last executing test programs: 5.814717881s ago: executing program 0 (id=1262): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000580)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90) sendto$inet6(r0, &(0x7f0000000000)="ee", 0x1, 0x40, &(0x7f0000000100)={0xa, 0x4e20, 0x8, @rand_addr=' \x01\x00'}, 0x1c) 5.057069572s ago: executing program 0 (id=1266): r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0) mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil) 4.739240951s ago: executing program 4 (id=1268): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)="6b1690bb8dc095ebae95baccdce177a97389ae7df65487e3996df64c35efa6e159bd2f2180", 0xfdef}], 0x1, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}, @ip_retopts={{0x16, 0x0, 0x7, {[@ra={0x94, 0x4}, @generic={0x0, 0x2}]}}}], 0x38}, 0x0) 4.644716056s ago: executing program 0 (id=1270): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc010}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp=r1}]}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x40}}, 0x0) 4.509489131s ago: executing program 2 (id=1272): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = epoll_create(0x7fff) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) 4.235038114s ago: executing program 4 (id=1273): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000040)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@jqfmt_vfsold}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}]}, 0xfc, 0x572, &(0x7f0000003780)="$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") r0 = open(&(0x7f00000003c0)='./file1\x00', 0x80, 0x20) fstat(r0, &(0x7f0000011600)) 4.126058579s ago: executing program 3 (id=1274): syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000c80)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x1, 0xc4d, &(0x7f0000001b40)="$eJzs3V1sXGdaB/DnnWMndsqyU9qmXbpIsxSxaZoE56OtUVrkbIy1K0VtVMcLNyCP40kY1R67trNKK1gFCbgBQVCRVsAFuUHigovcIKEVQhE3iwRIEajSIpAItI1WQoBXsLBiJYzOzDv22BvXbr6cNL/fbvKfc+Y9M++Z9jlzpprnTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEV/46RNDh9NOzwIAuJ9eG39j6Kj3fwB4pJzx+R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK2lKOKtSPHe2HKabC93DJxqti5cnBgdu/VmgylSVKJojy//DBw+cvTYiy+9PNzNj97+bvtMvD5+5kTt5Nzs/EJjcbExXZtoNc/OTTe2/Qh3uv1G+9svQG32zQvT584t1o4cOrru7ovVm7sf21s9Pvzsgee7YydGx8bGe8b09d/2s3+fdPceik+QXVHEFyPFNw5+K9UjohJ3XgtbHDvutcHoK+uvvRMTo2PtHZlp1ltL5Z2pkkf1RVR7Nhrp1sh9qMU7MhJxqfznVE54f7l74/P1hfrUTKN2ur6w1FxqzrVSpTPbcn+qUYnhFDEfEcvFTk+eB01/FPFqpLj5veU0FRFFtw5eeG38jaGjm2/Ydx8nucnTV4uI6/EQ1Cw8oHZHEb8dKd6dHIqzua7aZfNBxOfLfCXirTKvpbicl1N5gBiO+Lb3E3io9UURfxMp5tJymu7Wfvu88tSXa19qnZvrGds9r3zoPx/cT85NeIANRBFT7TP+5XT7/7ELAAAAAAAAAAAAALg/ivh6pLg6uy/NR29PabN1vnamPjXT+VZw97v/tbzVysrKSjV1spZzKOdIztM5J3PO57yU83LOKzmv5ryW83rOGzmXc0YlP3/OWs6hnCM5T+eczDmf81LOyzmvdLLb0bhyLa+/nvNGzuWcoe8JAAAAAAAAAAAAAAAAAACAu2wwiviNSPHvv/+V9u9KR/t36T99fPjkqU/1/mb8M1s8Tjn2UER8Pbb3m7y78m+Np0r5v7u/X8DWBqKIr+bf//vlnZ4MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwQKhEEb8SKb72