last executing test programs: 670.083396ms ago: executing program 3 (id=5525): r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, 0x0) 624.765199ms ago: executing program 3 (id=5529): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000000480)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nodioread_nolock}, {@usrjquota}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x57d, &(0x7f0000000a00)="$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") mount(0x0, &(0x7f0000000300)='./file1\x00', 0x0, 0x24000, 0x0) 411.244379ms ago: executing program 0 (id=5540): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'team_slave_0\x00', &(0x7f0000000000)=@ethtool_stats}) 400.0304ms ago: executing program 1 (id=5542): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5c00000013006bcd9e3fe3dc6e48aa310b6b8703340000001f03000000000000040014000d000a000d0000009ee517d3334abc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20004002) 360.674102ms ago: executing program 1 (id=5543): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000a00)=@newtaction={0x60, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ctinfo={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0xfffff001, 0x7, 0x20000000, 0x8, 0x3856}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 359.663702ms ago: executing program 1 (id=5544): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000340)={0x18, 0x56, 0x601, 0x0, 0x0, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\x00\x00\x00'}]}, 0x18}], 0x1}, 0x800) 333.026673ms ago: executing program 3 (id=5545): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x17}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000001f00)="de4dc043102f0e202515a02eac23", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 331.349294ms ago: executing program 4 (id=5546): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="6c0000001000ffff28bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="c61a0000071a070008001300", @ANYRES32=0x0, @ANYBLOB="08002900a155020008001c"], 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x200408c0) 320.407154ms ago: executing program 1 (id=5547): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000040), 0x4) 315.773834ms ago: executing program 2 (id=5548): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x5c, 0x2, 0x6, 0x101, 0x0, 0x0, {0xa}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x5c}}, 0x4000) 314.863294ms ago: executing program 0 (id=5549): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) pwritev(r0, &(0x7f0000000180)=[{&(0x7f0000000240)="02000000", 0x4}, {&(0x7f0000000280)="f697079a161cfb7702311e629acda76933ddd0c24174eb4d4d28f9", 0x1b}, {&(0x7f0000000340)="527302587e0a4e47ad", 0x9}, {0x0}], 0x4, 0x0, 0x0) 264.807056ms ago: executing program 4 (id=5550): r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x80801) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000080)={0x0, 0x1, 0x7, 0x8, 0x1, 0xfffffff7, &(0x7f0000000000)='k'}) 259.659827ms ago: executing program 1 (id=5551): r0 = syz_open_procfs(0x0, &(0x7f0000000200)='personality\x00') lseek(r0, 0x402, 0x1) 236.606018ms ago: executing program 0 (id=5552): r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x18b082, 0x0) ioctl$CAPI_GET_PROFILE(r0, 0xc0404309, 0xffffffffffffffff) 229.785278ms ago: executing program 2 (id=5553): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'dummy0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x4b, 0x4a, "49720705000000004709b89e6fb2c55c00a79e082584e55fee49e00255020f1f55001d00"/48}}) 218.455749ms ago: executing program 3 (id=5554): r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000004ff6943b80000000800000028f20000000086070000", 0x4000, r0) 217.912179ms ago: executing program 4 (id=5555): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000180)) 180.144441ms ago: executing program 1 (id=5556): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000300)={[{@grpquota}, {@quota}, {@quota}, {@minixdf}, {@jqfmt_vfsold}]}, 0xff, 0x50f, &(0x7f0000001c00)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x242, 0x100) 167.570711ms ago: executing program 2 (id=5557): r0 = syz_open_dev$vim2m(&(0x7f0000000180), 0x7, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x12, 0x1, 0x0, "6906007722366ccee4ba568eb4f80102f5372f2c74f6024305f11fd3454ad23d"}) 165.028591ms ago: executing program 4 (id=5558): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000200), 0x4) 159.512482ms ago: executing program 0 (id=5559): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @remote, 0x100}, 0x16) 156.774002ms ago: executing program 3 (id=5560): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSBRK(r0, 0x5409, 0xfffffffffffffffd) 118.477834ms ago: executing program 2 (id=5561): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000000)={0x0, 0x0, 0xf57d, 0x8, 0x0, 0x9, 0x3}) 114.318514ms ago: executing program 4 (id=5562): r0 = openat$tcp_congestion(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0) write$tcp_congestion(r0, &(0x7f0000000200)='highspeed\x00', 0xa) 92.679205ms ago: executing program 0 (id=5563): mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0) mount$nfs(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f0000000280), 0x0, &(0x7f00000006c0)={[{'udp\x00'}]}) 75.945466ms ago: executing program 2 (id=5564): r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x80000004) 73.326466ms ago: executing program 3 (id=5565): mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000000)=0x72b, 0x5, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) 73.221576ms ago: executing program 4 (id=5566): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000000), 0x1, 0x4ee, &(0x7f0000001100)="$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") quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0xfffffffffffffffd, 0x646a1973, 0xc7, 0xf, 0x2, 0xc5, 0x9, 0x3, 0x3}) 13.643159ms ago: executing program 0 (id=5567): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@gettaction={0xd4, 0x32, 0xe72c5f922f23ccf3, 0x70bd27, 0x25dfdbfb, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x2}, @action_gd=@TCA_ACT_TAB={0x48, 0x1, [{0x10, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x35b}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xfffffff9}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0x28, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40008c4}, 0x4000000) 0s ago: executing program 2 (id=5568): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000001040), 0x4) kernel console output (not intermixed with test programs): p4): Directory bread(block 65) failed [ 84.257748][T10414] FAT-fs (loop4): Directory bread(block 66) failed [ 84.277862][T10414] FAT-fs (loop4): Directory bread(block 67) failed [ 84.278998][T10414] FAT-fs (loop4): Directory bread(block 68) failed [ 84.288188][T10414] FAT-fs (loop4): Directory bread(block 69) failed [ 84.289322][T10414] FAT-fs (loop4): Directory bread(block 70) failed [ 84.290276][T10414] FAT-fs (loop4): Directory bread(block 71) failed [ 84.324576][T10414] FAT-fs (loop4): Directory bread(block 72) failed [ 84.325776][T10414] FAT-fs (loop4): Directory bread(block 73) failed [ 84.374463][T10434] loop3: detected capacity change from 0 to 164 [ 84.398112][T10434] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 84.500018][T10444] netlink: 'syz.1.2720': attribute type 3 has an invalid length. [ 84.660607][T10462] loop1: detected capacity change from 0 to 1764 [ 84.674308][T10433] loop0: detected capacity change from 0 to 32768 [ 84.696718][T10433] ERROR: (device loop0): diWrite: ixpxd invalid [ 84.696718][T10433] [ 84.712626][T10433] ERROR: (device loop0): remounting filesystem as read-only [ 84.713965][T10433] ERROR: (device loop0): txAbort: [ 84.713965][T10433] [ 84.745619][T10466] FAT-fs (loop3): Directory bread(block 64) failed [ 84.746734][T10466] FAT-fs (loop3): Directory bread(block 65) failed [ 84.747955][T10466] FAT-fs (loop3): Directory bread(block 66) failed [ 84.749019][T10466] FAT-fs (loop3): Directory bread(block 67) failed [ 84.760133][T10466] FAT-fs (loop3): Directory bread(block 68) failed [ 84.768979][T10466] FAT-fs (loop3): Directory bread(block 69) failed [ 84.770065][T10466] FAT-fs (loop3): Directory bread(block 70) failed [ 84.771582][T10466] FAT-fs (loop3): Directory bread(block 71) failed [ 84.772678][T10466] FAT-fs (loop3): Directory bread(block 72) failed [ 84.773753][T10466] FAT-fs (loop3): Directory bread(block 73) failed [ 84.820676][T10479] netlink: 'syz.2.2738': attribute type 3 has an invalid length. [ 84.832632][T10479] __nla_validate_parse: 13 callbacks suppressed [ 84.832647][T10479] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2738'. [ 85.077358][T10509] ebt_among: dst integrity fail: 101 [ 85.098393][T10516] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 85.318013][T10548] ebt_among: dst integrity fail: 101 [ 85.555248][T10540] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.2766 (10540) [ 85.567989][T10540] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 85.569805][T10540] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 85.577778][T10540] BTRFS info (device loop1): using free space tree [ 85.582716][T10578] ebt_among: dst integrity fail: 101 [ 85.684543][T10591] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 85.817267][T10540] BTRFS info (device loop1): enabling ssd optimizations [ 85.876432][ T4320] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 85.888187][T10596] ERROR: (device loop2): diWrite: ixpxd invalid [ 85.888187][T10596] [ 85.930726][T10596] ERROR: (device loop2): remounting filesystem as read-only [ 85.959827][T10596] ERROR: (device loop2): txAbort: [ 85.959827][T10596] [ 86.059616][ T4312] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (4312) [ 86.168227][T10631] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 86.189047][T10633] overlayfs: missing 'workdir' [ 86.305395][T10614] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 86.478253][T10657] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 86.534123][T10662] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 86.556155][T10665] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 86.566019][ T4752] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 86.620784][T10674] overlayfs: missing 'workdir' [ 86.682008][T10679] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 86.765202][T10692] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2843'. [ 86.795939][ T4325] EXT4-fs (loop4): unmounting filesystem. [ 86.828633][T10694] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 86.925499][T10705] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 86.939110][T10681] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 86.946558][T10702] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 87.115450][T10725] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2849'. [ 87.116617][T10723] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead [ 87.124410][T10723] xt_CT: You must specify a L4 protocol and not use inversions on it [ 87.206857][T10736] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2855'. [ 87.239539][T10743] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2858'. [ 87.257667][T10739] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 87.276843][T10741] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 87.367319][T10755] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead [ 87.375272][T10755] xt_CT: You must specify a L4 protocol and not use inversions on it [ 87.506505][T10771] validate_nla: 1 callbacks suppressed [ 87.506516][T10771] netlink: 'syz.0.2873': attribute type 3 has an invalid length. [ 87.540251][T10775] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 87.599247][T10775] EXT4-fs error (device loop2): ext4_xattr_block_get:543: inode #12: comm syz.2.2875: corrupted xattr block 6 [ 87.667659][T10756] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 87.669103][T10788] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead [ 87.676682][ T4332] EXT4-fs (loop2): unmounting filesystem. [ 87.681110][T10788] xt_CT: You must specify a L4 protocol and not use inversions on it [ 87.723160][ T4312] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 87.740400][T10794] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2883'. [ 87.782636][T10798] netlink: 'syz.1.2884': attribute type 10 has an invalid length. [ 87.805094][T10798] team0: Device vxcan1 is of different type [ 87.824089][T10802] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2887'. [ 87.847189][T10806] netlink: 'syz.4.2888': attribute type 3 has an invalid length. [ 87.959409][T10820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2896'. [ 87.967970][T10820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2896'. [ 88.046903][T10835] device netdevsim0 entered promiscuous mode [ 88.087564][T10842] netlink: 'syz.3.2906': attribute type 10 has an invalid length. [ 88.098964][T10842] team0: Device vxcan1 is of different type [ 88.147573][T10848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2911'. [ 88.173303][T10854] netlink: 'syz.3.2914': attribute type 1 has an invalid length. [ 88.177342][T10854] netlink: 'syz.3.2914': attribute type 2 has an invalid length. [ 88.178536][T10854] netlink: 'syz.3.2914': attribute type 1 has an invalid length. [ 88.191989][T10850] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 88.193383][T10850] IPv6: NLM_F_CREATE should be set when creating new route [ 88.267476][T10865] device netdevsim0 entered promiscuous mode [ 88.574547][T10906] device netdevsim0 entered promiscuous mode [ 88.813827][T10934] set_capacity_and_notify: 15 callbacks suppressed [ 88.813837][T10934] loop3: detected capacity change from 0 to 512 [ 88.895920][T10934] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 88.929008][T10934] EXT4-fs error (device loop3): ext4_xattr_block_get:543: inode #12: comm syz.3.2951: corrupted xattr block 6 [ 89.010736][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 89.162536][T10962] netlink: 'syz.1.2963': attribute type 1 has an invalid length. [ 89.163834][T10962] netlink: 'syz.1.2963': attribute type 2 has an invalid length. [ 89.178524][T10962] netlink: 'syz.1.2963': attribute type 1 has an invalid length. [ 89.385541][T10952] loop2: detected capacity change from 0 to 32768 [ 89.616462][T11006] xt_TCPMSS: Only works on TCP SYN packets [ 90.638182][T11078] loop4: detected capacity change from 0 to 32768 [ 90.642106][T11112] __nla_validate_parse: 5 callbacks suppressed [ 90.642116][T11112] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3038'. [ 90.661952][T11114] netlink: 256 bytes leftover after parsing attributes in process `syz.1.3039'. [ 90.675202][T11078] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 90.683623][T11078] JBD2: Invalid start block of journal: 458752 [ 90.684586][T11078] (syz.4.3028,11078,1):ocfs2_journal_wipe:1183 ERROR: status = -22 [ 90.689621][T11078] (syz.4.3028,11078,0):ocfs2_check_volume:2420 ERROR: status = -22 [ 90.690868][T11078] (syz.4.3028,11078,0):ocfs2_check_volume:2489 ERROR: status = -22 [ 90.692460][T11078] (syz.4.3028,11078,0):ocfs2_mount_volume:1821 ERROR: status = -22 [ 90.712597][T11121] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3042'. [ 90.720767][T11078] (syz.4.3028,11078,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 90.910250][T11141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3052'. [ 90.929832][T11145] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3053'. [ 91.033537][T11129] loop3: detected capacity change from 0 to 32768 [ 91.036948][T11153] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3058'. [ 91.074972][T11157] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3070'. [ 91.278580][T11187] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3073'. [ 91.553163][T11189] loop1: detected capacity change from 