T16255] XFS (loop0): Mounting V5 Filesystem [ 134.773593][T16306] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 134.786168][T16306] EXT4-fs warning (device loop2): ext4_group_extend:1870: can't shrink FS - resize aborted [ 134.836778][T16255] XFS (loop0): Ending clean mount [ 134.873960][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 134.960610][ T4327] XFS (loop0): Unmounting Filesystem [ 134.975302][T16327] loop4: detected capacity change from 0 to 164 [ 134.985184][T16327] Unable to read rock-ridge attributes [ 135.002857][T16327] Unable to read rock-ridge attributes [ 135.007392][T16327] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 135.034241][T16335] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready [ 135.035564][T16335] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 135.091268][T16338] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 135.103351][T16338] EXT4-fs warning (device loop1): ext4_group_extend:1870: can't shrink FS - resize aborted [ 135.133590][ T4321] EXT4-fs (loop1): unmounting filesystem. [ 135.141511][T16346] netlink: 196 bytes leftover after parsing attributes in process `syz.4.5421'. [ 135.143145][T16346] netlink: 196 bytes leftover after parsing attributes in process `syz.4.5421'. [ 135.154889][T16346] netlink: 19 bytes leftover after parsing attributes in process `syz.4.5421'. [ 135.305293][T16365] Unable to read rock-ridge attributes [ 135.325067][T16365] Unable to read rock-ridge attributes [ 135.330882][T16365] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 135.350295][T16370] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 135.410711][T16374] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 135.418282][T16374] EXT4-fs warning (device loop0): ext4_group_extend:1870: can't shrink FS - resize aborted [ 135.436987][T16380] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 135.445157][ T4327] EXT4-fs (loop0): unmounting filesystem. [ 135.484656][T16350] XFS (loop2): Mounting V5 Filesystem [ 135.557178][T16350] XFS (loop2): Ending clean mount [ 135.630599][ T4328] XFS (loop2): Unmounting Filesystem [ 135.696132][T16406] Unable to read rock-ridge attributes [ 135.700854][T16406] Unable to read rock-ridge attributes [ 135.701890][T16406] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 135.714422][T16412] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 135.868552][T16431] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.002506][T16442] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.020728][T16448] Unable to read rock-ridge attributes [ 136.024947][T16448] Unable to read rock-ridge attributes [ 136.026064][T16448] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 136.297885][T16488] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.483412][ T5116] hfsplus: b-tree write err: -5, ino 25 [ 136.484408][ T5116] hfsplus: b-tree write err: -5, ino 4 [ 136.485289][ T5116] hfsplus: b-tree write err: -5, ino 2 [ 136.622753][ T4387] hfsplus: b-tree write err: -5, ino 25 [ 136.623696][ T4387] hfsplus: b-tree write err: -5, ino 4 [ 136.624489][ T4387] hfsplus: b-tree write err: -5, ino 2 [ 136.842155][T16572] SET target dimension over the limit! [ 136.906376][ T5116] hfsplus: b-tree write err: -5, ino 25 [ 136.908059][ T5116] hfsplus: b-tree write err: -5, ino 4 [ 136.912001][ T5116] hfsplus: b-tree write err: -5, ino 2 [ 137.059990][T16604] SET target dimension over the limit! [ 137.123480][ T5116] hfsplus: b-tree write err: -5, ino 25 [ 137.124556][ T5116] hfsplus: b-tree write err: -5, ino 4 [ 137.125391][ T5116] hfsplus: b-tree write err: -5, ino 2 [ 137.229401][T16629] SET target dimension over the limit! [ 137.475558][T16671] SET target dimension over the limit! [ 137.505298][T16666] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 137.572815][T16666] ntfs3: loop3: ntfs3_write_inode r=1e failed, -22. [ 137.598380][ T4320] ntfs3: loop3: ntfs_evict_inode r=1e failed, -22. [ 137.599605][ T4320] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 137.814188][T16709] set_capacity_and_notify: 15 callbacks suppressed [ 137.814199][T16709] loop4: detected capacity change from 0 to 4096 [ 137.823960][T16709] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 137.885639][T16709] ntfs3: loop4: ntfs3_write_inode r=1e failed, -22. [ 137.951827][ T4329] ntfs3: loop4: ntfs_evict_inode r=1e failed, -22. [ 137.952857][ T4329] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 138.150841][T16759] loop0: detected capacity change from 0 to 4096 [ 138.166122][T16759] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 138.226217][T16759] ntfs3: loop0: ntfs3_write_inode r=1e failed, -22. [ 138.265759][ T4327] ntfs3: loop0: ntfs_evict_inode r=1e failed, -22. [ 138.266831][ T4327] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 138.451529][T16800] loop2: detected capacity change from 0 to 4096 [ 138.474405][T16800] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 138.527349][T16800] ntfs3: loop2: ntfs3_write_inode r=1e failed, -22. [ 138.572268][ T4328] ntfs3: loop2: ntfs_evict_inode r=1e failed, -22. [ 138.573436][ T4328] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 138.653979][T16835] loop3: detected capacity change from 0 to 16 [ 138.677659][T16835] erofs: (device loop3): mounted with root inode @ nid 36. [ 138.688495][T16835] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 138.695079][T16835] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 138.704598][T16835] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117] [ 138.747671][T16851] __nla_validate_parse: 18 callbacks suppressed [ 138.747683][T16851] netlink: 340 bytes leftover after parsing attributes in process `syz.4.5665'. [ 138.757610][T16851] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5665'. [ 138.896378][T16875] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5675'. [ 138.896409][T16875] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5675'. [ 139.014492][T16884] loop1: detected capacity change from 0 to 16 [ 139.028350][T16884] erofs: (device loop1): mounted with root inode @ nid 36. [ 139.031604][T16884] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 139.041524][T16884] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 139.043181][T16884] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117] [ 