neUUKSJGIiajkzeKnZ4dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFDanYp4NVL87O+OrK7ri4jU/n/HvvKvYzFS5HyizFdi5HA7KyMnyhyIOLQD8wdu3+Lb77xZn5lpLLjhhhturN7Y6SMTAAAAAAAAAAAAAAAAADzCUhF/Hyl+8veWUzUiLlZv7n5sb/X48LMHni+iaF8EIPWOf338zInaybnZ+YXG4mJjujbRap6dm25s9+kGTjVbFy5OjI7dk53Z0uA9nv/gwMm5+bcXmud/YemW9+8ZODG1uLRQP3vru2Mw+iKGetfsb094YnSsPemZZr3V3jRVNplgX0RtuzvDI29PKuJ/I8V7B78Zj+d1+fof/Z2lter/w19cW/rhvvW5+q9j+/jx6ePDJ/c8t53babsT3d8uvLIQxsZ7VvflWf5Qz7pqnte2HxseUWX9vxApfv6PitStoVz/P9BZKlbH/s9X12rq+IZctUP1/0TPuuP5qNXfFzGwNDvf/3TEwOLb7xxsztbPN843WseOvPzS8LGXXzz2Uv+uiIFzzZnG0Nqtbb92AAAAAAAAAAAAAAAAAHCv9KcivhApfunv/nK1bzz3/32qs7TW/9fb/7tvw+P0Xjdgs9u37PXboq+vV/mcKRXxVKR49s+eac83xR4973Cb9qQivlvW0/QX0+fyulz/ubP/1vV/aUOu2qH+38d71l3Kx4n/iBSP/8Ez8bme48TG7t5y3F9Eiqkf+WweF7vKcd3H6/REdxqDy7FfiRTvn14/tts3/cTa2MPb3S3YSWX9z0aKf/itv40fzevWX//j1vW/Z0Ou2qH6f7J3nyJi8e133qzPzDQWFrf9UsAjp6z/X48Uf/0n34zn8rqPuv5P9zo/+55bn4PdQTtU/0/1rKvmef3Yx3wtAAAAAAAAAAAA4GGxJxXxT5Hiz//0QDqY123n+7/TG3LVDn3/7+meddPrvv97725s+0UGAIAHRH8q4icixR9Pf5C6vbGb9v++stb/M7rxxL19Tv+D7T7/j3Wu/zH6/8vnTKmI/8t9vUNb9PX+eKT4tZ86kMelveW4ke50238PvDbXOnhiZmbubH2pPjXTqI3P1882ym33R4p//bfP5m0r7T7fbn90pzd4rSf4dyLFz33YHdvpCe72Uj65NvZwOfZgpPju++vHdvuunlobe6Qc+5uRYuy/bz1279rYo+XYf4wU//lurTt2Tzm2+3nu6bWxh87OzXzfRzYAAAAAAAAAAAAAAAAAAAB2Xn8qIkWKaz9zZbU3fv31v7rXAVh//a+N7tXv/1fvzm4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEMhRRH/FSneG1tON4pyuWPgVLN14eLE6NitNxtMkaISRXt8+Wfg8JGjx1586eXhbn709nfbZ+L18TMnaifnZucXGouLjenaRKt5dm66se1HuL3ti03v2d9+AWqzb16YPndusXbk0NF1d1+s3tz92N7q8eFnDzzfHTsxOjY23jOmr3/bs99SunsPxSfIrijiryLFNw5+K/1zEVGJ266FVVscO+61wegr66+9ExOjY+0dmWnWW0vlnamSR/VFVHs2GunWyH2oxTsyEnEpIirlhPeXuzc+X1+oT800aqfrC0vNpeZcK1U6sy33pxqVGE4R8xGxvPnRikdUfxRxLVLc/N5y+pei84bWroMXXht/Y+jo5hv23cdJbvL01SLiejwENQsPqN1RxJOR4t3JoXi/6NRVu2w+iPh8ma9EvFXmtRSX83IqDxDDEd/2fgIPtb4o4nSkmEvL6YMi1377vPLUl2tfap2b6xnbPa986D8f3E/OTXiADUQRH7bP+JfTh97PAQAAAAAAAAAAAOABV8SrkeLq7L7U7g9d7Sltts7XztSnZjpf6+9+97+Wt1pZWVmppk7Wcg7lHMl5Oudkzvmcl3Jeznkl59Wc13Jez3mjnbvbjYnlclTy8+es5RzKOZLzdM7JnPM5L+W8nPNKzqs5r+W8nvNGzuWcH9H1DwAAAAAAAAAAAAAAAAAAd6QSRfxqpPjad5bTStH5fdnJ6OSN9X2uu3ZqjsC98f8BAAD//3zgG/w=") open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) rename(&(0x7f0000001800)='./bus\x00', &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 4.032580634s ago: executing program 0 (id=1275): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000002c0), &(0x7f0000000280)=ANY=[], 0x361, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000300)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000380)={{}, {}, [], {}, [{0x8, 0x7, 0xee01}, {0x8, 0x5}]}, 0x34, 0x2) 3.986669794s ago: executing program 2 (id=1276): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x1e}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f00500", 0x0, 0x1000000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.935824911s ago: executing program 1 (id=1277): mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000001f40)={'NETMAP\x00'}, &(0x7f0000006300)=0x1e) 