0 to 32768 [ 91.606818][T11189] XFS (loop1): Mounting V5 Filesystem [ 91.637283][T11189] XFS (loop1): Ending clean mount [ 91.641997][T11189] XFS (loop1): Quotacheck needed: Please wait. [ 91.675175][T11189] XFS (loop1): Quotacheck: Done. [ 91.848753][T11237] loop0: detected capacity change from 0 to 32768 [ 91.869971][ T4320] XFS (loop1): Unmounting Filesystem [ 91.881187][T11237] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 91.887362][T11237] JBD2: Invalid start block of journal: 458752 [ 91.888330][T11237] (syz.0.3095,11237,1):ocfs2_journal_wipe:1183 ERROR: status = -22 [ 91.889689][T11237] (syz.0.3095,11237,1):ocfs2_check_volume:2420 ERROR: status = -22 [ 91.896310][T11237] (syz.0.3095,11237,1):ocfs2_check_volume:2489 ERROR: status = -22 [ 91.897994][T11237] (syz.0.3095,11237,1):ocfs2_mount_volume:1821 ERROR: status = -22 [ 91.919337][T11237] (syz.0.3095,11237,1):ocfs2_fill_super:1176 ERROR: status = -22 [ 91.938039][T11266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3110'. [ 92.003779][T11269] loop3: detected capacity change from 0 to 512 [ 92.010328][T11269] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.3114: inode has both inline data and extents flags [ 92.016454][T11269] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.3114: couldn't read orphan inode 15 (err -117) [ 92.018449][T11269] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 92.065737][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 92.095637][T11237] I/O error, dev loop0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 92.097303][T11237] qnx4: unable to read the superblock [ 92.245198][T11296] loop3: detected capacity change from 0 to 1024 [ 92.281917][T11305] netlink: 5 bytes leftover after parsing attributes in process `syz.2.3127'. [ 92.290331][T11305] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 92.382535][T11314] ip6t_srh: unknown srh invflags 7D00 [ 92.425550][T11276] loop4: detected capacity change from 0 to 32768 [ 92.486333][T11276] XFS (loop4): Mounting V5 Filesystem [ 92.522885][T11276] XFS (loop4): Ending clean mount [ 92.526856][T11276] XFS (loop4): Quotacheck needed: Please wait. [ 92.586546][T11276] XFS (loop4): Quotacheck: Done. [ 92.600783][T11349] loop2: detected capacity change from 0 to 512 [ 92.629742][T11353] ip6t_srh: unknown srh invflags 7D00 [ 92.642997][T11349] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.3144: inode has both inline data and extents flags [ 92.645230][T11349] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.3144: couldn't read orphan inode 15 (err -117) [ 92.647787][T11349] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 92.703399][ T4325] XFS (loop4): Unmounting Filesystem [ 92.731253][ T4332] EXT4-fs (loop2): unmounting filesystem. [ 92.776032][T11365] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.3164: inode has both inline data and extents flags [ 92.786974][T11365] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.3164: couldn't read orphan inode 15 (err -117) [ 92.804363][T11365] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 92.852745][T11375] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 92.872706][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 92.976656][T11390] ip6t_srh: unknown srh invflags 7D00 [ 92.988870][T11381] xt_CT: No such helper "netbios-ns" [ 93.176427][T11415] xt_l2tp: unknown flags: 3b [ 93.371353][T11425] xt_CT: No such helper "netbios-ns" [ 93.405488][T11398] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 93.406838][T11398] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 93.454733][T11398] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 93.455345][T11405] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 93.459242][T11405] JBD2: Invalid start block of journal: 458752 [ 93.460288][T11405] (syz.3.3170,11405,0):ocfs2_journal_wipe:1183 ERROR: status = -22 [ 93.465942][T11405] (syz.3.3170,11405,0):ocfs2_check_volume:2420 ERROR: status = -22 [ 93.467172][T11405] (syz.3.3170,11405,0):ocfs2_check_volume:2489 ERROR: status = -22 [ 93.468376][T11405] (syz.3.3170,11405,0):ocfs2_mount_volume:1821 ERROR: status = -22 [ 93.473109][ T5432] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 93.474330][ T5432] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 93.491749][T11443] xt_l2tp: unknown flags: 3b [ 93.514462][T11405] (syz.3.3170,11405,0):ocfs2_fill_super:1176 ERROR: status = -22 [ 93.530574][ T5432] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 56ms [ 93.534660][ T5432] gfs2: fsid=syz:syz.0: jid=0: Done [ 93.536349][T11398] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 93.560659][ T4312] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 93.656441][T11405] I/O error, dev loop3, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 93.659391][T11405] qnx4: unable to read the superblock [ 93.747705][T11457] xt_CT: No such helper "netbios-ns" [ 94.056253][T11494] validate_nla: 3 callbacks suppressed [ 94.056264][T11494] netlink: 'syz.4.3212': attribute type 1 has an invalid length. [ 94.065527][T11494] netlink: 'syz.4.3212': attribute type 3 has an invalid length. [ 94.068028][T11494] NCSI netlink: No device for ifindex 2986344450 [ 94.096975][T11496] set_capacity_and_notify: 4 callbacks suppressed [ 94.096985][T11496] loop0: detected capacity change from 0 to 4096 [ 94.100327][T11496] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 94.108094][T11496] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 94.110663][T11496] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 94.118446][T11496] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 94.134530][T11496] ntfs: volume version 3.1. [ 94.261301][T11492] loop2: detected capacity change from 0 to 32768 [ 94.280038][T11492] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 94.282724][T11492] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 94.291937][T11438] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 94.316245][T11492] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 94.324583][ T8014] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 94.325740][ T8014] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 94.351636][ T8014] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 25ms [ 94.353041][ T8014] gfs2: fsid=syz:syz.0: jid=0: Done [ 94.353884][T11492] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 94.420829][T11526] libceph: resolve 'c' (ret=-3): failed [ 94.708900][T11557] loop3: detected capacity change from 0 to 1024 [ 94.795092][T11557] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 2: comm syz.3.3241: lblock 2 mapped to illegal pblock 2 (length 1) [ 94.798342][T11557] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 94.799798][T11557] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 48: comm syz.3.3241: lblock 0 mapped to illegal pblock 48 (length 1) [ 94.809759][T11568] loop2: detected capacity change from 0 to 4096 [ 94.810603][T11557] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 94.817462][T11568] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 94.819242][T11568] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing. [ 94.820668][T11568] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 94.827372][T11557] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.3241: Failed to acquire dquot type 0 [ 94.829441][T11557] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 94.833833][ T4310] udevd[4310]: inotify_add_watch(7, /dev/nbd1p4, 10) failed: No such file or directory [ 94.841084][T11568] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 94.849691][T11557] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #11: comm syz.3.3241: mark_inode_dirty error [ 94.855408][T11557] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 94.858646][T11557] EXT4-fs (loop3): 1 orphan inode deleted [ 94.859623][T11557] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 94.865656][T11568] ntfs: volume version 3.1. [ 94.872299][ T246] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 94.875571][ T246] EXT4-fs error (device loop3): ext4_release_dquot:6871: comm kworker/u4:3: Failed to release dquot type 0 [ 94.894532][ T246] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 2: comm kworker/u4:3: lblock 2 mapped to illegal pblock 2 (length 1) [ 94.898138][ T246] EXT4-fs error (device loop3): ext4_write_dquot:6815: comm kworker/u4:3: Failed to commit dquot type 0 [ 94.915349][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 94.916572][ T4329] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 94.919974][ T4329] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 94.922214][ T4329] EXT4-fs error (device loop3): ext4_quota_off:7141: inode #3: comm syz-executor: mark_inode_dirty error [ 94.992041][T11583] loop3: detected capacity change from 0 to 8 [ 95.179159][T11607] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 95.180734][T11607] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.231359][T11609] loop3: detected capacity change from 0 to 4096 [ 95.311901][T11621] loop2: detected capacity change from 0 to 8 [ 95.381316][T11540] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 95.444501][T11639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 95.446095][T11639] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.541066][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 95.555069][T11657] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 95.556545][T11657] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.559199][T11649] loop2: detected capacity change from 0 to 4096 [ 95.894769][T11699] dlm: no locking on control device [ 95.895489][T11701] __nla_validate_parse: 6 callbacks suppressed [ 95.895499][T11701] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3311'. [ 95.898084][T11701] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3311'. [ 95.911991][T11697] loop0: detected capacity change from 0 to 4096 [ 95.923985][T11703] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3313'. [ 95.988166][T11709] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3315'. [ 96.142680][T11725] dlm: no locking on control device [ 96.164330][T11727] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3326'. [ 96.165917][T11727] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3326'. [ 96.197471][T11729] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3327'. [ 96.221565][T11706] loop3: detected capacity change from 0 to 32768 [ 96.233511][T11706] (syz.3.3314,11706,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 96.245932][T11706] (syz.3.3314,11706,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 96.255657][T11706] JBD2: Ignoring recovery information on journal [ 96.289922][T11706] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 96.296584][T11743] (unnamed net_device) (uninitialized): option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 96.356639][ T4329] ocfs2: Unmounting device (7,3) on (node local) [ 96.386169][T11750] dlm: no locking on control device [ 96.470393][T11762] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3341'. [ 96.473777][T11665] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 96.567206][T11777] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3350'. [ 96.676897][T11789] (unnamed net_device) (uninitialized): option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 96.696507][T11795] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3357'. [ 96.827249][T11774] (syz.0.3346,11774,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 96.831384][T11774] (syz.0.3346,11774,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 96.863807][T11818] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 96.867987][T11774] JBD2: Ignoring recovery information on journal [ 96.882476][T11818] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 96.918703][T11774] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 96.938764][T11823] (unnamed net_device) (uninitialized): option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 97.047081][ T4324] ocfs2: Unmounting device (7,0) on (node local) [ 97.469196][T11863] (syz.1.3388,11863,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 97.475340][T11863] (syz.1.3388,11863,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 97.488073][T11863] JBD2: Ignoring recovery information on journal [ 97.546874][T11863] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 97.621154][ T4327] Bluetooth: hci0: command 0x0c20 tx timeout [ 97.645494][ T4320] ocfs2: Unmounting device (7,1) on (node local) [ 97.985018][T11947] netlink: 'syz.2.3430': attribute type 1 has an invalid length. [ 98.179253][T11973] netlink: 'syz.3.3444': attribute type 1 has an invalid length. [ 98.398694][T11956] XFS (loop0): Mounting V5 Filesystem [ 98.451675][T11956] XFS (loop0): Ending clean mount [ 98.457557][T12010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.471397][T12010] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.525955][ T4324] XFS (loop0): Unmounting Filesystem [ 98.565060][T12018] ieee802154 phy0 wpan0: encryption failed: -22 [ 98.840008][T12051] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 98.876866][T12056] futex_wake_op: syz.2.3490 tries to shift op by 32; fix this program [ 98.885149][ T4312] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 99.067246][T12040] XFS (loop3): Mounting V5 Filesystem [ 99.118815][T12087] futex_wake_op: syz.0.3493 tries to shift op by 32; fix this program [ 99.164511][T12040] XFS (loop3): Ending clean mount [ 99.215740][ T4329] XFS (loop3): Unmounting Filesystem [ 99.378746][T12122] futex_wake_op: syz.1.3507 tries to shift op by 32; fix this program [ 99.646777][T12146] set_capacity_and_notify: 5 callbacks suppressed [ 99.646788][T12146] loop0: detected capacity change from 0 to 4096 [ 99.701527][ T4327] Bluetooth: hci0: command 0x0c20 tx timeout [ 99.745622][T12125] loop4: detected capacity change from 0 to 32768 [ 99.748133][T12161] loop3: detected capacity change from 0 to 164 [ 99.832921][T12125] XFS (loop4): Mounting V5 Filesystem [ 99.852595][T12178] netlink: 'syz.0.3534': attribute type 3 has an invalid length. [ 99.927868][T12125] XFS (loop4): Ending clean mount [ 100.064523][ T4325] XFS (loop4): Unmounting Filesystem [ 100.277469][T12226] netlink: 'syz.3.3557': attribute type 12 has an invalid length. [ 100.377468][T12213] loop0: detected capacity change from 0 to 32768 [ 100.424904][T12213] JBD2: Ignoring recovery information on journal [ 100.467081][T12213] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 100.555591][T12213] OCFS2: ERROR (device loop0): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 74 has invalid next free chain record 1, but only 0 total [ 100.557836][T12236] loop3: detected capacity change from 0 to 32768 [ 100.567623][T12213] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 100.569211][T12213] OCFS2: File system is now read-only. [ 100.570044][T12213] (syz.0.3561,12213,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 100.571520][T12213] (syz.0.3561,12213,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 100.572816][T12213] (syz.0.3561,12213,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 100.574050][T12213] (syz.0.3561,12213,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 100.575431][T12213] (syz.0.3561,12213,1):ocfs2_mknod:385 ERROR: status = -30 [ 100.576799][T12213] (syz.0.3561,12213,1):ocfs2_mknod:502 ERROR: status = -30 [ 100.578547][T12213] (syz.0.3561,12213,1):ocfs2_create:676 ERROR: status = -30 [ 100.581484][T12236] ea_get: invalid extended attribute [ 100.582659][T12236] 00000000dbd831e0: 04 00 00 00 .... [ 100.624670][ T4324] ocfs2: Unmounting device (7,0) on (node local) [ 100.668191][T12260] loop2: detected capacity change from 0 to 64 [ 100.854222][T12284] netlink: 'syz.1.3586': attribute type 12 has an invalid length. [ 101.016293][T12304] loop1: detected capacity