139.103982][T16895] netlink: 340 bytes leftover after parsing attributes in process `syz.0.5684'. [ 139.105592][T16895] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5684'. [ 139.142541][T16903] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5689'. [ 139.144578][T16872] loop4: detected capacity change from 0 to 32768 [ 139.152078][T16903] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5689'. [ 139.166915][T16872] JBD2: Ignoring recovery information on journal [ 139.205224][T16872] (syz.4.5674,16872,1):ocfs2_clear_journal_error:1114 ERROR: File system error 33023 recorded in journal 0. [ 139.205280][T16872] (syz.4.5674,16872,1):ocfs2_clear_journal_error:1116 ERROR: File system on device loop4 needs checking. [ 139.205739][T16872] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 139.213074][ T5644] (kworker/u4:7,5644,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4104: rec_len is smaller than minimal - offset=0, inode=4104, rec_len=8, name_len=0 [ 139.213369][T16872] (syz.4.5674,16872,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4097: rec_len is smaller than minimal - offset=0, inode=397313, rec_len=0, name_len=1 [ 139.213399][T16872] (syz.4.5674,16872,1):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 139.213409][T16872] (syz.4.5674,16872,1):ocfs2_mknod:298 ERROR: status = -2 [ 139.213418][T16872] (syz.4.5674,16872,1):ocfs2_mknod:502 ERROR: status = -2 [ 139.213427][T16872] (syz.4.5674,16872,1):ocfs2_mkdir:659 ERROR: status = -2 [ 139.230769][ T4329] ocfs2: Unmounting device (7,4) on (node local) [ 139.410499][T16927] loop2: detected capacity change from 0 to 16 [ 139.412868][T16927] erofs: (device loop2): mounted with root inode @ nid 36. [ 139.425172][T16927] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 139.428955][T16927] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 139.430673][T16927] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117] [ 139.472369][T16935] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5705'. [ 139.473903][T16935] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5705'. [ 139.504499][T16943] validate_nla: 1 callbacks suppressed [ 139.504509][T16943] netlink: 'syz.2.5710': attribute type 1 has an invalid length. [ 139.734367][T16971] loop4: detected capacity change from 0 to 16 [ 139.755793][T16971] erofs: (device loop4): mounted with root inode @ nid 36. [ 139.756909][T16941] loop0: detected capacity change from 0 to 32768 [ 139.762219][T16971] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 139.768254][T16971] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 139.769731][T16971] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117] [ 139.796281][T16941] JBD2: Ignoring recovery information on journal [ 139.808164][T16978] netlink: 'syz.1.5722': attribute type 1 has an invalid length. [ 139.837182][T16941] (syz.0.5706,16941,0):ocfs2_clear_journal_error:1114 ERROR: File system error 33023 recorded in journal 0. [ 139.839050][T16941] (syz.0.5706,16941,0):ocfs2_clear_journal_error:1116 ERROR: File system on device loop0 needs checking. [ 139.839726][T16941] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 139.841455][ T5644] (kworker/u4:7,5644,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4104: rec_len is smaller than minimal - offset=0, inode=4104, rec_len=8, name_len=0 [ 139.853376][T16941] (syz.0.5706,16941,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4097: rec_len is smaller than minimal - offset=0, inode=397313, rec_len=0, name_len=1 [ 139.853404][T16941] (syz.0.5706,16941,0):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 139.853414][T16941] (syz.0.5706,16941,0):ocfs2_mknod:298 ERROR: status = -2 [ 139.853424][T16941] (syz.0.5706,16941,0):ocfs2_mknod:502 ERROR: status = -2 [ 139.853433][T16941] (syz.0.5706,16941,0):ocfs2_mkdir:659 ERROR: status = -2 [ 139.894737][ T4327] ocfs2: Unmounting device (7,0) on (node local) [ 140.125562][T16992] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 140.128114][T16992] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 140.135548][T16992] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 140.138132][T16992] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 140.139115][T16992] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 140.140885][T16992] Bluetooth: hci0: Suspend notifier action (1) failed: -4 [ 140.142626][T16992] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 140.143706][T16992] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 140.145613][T16992] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 140.148985][T16992] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 140.149968][T16992] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 140.154545][T16992] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 140.155977][T16992] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 140.158064][T16992] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 140.163291][T16992] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 140.197552][T17012] netlink: 'syz.4.5741': attribute type 1 has an invalid length. [ 140.245990][T17016] loop0: detected capacity change from 0 to 16 [ 140.250263][T17016] erofs: (device loop0): mounted with root inode @ nid 36. [ 140.253573][T17016] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 140.262792][T17016] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 140.264505][T17016] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117] [ 140.450531][T17045] netlink: 'syz.0.5756': attribute type 1 has an invalid length. [ 140.514620][T17014] JBD2: Ignoring recovery information on journal [ 140.549541][T17059] erofs: (device loop2): mounted with root inode @ nid 36. [ 140.555028][T17032] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 140.557709][T17059] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 140.560392][T17032] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 140.560415][T17059] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851] [ 140.561291][T17059] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117] [ 140.567633][T17014] (syz.1.5742,17014,0):ocfs2_clear_journal_error:1114 ERROR: File system error 33023 recorded in journal 0. [ 140.569514][T17014] (syz.1.5742,17014,0):ocfs2_clear_journal_error:1116 ERROR: File system on