3.368832054s ago: executing program 1 (id=1278): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000002300)) 3.164056926s ago: executing program 3 (id=1279): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4000) recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001940)=[{&(0x7f0000000380)=""/188, 0xbc}, {&(0x7f0000000840)=""/245, 0xf5}, {&(0x7f00000002c0)=""/50, 0x23}, {&(0x7f0000000040)=""/94, 0x5e}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/243, 0xf3}, {&(0x7f0000000540)=""/207, 0xcf}, {&(0x7f00000000c0)=""/63}, {&(0x7f0000000440)=""/6}], 0x7, 0x0, 0x1}, 0x80000000}], 0x22, 0x20, 0x0) 3.08342s ago: executing program 0 (id=1280): syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$eJzs3M1rHOcZAPBnRquVbKtduZRS91KVUmwoXUsuMrUp1C4uvfRQaK8Fq/LKCK0/kFRcyTqskn8gX+dALoEkJiGH+OxLQnLNJbGvCTkETFCsBEJIFGY/pI2lleR4V6PIvx+8mvedd7TP8+ywO/PC7gbwxBrJ/qQRxyLiYhJRau5PI6JY7w1G1BrHra4sTX65sjSZxNravz5LIomIBytLk63HSprbI83BYES8/9ckfvb05rhzC4szE9VqZbY5Pjl/5frJuYXFP0xfmbhcuVy5Onb6T+Onxk+PnhnvWq1ffXTu9he/+fsnta9f/ebW58+/nMS5GGrOtdfRLSMxsv6ctCtExES3g+Wkr1lPe51JYYd/SnucFAAAHaVt93C/iFL0xcbNWyne/iDX5AAAAICuWOuLWAMAAAAOuMT6HwAAAA641ucAHqwsTbZavp9I2Fv3z0fEcKP+1WZrzBSiVt8ORn9EHH6QRPvXWpPGvz22kYj4+N6ZN7IWPfoe8nZqyxHxy63Of1Kvf7j+Le7N9acRMdqF+CMPjX9M9Z/rQvy86wfgyXTnfONCtvn6l67f/8QW17/CFteuHyLv61/r/m910/3fRv19He7//rnLGDdfefFGp7ms/j/f/tvrrZbFz7aPVdQjuL8c8avCVvUn6/UnHeq/uMsYpW9vVDrN5V3/2ksRx2Pr+luS7X+f6OTUdLUy2vi7ZYzl98Zf6xQ/7/qz83+4Q/2t33/qdP6v7zLGfy5ceHPTznsb3e3rTz8tJv+u94rNPf+fmJ+fHYsoJv/YvP/U9rm0jmk9Rlb/id9u//rfqv7sPaHWfB6ytcByc5uNn3oo5l9u3XyrUz6t9V+e5/9Sh/PfXv+7hc3n/5ldxvjdO8+d6DTXvv7NWha/tRYGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJY0IoYiScvr/TQtlyOORMTP43BavTY3//upa/+7eimbixiO/nRquloZjYhSY5xk47F6f2N86qHxHyPiaES8UDpUH5cnr1Uv5V08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA645ExFAkaTki0ohYLaVpuZx3VgAAAEDXDeedAAAAANBz1v8AAABw8Fn/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0GNHf33nbhIRtbOH6i1TbM7155oZ0Gtp3gkAuenLOwEgN4W8EwBy84hrfLcLcAAlO8wPdpwZ6HouAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOxfx4/duZtERO3soXrLFJtz/blmBvRa2tZPcswD2Ht9200W9i4PYO95icOTyxof2GntP7hxTO37MwM9ywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/Weo3pK0HBHF5r5yOeInETEc/cnUdLUyGhE/jYgPS/0D2Xgs55wBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADovrmFxZmJarUym3XSaHbW9/Sg09eM3MMQvekkjbxr+yWfg90ZeHanY/4bjxmiGPui0n3ayfNdCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvMwtLM5MVKuV2bm8MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyNrewODNRrVZme9jJu0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLzXQAAAP//jAsGRw==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file3\x00', 0x0, 0x8) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000200)={0x1, 0x2, 0x1000, 0x2, &(0x7f0000000080)="070f", 0x0, 0x0, 0x0}) 3.063061613s ago: executing program 4 (id=1281): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f00000002c0)=0xc, 0x4) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, 