change from 0 to 2048 [ 101.058993][T12304] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 101.090864][T12304] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #12: block 2: comm syz.1.3593: lblock 0 mapped to illegal pblock 2 (length 1) [ 101.197144][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 101.214595][T12282] loop4: detected capacity change from 0 to 32768 [ 101.238954][T12282] JBD2: Ignoring recovery information on journal [ 101.348110][T12282] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 101.380999][ T47] Bluetooth: hci4: command 0x2016 tx timeout [ 101.405785][T12347] loop2: detected capacity change from 0 to 1024 [ 101.425733][T12350] loop0: detected capacity change from 0 to 2048 [ 101.428143][T12282] OCFS2: ERROR (device loop4): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 74 has invalid next free chain record 1, but only 0 total [ 101.437892][T12282] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 101.439381][T12282] OCFS2: File system is now read-only. [ 101.440186][T12282] (syz.4.3584,12282,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 101.447717][T12282] (syz.4.3584,12282,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 101.449093][T12282] (syz.4.3584,12282,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 101.450331][T12282] (syz.4.3584,12282,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 101.451716][T12282] (syz.4.3584,12282,1):ocfs2_mknod:385 ERROR: status = -30 [ 101.452941][T12282] (syz.4.3584,12282,1):ocfs2_mknod:502 ERROR: status = -30 [ 101.453940][T12282] (syz.4.3584,12282,1):ocfs2_create:676 ERROR: status = -30 [ 101.464124][T12350] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 101.481503][ T4325] ocfs2: Unmounting device (7,4) on (node local) [ 101.500292][T12350] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #12: block 2: comm syz.0.3616: lblock 0 mapped to illegal pblock 2 (length 1) [ 101.519811][ T4381] hfsplus: b-tree write err: -5, ino 25 [ 101.521530][ T4381] hfsplus: b-tree write err: -5, ino 4 [ 101.522948][ T4381] hfsplus: b-tree write err: -5, ino 2 [ 101.605172][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 101.629573][T12352] ea_get: invalid extended attribute [ 101.635622][T12352] 0000000092281302: 04 00 00 00 .... [ 101.815280][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 101.815291][ T27] audit: type=1326 audit(101.790:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.819730][ T27] audit: type=1326 audit(101.790:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.833675][ T27] audit: type=1326 audit(101.790:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.844977][ T27] audit: type=1326 audit(101.790:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.859125][ T27] audit: type=1326 audit(101.790:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.879077][ T27] audit: type=1326 audit(101.790:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.889190][ T27] audit: type=1326 audit(101.790:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.899925][ T27] audit: type=1326 audit(101.790:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.912243][ T27] audit: type=1326 audit(101.790:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 101.915858][ T27] audit: type=1326 audit(101.790:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12388 comm="syz.4.3631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf577128 code=0x7ff00000 [ 102.075774][T12409] hfsplus: trying to free free bnode 0(1) [ 102.082739][T12379] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 102.084276][T12379] XFS (loop2): Mounting V5 Filesystem [ 102.140453][T12379] XFS (loop2): Ending clean mount [ 102.159988][T12379] XFS (loop2): Quotacheck needed: Please wait. [ 102.169374][ T39] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x10 [ 102.172518][ T39] XFS (loop2): Unmount and run xfs_repair [ 102.173510][ T39] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 102.174605][ T39] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 102.175978][ T39] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 102.177446][ T39] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 102.178855][ T39] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 102.180225][ T39] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 102.198228][ T4381] hfsplus: b-tree write err: -5, ino 25 [ 102.199202][ T4381] hfsplus: b-tree write err: -5, ino 4 [ 102.200035][ T4381] hfsplus: b-tree write err: -5, ino 2 [ 102.215751][ T39] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 102.217938][ T39] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 102.220190][ T39] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 102.223401][ T39] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x184/0x290" at daddr 0x10 len 8 error 74 [ 102.226512][T12379] XFS (loop2): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 102.298077][ T4332] XFS (loop2): Unmounting Filesystem [ 102.336504][T12445] RDS: rds_bind could not find a transport for 2001::1, load rds_tcp or rds_rdma? [ 102.390239][ T246] hfsplus: b-tree write err: -5, ino 25 [ 102.391957][ T246] hfsplus: b-tree write err: -5, ino 4 [ 102.392828][ T246] hfsplus: b-tree write err: -5, ino 2 [ 102.450732][T12450] hfsplus: trying to free free bnode 0(1) [ 102.485839][ T39] hfsplus: b-tree write err: -5, ino 25 [ 102.486841][ T39] hfsplus: b-tree write err: -5, ino 4 [ 102.487813][ T39] hfsplus: b-tree write err: -5, ino 2 [ 102.536087][T12466] __nla_validate_parse: 10 callbacks suppressed [ 102.536099][T12466] netlink: 131740 bytes leftover after parsing attributes in process `syz.3.3666'. [ 102.538714][T12466] netlink: zone id is out of range [ 102.539541][T12466] netlink: zone id is out of range [ 102.540363][T12466] netlink: zone id is out of range [ 102.565190][T12466] netlink: del zone limit has 8 unknown bytes [ 102.699452][ T246] hfsplus: b-tree write err: -5, ino 25 [ 102.700467][ T246] hfsplus: b-tree write err: -5, ino 4 [ 102.709977][ T246] hfsplus: b-tree write err: -5, ino 2 [ 102.804126][T12464] JBD2: Ignoring recovery information on journal [ 102.846407][T12464] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 102.850752][T12461] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 102.852860][T12461] XFS (loop4): Mounting V5 Filesystem [ 102.895282][T12461] XFS (loop4): Ending clean mount [ 102.897686][T12461] XFS (loop4): Quotacheck needed: Please wait. [ 102.904401][ T5429] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x10 [ 102.906413][ T5429] XFS (loop4): Unmount and run xfs_repair [ 102.907388][ T5429] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 102.918956][ T5429] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 102.920560][ T5429] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 102.922419][ T5429] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 102.922483][T12464] OCFS2: ERROR (device loop1): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 74 has invalid next free chain record 1, but only 0 total [ 102.923716][ T5429] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 102.927381][T12464] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 102.928634][ T5429] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 102.940196][T12464] OCFS2: File system is now read-only. [ 102.946544][ T5429] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 102.948357][ T5429] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 102.949918][ T5429] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 102.951034][T12464] (syz.1.3664,12464,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 102.952688][ T246] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x184/0x290" at daddr 0x10 len 8 error 74 [ 102.956709][T12461] XFS (loop4): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 102.962667][T12464] (syz.1.3664,12464,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 102.964059][T12464] (syz.1.3664,12464,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 102.971041][T12464] (syz.1.3664,12464,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 102.972417][T12464] (syz.1.3664,12464,1):ocfs2_mknod:385 ERROR: status = -30 [ 102.984350][T12512] netlink: 131740 bytes leftover after parsing attributes in process `syz.0.3681'. [ 102.985972][T12512] netlink: zone id is out of range [ 102.986761][T12512] netlink: zone id is out of range [ 102.994533][T12464] (syz.1.3664,12464,1):ocfs2_mknod:502 ERROR: status = -30 [ 102.995759][T12464] (syz.1.3664,12464,1):ocfs2_create:676 ERROR: status = -30 [ 103.001128][T12512] netlink: zone id is out of range [ 103.002129][T12512] netlink: del zone limit has 8 unknown bytes [ 103.041405][ T4325] XFS (loop4): Unmounting Filesystem [ 103.064457][ T4320] ocfs2: Unmounting device (7,1) on (node local) [ 103.245431][T12532] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 103.671993][T12537] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 103.673782][T12537] XFS (loop3): Mounting V5 Filesystem [ 103.718756][T12537] XFS (loop3): Ending clean mount [ 103.724896][T12537] XFS (loop3): Quotacheck needed: Please wait. [ 103.729463][ T5429] XFS (loop3): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x10 [ 103.731462][ T5429] XFS (loop3): Unmount and run xfs_repair [ 103.732343][ T5429] XFS (loop3): First 128 bytes of corrupted metadata buffer: [ 103.733476][ T5429] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 103.734830][ T5429] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 103.736261][ T5429] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 103.737629][ T5429] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 103.738977][ T5429] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 103.740391][ T5429] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 103.753995][ T5429] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 103.755568][ T5429] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 103.757030][ T9] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x184/0x290" at daddr 0x10 len 8 error 74 [ 103.760644][T12537] XFS (loop3): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 103.837607][T12584] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 103.868434][T12584] EXT4-fs error (device loop0): ext4_acquire_dquot:6835: comm syz.0.3713: Failed to acquire dquot type 0 [ 103.904062][ T4329] XFS (loop3): Unmounting Filesystem [ 103.956447][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 103.997820][T12597] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3721'. [ 103.999262][T12597] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3721'. [ 104.000665][T12597] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3721'. [ 104.026770][T12600] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 104.258609][T12622] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 104.292006][T12622] EXT4-fs error (device loop4): ext4_acquire_dquot:6835: comm syz.4.3733: Failed to acquire dquot type 0 [ 104.391177][ T4325] EXT4-fs (loop4): unmounting filesystem. [ 104.445804][T12636] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3737'. [ 104.447316][T12636] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3737'. [ 104.448734][T12636] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3737'. [ 104.595245][T12655] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3747'. [ 104.600265][T12659] cgroup: Need name or subsystem set [ 104.684847][T12653] set_capacity_and_notify: 15 callbacks suppressed [ 104.684857][T12653] loop4: detected capacity change from 0 to 4096 [ 104.689778][T12653] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 104.708522][T12664] netlink: 'syz.0.3762': attribute type 7 has an invalid length. [ 104.709894][T12664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3762'. [ 104.908205][T12690] netlink: 'syz.2.3765': attribute type 7 has an invalid length. [ 105.186505][T12725] AppArmor: change_hat: Invalid input ''' [ 105.280775][T12701] loop3: detected capacity change from 0 to 32768 [ 105.324958][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 105.336122][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 105.373039][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 105.377591][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 105.385975][T12701] JBD2: Ignoring recovery information on journal [ 105.434517][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 105.438400][T12701] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 105.440703][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 105.458056][T12761] AppArmor: change_hat: Invalid input ''' [ 105.466048][T12701] (syz.3.3769,12701,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 105.552913][ T4329] ocfs2: Unmounting device (7,3) on (node local) [ 105.615220][T12776] loop2: detected capacity change from 0 to 4096 [ 105.620220][T12781] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 105.623945][T12776] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 105.696721][ T4312] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 105.743914][T12798] AppArmor: change_hat: Invalid input ''' [ 105.875652][T12814] ipt_CLUSTERIP: bad num_local_nodes 2052 [ 105.990255][T12826] loop3: detected capacity change from 0 to 4096 [ 105.995365][T12826] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 106.033433][T12794] loop1: detected capacity change from 0 to 32768 [ 106.050283][T12794] (syz.1.3814,12794,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.054461][T12794] (syz.1.3814,12794,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.090113][T12794] (syz.1.3814,12794,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 106.096521][T12794] (syz.1.3814,12794,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 106.102878][T12794] JBD2: Ignoring recovery information on journal [ 106.134915][T12839] loop2: detected capacity change from 0 to 4096 [ 106.147887][T12794] (syz.1.3814,12794,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 106.150175][T12794] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 106.154182][T12794] (syz.1.3814,12794,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 106.165773][T12794] (syz.1.3814,12794,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 106.223718][T12839] ntfs: volume version 3.1. [ 106.255822][ T4320] ocfs2: Unmounting device (7,1) on (node local) [ 106.589172][T12887] loop0: detected capacity change from 0 to 4096 [ 106.622386][T12890] loop4: detected capacity change from 0 to 4096 [ 106.625044][T12887] ntfs: volume version 3.1. [ 106.638954][T12890] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512) [ 106.669629][T12890] ntfs3: loop4: mft corrupted [ 106.670433][T12890] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 106.672633][T12890] ntfs3: loop4: Failed to load $Bitmap. [ 106.742194][T12873] loop2: detected capacity change from 0 to 32768 [ 106.765200][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.767431][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.795460][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 106.804268][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 106.816887][T12873] JBD2: Ignoring recovery information on journal [ 106.894792][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 106.911010][T12873] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 106.925310][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 106.932708][T12873] (syz.2.3851,12873,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 106.938401][T12925] loop4: detected capacity change from 0 to 4096 [ 106.978401][T12925] ntfs: volume version 3.1. [ 106.984505][T12933] ieee802154 phy0 wpan0: encryption failed: -22 [ 107.030874][T12939] bond0: Unable to set up delay as MII monitoring is disabled [ 107.052384][ T4332] ocfs2: Unmounting device (7,2) on (node local) [ 107.272097][T12973] netlink: 