device loop1 needs checking. [ 140.572726][T17032] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 140.574808][T17014] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 140.580952][ T4387] (kworker/u4:5,4387,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4104: rec_len is smaller than minimal - offset=0, inode=4104, rec_len=8, name_len=0 [ 140.586769][T17032] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 140.599903][T17032] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 140.611565][T17014] (syz.1.5742,17014,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4097: rec_len is smaller than minimal - offset=0, inode=397313, rec_len=0, name_len=1 [ 140.624796][T17014] (syz.1.5742,17014,0):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 140.626162][T17014] (syz.1.5742,17014,0):ocfs2_mknod:298 ERROR: status = -2 [ 140.627562][T17014] (syz.1.5742,17014,0):ocfs2_mknod:502 ERROR: status = -2 [ 140.637989][T17014] (syz.1.5742,17014,0):ocfs2_mkdir:659 ERROR: status = -2 [ 140.675269][ T4321] ocfs2: Unmounting device (7,1) on (node local) [ 140.735843][T17072] XFS (nullb0): Invalid superblock magic number [ 141.085949][T17099] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 141.094621][T17099] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 141.095635][T17099] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 141.096651][T17099] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 141.105875][T17099] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 141.203646][T17102] JBD2: Ignoring recovery information on journal [ 141.250943][T17126] XFS (nullb0): Invalid superblock magic number [ 141.285042][T17102] (syz.2.5781,17102,0):ocfs2_clear_journal_error:1114 ERROR: File system error 33023 recorded in journal 0. [ 141.286911][T17102] (syz.2.5781,17102,0):ocfs2_clear_journal_error:1116 ERROR: File system on device loop2 needs checking. [ 141.302246][T17102] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 141.304700][ T5116] (kworker/u4:6,5116,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4104: rec_len is smaller than minimal - offset=0, inode=4104, rec_len=8, name_len=0 [ 141.340359][T17147] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 141.351901][T17102] (syz.2.5781,17102,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #4097: rec_len is smaller than minimal - offset=0, inode=397313, rec_len=0, name_len=1 [ 141.355934][T17147] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match. Run ntfsfix or chkdsk. [ 141.358036][T17102] (syz.2.5781,17102,0):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 141.360606][T17102] (syz.2.5781,17102,0):ocfs2_mknod:298 ERROR: status = -2 [ 141.362874][T17102] (syz.2.5781,17102,0):ocfs2_mknod:502 ERROR: status = -2 [ 141.363109][T17147] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 141.366249][T17102] (syz.2.5781,17102,0):ocfs2_mkdir:659 ERROR: status = -2 [ 141.373928][T17147] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 141.375762][T17147] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 141.389083][T17147] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 141.396020][T17147] ntfs: volume version 3.1. [ 141.397169][ T4328] ocfs2: Unmounting device (7,2) on (node local) [ 141.408663][T17147] ntfs: (device loop4): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 141.410563][T17147] ntfs: (device loop4): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 141.412881][T17147] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 141.414718][T17147] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 141.571210][T17161] ntfs: volume version 3.1. [ 141.683682][T17163] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 141.687268][T17163] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 141.695034][T17163] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 141.697770][T17163] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 141.705089][T17163] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 141.789738][T17191] XFS (nullb0): Invalid superblock magic number [ 141.895860][T17204] ntfs: volume version 3.1. [ 142.160504][T17242] ntfs: volume version 3.1. [ 142.186838][T17222] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 142.188151][T17222] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 142.188987][T17222] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 142.189995][T17222] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 142.191000][T17222] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 142.290358][T17259] XFS (nullb0): Invalid superblock magic number [ 142.625357][T17289] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 142.626448][T17289] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 142.631123][T17289] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 142.631990][T17289] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 142.632908][T17289] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 142.755998][T17327] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 142.767384][T17327] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 142.810803][T17333] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 142.812925][T17333] hpfs: filesystem error: improperly stopped [ 142.824331][T17333] hpfs: You really don't want any checks? You are crazy... [ 142.825938][T17333] hpfs: hpfs_map_sector(): read error [ 142.826784][T17333] hpfs: code page support is disabled [ 142.843342][T17333] hpfs: hpfs_map_4sectors(): unaligned read [ 142.844465][T17333] hpfs: hpfs_map_4sectors(): unaligned read [ 142.845406][T17333] hpfs: filesystem error: unable to find root dir [ 143.052652][T17334] set_capacity_and_notify: 9 callbacks suppressed [ 143.052664][T17334] loop1: detected capacity change from 0 to 32768 [ 143.061704][T17334] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 143.099072][T17342] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 143.102259][T17342] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 143.103251][T17342] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 143.104332][T17342] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 143.105322][T17342] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 143.123875][T17369] loop4: detected capacity change from 0 to 128 [ 