0x0, &(0x7f0000000080)=0x17) 3.008073092s ago: executing program 1 (id=1282): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x8, &(0x7f0000000280)={[{@inline_dentry}, {@prjjquota={'prjjquota', 0x3d, 'inline_dentry'}}, {@alloc_mode_def}, {@grpjquota={'grpjquota', 0x3d, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00he'}}, {@alloc_mode_def}, {@fault_injection={'fault_injection', 0x3d, 0x4ee}}, {@barrier}, {@noacl}, {@compress_cache}, {@jqfmt_vfsv1}, {@noheap}, {@heap}, {@alloc_mode_reuse}]}, 0x1, 0x5505, &(0x7f00000079c0)="$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") 2.468729201s ago: executing program 2 (id=1283): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000540)=""/228, 0xe4}, {&(0x7f0000000e80)=""/4087, 0xff7}, {&(0x7f00000006c0)=""/235, 0xeb}, {&(0x7f00000002c0)=""/185, 0xb9}, {&(0x7f0000000040)=""/44, 0x2c}, {&(0x7f0000000440)=""/206, 0xce}, {&(0x7f00000000c0)=""/31, 0x1f}, {&(0x7f0000000940)=""/168, 0xa8}, {&(0x7f00000007c0)=""/134, 0x86}, {&(0x7f0000000240)=""/69, 0x45}], 0xa}, 0x40010100) 1.908658881s ago: executing program 4 (id=1284): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0) 1.664914534s ago: executing program 3 (id=1285): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x8000000ffffffff) shutdown(r1, 0x1) 1.332414284s ago: executing program 2 (id=1286): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) copy_file_range(r1, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0) 1.212256196s ago: executing program 3 (id=1287): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="f8000000160001000000000000000000fe8000000000000000000000000000aae0000002000000ee5b000000000000004e2000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8800000000000000000000000000010000000033000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000010000100000000000000000000000a"], 0xf8}, 0x1, 0x0, 0x0, 0x14}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@private2, 0x0, 0x33}, @in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}, {0x5, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x5}, {0x4, 0x0, 0x2}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x7ee643bd1282d893}}}, 0xf8}}, 0x0) 944.18784ms ago: executing program 2 (id=1288): socket$inet6(0xa, 0x1, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040e0b080510"], 0xe) getpid() 892.420522ms ago: executing program 1 (id=1289): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) recvmmsg(r0, &(0x7f0000000700)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1}, 0xffff6a2d}], 0x2, 0x40000000, 0x0) sendmsg$inet(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x4001) 844.720983ms ago: executing program 4 (id=1290): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0xe00000, 0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001970000ff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=r0], 0x24}}, 0x0) 691.024279ms ago: executing program 0 (id=1291): r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x8401) ppoll(&(0x7f0000000080)=[{r0, 