'syz.4.3910': attribute type 17 has an invalid length. [ 107.342363][T12976] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512) [ 107.373544][T12976] ntfs3: loop1: mft corrupted [ 107.374353][T12976] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 107.375663][T12976] ntfs3: loop1: Failed to load $Bitmap. [ 107.517182][T13006] netlink: 'syz.2.3916': attribute type 17 has an invalid length. [ 107.659885][T13024] __nla_validate_parse: 13 callbacks suppressed [ 107.659899][T13024] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3926'. [ 107.678540][T13030] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3928'. [ 107.762283][T13043] netlink: 'syz.0.3934': attribute type 17 has an invalid length. [ 107.920627][T13067] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 107.995105][T13079] EXT4-fs (loop1): orphan cleanup on readonly fs [ 107.996118][T13079] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 108.001302][T13079] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 108.010516][T13079] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.3950: attempt to clear invalid blocks 2 len 1 [ 108.016460][T13079] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3950: invalid indirect mapped block 1819239214 (level 0) [ 108.022433][T13079] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3950: invalid indirect mapped block 1819239214 (level 1) [ 108.064545][T13079] EXT4-fs (loop1): 1 truncate cleaned up [ 108.065598][T13079] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 108.083572][T13079] EXT4-fs error (device loop1): __ext4_remount:6644: comm syz.1.3950: Abort forced by user [ 108.085542][T13079] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 108.102912][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 108.153750][T13101] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3963'. [ 108.255349][T13109] FAT-fs (loop4): Directory bread(block 64) failed [ 108.256641][T13109] FAT-fs (loop4): Directory bread(block 65) failed [ 108.257869][T13109] FAT-fs (loop4): Directory bread(block 66) failed [ 108.258934][T13109] FAT-fs (loop4): Directory bread(block 67) failed [ 108.259655][T13112] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 108.259976][T13109] FAT-fs (loop4): Directory bread(block 68) failed [ 108.266784][T13109] FAT-fs (loop4): Directory bread(block 69) failed [ 108.267958][T13109] FAT-fs (loop4): Directory bread(block 70) failed [ 108.269072][T13109] FAT-fs (loop4): Directory bread(block 71) failed [ 108.270174][T13109] FAT-fs (loop4): Directory bread(block 72) failed [ 108.274270][T13115] binder: 13115:13114 cannot find target node [ 108.280939][T13115] binder: 13114:13115 transaction call to 0:0 failed 1/29189/-22, size -393-0 line 3045 [ 108.282717][T13115] binder: 13114:13115 ioctl c0306201 20000140 returned -14 [ 108.284425][T13109] FAT-fs (loop4): Directory bread(block 73) failed [ 108.285696][ T5432] binder: undelivered TRANSACTION_ERROR: 29189 [ 108.295231][T13116] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 108.398242][T13126] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 108.427437][T13128] netlink: 'syz.0.3977': attribute type 10 has an invalid length. [ 108.445723][T13128] team0: Device hsr_slave_0 failed to register rx_handler [ 108.469727][T13136] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3979'. [ 108.567782][T13145] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 108.586590][T13148] EXT4-fs (loop3): orphan cleanup on readonly fs [ 108.591708][T13148] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 108.598127][T13148] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 108.612710][T13152] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 108.627544][T13148] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.3995: attempt to clear invalid blocks 2 len 1 [ 108.648447][T13148] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3995: invalid indirect mapped block 1819239214 (level 0) [ 108.657602][T13148] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3995: invalid indirect mapped block 1819239214 (level 1) [ 108.674192][T13148] EXT4-fs (loop3): 1 truncate cleaned up [ 108.677492][T13148] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 108.714797][T13148] EXT4-fs error (device loop3): __ext4_remount:6644: comm syz.3.3995: Abort forced by user [ 108.727335][T13148] EXT4-fs (loop3): re-mounted. Quota mode: writeback. [ 108.767094][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 109.064329][T13182] EXT2-fs (loop0): (no)acl options not supported [ 109.073461][T13182] EXT2-fs (loop0): warning: mounting ext3 filesystem as ext2 [ 109.105999][T13182] EXT2-fs (loop0): error: ext2_free_blocks: Freeing blocks not in datazone - block = 1803188595, count = 1 [ 109.107997][T13132] F2FS-fs (loop1): Invalid log sectorsize (67108873) [ 109.108997][T13132] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 109.114572][T13182] EXT2-fs (loop0): error: ext2_free_blocks: Freeing blocks not in datazone - block = 1701604449, count = 1 [ 109.120494][T13132] F2FS-fs (loop1): invalid crc value [ 109.121623][T13182] EXT2-fs (loop0): error: ext2_free_blocks: Freeing blocks not in datazone - block = 29554, count = 1 [ 109.128016][T13182] EXT2-fs (loop0): error: ext2_free_blocks: Freeing blocks not in datazone - block = 65536, count = 1 [ 109.146353][T13132] F2FS-fs (loop1): Found nat_bits in checkpoint [ 109.167509][T13132] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 109.168685][T13132] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 109.205406][T13132] F2FS-fs (loop1): inconsistent node block, nid:8, node_footer[nid:5,ino:5,ofs:0,cpver:1219692001,blkaddr:15361] [ 109.284420][T13179] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 109.287903][T13198] netlink: 'syz.0.4009': attribute type 2 has an invalid length. [ 109.307103][T13200] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4010'. [ 109.337091][ T4312] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 109.489610][T13224] netlink: 'syz.1.4019': attribute type 1 has an invalid length. [ 109.503297][T13224] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4019'. [ 109.548001][T13230] ieee802154 phy0 wpan0: encryption failed: -22 [ 109.613200][T13242] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4030'. [ 109.722317][T13259] netlink: 'syz.0.4038': attribute type 2 has an invalid length. [ 109.723705][T13259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4038'. [ 109.791501][T13270] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4044'. [ 109.858460][ T27] kauditd_printk_skb: 80 callbacks suppressed [ 109.858473][ T27] audit: type=1326 audit(109.830:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.1.4048" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b77128 code=0x0 [ 109.867453][T13277] device ip6tnl1 entered promiscuous mode [ 109.992060][T13293] comedi comedi0: comedi_config --init_data is deprecated [ 110.012752][T13296] cifs: Unknown parameter 'h}# [ 110.012752][T13296] [bIT&:"1:ӭ'4,Zz-#F<]%gC [ 110.012752][T13296] SȘȞZ6' [ 110.099374][T13308] ip6t_rpfilter: unknown options [ 110.169132][T13318] net veth1_virt_wifi : renamed from virt_wifi0 [ 110.237908][T13329] netlink: 'syz.2.4075': attribute type 7 has an invalid length. [ 110.290197][T13340] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4078'. [ 110.497232][T13366] set_capacity_and_notify: 17 callbacks suppressed [ 110.497244][T13366] loop1: detected capacity change from 0 to 1024 [ 110.503198][T13369] loop0: detected capacity change from 0 to 64 [ 110.509267][T13370] loop2: detected capacity change from 0 to 512 [ 110.523409][T13370] EXT2-fs (loop2): warning: mounting ext3 filesystem as ext2 [ 110.549218][T13333] loop3: detected capacity change from 0 to 32768 [ 110.560095][T13366] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 110.581573][ T4327] Bluetooth: hci4: command 0x0405 tx timeout [ 110.609397][T13333] XFS (loop3): Mounting V5 Filesystem [ 110.662304][T13333] XFS (loop3): Ending clean mount [ 110.664031][T13333] XFS (loop3): Quotacheck needed: Please wait. [ 110.676379][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 110.724883][T13333] XFS (loop3): Quotacheck: Done. [ 110.762974][ T4329] XFS (loop3): Unmounting Filesystem [ 110.880269][T13420] netlink: 'syz.0.4114': attribute type 9 has an invalid length. [ 110.889849][T13416] loop2: detected capacity change from 0 to 4096 [ 110.890879][T13419] netlink: 'syz.4.4113': attribute type 2 has an invalid length. [ 110.892885][T13416] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512) [ 111.040434][T13414] loop1: detected capacity change from 0 to 32768 [ 111.059922][T13414] (syz.1.4111,13414,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 111.065131][T13414] (syz.1.4111,13414,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 111.092754][T13414] JBD2: Ignoring recovery information on journal [ 111.136630][T13414] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 111.168830][T13442] loop4: detected capacity change from 0 to 1764 [ 111.210839][ T4320] ocfs2: Unmounting device (7,1) on (node local) [ 111.270238][ T4752] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 111.278863][T13457] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 111.334123][T13462] loop4: detected capacity change from 0 to 1024 [ 111.418362][T13462] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 111.439539][T13462] EXT4-fs error (device loop4): ext4_free_blocks:6219: comm syz.4.4132: Freeing blocks not in datazone - block = 0, count = 16 [ 111.499138][T13462] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.4132: bg 0: block 112: padding at end of block bitmap is not set [ 111.519114][T13462] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6179: Corrupt filesystem [ 111.529317][T13477] loop2: detected capacity change from 0 to 32768 [ 111.536878][T13477] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9 [ 111.599878][ T4325] EXT4-fs (loop4): unmounting filesystem. [ 111.807482][T13513] ipt_CLUSTERIP: bad local_nodes[0] 312 [ 111.825661][T13518] loop3: detected capacity change from 0 to 8 [ 111.906479][T13528] netlink: 'syz.4.4163': attribute type 1 has an invalid length. [ 112.279858][ T4381] hfsplus: b-tree write err: -5, ino 25 [ 112.280866][ T4381] hfsplus: b-tree write err: -5, ino 4 [ 112.283044][ T4381] hfsplus: b-tree write err: -5, ino 2 [ 112.381747][T13590] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 112.415450][T13599] ipt_CLUSTERIP: Please specify destination IP [ 112.631035][T13620] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 112.633315][T13620] hpfs: filesystem error: improperly stopped [ 112.634319][T13620] hpfs: You really don't want any checks? You are crazy... [ 112.636622][T13620] hpfs: hpfs_map_sector(): read error [ 112.637569][T13620] hpfs: code page support is disabled [ 112.661904][T13620] hpfs: hpfs_map_4sectors(): unaligned read [ 112.663404][T13620] hpfs: hpfs_map_4sectors(): unaligned read [ 112.664323][T13620] hpfs: filesystem error: unable to find root dir [ 112.715608][T13636] __nla_validate_parse: 4 callbacks suppressed [ 112.715621][T13636] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4216'. [ 112.786833][T13647] netlink: 'syz.3.4223': attribute type 1 has an invalid length. [ 112.794639][T13647] netlink: 220 bytes leftover after parsing attributes in process `syz.3.4223'. [ 113.007022][T13676] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 113.253511][T13713] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 113.255425][T13713] hpfs: filesystem error: improperly stopped [ 113.256427][T13713] hpfs: You really don't want any checks? You are crazy... [ 113.265226][T13713] hpfs: hpfs_map_sector(): read error [ 113.267165][T13713] hpfs: code page support is disabled [ 113.274872][T13713] hpfs: hpfs_map_4sectors(): unaligned read [ 113.277357][T13713] hpfs: hpfs_map_4sectors(): unaligned read [ 113.278513][T13713] hpfs: filesystem error: unable to find root dir [ 113.341938][T13725] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 113.346922][T13725] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 113.358236][T13725] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ee01c, mo2=0002] [ 113.359560][T13725] System zones: 1-12 [ 113.360507][T13725] EXT4-fs (loop1): orphan cleanup on readonly fs [ 113.368675][T13725] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.4261: invalid indirect mapped block 2 (level 2) [ 113.377681][T13725] EXT4-fs (loop1): 1 truncate cleaned up [ 113.379104][T13725] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 113.383379][T13725] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (17031!=33349) [ 113.456850][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 113.534420][T13723] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.4259 (13723) [ 113.549176][T13723] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 113.553389][T13723] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 113.556911][T13723] BTRFS info (device loop0): setting nodatacow, compression disabled [ 113.558178][T13723] BTRFS info (device loop0): enabling auto defrag [ 113.559205][T13723] BTRFS info (device loop0): max_inline at 0 [ 113.560050][T13723] BTRFS info (device loop0): using free space tree [ 113.606038][T13755] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4274'. [ 113.622772][T13758] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4273'. [ 113.740808][T13783] ipt_CLUSTERIP: bad local_nodes[0] 312 [ 113.854881][ T4380] BTRFS info (device loop0): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 113.856784][ T4380] BTRFS info (device loop0): space_info total=3276800, used=53248, pinned=0, reserved=8192, may_use=1433600, readonly=0 zone_unusable=0 [ 113.859099][ T4380] BTRFS info (device loop0): global_block_rsv: size 1441792 reserved 1433600 [ 113.860490][ T4380] BTRFS info (device loop0): trans_block_rsv: size 0 reserved 0 [ 113.861744][ T4380] BTRFS info (device loop0): chunk_block_rsv: size 0 reserved 0 [ 113.862879][ T4380] BTRFS info (device loop0): delayed_block_rsv: size 0 reserved 0 [ 113.864111][ T4380] BTRFS info (device loop0): delayed_refs_rsv: size 524288 reserved 0 [ 113.872959][T13795] IPv6: NLM_F_CREATE should be specified when creating new route [ 113.874214][T13795] netlink: 1 bytes leftover after parsing attributes in process `syz.1.4284'. [ 113.889971][ T4380] BTRFS info (device loop0): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 113.892383][ T4380] BTRFS info (device loop0): space_info total=3276800, used=53248, pinned=0, reserved=12288, may_use=1429504, readonly=0 zone_unusable=0 [ 113.894584][ T4380] BTRFS info (device loop0): global_block_rsv: size 1441792 reserved 1429504 [ 113.896105][ T4380] BTRFS info (device loop0): trans_block_rsv: size 0 reserved 0 [ 113.897255][ T4380] BTRFS info (device loop0): chunk_block_rsv: size 0 reserved 0 [ 113.898456][ T4380] BTRFS info (device loop0): delayed_block_rsv: size 0 reserved 0 [ 113.899781][ T4380] BTRFS info (device loop0): delayed_refs_rsv: size 786432 reserved 0 [ 113.923058][T13806] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4289'. [ 113.945452][ T47] Bluetooth: hci4: command 0x0407 tx timeout [ 113.986787][ T4324] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 114.354451][T13873] netlink: 128 bytes leftover after parsing attributes in process `syz.1.4310'. [ 114.355936][T13873] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4310'. [ 114.370020][T13873] netlink: 'syz.1.4310': attribute type 2 has an invalid length. [ 114.385032][T13873] netlink: 'syz.1.4310': attribute type 3 has an invalid length. [ 114.640218][T13922] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4330'. [ 114.802616][T13936] IPv6: NLM_F_CREATE should be specified when creating new route [ 114.803943][T13936] netlink: 1 bytes leftover after parsing