143.138552][T17369] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 143.146800][T17369] hpfs: filesystem error: improperly stopped [ 143.151244][T17369] hpfs: You really don't want any checks? You are crazy... [ 143.152549][T17369] hpfs: hpfs_map_sector(): read error [ 143.153507][T17369] hpfs: code page support is disabled [ 143.157333][T17369] hpfs: hpfs_map_4sectors(): unaligned read [ 143.158219][T17369] hpfs: hpfs_map_4sectors(): unaligned read [ 143.159237][T17369] hpfs: filesystem error: unable to find root dir [ 143.384909][T17408] loop2: detected capacity change from 0 to 128 [ 143.400290][T17408] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 143.402176][T17408] hpfs: filesystem error: improperly stopped [ 143.403099][T17408] hpfs: You really don't want any checks? You are crazy... [ 143.405409][T17408] hpfs: hpfs_map_sector(): read error [ 143.406231][T17408] hpfs: code page support is disabled [ 143.421224][T17408] hpfs: hpfs_map_4sectors(): unaligned read [ 143.422302][T17408] hpfs: hpfs_map_4sectors(): unaligned read [ 143.423354][T17408] hpfs: filesystem error: unable to find root dir [ 143.642203][T17448] loop0: detected capacity change from 0 to 1764 [ 143.651035][T17448] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 143.715964][T17460] loop0: detected capacity change from 0 to 128 [ 143.725494][T17460] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 143.728242][T17460] hpfs: filesystem error: improperly stopped [ 143.729093][T17460] hpfs: You really don't want any checks? You are crazy... [ 143.730444][T17460] hpfs: hpfs_map_sector(): read error [ 143.731331][T17460] hpfs: code page support is disabled [ 143.763023][T17460] hpfs: hpfs_map_4sectors(): unaligned read [ 143.764138][T17460] hpfs: hpfs_map_4sectors(): unaligned read [ 143.765056][T17460] hpfs: filesystem error: unable to find root dir [ 143.906219][T17484] loop3: detected capacity change from 0 to 1764 [ 143.929225][T17484] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 144.190062][T17533] loop1: detected capacity change from 0 to 1764 [ 144.212880][T17533] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 144.416652][T17567] loop2: detected capacity change from 0 to 1764 [ 144.440341][T17567] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 144.884692][T17639] __nla_validate_parse: 10 callbacks suppressed [ 144.884707][T17639] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6033'. [ 144.982652][T17655] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6051'. [ 145.047196][ T4326] Bluetooth: hci1: command 0x0c1a tx timeout [ 145.127704][ T4325] Bluetooth: hci4: command 0x0c1a tx timeout [ 145.128793][ T4325] Bluetooth: hci3: command 0x0c1a tx timeout [ 145.129807][ T4325] Bluetooth: hci2: command 0x0c1a tx timeout [ 145.130727][ T4325] Bluetooth: hci0: command 0x0c1a tx timeout [ 145.229524][T17682] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6054'. [ 145.510223][T17717] loop2: detected capacity change from 0 to 128 [ 145.536918][T17724] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6067'. [ 145.545036][T17717] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 145.568311][T17725] loop3: detected capacity change from 0 to 4096 [ 145.594508][T17725] ntfs: volume version 3.1. [ 145.600573][ T4328] EXT4-fs (loop2): unmounting filesystem. [ 145.767085][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 145.798308][T17738] ntfs: volume version 3.1. [ 146.001340][T17758] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 146.048392][ T4327] EXT4-fs (loop0): unmounting filesystem. [ 146.105482][T17772] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 146.147255][ T4320] EXT4-fs (loop3): unmounting filesystem. [ 146.334148][T17783] ntfs: volume version 3.1. [ 146.557986][T17810] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 146.610362][ T4321] EXT4-fs (loop1): unmounting filesystem. [ 146.619183][T17820] usb usb8: usbfs: process 17820 (syz.4.6116) did not claim interface 0 before use [ 146.741366][T17826] ntfs: volume version 3.1. [ 146.800808][T17843] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready [ 146.864171][T17850] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready [ 146.920587][T17859] ax25_connect(): syz.2.6142 uses autobind, please contact jreuter@yaina.de [ 147.030393][T17873] usb usb8: usbfs: process 17873 (syz.0.6137) did not claim interface 0 before use [ 147.047066][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 147.064160][T17878] IPv6: ADDRCONF(NETDEV_CHANGE): netdevsim0: link becomes ready [ 147.108763][T17886] ax25_connect(): syz.4.6149 uses autobind, please contact jreuter@yaina.de [ 147.127075][ T4326] Bluetooth: hci1: command 0x0c1a tx timeout [ 147.207182][ T4325] Bluetooth: hci0: command 0x0c1a tx timeout [ 147.208210][ T4325] Bluetooth: hci2: command 0x0c1a tx timeout [ 147.209195][ T4325] Bluetooth: hci3: command 0x0c1a tx timeout [ 147.210115][ T4325] Bluetooth: hci4: command 0x0c1a tx timeout [ 147.309366][T17908] usb usb8: usbfs: process 17908 (syz.3.6159) did not claim interface 0 before use [ 147.386293][T17920] ax25_connect(): syz.0.6163 uses autobind, please contact jreuter@yaina.de [ 147.422076][T17926] ax25_connect(): syz.3.6179 uses autobind, please contact jreuter@yaina.de [ 147.549160][T17942] usb usb8: usbfs: process 17942 (syz.1.6171) did not claim interface 0 before use [ 147.943391][T17981] comedi comedi0: bad chanlist[0]=0x00000008 chan=8 range length=2 [ 148.226930][T17997] set_capacity_and_notify: 8 callbacks suppressed [ 148.226941][T17997] loop0: detected capacity change from 0 to 32768 [ 148.228985][T17940] loop3: detected capacity change from 0 to 131072 [ 148.242937][T17940] F2FS-fs (loop3): Invalid log sectorsize (67108873) [ 148.243994][T17940] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 148.248625][T17940] F2FS-fs (loop3): invalid crc value [ 148.252664][T17940] F2FS-fs (loop3): Found nat_bits in checkpoint [ 148.274041][T17940] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 148.275298][T17940] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 148.333140][T18003] loop1: detected capacity change from 0 to 256 [ 148.503330][T18011] comedi comedi0: bad chanlist[0]=0x00000008 chan=8 range length=2 [ 148.615171][T18029] loop4: detected capacity change from 0 to 256 [ 148.685418][T18037] comedi