attributes in process `syz.4.4337'. [ 114.875083][T13943] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 114.968457][T13965] x_tables: duplicate underflow at hook 3 [ 115.018788][T13906] XFS (loop1): Mounting V5 Filesystem [ 115.099915][T13906] XFS (loop1): Ending clean mount [ 115.101970][T13906] XFS (loop1): Quotacheck needed: Please wait. [ 115.126411][T13906] XFS (loop1): Quotacheck: Done. [ 115.190858][ T4320] XFS (loop1): Unmounting Filesystem [ 115.206114][T14002] netlink: 'syz.0.4367': attribute type 1 has an invalid length. [ 115.375394][T14033] netlink: 'syz.2.4366': attribute type 2 has an invalid length. [ 115.376658][T14033] netlink: 'syz.2.4366': attribute type 3 has an invalid length. [ 115.401038][T14022] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 115.414599][T14022] EXT4-fs error (device loop3): ext4_free_blocks:6219: comm syz.3.4362: Freeing blocks not in datazone - block = 0, count = 16 [ 115.423116][T14022] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.4362: bg 0: block 112: padding at end of block bitmap is not set [ 115.441236][T14022] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6179: Corrupt filesystem [ 115.475679][T14040] netlink: 'syz.2.4369': attribute type 8 has an invalid length. [ 115.501432][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 115.609055][T14063] netlink: 'syz.2.4377': attribute type 9 has an invalid length. [ 115.690618][T14060] set_capacity_and_notify: 13 callbacks suppressed [ 115.690630][T14060] loop0: detected capacity change from 0 to 4096 [ 115.717477][T14060] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 115.735239][T14029] loop4: detected capacity change from 0 to 32768 [ 116.008996][T14120] loop3: detected capacity change from 0 to 4096 [ 116.022697][T14120] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512) [ 116.218005][T14111] loop1: detected capacity change from 0 to 32768 [ 116.225939][T14111] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.4392 (14111) [ 116.241583][T14111] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 116.244162][T14125] loop4: detected capacity change from 0 to 32768 [ 116.245824][T14111] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm [ 116.249722][T14111] BTRFS info (device loop1): setting nodatacow, compression disabled [ 116.253025][T14125] XFS: ikeep mount option is deprecated. [ 116.264551][T14111] BTRFS info (device loop1): enabling auto defrag [ 116.268426][T14111] BTRFS info (device loop1): max_inline at 0 [ 116.270239][T14111] BTRFS info (device loop1): using free space tree [ 116.303003][T14125] XFS (loop4): Mounting V5 Filesystem [ 116.341774][T14125] XFS (loop4): Ending clean mount [ 116.343280][T14125] XFS (loop4): Quotacheck needed: Please wait. [ 116.381171][T14125] XFS (loop4): Quotacheck: Done. [ 116.426152][ T4325] XFS (loop4): Unmounting Filesystem [ 116.467063][ T4363] BTRFS info (device loop1): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 116.468707][ T4363] BTRFS info (device loop1): space_info total=3276800, used=53248, pinned=0, reserved=8192, may_use=1433600, readonly=0 zone_unusable=0 [ 116.470784][ T4363] BTRFS info (device loop1): global_block_rsv: size 1441792 reserved 1433600 [ 116.472173][ T4363] BTRFS info (device loop1): trans_block_rsv: size 0 reserved 0 [ 116.473413][ T4363] BTRFS info (device loop1): chunk_block_rsv: size 0 reserved 0 [ 116.474691][ T4363] BTRFS info (device loop1): delayed_block_rsv: size 0 reserved 0 [ 116.475974][ T4363] BTRFS info (device loop1): delayed_refs_rsv: size 524288 reserved 0 [ 116.488305][ T4363] BTRFS info (device loop1): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 116.490139][ T4363] BTRFS info (device loop1): space_info total=3276800, used=53248, pinned=0, reserved=12288, may_use=1429504, readonly=0 zone_unusable=0 [ 116.492545][ T4363] BTRFS info (device loop1): global_block_rsv: size 1441792 reserved 1429504 [ 116.493954][ T4363] BTRFS info (device loop1): trans_block_rsv: size 0 reserved 0 [ 116.495131][ T4363] BTRFS info (device loop1): chunk_block_rsv: size 0 reserved 0 [ 116.496371][ T4363] BTRFS info (device loop1): delayed_block_rsv: size 0 reserved 0 [ 116.497740][ T4363] BTRFS info (device loop1): delayed_refs_rsv: size 786432 reserved 0 [ 116.550517][ T4320] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 116.675828][T14200] netlink: 'syz.1.4406': attribute type 10 has an invalid length. [ 116.683411][T14183] loop3: detected capacity change from 0 to 32768 [ 116.700243][T14200] team0: Device hsr_slave_0 failed to register rx_handler [ 116.701831][T14183] (syz.3.4403,14183,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 116.707365][T14183] (syz.3.4403,14183,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 116.742957][T14183] JBD2: Ignoring recovery information on journal [ 116.762593][T14183] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 116.818633][T14212] netlink: 'syz.4.4411': attribute type 7 has an invalid length. [ 116.876686][ T4329] ocfs2: Unmounting device (7,3) on (node local) [ 116.945537][T14227] loop2: detected capacity change from 0 to 128 [ 116.956266][T14227] syz.2.4416: attempt to access beyond end of device [ 116.956266][T14227] loop2: rw=0, sector=25674, nr_sectors = 2 limit=128 [ 116.965845][T14227] Buffer I/O error on dev loop2, logical block 12837, async page read [ 116.990599][T14227] syz.2.4416: attempt to access beyond end of device [ 116.990599][T14227] loop2: rw=0, sector=25674, nr_sectors = 2 limit=128 [ 117.000674][T14227] Buffer I/O error on dev loop2, logical block 12837, async page read [ 117.018933][T14237] loop4: detected capacity change from 0 to 512 [ 117.037859][T14237] EXT2-fs (loop4): (no)acl options not supported [ 117.039290][T14237] EXT2-fs (loop4): warning: mounting ext3 filesystem as ext2 [ 117.053350][T14237] EXT2-fs (loop4): error: ext2_free_blocks: Freeing blocks not in datazone - block = 1803188595, count = 1 [ 117.077482][T14237] EXT2-fs (loop4): error: ext2_free_blocks: Freeing blocks not in datazone - block = 1701604449, count = 1 [ 117.080462][T14237] EXT2-fs (loop4): error: ext2_free_blocks: Freeing blocks not in datazone - block = 29554, count = 1 [ 117.091354][T14237] EXT2-fs (loop4): error: ext2_free_blocks: Freeing blocks not in datazone - block = 65536, count = 1 [ 117.170340][T14217] loop1: detected capacity change from 0 to 32768 [ 117.263869][T14276] ieee802154 phy0 wpan0: encryption failed: -22 [ 117.286798][T14281] cifs: Unknown parameter 'h}# [ 117.286798][T14281] [bIT&:"1:ӭ'4,Zz-#F<]%gC [ 117.286798][T14281] SȘȞZ6' [ 117.425373][T14312] comedi comedi0: comedi_config --init_data is deprecated [ 117.447932][T14315] net veth1_virt_wifi : renamed from virt_wifi0 [ 117.494289][T14321] ip6t_rpfilter: unknown options [ 117.512672][T14319] device geneve2 entered promiscuous mode [ 117.532505][T14327] loop1: detected capacity change from 0 to 1024 [ 117.574251][T14327] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 117.620067][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 117.725597][T14362] xt_cgroup: xt_cgroup: no path or classid specified [ 117.871217][T14382] __nla_validate_parse: 6 callbacks suppressed [ 117.871229][T14382] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4464'. [ 117.900209][T14340] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.4448 (14340) [ 117.920380][T14340] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 117.926267][T14340] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm [ 117.927687][T14340] BTRFS info (device loop4): setting nodatacow, compression disabled [ 117.929061][T14340] BTRFS info (device loop4): enabling auto defrag [ 117.930058][T14340] BTRFS info (device loop4): max_inline at 0 [ 117.941806][T14340] BTRFS info (device loop4): using free space tree [ 117.944985][T14395] device geneve3 entered promiscuous mode [ 118.103466][ T4380] BTRFS info (device loop4): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 118.105230][ T4380] BTRFS info (device loop4): space_info total=3276800, used=53248, pinned=0, reserved=8192, may_use=1433600, readonly=0 zone_unusable=0 [ 118.107513][ T4380] BTRFS info (device loop4): global_block_rsv: size 1441792 reserved 1433600 [ 118.108974][ T4380] BTRFS info (device loop4): trans_block_rsv: size 0 reserved 0 [ 118.110182][ T4380] BTRFS info (device loop4): chunk_block_rsv: size 0 reserved 0 [ 118.111702][ T4380] BTRFS info (device loop4): delayed_block_rsv: size 0 reserved 0 [ 118.113007][ T4380] BTRFS info (device loop4): delayed_refs_rsv: size 524288 reserved 0 [ 118.118493][ T4380] BTRFS info (device loop4): space_info DATA+METADATA (sub-group id 0) has 1781760 free, is not full [ 118.120179][ T4380] BTRFS info (device loop4): space_info total=3276800, used=53248, pinned=0, reserved=12288, may_use=1429504, readonly=0 zone_unusable=0 [ 118.122474][ T4380] BTRFS info (device loop4): global_block_rsv: size 1441792 reserved 1429504 [ 118.123732][ T4380] BTRFS info (device loop4): trans_block_rsv: size 0 reserved 0 [ 118.124974][ T4380] BTRFS info (device loop4): chunk_block_rsv: size 0 reserved 0 [ 118.126212][ T4380] BTRFS info (device loop4): delayed_block_rsv: size 0 reserved 0 [ 118.127526][ T4380] BTRFS info (device loop4): delayed_refs_rsv: size 786432 reserved 0 [ 118.175857][ T4325] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 118.301269][T14462] EXT2-fs (loop0): warning: mounting ext3 filesystem as ext2 [ 118.320112][T14462] EXT2-fs (loop0): error: ext2_check_page: size of directory #12 is not a multiple of chunk size [ 118.345694][T14472] hfsplus: request for non-existent node 65536 in B*Tree [ 118.347223][T14472] hfsplus: request for non-existent node 65536 in B*Tree [ 118.348464][T14472] hfsplus: failed to load root directory [ 118.401040][ T4752] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 118.439257][T14493] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4486'. [ 118.580462][T14509] Quota error (device loop4): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 118.589109][T14509] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 118.590696][T14509] EXT4-fs error (device loop4): ext4_acquire_dquot:6835: comm syz.4.4493: Failed to acquire dquot type 1 [ 118.619995][T14509] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.4493: corrupted inode contents [ 118.622356][T14509] EXT4-fs error (device loop4): ext4_dirty_inode:6137: inode #16: comm syz.4.4493: mark_inode_dirty error [ 118.624459][T14509] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.4493: corrupted inode contents [ 118.626533][T14509] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.4493: mark_inode_dirty error [ 118.628463][T14509] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.4493: corrupted inode contents [ 118.630662][T14509] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 118.632758][T14509] EXT4-fs error (device loop4): ext4_do_update_inode:5272: inode #16: comm syz.4.4493: corrupted inode contents [ 118.634777][T14509] EXT4-fs error (device loop4): ext4_truncate:4318: inode #16: comm syz.4.4493: mark_inode_dirty error [ 118.636857][T14509] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 118.638910][T14509] EXT4-fs (loop4): 1 truncate cleaned up [ 118.639761][T14509] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 118.653909][ T4325] EXT4-fs (loop4): unmounting filesystem. [ 118.772010][T14543] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 118.817797][T14543] ntfs3: loop1: no free space to extend mft [ 118.825527][T14561] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4514'. [ 118.831615][T14565] netlink: 140 bytes leftover after parsing attributes in process `syz.2.4516'. [ 118.867835][ T4320] ntfs3: loop1: ntfs_sync_fs r=1a failed, -22. [ 118.869775][ T4320] ntfs3: loop1: ntfs_evict_inode r=1a failed, -22. [ 118.871983][ T4320] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 119.072677][T14610] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 119.102171][T14610] EXT2-fs (loop3): error: ext2_check_page: size of directory #12 is not a multiple of chunk size [ 119.130729][T14616] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 119.165784][T14627] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4533'. [ 119.206676][T14616] ntfs3: loop2: no free space to extend mft [ 119.258970][ T4332] ntfs3: loop2: ntfs_sync_fs r=1a failed, -22. [ 119.267890][ T4332] ntfs3: loop2: ntfs_evict_inode r=1a failed, -22. [ 119.272738][ T4332] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 119.493965][T14690] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4550'. [ 119.541221][T14696] hfsplus: request for non-existent node 65536 in B*Tree [ 119.542423][T14696] hfsplus: request for non-existent node 65536 in B*Tree [ 119.543525][T14696] hfsplus: failed to load root directory [ 119.586957][T14700] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.735390][T14731] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 119.820569][T14743] bridge0: port 1(bridge_slave_0) entered disabled state [ 119.827175][T14743] bridge0: port 1(bridge_slave_0) entered blocking state [ 119.829347][T14743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 119.913159][T14747] Quota error (device loop2): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 119.914775][T14747] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 119.916548][T14747] EXT4-fs error (device loop2): ext4_acquire_dquot:6835: comm syz.2.4569: Failed to acquire dquot type 1 [ 119.926693][T14747] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4569: corrupted inode contents [ 119.936775][T14747] EXT4-fs error (device loop2): ext4_dirty_inode:6137: inode #16: comm syz.2.4569: mark_inode_dirty error [ 119.947550][T14747] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4569: corrupted inode contents [ 119.951160][T14747] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.4569: mark_inode_dirty error [ 119.956657][T14747] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4569: corrupted inode contents [ 119.967676][T14747] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 119.969946][T14747] EXT4-fs error (device loop2): ext4_do_update_inode:5272: inode #16: comm syz.2.4569: corrupted inode contents [ 119.978804][T14763] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 119.987505][T14747] EXT4-fs error (device loop2): ext4_truncate:4318: inode #16: comm syz.2.4569: mark_inode_dirty error [ 119.989480][T14747] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 119.992930][T14747] EXT4-fs (loop2): 1 truncate cleaned up [ 119.997360][T14747] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 120.009391][T14763] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 120.027840][T14763] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 120.066356][T14763] device netdevsim0 left promiscuous mode [ 120.067951][T14763] device bridge1 left promiscuous mode [ 120.087305][T14763] device veth3 left promiscuous mode [ 120.088551][T14763] device ip6erspan0 left promiscuous mode [ 120.110468][ T4332] EXT4-fs (loop2): unmounting filesystem. [ 120.192063][T14783] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 120.205125][T14783] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 120.206759][T14783] EXT4-fs (loop4): orphan cleanup on readonly fs [ 120.231457][T14783] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.4580: Inode bitmap for bg 0 marked uninitialized [ 120.247071][T14687] F2FS-fs (loop3): invalid crc value [ 120.265778][T14783] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 120.283838][T14783] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 120.305326][T14687] F2FS-fs (loop3): Found nat_bits in checkpoint [ 120.346363][ T4325] EXT4-fs (loop4): unmounting filesystem. [ 120.352749][T14687] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 120.400145][T14687] F2FS-fs (loop3): access invalid blkaddr:11220996 [ 120.406057][T14687] CPU: 0 PID: 14687 Comm: syz.3.4549 Not tainted syzkaller #0 [ 120.407320][T14687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 120.409040][T14687] Call trace: [ 120.409584][T14687] dump_backtrace+0x1c0/0x1ec [ 120.410432][T14687] show_stack+0x2c/0x3c [ 120.411236][T14687] __dump_stack+0x30/0x40 [ 120.411997][T14687] dump_stack_lvl+0xf4/0x15c [ 120.412765][T14687] dump_stack+0x1c/0x5c [ 120.413475][T14687] f2fs_is_valid_blkaddr+0x9e4/0xf44 [ 120.414327][T14687] sanity_check_extent_cache+0xfc/0x2e4 [ 120.415171][T14687] f2fs_iget+0x2d38/0x46b8 [ 120.415884][T14687] f2fs_lookup+0x3f0/0x8f4 [ 120.416577][T14687] path_openat+0xc98/0x26bc [ 120.417283][T14687] do_filp_open+0x194/0x384 [ 120.417988][T14687] do_open_execat+0x130/0x604 [ 120.418732][T14687] bprm_execve+0x464/0x1558 [ 120.419394][T14687] do_execveat_common+0x648/0x7dc [ 120.420173][T14687] __arm64_sys_execveat+0xd0/0xec [ 120.421034][T14687] invoke_syscall+0x98/0x2b4 [ 120.421819][T14687] el0_svc_common+0x138/0x258 [ 120.422596][T14687] do_el0_svc+0x58/0x130 [ 120.423289][T14687] el0_svc+0x58/0x128 [ 120.423927][T14687] el0t_64_sync_handler+0x84/0xf0 [ 120.424792][T14687] el0t_64_sync+0x18c/0x190 [ 120.468022][T14780] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.4579 (14780) [ 120.477257][T14687] F2FS-fs (loop3): sanity_check_extent_cache: inode (ino=8) extent info [14338, 0, 11206659] is incorrect, run fsck to fix [ 120.489229][T14780] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 120.491502][T14780] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 120.492984][T14780] BTRFS info (device loop2): enabling ssd optimizations [ 120.494140][T14780] BTRFS info (device loop2): not using ssd optimizations [ 120.495376][T14780] BTRFS info (device loop2): turning off barriers [ 120.496382][T14780] BTRFS info (device loop2): using free space tree [ 120.600271][T14837] FAT-fs (loop0): Directory bread(block 64) failed [ 120.602417][T14837] FAT-fs (loop0): Directory bread(block 65) failed [ 120.603966][T14837] FAT-fs (loop0): Directory bread(block 66) failed [ 120.604980][T14837] FAT-fs (loop0): Directory bread(block 67) failed [ 120.606108][T14837] FAT-fs (loop0): Directory bread(block 68) failed [ 120.607312][T14837] FAT-fs (loop0): Directory bread(block 69) failed [ 120.608587][T14837] FAT-fs (loop0): Directory bread(block 70) failed [ 120.609608][T14837] FAT-fs (loop0): Directory bread(block 71) failed [ 120.610860][T14837] FAT-fs (loop0): Directory bread(block 72) failed [ 120.612327][T14837] FAT-fs (loop0): Directory bread(block 73) failed [ 120.756843][T14780] BTRFS warning (device loop2): can't clear the compat:8,compat:9 feature bits while mounted [ 120.788448][ T4332] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 120.859528][T14885] netlink: 1 bytes leftover after parsing attributes in process `syz.4.4607'. [ 120.860993][T14885] netlink: 1 bytes leftover after parsing attributes in process `syz.4.4607'. [ 120.960562][T14897] netlink: 'syz.1.4609': attribute type 3 has an invalid length. [ 120.962230][ T4909] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 9 /dev/loop2 scanned by udevd (4909) [ 120.962922][T14897] netlink: 46 bytes leftover after parsing attributes in process `syz.1.4609'. [ 121.180081][T14938] netlink: 'syz.3.4626': attribute type 3 has an invalid length. [ 121.194129][T14938] netlink: 46 bytes leftover after parsing attributes in process `syz.3.4626'. [ 121.433872][T14986] set_capacity_and_notify: 14 callbacks suppressed [ 121.433884][T14986] loop1: detected capacity change from 0 to 1024 [ 121.440859][T14987] loop4: detected capacity change from 0 to 256 [ 121.464505][T14987] FAT-fs (loop4): Directory bread(block 64) failed [ 121.465639][T14987] FAT-fs (loop4): Directory bread(block 65) failed [ 121.466786][T14987] FAT-fs (loop4): Directory bread(block 66) failed [ 121.468701][T14987] FAT-fs (loop4): Directory bread(block 67) failed [ 121.469755][T14987] FAT-fs (loop4): Directory bread(block 68) failed [ 121.476438][T14986] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 121.478426][T14987] FAT-fs (loop4): Directory bread(block 69) failed [ 121.479473][T14987] FAT-fs (loop4): Directory bread(block 70) failed [ 121.480635][T14987] FAT-fs (loop4): Directory bread(block 71) failed [ 121.488572][T14987] FAT-fs (loop4): Directory bread(block 72) failed [ 121.489599][T14987] FAT-fs (loop4): Directory bread(block 73) failed [ 121.495281][T14986] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 121.496993][T14986] EXT4-fs (loop1): orphan cleanup on readonly fs [ 121.501916][T14986] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.4639: Inode bitmap for bg 0 marked uninitialized [ 121.514527][T14986] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 121.550274][T14986] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 121.564718][T14952] loop2: detected capacity change from 0 to 32768 [ 121.566768][T14952] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.4629 (14952) [ 121.573948][T14952] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 121.575815][T14952] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 121.577676][T14952] BTRFS info (device loop2): using free space tree [ 121.603875][T15012] netlink: 'syz.3.4646': attribute type 11 has an invalid length. [ 121.616403][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 121.865556][T15064] loop3: detected capacity change from 0 to 1024 [ 121.955025][T14952] BTRFS info (device loop2): enabling ssd optimizations [ 122.061234][ T4332] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 122.115407][T15096] loop4: detected capacity change from 0 to 1764 [ 122.168849][T15096] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 122.200572][T15109] netlink: 'syz.0.4675': attribute type 11 has an invalid length. [ 122.225422][T15112] loop3: detected capacity change from 0 to 764 [ 122.259022][T15112] Symlink component flag not implemented [ 122.259988][T15112] Symlink component flag not implemented [ 122.264470][T15112] Symlink component flag not implemented (128) [ 122.265441][T15112] Symlink component flag not implemented (105) [ 122.529826][T15172] ipt_CLUSTERIP: Please specify destination IP [ 122.552169][T15121] loop4: detected capacity change from 0 to 32768 [ 122.558336][T15121] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.4678 (15121) [ 122.573501][T15121] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 122.575256][T15121] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 122.576594][T15121] BTRFS info (device loop4): using free space tree [ 122.654837][T15199] loop1: detected capacity change from 0 to 1024 [ 122.764866][T15121] BTRFS info (device loop4): enabling ssd optimizations [ 122.874476][ T4325] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 123.000002][T15239] loop0: detected capacity change from 0 to 1024 [ 123.048501][ T9] hfsplus: b-tree write err: -5, ino 25 [ 123.049547][ T9] hfsplus: b-tree write err: -5, ino 4 [ 123.050426][ T9] hfsplus: b-tree write err: -5, ino 2 [ 123.192744][T15269] __nla_validate_parse: 3 callbacks suppressed [ 123.192756][T15269] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4716'. [ 123.247409][T15272] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 44929 - 0 [ 123.264800][T15272] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 44929 - 0 [ 123.266224][T15272] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 44929 - 0 [ 123.267660][T15272] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 44929 - 0 [ 123.269365][T15272] netdevsim netdevsim0 netdevsim0: set [1, 2] type 2 family 0 port 37091 - 0 [ 123.270737][T15272] netdevsim netdevsim0 netdevsim1: set [1, 2] type 2 family 0 port 37091 - 0 [ 123.281063][T15272] netdevsim netdevsim0 netdevsim2: set [1, 2] type 2 family 0 port 37091 - 0 [ 123.282538][T15272] netdevsim netdevsim0 netdevsim3: set [1, 2] type 2 family 0 port 37091 - 0 [ 123.283956][T15272] device geneve3 entered promiscuous mode [ 123.365227][T15164] loop2: detected capacity change from 0 to 131072 [ 123.404712][T15164] F2FS-fs (loop2): invalid crc value [ 123.440854][T15164] F2FS-fs (loop2): Found nat_bits in checkpoint [ 123.449459][T15305] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check. [ 123.476394][T15164] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 123.509452][T15164] F2FS-fs (loop2): access invalid blkaddr:11220996 [ 123.511095][T15164] CPU: 0 PID: 15164 Comm: syz.2.4691 Not tainted syzkaller #0 [ 123.512380][T15164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 123.514101][T15164] Call trace: [ 123.514650][T15164] dump_backtrace+0x1c0/0x1ec [ 123.515462][T15164] show_stack+0x2c/0x3c [ 123.516096][T15164] __dump_stack+0x30/0x40 [ 123.516837][T15164] dump_stack_lvl+0xf4/0x15c [ 123.517596][T15164] dump_stack+0x1c/0x5c [ 123.518322][T15164] f2fs_is_valid_blkaddr+0x9e4/0xf44 [ 123.519181][T15164] sanity_check_extent_cache+0xfc/0x2e4 [ 123.520098][T15164] f2fs_iget+0x2d38/0x46b8 [ 123.520778][T15164] f2fs_lookup+0x3f0/0x8f4 [ 123.521473][T15164] path_openat+0xc98/0x26bc [ 123.522166][T15164] do_filp_open+0x194/0x384 [ 123.522906][T15164] do_open_execat+0x130/0x604 [ 123.523705][T15164] bprm_execve+0x464/0x1558 [ 123.524455][T15164] do_execveat_common+0x648/0x7dc [ 123.525267][T15164] __arm64_sys_execveat+0xd0/0xec [ 123.526099][T15164] invoke_syscall+0x98/0x2b4 [ 123.526855][T15164] el0_svc_common+0x138/0x258 [ 123.527599][T15164] do_el0_svc+0x58/0x130 [ 123.528282][T15164] el0_svc+0x58/0x128 [ 123.528916][T15164] el0t_64_sync_handler+0x84/0xf0 [ 123.529715][T15164] el0t_64_sync+0x18c/0x190 [ 123.585591][T15323] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (2) [ 123.616058][T15164] F2FS-fs (loop2): sanity_check_extent_cache: inode (ino=8) extent info [14338, 0, 11206659] is incorrect, run fsck to fix [ 123.653334][T15331] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma? [ 123.803426][T15354] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 124.209402][T15246] F2FS-fs (loop4): Found nat_bits in checkpoint [ 124.230334][T15246] F2FS-fs (loop4): recover fsync data on readonly fs [ 124.235750][T15246] F2FS-fs (loop4): Mounted with checkpoint version = 1b41e955 [ 124.286117][T15246] F2FS-fs (loop4): Inconsistent error blkaddr:5633, sit bitmap:0 [ 124.287531][T15246] CPU: 1 PID: 15246 Comm: syz.4.4707 Not tainted syzkaller #0 [ 124.288752][T15246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 124.290355][T15246] Call trace: [ 124.290829][T15246] dump_backtrace+0x1c0/0x1ec [ 124.291551][T15246] show_stack+0x2c/0x3c [ 124.292167][T15246] __dump_stack+0x30/0x40 [ 124.292851][T15246] dump_stack_lvl+0xf4/0x15c [ 124.293582][T15246] dump_stack+0x1c/0x5c [ 124.294291][T15246] f2fs_is_valid_blkaddr+0x9e4/0xf44 [ 124.295202][T15246] f2fs_get_read_data_page+0x24c/0x60c [ 124.296173][T15246] f2fs_find_data_page+0x1c4/0x520 [ 124.297056][T15246] __f2fs_find_entry+0x530/0xc14 [ 124.297854][T15246] f2fs_lookup+0x218/0x8f4 [ 124.298619][T15246] path_openat+0xc98/0x26bc [ 124.299368][T15246] do_filp_open+0x194/0x384 [ 124.300105][T15246] do_sys_openat2+0x134/0x3f4 [ 124.300899][T15246] __arm64_sys_openat+0x118/0x14c [ 124.301723][T15246] invoke_syscall+0x98/0x2b4 [ 124.302461][T15246] el0_svc_common+0x138/0x258 [ 124.303206][T15246] do_el0_svc+0x58/0x130 [ 124.303942][T15246] el0_svc+0x58/0x128 [ 124.304628][T15246] el0t_64_sync_handler+0x84/0xf0 [ 124.305483][T15246] el0t_64_sync+0x18c/0x190 [ 124.310056][T15440] syz.2.4777 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 124.506015][T15477] netlink: 'syz.3.4791': attribute type 7 has an invalid length. [ 124.640633][T15500] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (10) [ 124.698670][T15523] snd_dummy snd_dummy.0: control 1:1:3:syz1:9 is already present [ 124.797265][T15531] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 124.865019][T15531] EXT4-fs error (device loop3): ext4_validate_block_bitmap:420: comm syz.3.4806: bg 0: bad block bitmap checksum [ 124.886450][T15531] Quota error (device loop3): write_blk: dquota write failed [ 124.888029][T15531] Quota error (device loop3): qtree_write_dquot: Error -74 occurred while creating quota [ 124.913817][T15531] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.4806: Failed to acquire dquot type 0 [ 124.924250][T15561] device sit0 entered promiscuous mode [ 124.929431][T15561] netlink: 'syz.2.4811': attribute type 1 has an invalid length. [ 124.938874][T15561] netlink: 9 bytes leftover after parsing attributes in process `syz.2.4811'. [ 125.007230][ T27] audit: type=1400 audit(124.980:96): apparmor="DENIED" operation="change_hat" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=15577 comm="syz.1.4819" [ 125.046958][T15586] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 125.061414][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 125.081676][T15593] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4825'. [ 125.201915][T15616] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4833'. [ 125.231999][T15619] cifs: Unknown parameter 'h}# [ 125.231999][T15619] [bIT&:"A1:ӭ'4,9z -#I]%g' [ 125.514791][T15661] ntfs: (device loop1): ntfs_is_extended_system_file(): Inode hard link count doesn't match number of name attributes. You should run chkdsk. [ 125.517243][T15661] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing. [ 125.518708][T15661] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 125.543381][T15661] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 125.545864][T15661] ntfs: volume version 3.1. [ 125.555718][T15661] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Invalid LCN < -1 in mapping pairs array. [ 125.557443][T15661] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x5, attribute type 0xa0, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 125.560441][T15661] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Invalid LCN < -1 in mapping pairs array. [ 125.846958][T15727] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4875'. [ 125.870080][T15731] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 125.892741][T15668] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.4854 (15668) [ 125.898682][T15736] netlink: 'syz.3.4878': attribute type 2 has an invalid length. [ 125.910996][T15668] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 125.913067][T15668] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 125.914462][T15668] BTRFS info (device loop4): force zlib compression, level 3 [ 125.915593][T15668] BTRFS info (device loop4): force clearing of disk cache [ 125.916625][T15668] BTRFS info (device loop4): setting nodatasum [ 125.917562][T15668] BTRFS info (device loop4): use zlib compression, level 3 [ 125.925319][T15741] netlink: 'syz.2.4879': attribute type 1 has an invalid length. [ 125.930692][T15668] BTRFS info (device loop4): disabling free space tree [ 125.935439][T15668] BTRFS warning (device loop4): excessive commit interval 32769 [ 125.936681][T15668] BTRFS info (device loop4): disabling tree log [ 125.946206][ T2061] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.947227][ T2061] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.144746][T15668] BTRFS info (device loop4): enabling ssd optimizations [ 126.146519][T15668] BTRFS info (device loop4): rebuilding free space tree [ 126.150574][T15668] BTRFS info (device loop4): disabling free space tree [ 126.152939][T15668] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 126.156765][T15668] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 126.243471][T15791] binfmt_misc: register: failed to install interpreter file ./file0 [ 126.274937][ T4325] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 126.458165][T15824] set_capacity_and_notify: 4 callbacks suppressed [ 126.458176][T15824] loop2: detected capacity change from 0 to 2048 [ 126.500422][T15824] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 