comedi0: bad chanlist[0]=0x00000008 chan=8 range length=2 [ 148.843592][T18027] loop1: detected capacity change from 0 to 32768 [ 148.881848][T18053] loop3: detected capacity change from 0 to 256 [ 148.981251][T18063] comedi comedi0: bad chanlist[0]=0x00000008 chan=8 range length=2 [ 149.305531][T18081] loop2: detected capacity change from 0 to 32768 [ 149.410129][T18098] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6249'. [ 149.556879][T18041] loop4: detected capacity change from 0 to 131072 [ 149.569589][T18041] F2FS-fs (loop4): Invalid log sectorsize (67108873) [ 149.570695][T18041] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 149.574564][T18041] F2FS-fs (loop4): invalid crc value [ 149.606001][T18041] F2FS-fs (loop4): Found nat_bits in checkpoint [ 149.639759][T18041] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 149.640794][T18041] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 149.647178][ T1697] block nbd1: Attempted send on invalid socket [ 149.648225][ T1697] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 149.652121][T18130] EXT2-fs (nbd1): error: unable to read superblock [ 149.704571][T18136] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6266'. [ 149.932840][ T51] block nbd3: Attempted send on invalid socket [ 149.933841][ T51] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 149.943653][T18159] EXT2-fs (nbd3): error: unable to read superblock [ 150.058712][ T1697] block nbd2: Attempted send on invalid socket [ 150.059830][ T1697] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 150.061478][T18169] EXT2-fs (nbd2): error: unable to read superblock [ 150.115851][T18174] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6286'. [ 150.259252][T18193] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 150.316113][T18200] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 150.336097][ T1697] block nbd0: Attempted send on invalid socket [ 150.338033][ T1697] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 150.347322][T18202] EXT2-fs (nbd0): error: unable to read superblock [ 150.403540][T18205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6301'. [ 150.477085][T18212] device veth0_vlan left promiscuous mode [ 150.481919][T18212] device vlan0 entered promiscuous mode [ 150.482942][T18212] device veth0_vlan entered promiscuous mode [ 150.760428][T18222] loop2: detected capacity change from 0 to 32768 [ 150.774626][T18149] loop1: detected capacity change from 0 to 131072 [ 150.778060][T18149] F2FS-fs (loop1): Invalid log sectorsize (67108873) [ 150.779078][T18149] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 150.780849][T18149] F2FS-fs (loop1): invalid crc value [ 150.783532][T18149] F2FS-fs (loop1): Found nat_bits in checkpoint [ 150.796417][T18222] XFS (loop2): Mounting V5 Filesystem [ 150.806479][T18222] XFS (loop2): Ending clean mount [ 150.815083][T18149] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 150.816189][T18149] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 150.850911][T18240] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 150.867861][ T4328] XFS (loop2): Unmounting Filesystem [ 151.052991][T18248] (syz.4.6319,18248,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 151.056330][T18248] (syz.4.6319,18248,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 151.071305][T18248] JBD2: Ignoring recovery information on journal [ 151.115805][T18248] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 151.168559][ T4329] ocfs2: Unmounting device (7,4) on (node local) [ 151.216928][T18257] device veth0_vlan left promiscuous mode [ 151.219336][T18257] device vlan0 entered promiscuous mode [ 151.220211][T18257] device veth0_vlan entered promiscuous mode [ 151.307088][T18270] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 151.409683][T18279] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 151.486515][T18283] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 151.530992][T18265] (syz.0.6335,18265,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 151.546687][T18265] (syz.0.6335,18265,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 151.573140][T18265] JBD2: Ignoring recovery information on journal [ 151.612429][T18265] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 151.643926][T18271] XFS (loop4): Mounting V5 Filesystem [ 151.678138][T18271] XFS (loop4): Ending clean mount [ 151.718384][ T4327] ocfs2: Unmounting device (7,0) on (node local) [ 151.775200][ T4329] XFS (loop4): Unmounting Filesystem [ 151.855606][T18307] device vlan0 entered promiscuous mode [ 151.904010][T18311] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 152.195312][T18275] F2FS-fs (loop2): Invalid log sectorsize (67108873) [ 152.197676][T18275] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 152.201240][T18275] F2FS-fs (loop2): invalid crc value [ 152.218002][T18275] F2FS-fs (loop2): Found nat_bits in checkpoint [ 152.232612][T18275] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 152.233800][T18275] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 152.402044][T18338] device veth0_vlan left promiscuous mode [ 152.402996][T18338] device vlan0 entered promiscuous mode [ 152.403844][T18338] device veth0_vlan entered promiscuous mode [ 152.446170][T18320] (syz.3.6348,18320,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 152.447088][T18343] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 152.455810][T18320] (syz.3.6348,18320,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 152.474978][T18320] JBD2: Ignoring recovery information on journal [ 152.508951][T18320] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 152.532343][T18325] XFS (loop0): Mounting V5 Filesystem [ 152.587593][T18325] XFS (loop0): Ending clean mount [ 152.610489][ T4320] ocfs2: Unmounting device (7,3) on (node local) [ 152.720933][ T4327] XFS (loop0): Unmounting Filesystem [ 152.891642][T18370] XFS (loop3): Mounting V5 Filesystem [ 152.898072][T18369] (syz.2.6374,18369,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 152.900397][T18369] (syz.2.6374,18369,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 152.917109][T18370] XFS (loop3): Ending clean mount [ 152.919182][T18369] JBD2: Ignoring recovery information on journal [ 152.972321][ T4320] XFS (loop3): Unmounting Filesystem [ 153.002636][T18369] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 153.084759][ T4328] ocfs2: Unmounting device (7,2) on (node local) [ 153.246480][T18389] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 153.439602][T18401] set_capacity_and_notify: 9 callbacks suppressed [ 153.439611][T18401] loop3: detected capacity change from 0 to 2048 [ 153.471329][T18401] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 153.528593][T18411] loop1: detected capacity change from 0 to 2048 [ 153.534482][T18411] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 153.711473][T18431] comedi comedi0: bad chanlist[0]=0x00800000 chan=0 range length=2 [ 153.790930][T18385] loop0: detected capacity change from 0 to 131072 [ 153.792725][T18385] F2FS-fs (loop0): Invalid log sectorsize (67108873) [ 153.794006][T18385] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 153.795646][T18385] F2FS-fs (loop0): invalid crc value [ 153.802591][T18385] F2FS-fs (loop0): Found nat_bits in checkpoint [ 153.814210][T18385] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 153.815418][T18385] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 153.862491][T18440] loop4: detected capacity change from 0 to 2048 [ 153.895305][T18440] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 153.911283][T18443] loop3: detected capacity change from 0 to 2048 [ 153.921488][T18443] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.094477][T18465] comedi comedi0: bad chanlist[0]=0x00800000 chan=0 range length=2 [ 154.121589][T18469] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 154.185583][T18473] loop2: detected capacity change from 0 to 2048 [ 154.197472][T18473] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.211918][T18477] loop0: detected capacity change from 0 to 2048 [ 154.220094][T18479] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 154.231440][T18477] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.270058][T18483] netlink: 'syz.3.6413': attribute type 1 has an invalid length. [ 154.271590][T18483] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6413'. [ 154.325274][T18485] loop2: detected capacity change from 0 to 2048 [ 154.336424][T18485] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 154.453710][T18499] comedi comedi0: bad chanlist[0]=0x00800000 chan=0 range length=2 [ 154.484835][T18507] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 154.519261][T18510] netlink: 'syz.4.6429': attribute type 1 has an invalid length. [ 154.520559][T18510] netlink: 224 bytes leftover after parsing attributes in process `syz.4.6429'. [ 154.592473][T18521] xt_TPROXY: Can be used only with -p tcp or -p udp [ 154.627434][T18530] loop4: detected capacity change from 0 to 64 [ 154.671229][T18534] comedi comedi0: bad chanlist[0]=0x00800000 chan=0 range length=2 [ 154.685295][T18537] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 154.778771][T18549] netlink: 'syz.2.6447': attribute type 1 has an invalid length. [ 154.780141][T18549] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6447'. [ 154.792429][T18553] xt_TPROXY: Can be used only with -p tcp or -p udp [ 154.839273][T18560] loop2: detected capacity change from 0 to 64 [ 155.021598][T18585] netlink: 'syz.1.6463': attribute type 1 has an invalid length. [ 155.022946][T18585] netlink: 224 bytes leftover after parsing attributes in process `syz.1.6463'. [ 155.028842][T18587] xt_TPROXY: Can be used only with -p tcp or -p udp [ 155.242224][T18618] xt_TPROXY: Can be used only with -p tcp or -p udp [ 155.359982][T18632] erofs: (device loop0): mounted with root inode @ nid 36. [ 155.461376][T18645] netlink: 'syz.4.6497': attribute type 1 has an invalid length. [ 155.618072][T18670] erofs: (device loop1): mounted with root inode @ nid 36. [ 155.682007][T18682] netlink: 'syz.2.6511': attribute type 1 has an invalid length. [ 155.855452][T18706] erofs: (device loop4): mounted with root inode @ nid 36. [ 155.894720][T18714] netlink: 'syz.1.6527': attribute type 1 has an invalid length. [ 156.153108][T18747] erofs: (device loop3): mounted with root inode @ nid 36. [ 156.213267][T18755] netlink: 'syz.1.6554': attribute type 10 has an invalid length. [ 156.217566][T18756] netlink: 'syz.3.6543': attribute type 1 has an invalid length. [ 156.227802][T18753] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 156.239125][T18755] team0: Device xfrm0 is of different type [ 156.467197][T18784] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 156.488261][T18789] netlink: 'syz.2.6562': attribute type 10 has an invalid length. [ 156.529052][T18789] team0: Device xfrm0 is of different type [ 156.639097][T18803] vhci_hcd: invalid port number 255 [ 156.639940][T18803] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 156.649939][ T4326] ------------[ cut here ]------------ [ 156.651016][ T4326] WARNING: CPU: 1 PID: 4326 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x1fc/0x418 [ 156.652700][ T4326] Modules linked in: [ 156.653385][ T4326] CPU: 1 PID: 4326 Comm: kworker/u5:3 Not tainted syzkaller #0 [ 156.654642][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 156.656153][ T4326] Workqueue: hci3 hci_conn_timeout [ 156.656944][ T4326] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 156.658148][ T4326] pc : hci_conn_timeout+0x1fc/0x418 [ 156.658956][ T4326] lr : hci_conn_timeout+0x1fc/0x418 [ 156.659758][ T4326] sp : ffff800020d37b30 [ 156.660411][ T4326] x29: ffff800020d37b30 x28: ffff0000d656e000 x27: ffff0000d5bc0330 [ 156.661617][ T4326] x26: ffff0000c305a018 x25: 1fffe0001860b403 x24: dfff800000000000 [ 156.663112][ T4326] x23: ffff0000c4bbe000 x22: dfff800000000000 x21: 00000000ffffffff [ 156.664482][ T4326] x20: ffff0000d5bc0000 x19: ffff0000d5bc0330 x18: 00000000a74d0c4e [ 156.665737][ T4326] x17: ffff800018349000 x16: ffff80000804309c x15: ffff800017e2a000 [ 156.667105][ T4326] x14: 0000000000000001 x13: 1fffe0001ab78002 x12: 0000000000ff0100 [ 156.668354][ T4326] x11: ff00800010c0dfc8 x10: 0000000000000000 x9 : ffff800010c0dfc8 [ 156.669460][ T4326] x8 : ffff0000c6cb0000 x7 : 0000000000000000 x6 : 0000000000000000 [ 156.670709][ T4326] x5 : ffff800018369d18 x4 : 0000000000000008 x3 : ffff800010c0de04 [ 156.671939][ T4326] x2 : 0000000000000000 x1 : 00000000ffffffff x0 : 0000000000000000 [ 156.673215][ T4326] Call trace: [ 156.673706][ T4326] hci_conn_timeout+0x1fc/0x418 [ 156.674467][ T4326] process_one_work+0x7f8/0x13a4 [ 156.675217][ T4326] worker_thread+0x8c4/0xfec [ 156.676029][ T4326] kthread+0x250/0x2d8 [ 156.676671][ T4326] ret_from_fork+0x10/0x20 [ 156.677472][ T4326] irq event stamp: 3618 [ 156.678164][ T4326] hardirqs last enabled at (3617): [] _raw_spin_unlock_irq+0x3c/0x90 [ 156.679890][ T4326] hardirqs last disabled at (3618): [] el1_dbg+0x24/0x80 [ 156.681285][ T4326] softirqs last enabled at (3146): [] handle_softirqs+0xaec/0xc60 [ 156.682804][ T4326] softirqs last disabled at (2945): [] __do_softirq+0x14/0x20 [ 156.684164][ T4326] ---[ end trace 0000000000000000 ]--- [ 156.685007][ C1] vkms_vblank_simulate: vblank timer overrun [ 156.695360][ T4326] ------------[ cut here ]------------ [ 156.696456][ T4326] WARNING: CPU: 1 PID: 4326 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x1fc/0x418 [ 156.696796][ T4325] ------------[ cut here ]------------ [ 156.698106][ T4326] Modules linked in: [ 156.699128][ T4325] WARNING: CPU: 0 PID: 4325 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x1fc/0x418 [ 156.699137][ T4326] [ 156.699747][ T4326] CPU: 1 PID: 4326 Comm: kworker/u5:3 Tainted: G W syzkaller #0 [ 156.701180][ T4325] Modules linked in: [ 156.701547][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 156.702910][ T4325] [ 156.703519][ T4326] Workqueue: hci4 hci_conn_timeout [ 156.705052][ T4325] CPU: 0 PID: 4325 Comm: kworker/u5:2 Tainted: G W syzkaller #0 [ 156.705378][ T4326] [ 156.706221][ T4325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 156.707654][ T4326] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 156.708059][ T4325] Workqueue: hci0 hci_conn_timeout [ 156.709532][ T4326] pc : hci_conn_timeout+0x1fc/0x418 [ 156.710836][ T4325] [ 156.711623][ T4326] lr : hci_conn_timeout+0x1fc/0x418 [ 156.712443][ T4325] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 156.712756][ T4326] sp : ffff800020d37b30 [ 156.713668][ T4325] pc : hci_conn_timeout+0x1fc/0x418 [ 156.715004][ T4326] x29: ffff800020d37b30 [ 156.715624][ T4325] lr : hci_conn_timeout+0x1fc/0x418 [ 156.716500][ T4326] x28: ffff0000d5d9d800 [ 156.717162][ T4325] sp : ffff800020d27b30 [ 156.718002][ T4326] x27: ffff0000f1cc4330 [ 156.718699][ T4325] x29: ffff800020d27b30 [ 156.719375][ T4326] [ 156.720072][ T4325] x28: ffff0000d5d9c800 [ 156.720755][ T4326] x26: ffff0000c305a018 [ 156.721113][ T4325] x27: ffff0000e00c8330 [ 156.721851][ T4326] x25: 1fffe0001860b403 [ 156.722592][ T4325] [ 156.723272][ T4326] x24: dfff800000000000 [ 156.723963][ T4325] x26: ffff0000c305a418 [ 156.724347][ T4326] [ 156.724972][ T4325] x25: 1fffe0001860b483 [ 156.725615][ T4326] x23: ffff0000c4bbe000 [ 156.725987][ T4325] x24: dfff800000000000 [ 156.726721][ T4326] x22: dfff800000000000 [ 156.727354][ T4325] [ 156.727988][ T4326] x21: 00000000ffffffff [ 156.728694][ T4325] x23: ffff0000c4bbe000 [ 156.729007][ T4326] [ 156.729724][ T4325] x22: dfff800000000000 [ 156.730311][ T4326] x20: ffff0000f1cc4000 [ 156.730682][ T4325] x21: 00000000ffffffff [ 156.731308][ T4326] x19: ffff0000f1cc4330 [ 156.731979][ T4325] [ 156.732599][ T4326] x18: 00000000a74d0c4e [ 156.733254][ T4325] x20: ffff0000e00c8000 [ 156.733636][ T4326] [ 156.734287][ T4325] x19: ffff0000e00c8330 [ 156.734944][ T4326] x17: ffff800018349000 [ 156.735292][ T4325] x18: ffff800011b8bf60 [ 156.735973][ T4326] x16: ffff8000082d9244 [ 156.736631][ T4325] [ 156.737301][ T4326] x15: 0000000000000000 [ 156.737966][ T4325] x17: ffff800018349000 [ 156.738352][ T4326] [ 156.739004][ T4325] x16: ffff80000804309c [ 156.739705][ T4326] x14: 0000000000000001 [ 156.740076][ T4325] x15: ffff800017e2a000 [ 156.740752][ T4326] x13: 1fffe0001e398802 [ 156.741416][ T4325] [ 156.742066][ T4326] x12: 0000000000ff0100 [ 156.742733][ T4325] x14: 0000000000000001 [ 156.743100][ T4326] [ 156.743846][ T4325] x13: 1fffe0001c019002 [ 156.744480][ T4326] x11: ff00800010c0dfc8 [ 156.744835][ T4325] x12: 0000000000ff0100 [ 156.745500][ T4326] x10: 0000000000000000 [ 156.746194][ T4325] [ 156.746812][ T4326] x9 : ffff800010c0dfc8 [ 156.747506][ T4325] x11: ff00800010c0dfc8 [ 156.747851][ T4326] [ 156.747857][ T4326] x8 : ffff0000c6cb0000 [ 156.748531][ T4325] x10: 0000000000000000 [ 156.749132][ T4326] x7 : ffff800008209c90 [ 156.749525][ T4325] x9 : ffff800010c0dfc8 [ 156.750123][ T4326] x6 : 0000000000000000 [ 156.750787][ T4325] [ 156.750793][ T4325] x8 : ffff0000c6cb5340 [ 156.751422][ T4326] [ 156.752036][ T4325] x7 : 0000000000000000 [ 156.752694][ T4326] x5 : 0000000000000000 [ 156.753061][ T4325] x6 : 0000000000000000 [ 156.753707][ T4326] x4 : 0000000000000001 [ 156.754065][ T4325] [ 156.754754][ T4326] x3 : ffff800010c0de04 [ 156.755355][ T4325] x5 : ffff800018369d18 [ 156.755968][ T4326] [ 156.755974][ T4326] x2 : 0000000000000000 [ 156.756660][ T4325] x4 : 0000000000000008 [ 156.757024][ T4326] x1 : 00000000ffffffff [ 156.757684][ T4325] x3 : ffff800010c0de04 [ 156.758367][ T4326] x0 : 0000000000000000 [ 156.758810][ T4325] [ 156.758816][ T4325] x2 : 0000000000000000 [ 156.759561][ T4326] [ 156.760282][ T4325] x1 : 00000000ffffffff [ 156.761038][ T4326] Call trace: [ 156.761759][ T4325] x0 : 0000000000000000 [ 156.762472][ T4326] hci_conn_timeout+0x1fc/0x418 [ 156.762857][ T4325] [ 156.763516][ T4326] process_one_work+0x7f8/0x13a4 [ 156.763852][ T4325] Call trace: [ 156.764497][ T4326] worker_thread+0x8c4/0xfec [ 156.764976][ T4325] hci_conn_timeout+0x1fc/0x418 [ 156.765642][ T4326] kthread+0x250/0x2d8 [ 156.766397][ T4325] process_one_work+0x7f8/0x13a4 [ 156.766749][ T4326] ret_from_fork+0x10/0x20 [ 156.767497][ T4325] worker_thread+0x8c4/0xfec [ 156.768035][ T4326] irq event stamp: 3628 [ 156.768669][ T4325] kthread+0x250/0x2d8 [ 156.769424][ T4326] hardirqs last enabled at (3627): [] _raw_spin_unlock_irq+0x3c/0x90 [ 156.769985][ T4325] ret_from_fork+0x10/0x20 [ 156.770805][ T4326] hardirqs last disabled at (3628): [] el1_dbg+0x24/0x80 [ 156.771463][ T4325] irq event stamp: 2610 [ 156.772250][ T4326] softirqs last enabled at (3146): [] handle_softirqs+0xaec/0xc60 [ 156.772867][ T4325] hardirqs last enabled at (2609): [] _raw_spin_unlock_irq+0x3c/0x90 [ 156.773530][ T4326] softirqs last disabled at (2945): [] __do_softirq+0x14/0x20 [ 156.775081][ T4325] hardirqs last disabled at (2610): [] el1_dbg+0x24/0x80 [ 156.775778][ T4326] ---[ end trace 0000000000000000 ]--- [ 156.777109][ T4325] softirqs last enabled at (1848): [] handle_softirqs+0xaec/0xc60 [ 156.777786][ C1] vkms_vblank_simulate: vblank timer overrun [ 156.779199][ T4325] softirqs last disabled at (1809): [] __do_softirq+0x14/0x20 [ 156.780964][ T4336] ------------[ cut here ]------------ [ 156.782006][ T4325] ---[ end trace 0000000000000000 ]--- [ 156.787605][ T4330] ------------[ cut here ]------------ [ 156.788272][ T4336] WARNING: CPU: 1 PID: 4336 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x1fc/0x418 [ 156.789266][ T4330] WARNING: CPU: 0 PID: 4330 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x1fc/0x418 [ 156.790105][ T4336] Modules linked in: [ 156.790821][ T4330] Modules linked in: [ 156.792432][ T4336] [ 156.793666][ T4330] CPU: 0 PID: 4330 Comm: kworker/u5:4 Tainted: G W syzkaller #0 [ 156.794264][ T4336] CPU: 1 PID: 4336 Comm: kworker/u5:7 Tainted: G W syzkaller #0 [ 156.794827][ T4330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 156.795177][ T4336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 156.796633][ T4330] Workqueue: hci1 hci_conn_timeout [ 156.798129][ T4336] Workqueue: hci2 hci_conn_timeout [ 156.799645][ T4330] [ 156.801295][ T4336] [ 156.802012][ T4330] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 156.802872][ T4336] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 156.803182][ T4330] pc : hci_conn_timeout+0x1fc/0x418 [ 156.803588][ T4336] pc : hci_conn_timeout+0x1fc/0x418 [ 156.804783][ T4330] lr : hci_conn_timeout+0x1fc/0x418 [ 156.806082][ T4336] lr : hci_conn_timeout+0x1fc/0x418 [ 156.806798][ T4330] sp : ffff800020d67b30 [ 156.807663][ T4336] sp : ffff800020dc7b30 [ 156.808414][ T4330] x29: ffff800020d67b30 [ 156.809357][ T4336] x29: ffff800020dc7b30 [ 156.810022][ T4330] x28: ffff0000d5d9d000 [ 156.810689][ T4336] x28: ffff0000d656d800 [ 156.811309][ T4330] x27: ffff0000e00ca330 [ 156.811999][ T4336] x27: ffff0000d3a12330 [ 156.812639][ T4330] [ 156.813274][ T4336] [ 156.813946][ T4330] x26: ffff0000c3053a18 [ 156.814614][ T4336] x26: ffff0000d4c5a218 [ 156.815014][ T4330] x25: 1fffe0001860a743 [ 156.815398][ T4336] x25: 1fffe0001a98b443 [ 156.816115][ T4330] x24: dfff800000000000 [ 156.816809][ T4336] x24: dfff800000000000 [ 156.817548][ T4330] [ 156.818227][ T4336] [ 156.818860][ T4330] x23: ffff0000c4bbe000 [ 156.819524][ T4336] x23: ffff0000c4bbe000 [ 156.819879][ T4330] x22: dfff800000000000 [ 156.820253][ T4336] x22: dfff800000000000 [ 156.820859][ T4330] x21: 00000000ffffffff [ 156.821513][ T4336] x21: 00000000ffffffff [ 156.822082][ T4330] [ 156.822781][ T4336] [ 156.822786][ T4336] x20: ffff0000d3a12000 [ 156.823457][ T4330] x20: ffff0000e00ca000 [ 156.824108][ T4336] x19: ffff0000d3a12330 [ 156.824481][ T4330] x19: ffff0000e00ca330 [ 156.824850][ T4336] x18: 00000000a74d0c4e [ 156.825570][ T4330] x18: ffff800011b8bf60 [ 156.826212][ T4336] [ 156.826916][ T4330] [ 156.827586][ T4336] x17: ffff800018349000 [ 156.828207][ T4330] x17: ffff800018349000 [ 156.828903][ T4336] x16: ffff80000804309c [ 156.829230][ T4330] x16: ffff80000804309c [ 156.829613][ T4336] x15: ffff800017e2a000 [ 156.830259][ T4330] x15: ffff800017e2a000 [ 156.830985][ T4336] [ 156.831608][ T4330] [ 156.832286][ T4336] x14: 0000000000000001 [ 156.832965][ T4330] x14: 0000000000000001 [ 156.833656][ T4336] x13: 1fffe0001a742402 [ 156.834045][ T4330] x13: 1fffe0001c019402 [ 156.834414][ T4336] x12: 0000000000ff0100 [ 156.835073][ T4330] x12: 0000000000ff0100 [ 156.835813][ T4336] [ 156.836404][ T4330] [ 156.837061][ T4336] x11: ff00800010c0dfc8 [ 156.837635][ T4330] x11: ff00800010c0dfc8 [ 156.838287][ T4336] x10: 0000000000000000 [ 156.838601][ T4330] x10: 0000000000000000 [ 156.838964][ T4336] x9 : ffff800010c0dfc8 [ 156.839544][ T4330] x9 : ffff800010c0dfc8 [ 156.840156][ T4336] [ 156.840767][ T4330] [ 156.841490][ T4336] x8 : ffff0000d2700000 [ 156.842047][ T4330] x8 : ffff0000c6cb3780 [ 156.842695][ T4336] x7 : 0000000000000000 [ 156.842984][ T4330] x7 : 0000000000000000 [ 156.843321][ T4336] x6 : 0000000000000000 [ 156.843921][ T4330] x6 : 0000000000000000 [ 156.844562][ T4336] [ 156.845186][ T4330] [ 156.845928][ T4336] x5 : ffff800018369d18 [ 156.846552][ T4330] x5 : ffff800018369d18 [ 156.847267][ T4336] x4 : 0000000000000008 [ 156.847613][ T4330] x4 : 0000000000000008 [ 156.848029][ T4336] x3 : ffff800010c0de04 [ 156.848593][ T4330] x3 : ffff800010c0de04 [ 156.849278][ T4336] [ 156.849878][ T4330] [ 156.850568][ T4336] x2 : 0000000000000000 [ 156.851142][ T4330] x2 : 0000000000000000 [ 156.851782][ T4336] x1 : 00000000ffffffff [ 156.852157][ T4330] x1 : 00000000ffffffff [ 156.852486][ T4336] x0 : 0000000000000000 [ 156.853120][ T4330] x0 : 0000000000000000 [ 156.853748][ T4336] [ 156.853755][ T4336] Call trace: [ 156.854440][ T4330] [ 156.855124][ T4336] hci_conn_timeout+0x1fc/0x418 [ 156.855744][ T4330] Call trace: [ 156.856368][ T4336] process_one_work+0x7f8/0x13a4 [ 156.856744][ T4330] hci_conn_timeout+0x1fc/0x418 [ 156.857225][ T4336] worker_thread+0x8c4/0xfec [ 156.857576][ T4330] process_one_work+0x7f8/0x13a4 [ 156.858319][ T4336] kthread+0x250/0x2d8 [ 156.858863][ T4330] worker_thread+0x8c4/0xfec [ 156.859622][ T4336] ret_from_fork+0x10/0x20 [ 156.860414][ T4330] kthread+0x250/0x2d8 [ 156.861143][ T4336] irq event stamp: 3464 [ 156.861899][ T4330] ret_from_fork+0x10/0x20 [ 156.862491][ T4336] hardirqs last enabled at (3463): [] _raw_spin_unlock_irq+0x3c/0x90 [ 156.863160][ T4330] irq event stamp: 1844 [ 156.863864][ T4336] hardirqs last disabled at (3464): [] el1_dbg+0x24/0x80 [ 156.864480][ T4330] hardirqs last enabled at (1843): [] _raw_spin_unlock_irq+0x3c/0x90 [ 156.865166][ T4336] softirqs last enabled at (3360): [] handle_softirqs+0xaec/0xc60 [ 156.865799][ T4330] hardirqs last disabled at (1844): [] el1_dbg+0x24/0x80 [ 156.867430][ T4336] softirqs last disabled at (2361): [] __do_softirq+0x14/0x20 [ 156.868054][ T4330] softirqs last enabled at (1244): [] handle_softirqs+0xaec/0xc60 [ 156.869490][ T4336] ---[ end trace 0000000000000000 ]--- [ 156.870910][ T4330] softirqs last disabled at (1237): [] __do_softirq+0x14/0x20 [ 156.872525][ C1] vkms_vblank_simulate: vblank timer overrun [ 156.873908][ T4330] ---[ end trace 0000000000000000 ]---