126.572002][T15824] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.4899: bg 0: block 234: padding at end of block bitmap is not set [ 126.667342][ T4332] EXT4-fs (loop2): unmounting filesystem. [ 126.770396][ T4327] Bluetooth: hci0: unexpected event for opcode 0x0c14 [ 126.796080][T15891] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4921'. [ 126.844490][T15899] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4924'. [ 127.011896][T15937] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 127.124402][T15960] netlink: 'syz.0.4945': attribute type 1 has an invalid length. [ 127.647339][T15991] netlink: 'syz.1.4955': attribute type 21 has an invalid length. [ 127.648742][T15991] netlink: 'syz.1.4955': attribute type 1 has an invalid length. [ 127.649945][T15991] netlink: 144 bytes leftover after parsing attributes in process `syz.1.4955'. [ 127.793806][T16055] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4971'. [ 127.795210][T16055] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4971'. [ 127.939139][T16078] loop1: detected capacity change from 0 to 256 [ 128.135220][T16107] loop1: detected capacity change from 0 to 256 [ 128.157938][T16107] FAT-fs (loop1): Directory bread(block 64) failed [ 128.160879][T16107] FAT-fs (loop1): Directory bread(block 65) failed [ 128.163976][T16107] FAT-fs (loop1): Directory bread(block 66) failed [ 128.169467][T16107] FAT-fs (loop1): Directory bread(block 67) failed [ 128.174107][T16107] FAT-fs (loop1): Directory bread(block 68) failed [ 128.177478][T16107] FAT-fs (loop1): Directory bread(block 69) failed [ 128.183710][T16107] FAT-fs (loop1): Directory bread(block 70) failed [ 128.190693][T16107] FAT-fs (loop1): Directory bread(block 71) failed [ 128.197560][T16107] FAT-fs (loop1): Directory bread(block 72) failed [ 128.202291][T16107] FAT-fs (loop1): Directory bread(block 73) failed [ 128.384213][T16052] syz.3.4968 (16052): drop_caches: 3 [ 128.759876][T16212] loop0: detected capacity change from 0 to 512 [ 128.777535][T16212] EXT4-fs: Ignoring removed orlov option [ 128.778619][T16212] EXT4-fs: Ignoring removed mblk_io_submit option [ 128.797747][T16212] EXT4-fs error (device loop0): ext4_iget_extra_inode:4756: inode #15: comm syz.0.5021: corrupted in-inode xattr [ 128.799899][T16212] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.5021: couldn't read orphan inode 15 (err -117) [ 128.810084][T16212] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 128.907601][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 128.996895][T16255] loop3: detected capacity change from 0 to 256 [ 129.017845][T16255] FAT-fs (loop3): Directory bread(block 64) failed [ 129.023572][T16260] futex_wake_op: syz.1.5038 tries to shift op by -1; fix this program [ 129.024092][T16255] FAT-fs (loop3): Directory bread(block 65) failed [ 129.026103][T16255] FAT-fs (loop3): Directory bread(block 66) failed [ 129.027292][T16255] FAT-fs (loop3): Directory bread(block 67) failed [ 129.028405][T16255] FAT-fs (loop3): Directory bread(block 68) failed [ 129.038556][T16255] FAT-fs (loop3): Directory bread(block 69) failed [ 129.039726][T16255] FAT-fs (loop3): Directory bread(block 70) failed [ 129.053339][T16255] FAT-fs (loop3): Directory bread(block 71) failed [ 129.054615][T16255] FAT-fs (loop3): Directory bread(block 72) failed [ 129.063493][T16255] FAT-fs (loop3): Directory bread(block 73) failed [ 129.146281][T16273] loop2: detected capacity change from 0 to 4096 [ 129.148987][T16273] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512) [ 129.292633][T16313] loop4: detected capacity change from 0 to 256 [ 129.326970][T16313] FAT-fs (loop4): Directory bread(block 64) failed [ 129.328100][T16313] FAT-fs (loop4): Directory bread(block 65) failed [ 129.335255][T16313] FAT-fs (loop4): Directory bread(block 66) failed [ 129.336475][T16313] FAT-fs (loop4): Directory bread(block 67) failed [ 129.337843][T16313] FAT-fs (loop4): Directory bread(block 68) failed [ 129.338742][T16313] FAT-fs (loop4): Directory bread(block 69) failed [ 129.351545][T16322] __nla_validate_parse: 2 callbacks suppressed [ 129.351557][T16322] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5058'. [ 129.354406][T16322] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5058'. [ 129.366012][T16313] FAT-fs (loop4): Directory bread(block 70) failed [ 129.367520][T16313] FAT-fs (loop4): Directory bread(block 71) failed [ 129.368830][T16313] FAT-fs (loop4): Directory bread(block 72) failed [ 129.384768][T16313] FAT-fs (loop4): Directory bread(block 73) failed [ 129.398014][T16330] loop3: detected capacity change from 0 to 1024 [ 129.407770][T16335] loop1: detected capacity change from 0 to 16 [ 129.415605][T16335] erofs: (device loop1): mounted with root inode @ nid 36. [ 129.427885][T16330] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 2: comm syz.3.5061: lblock 2 mapped to illegal pblock 2 (length 1) [ 129.431246][T16330] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 48: comm syz.3.5061: lblock 0 mapped to illegal pblock 48 (length 1) [ 129.437972][T16330] EXT4-fs error (device loop3): ext4_acquire_dquot:6835: comm syz.3.5061: Failed to acquire dquot type 0 [ 129.441617][T16330] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 129.444325][T16330] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #11: comm syz.3.5061: mark_inode_dirty error [ 129.448084][T16330] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 129.449653][T16330] EXT4-fs (loop3): 1 orphan inode deleted [ 129.450291][T16339] Scaler: ================= START STATUS ================= [ 129.450628][T16330] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 129.465489][ T9] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 129.468204][ T9] EXT4-fs error (device loop3): ext4_release_dquot:6871: comm kworker/u4:0: Failed to release dquot type 0 [ 129.484851][T16339] Scaler: ================== END STATUS ================== [ 129.485753][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 129.491806][ T246] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 129.495099][ T246] EXT4-fs error (device loop3): ext4_release_dquot:6871: comm kworker/u4:3: Failed to release dquot type 0 [ 129.497303][ T4329] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 129.503845][ T4329] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem [ 129.514311][ T4329] EXT4-fs error (device loop3): ext4_quota_off:7141: inode #3: comm syz-executor: mark_inode_dirty error [ 129.587764][T16360] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5066'. [ 129.648215][T16319] loop2: detected capacity change from 0 to 32768 [ 129.767665][T16382] ntfs: volume version 3.1. [ 129.947468][T16406] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 129.949679][T16406] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 129.959591][T16406] REISERFS (device loop4): using ordered data mode [ 129.961370][T16406] reiserfs: using flush barriers [ 129.970618][T16406] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 129.994873][T16406] REISERFS (device loop4): checking transaction log (loop4) [ 130.037350][T16406] REISERFS warning: reiserfs-5086 is_leaf: item location seems wrong (second one): *3.6* [1 2 0x0 SD], item_len 44, item_location 1200, free_space(entry_count) 0 [ 130.041892][T16406] REISERFS error (device loop4): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 130.051518][T16406] REISERFS (device loop4): Remounting filesystem read-only [ 130.052700][T16406] REISERFS error (device loop4): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD] [ 130.103163][T16453] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (10) [ 130.237073][T16459] __ntfs_error: 31 callbacks suppressed [ 130.237084][T16459] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 130.245149][T16459] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 130.258452][T16459] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 130.260230][T16459] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 130.263973][T16479] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5104'. [ 130.276556][T16459] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 130.283419][T16459] ntfs: volume version 3.1. [ 130.286746][T16459] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 130.288679][T16459] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 130.310090][T16459] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 130.320458][T16459] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 130.323722][T16459] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 130.351845][T16489] device sit0 entered promiscuous mode [ 130.354865][T16489] netlink: 'syz.3.5108': attribute type 1 has an invalid length. [ 130.356061][T16489] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5108'. [ 130.463638][T16508] snd_dummy snd_dummy.0: control 1:1:3:syz1:9 is already present [ 130.463755][T16499] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 130.466199][T16499] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 130.487956][T16499] vhci_hcd vhci_hcd.0: Device attached [ 130.495942][T16502] vhci_hcd: connection closed [ 130.498008][ T9] vhci_hcd: stop threads [ 130.500113][ T9] vhci_hcd: release socket [ 130.501369][ T9] vhci_hcd: disconnect device [ 130.611566][T16522] 8021q: adding VLAN 0 to HW filter on device bond0 [ 130.714436][T16565] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5133'. [ 130.759928][T16492] gfs2: quota_quantum mount option requires a positive numeric argument [ 130.999722][T16597] binder: 16596:16597 ioctl c0046209 0 returned -22 [ 131.208282][T16622] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 131.411939][T16643] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 131.413352][T16643] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 131.414655][T16643] System zones: 0-1, 15-15, 18-18, 34-34 [ 131.415870][T16643] EXT4-fs (loop1): orphan cleanup on readonly fs [ 131.416875][T16643] EXT4-fs warning (device loop1): ext4_enable_quotas:7087: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 131.419169][T16643] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 131.465269][T16643] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.5143: bad orphan inode 16 [ 131.473185][T16643] ext4_test_bit(bit=15, block=18) = 1 [ 131.474106][T16643] is_bad_inode(inode)=0 [ 131.499405][T16643] NEXT_ORPHAN(inode)=0 [ 131.500151][T16643] max_ino=32 [ 131.500849][T16643] i_nlink=2 [ 131.501583][T16643] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 131.556330][T16643] fscrypt (loop1, inode 16): Error -61 getting encryption context [ 131.621896][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 131.693830][T16679] set_capacity_and_notify: 7 callbacks suppressed [ 131.693840][T16679] loop1: detected capacity change from 0 to 1024 [ 131.751848][T16691] netlink: 'syz.4.5159': attribute type 1 has an invalid length. [ 131.767420][T16694] device ip6gretap1 entered promiscuous mode [ 131.810239][ T39] hfsplus: b-tree write err: -5, ino 25 [ 131.812778][ T39] hfsplus: b-tree write err: -5, ino 4 [ 131.813754][ T39] hfsplus: b-tree write err: -5, ino 2 [ 131.869766][T16717] netlink: 'syz.3.5168': attribute type 3 has an invalid length. [ 131.953830][T16730] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5172'. [ 131.955386][T16730] netlink: 'syz.3.5172': attribute type 1 has an invalid length. [ 131.956569][T16730] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5172'. [ 132.090554][T16749] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5183'. [ 132.102556][T16699] loop4: detected capacity change from 0 to 32768 [ 132.107370][T16752] IPv6: ADDRCONF(NETDEV_CHANGE): bridge2: link becomes ready [ 132.142058][T16699] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 132.144478][T16699] JBD2: Ignoring recovery information on journal [ 132.229477][T16699] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 132.346136][ T4325] ocfs2: Unmounting device (7,4) on (node local) [ 132.440720][T16805] loop3: detected capacity change from 0 to 256 [ 132.458459][T16805] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d) [ 132.519232][T16805] exFAT-fs (loop3): error, invalid size(size(0) > aligned(9223372036854777344) [ 132.519232][T16805] [ 132.529279][T16805] exFAT-fs (loop3): Filesystem has been set read-only [ 132.580030][T16838] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5209'. [ 132.585518][T16839] loop2: detected capacity change from 0 to 1024 [ 132.610397][T16839] EXT4-fs: inline encryption not supported [ 132.617599][T16839] EXT4-fs: Ignoring removed i_version option [ 132.619021][T16839] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 132.658434][T16839] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 132.681208][T16839] Injecting memory failure for pfn 0x13bfe2 at process virtual address 0x20001000 [ 132.703743][T16839] Memory failure: 0x13bfe2: recovery action for dirty LRU page: Recovered [ 132.710376][T16839] Injecting memory failure for pfn 0x210ff2 at process virtual address 0x20002000 [ 132.735078][T16839] Memory failure: 0x210ff2: recovery action for reserved kernel page: Ignored [ 132.778601][ T4332] EXT4-fs (loop2): unmounting filesystem. [ 132.864438][T16886] capability: warning: `syz.4.5224' uses 32-bit capabilities (legacy support in use) [ 132.993276][T16915] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16) [ 132.994607][T16915] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 133.074418][T16936] 0X: renamed from caif0 [ 133.114347][T16936] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 133.159354][T16954] loop4: detected capacity change from 0 to 256 [ 133.170838][T16954] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d) [ 133.202225][T16954] exFAT-fs (loop4): error, invalid size(size(0) > aligned(9223372036854777344) [ 133.202225][T16954] [ 133.204053][T16954] exFAT-fs (loop4): Filesystem has been set read-only [ 133.288188][T16983] netlink: 'syz.3.5254': attribute type 32 has an invalid length. [ 133.493808][T17017] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.5267' sets config #32768 [ 133.536541][T17019] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 133.606947][T16959] loop1: detected capacity change from 0 to 40427 [ 133.616352][T16959] F2FS-fs (loop1): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 133.617897][T16959] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 133.634793][T16959] F2FS-fs (loop1): invalid crc value [ 133.635749][T16959] F2FS-fs (loop1): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root [ 133.643687][T17042] loop4: detected capacity change from 0 to 64 [ 133.650763][T16959] F2FS-fs (loop1): Found nat_bits in checkpoint [ 133.679841][T16959] F2FS-fs (loop1): recover fsync data on readonly fs [ 133.685358][T16959] F2FS-fs (loop1): Try to recover 2th superblock, ret: -30 [ 133.686592][T16959] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 133.802969][T17072] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.804384][T17072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 133.805627][T17072] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.806765][T17072] bridge0: port 1(bridge_slave_0) entered forwarding state [ 133.828019][T17072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 133.908397][T17086] loop3: detected capacity change from 0 to 2048 [ 133.930459][T17086] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 133.948241][T17086] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 133.970387][T17086] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry where CRC length (0) does not match entry length (32) [ 134.020350][T17111] netlink: 'syz.1.5297': attribute type 30 has an invalid length. [ 134.215602][T17141] loop4: detected capacity change from 0 to 1024 [ 134.356601][T17169] loop1: detected capacity change from 0 to 512 [ 134.408193][T17169] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 134.447400][T17169] EXT4-fs error (device loop1): ext4_empty_dir:3139: inode #12: comm syz.1.5316: Directory hole found for htree leaf block 0 [ 134.451249][T17169] EXT4-fs (loop1): Remounting filesystem read-only [ 134.506500][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 134.560735][T17204] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 134.565973][T17204] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 134.577477][ T4327] Bluetooth: hci4: Unknown advertising packet type: 0x3030 [ 134.577499][ T4327] Bluetooth: hci4: adv larger than maximum supported [ 134.578604][ T4327] Bluetooth: hci4: Unknown advertising packet type: 0x3030 [ 134.579586][ T4327] Bluetooth: hci4: Malformed LE Event: 0x0d [ 134.980463][T17283] __nla_validate_parse: 8 callbacks suppressed [ 134.980478][T17283] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5353'. [ 135.035367][T17294] libceph: resolve '4.' (ret=-3): failed [ 135.314958][T17352] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5377'. [ 135.316456][T17352] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5377'. [ 135.317873][T17352] netlink: 'syz.1.5377': attribute type 6 has an invalid length. [ 135.323485][T17356] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5378'. [ 135.341242][T17356] openvswitch: netlink: Flow actions attr not present in new flow. [ 135.517058][T17382] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 135.520320][T17382] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 135.528527][T17382] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 135.549497][T17398] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5393'. [ 135.566755][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 135.777511][T17446] exfat: Deprecated parameter 'utf8' [ 135.781647][T17446] exfat: Deprecated parameter 'utf8' [ 135.783778][T17446] exfat: Deprecated parameter 'utf8' [ 135.792793][T17446] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x66b62981, utbl_chksum : 0xe619d30d) [ 135.840499][T17446] exFAT-fs (loop0): error, exfat_zeroed_cluster: out of range(sect:224 len:8) [ 135.846835][T17446] exFAT-fs (loop0): Filesystem has been set read-only [ 136.064293][T17486] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 136.098073][T17492] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5422'. [ 136.157174][T17500] device xfrm1 entered promiscuous mode [ 136.301088][T17522] netlink: 'syz.3.5434': attribute type 5 has an invalid length. [ 136.302347][T17522] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5434'. [ 136.595093][T17567] netlink: 'syz.1.5445': attribute type 10 has an invalid length. [ 136.600227][T17567] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5445'. [ 136.605891][T17567] device team0 entered promiscuous mode [ 136.606962][T17567] device team_slave_0 entered promiscuous mode [ 136.608040][T17567] device team_slave_1 entered promiscuous mode [ 136.609011][T17567] device macvlan1 entered promiscuous mode [ 136.613432][T17567] bridge0: port 3(team0) entered blocking state [ 136.614604][T17567] bridge0: port 3(team0) entered disabled state [ 136.616510][T17567] bridge0: port 3(team0) entered blocking state [ 136.617550][T17567] bridge0: port 3(team0) entered forwarding state [ 136.656779][T17530] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.5437 (17530) [ 136.665885][T17530] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 136.667591][T17530] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 136.669091][T17530] BTRFS info (device loop4): turning on sync discard [ 136.670163][T17530] BTRFS info (device loop4): turning on async discard [ 136.691689][T17530] BTRFS info (device loop4): setting nodatacow, compression disabled [ 136.693174][T17530] BTRFS info (device loop4): using free space tree [ 136.799127][T17597] set_capacity_and_notify: 8 callbacks suppressed [ 136.799139][T17597] loop0: detected capacity change from 0 to 256 [ 136.819251][T17562] loop2: detected capacity change from 0 to 32768 [ 136.850412][T17562] XFS (loop2): Mounting V5 Filesystem [ 136.896799][T17562] XFS (loop2): Ending clean mount [ 136.899011][T17562] XFS (loop2): Quotacheck needed: Please wait. [ 136.928707][T17562] XFS (loop2): Quotacheck: Done. [ 136.949163][T17530] BTRFS info (device loop4): enabling ssd optimizations [ 137.034198][ T4332] XFS (loop2): Unmounting Filesystem [ 137.055233][ T4325] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 137.171451][T17660] loop1: detected capacity change from 0 to 2048 [ 137.179038][T17660] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 137.287992][T17640] loop3: detected capacity change from 0 to 32768 [ 137.358002][T17640] XFS (loop3): Mounting V5 Filesystem [ 137.423881][T17725] random: crng reseeded on system resumption [ 137.487653][T17640] XFS (loop3): Ending clean mount [ 137.502151][T17640] XFS (loop3): Quotacheck needed: Please wait. [ 137.533858][T17640] XFS (loop3): Quotacheck: Done. [ 137.579861][T17745] netlink: 9004 bytes leftover after parsing attributes in process `syz.2.5468'. [ 137.654892][ T4329] XFS (loop3): Unmounting Filesystem [ 137.883951][T17802] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5501'. [ 137.990435][T17819] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 137.991667][T17819] IPv6: NLM_F_CREATE should be set when creating new route [ 137.992673][T17819] IPv6: NLM_F_CREATE should be set when creating new route [ 138.291687][T17885] random: crng reseeded on system resumption [ 138.310319][T17891] loop3: detected capacity change from 0 to 1024 [ 138.320782][T17893] xt_cluster: node mask cannot exceed total number of nodes [ 138.335343][T17891] EXT4-fs: Ignoring removed bh option [ 138.340594][T17885] Restarting kernel threads ... done. [ 138.405661][T17891] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 138.416054][T17903] device vlan0 entered promiscuous mode [ 138.439151][T17918] loop4: detected capacity change from 0 to 1024 [ 138.460377][T17891] EXT4-fs error (device loop3): ext4_lookup:1850: inode #2: comm syz.3.5529: bad inode number: 15 [ 138.486652][T17891] EXT4-fs (loop3): Remounting filesystem read-only [ 138.493316][T17922] netlink: 'syz.1.5542': attribute type 10 has an invalid length. [ 138.494909][T17922] device virt_wifi0 entered promiscuous mode [ 138.496759][T17922] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 138.552792][ T4329] EXT4-fs (loop3): unmounting filesystem. [ 138.554043][ T11] hfsplus: b-tree write err: -5, ino 25 [ 138.555072][ T11] hfsplus: b-tree write err: -5, ino 4 [ 138.556033][ T11] hfsplus: b-tree write err: -5, ino 2 [ 138.743098][T17965] loop1: detected capacity change from 0 to 512 [ 138.766136][T17965] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 138.826308][T17965] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 138.856960][T17992] loop4: detected capacity change from 0 to 512 [ 138.908991][T17965] [ 138.909438][T17965] ====================================================== [ 138.910682][T17965] WARNING: possible circular locking dependency detected [ 138.911821][T17965] syzkaller #0 Not tainted [ 138.912520][T17965] ------------------------------------------------------ [ 138.913583][T17965] syz.1.5556/17965 is trying to acquire lock: [ 138.914466][T17965] ffff0000e0590b28 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_commit+0x50/0x1c4 [ 138.915915][T17965] [ 138.915915][T17965] but task is already holding lock: [ 138.916992][T17965] ffff0000e2122aa8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_truncate+0x7cc/0x1084 [ 138.918479][T17965] [ 138.918479][T17965] which lock already depends on the new lock. [ 138.918479][T17965] [ 138.920118][T17965] [ 138.920118][T17965] the existing dependency chain (in reverse order) is: [ 138.921584][T17965] [ 138.921584][T17965] -> #2 (&ei->i_data_sem/2){++++}-{3:3}: [ 138.922957][T17965] down_write+0x5c/0x88 [ 138.923751][T17965] ext4_map_blocks+0x7c4/0x1778 [ 138.924668][T17965] ext4_getblk+0x178/0x664 [ 138.925510][T17965] ext4_bread+0x3c/0x1a8 [ 138.926334][T17965] ext4_quota_write+0x204/0x534 [ 138.927207][T17965] find_free_dqentry+0x548/0xa68 [ 138.928007][T17965] do_insert_tree+0x574/0xc34 [ 138.928763][T17965] do_insert_tree+0x790/0xc34 [ 138.929599][T17965] do_insert_tree+0x790/0xc34 [ 138.930417][T17965] do_insert_tree+0x790/0xc34 [ 138.931302][T17965] qtree_write_dquot+0x3d4/0x4f0 [ 138.932170][T17965] v2_write_dquot+0xf0/0x180 [ 138.932955][T17965] dquot_acquire+0x2a8/0x4d8 [ 138.933725][T17965] ext4_acquire_dquot+0x270/0x428 [ 138.934549][T17965] dqget+0x654/0xcc4 [ 138.935201][T17965] __dquot_initialize+0x2fc/0xacc [ 138.936090][T17965] dquot_initialize+0x24/0x34 [ 138.936931][T17965] ext4_process_orphan+0x5c/0x2b4 [ 138.937751][T17965] ext4_orphan_cleanup+0x920/0x1060 [ 138.938683][T17965] ext4_fill_super+0x6188/0x660c [ 138.939578][T17965] get_tree_bdev+0x358/0x544 [ 138.940421][T17965] ext4_get_tree+0x28/0x38 [ 138.941238][T17965] vfs_get_tree+0x90/0x274 [ 138.942004][T17965] do_new_mount+0x228/0x810 [ 138.942822][T17965] path_mount+0x5bc/0xe80 [ 138.943588][T17965] __arm64_sys_mount+0x49c/0x59c [ 138.944412][T17965] invoke_syscall+0x98/0x2b4 [ 138.945259][T17965] el0_svc_common+0x138/0x258 [ 138.946114][T17965] do_el0_svc+0x58/0x130 [ 138.946913][T17965] el0_svc+0x58/0x128 [ 138.947648][T17965] el0t_64_sync_handler+0x84/0xf0 [ 138.948524][T17965] el0t_64_sync+0x18c/0x190 [ 138.949359][T17965] [ 138.949359][T17965] -> #1 (&s->s_dquot.dqio_sem){++++}-{3:3}: [ 138.950739][T17965] down_read+0x64/0x300 [ 138.951494][T17965] v2_read_dquot+0x4c/0x118 [ 138.952270][T17965] dquot_acquire+0x120/0x4d8 [ 138.953002][T17965] ext4_acquire_dquot+0x270/0x428 [ 138.953881][T17965] dqget+0x654/0xcc4 [ 138.954572][T17965] __dquot_initialize+0x2fc/0xacc [ 138.955525][T17965] dquot_initialize+0x24/0x34 [ 138.956349][T17965] ext4_process_orphan+0x5c/0x2b4 [ 138.957225][T17965] ext4_orphan_cleanup+0x920/0x1060 [ 138.958121][T17965] ext4_fill_super+0x6188/0x660c [ 138.958954][T17965] get_tree_bdev+0x358/0x544 [ 138.959808][T17965] ext4_get_tree+0x28/0x38 [ 138.960599][T17965] vfs_get_tree+0x90/0x274 [ 138.961408][T17965] do_new_mount+0x228/0x810 [ 138.962193][T17965] path_mount+0x5bc/0xe80 [ 138.962998][T17965] __arm64_sys_mount+0x49c/0x59c [ 138.963866][T17965] invoke_syscall+0x98/0x2b4 [ 138.964748][T17965] el0_svc_common+0x138/0x258 [ 138.965690][T17965] do_el0_svc+0x58/0x130 [ 138.966460][T17965] el0_svc+0x58/0x128 [ 138.967191][T17965] el0t_64_sync_handler+0x84/0xf0 [ 138.968066][T17965] el0t_64_sync+0x18c/0x190 [ 138.968857][T17965] [ 138.968857][T17965] -> #0 (&dquot->dq_lock){+.+.}-{3:3}: [ 138.970153][T17965] __lock_acquire+0x2880/0x6800 [ 138.971018][T17965] lock_acquire+0x20c/0x63c [ 138.971778][T17965] __mutex_lock_common+0x190/0x1f60 [ 138.972662][T17965] mutex_lock_nested+0x38/0x44 [ 138.973490][T17965] dquot_commit+0x50/0x1c4 [ 138.974281][T17965] ext4_write_dquot+0x1b4/0x31c [ 138.975099][T17965] ext4_mark_dquot_dirty+0xe8/0x140 [ 138.976034][T17965] mark_all_dquot_dirty+0x108/0x424 [ 138.977005][T17965] __dquot_free_space+0x73c/0xa78 [ 138.977953][T17965] ext4_free_blocks+0x1888/0x2390 [ 138.978858][T17965] ext4_ext_remove_space+0x1720/0x3a9c [ 138.979878][T17965] ext4_ext_truncate+0x164/0x20c [ 138.980709][T17965] ext4_truncate+0x9f4/0x1084 [ 138.981523][T17965] ext4_setattr+0xda8/0x150c [ 138.982327][T17965] notify_change+0xb0c/0xdcc [ 138.983202][T17965] do_truncate+0x188/0x20c [ 138.983940][T17965] path_openat+0x2110/0x26bc [ 138.984696][T17965] do_filp_open+0x194/0x384 [ 138.985428][T17965] do_sys_openat2+0x134/0x3f4 [ 138.986151][T17965] __arm64_sys_openat+0x118/0x14c [ 138.986996][T17965] invoke_syscall+0x98/0x2b4 [ 138.987794][T17965] el0_svc_common+0x138/0x258 [ 138.988561][T17965] do_el0_svc+0x58/0x130 [ 138.989308][T17965] el0_svc+0x58/0x128 [ 138.990068][T17965] el0t_64_sync_handler+0x84/0xf0 [ 138.990972][T17965] el0t_64_sync+0x18c/0x190 [ 138.991832][T17965] [ 138.991832][T17965] other info that might help us debug this: [ 138.991832][T17965] [ 138.993409][T17965] Chain exists of: [ 138.993409][T17965] &dquot->dq_lock --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2 [ 138.993409][T17965] [ 138.995592][T17965] Possible unsafe locking scenario: [ 138.995592][T17965] [ 138.996643][T17965] CPU0 CPU1 [ 138.997369][T17965] ---- ---- [ 138.998149][T17965] lock(&ei->i_data_sem/2); [ 138.998887][T17965] lock(&s->s_dquot.dqio_sem); [ 139.000140][T17965] lock(&ei->i_data_sem/2); [ 139.001271][T17965] lock(&dquot->dq_lock); [ 139.001983][T17965] [ 139.001983][T17965] *** DEADLOCK *** [ 139.001983][T17965] [ 139.003334][T17965] 5 locks held by syz.1.5556/17965: [ 139.004162][T17965] #0: ffff0000d2314460 (sb_writers#3){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 139.005638][T17965] #1: ffff0000e2122c20 (&sb->s_type->i_mutex_key#10){++++}-{3:3}, at: do_truncate+0x174/0x20c [ 139.007256][T17965] #2: ffff0000e2122dc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: ext4_setattr+0xbc4/0x150c [ 139.008956][T17965] #3: ffff0000e2122aa8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_truncate+0x7cc/0x1084 [ 139.010528][T17965] #4: ffff80001551c9c8 (dquot_srcu){....}-{0:0}, at: rcu_lock_acquire+0x10/0x4c [ 139.011943][T17965] [ 139.011943][T17965] stack backtrace: [ 139.012856][T17965] CPU: 0 PID: 17965 Comm: syz.1.5556 Not tainted syzkaller #0 [ 139.013929][T17965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 139.015383][T17965] Call trace: [ 139.015861][T17965] dump_backtrace+0x1c0/0x1ec [ 139.016642][T17965] show_stack+0x2c/0x3c [ 139.017335][T17965] __dump_stack+0x30/0x40 [ 139.018056][T17965] dump_stack_lvl+0xf4/0x15c [ 139.018796][T17965] dump_stack+0x1c/0x5c [ 139.019498][T17965] print_circular_bug+0x148/0x1b0 [ 139.020337][T17965] check_noncircular+0x264/0x2f8 [ 139.021155][T17965] __lock_acquire+0x2880/0x6800 [ 139.021912][T17965] lock_acquire+0x20c/0x63c [ 139.022634][T17965] __mutex_lock_common+0x190/0x1f60 [ 139.023518][T17965] mutex_lock_nested+0x38/0x44 [ 139.024299][T17965] dquot_commit+0x50/0x1c4 [ 139.025006][T17965] ext4_write_dquot+0x1b4/0x31c [ 139.025770][T17965] ext4_mark_dquot_dirty+0xe8/0x140 [ 139.026578][T17965] mark_all_dquot_dirty+0x108/0x424 [ 139.027461][T17965] __dquot_free_space+0x73c/0xa78 [ 139.028181][T17965] ext4_free_blocks+0x1888/0x2390 [ 139.028978][T17965] ext4_ext_remove_space+0x1720/0x3a9c [ 139.029910][T17965] ext4_ext_truncate+0x164/0x20c [ 139.030768][T17965] ext4_truncate+0x9f4/0x1084 [ 139.031530][T17965] ext4_setattr+0xda8/0x150c [ 139.032291][T17965] notify_change+0xb0c/0xdcc [ 139.033006][T17965] do_truncate+0x188/0x20c [ 139.033661][T17965] path_openat+0x2110/0x26bc [ 139.034316][T17965] do_filp_open+0x194/0x384 [ 139.034993][T17965] do_sys_openat2+0x134/0x3f4 [ 139.035671][T17965] __arm64_sys_openat+0x118/0x14c [ 139.036448][T17965] invoke_syscall+0x98/0x2b4 [ 139.037122][T17965] el0_svc_common+0x138/0x258 [ 139.037788][T17965] do_el0_svc+0x58/0x130 [ 139.038384][T17965] el0_svc+0x58/0x128 [ 139.038977][T17965] el0t_64_sync_handler+0x84/0xf0 [ 139.039765][T17965] el0t_64_sync+0x18c/0x190 [ 139.055962][T18020] loop3: detected capacity change from 0 to 64 [ 139.056136][T17992] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.5566: couldn't read orphan inode 26 (err -116) [ 139.067650][T17992] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 139.112925][T17992] __quota_error: 7 callbacks suppressed [ 139.112938][T17992] Quota error (device loop4): do_check_range: Getting dqdh_entries 36 out of range 0-14 [ 139.118971][T17992] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 139.123000][T17992] EXT4-fs error (device loop4): ext4_acquire_dquot:6835: comm syz.4.5566: Failed to acquire dquot type 1 [ 139.139511][ T4320] EXT4-fs (loop1): unmounting filesystem. [ 139.141542][ T4325] EXT4-fs (loop4): unmounting filesystem.