0x8}], 0x1, 0x0, 0x0, 0x0) writev(r0, &(0x7f0000000380)=[{&(0x7f0000000100)="d626a02f", 0x4}, {&(0x7f0000000180)="6d176786", 0x4}], 0x2) 587.106252ms ago: executing program 1 (id=1292): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8) 516.47882ms ago: executing program 3 (id=1293): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0) clock_adjtime(0xffffffd3, &(0x7f0000000000)={0xb, 0x6, 0xfffffffffffffffe, 0x9, 0x7, 0xb, 0x651, 0xfffffffffffffffc, 0x9657, 0x0, 0x7fffffff, 0xffffffff, 0x8, 0xb, 0x80000000000000, 0xcc0, 0x1, 0x1, 0x94d6, 0x0, 0x0, 0x5, 0x0, 0xfffffffffffffffa, 0x3, 0x2000000000000}) 445.339313ms ago: executing program 4 (id=1294): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc) 405.801227ms ago: executing program 2 (id=1295): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x210c00, &(0x7f0000001480)=ANY=[], 0x0, 0x1b3, &(0x7f00000009c0)="$eJzKKC4sZmdgYFjNwcDAIMAABowMPAwXGBgZWBgYGNQZIWIMTBBqPZT/AkrPhErbQPnNUHohlK64pb1uzSm/Myc9dbWWyTIzt8pDNUDF5FJ7jNwkF/NIMDOEph5ZVFxZlZ2Yk5Na1MDMUHGLhaECpPQ6wzWVZglOhz/yHA4w52TNaCzhnCSlKcbGlqlw9swH+XVsGkcYHq1g3ljnmddYV5g6Ne8UQ1JVVlXWvIkTN85s7GxsXDmxLirNbxVjS4rLpqZORhRvMbSvepjEAWUrvU5lvmS8sEjq1IqqmTAL7/CUrZDQ0HCSuCJh0WDCcKTOtsGVoeJWckoDQ5rCf8YkNTaxti1n5oQw87O5LVBoST7BFHqUY+lMCcYDQlUnGRs03zokus3Y9tSB7QzP4eM8awr6BOuPSzA4LRT8LwMy5kBDQ5nGWqaltgu+FGn8lfBabeyUweBuz7QMFqAsDSByJZQnC9KTkJC8gl1HU9PIkCGhYZNEQpJbgaEyw9Y9nKsFGhiQok2FgYFhOyMsbiHgGowxCkbBKBgFo2AUjIJRMApGwSgYBaNgRABAAAAA//+q0YKH") mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000280)=""/194) 61.629663ms ago: executing program 3 (id=1296): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/drivers\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023895) 0s ago: executing program 1 (id=1297): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10) sendmmsg$inet(r0, &(0x7f00000012c0)=[{{&(0x7f0000000100)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000003740)="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", 0x5c1}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000380)="c65aec26698895c454dbf16183670fc95fe68963eedd2cfb8c24f6e2d68a00a469cbcfb5d2fc8a2e9c7596646f9ffe0a6a8703be3c71fec41149bcb8f9d2a1626254edcc7ca08b15d7a9c4ed5870a5068d0334d6e3cc28ca6e7ac7c992fdd67152cd1ed6281930e513e7d7ce8eab8014171b13285f0ed155b9d31849d0263a22d11be4b23541fe4190a0d557e5f71e2b60766b9a436f681d6a7def1d87ccfc4cc2a0a0cc39ed9e3de89f9c12a20d82f5765bc500b2bb4e59fc3ff8c8cf", 0xbd}, {&(0x7f0000000500)="900f992a40da608f253531fbb5e140af774bf4d0367473a1233ffbc6dd88fdddcf978ecfcc5cee7d0e46a103b4aea11c71e6b184ba47ebc2883f28919f6b21dab07f4cb9b807b605c8f796408ab48525c0eec9d7b1b76409c86636f0e2c490fa13a286c402069946532f6ffb9ec9051fa5feb4ef26644228c0bd4469f7a1ccc1e9067607b2a404086bd78df5c183a5c7bec2c264760d83446efc762267831c091d6e04d9a8063ef1e56eff13e6c70686f96a04714d4b075af88501490ca745b237882925fa032d1d6600739539f30e0095f7ffc19a1d5e4bcb3da0dad1c99dfacb7cea", 0xe3}, {&(0x7f0000000680)="387d3acfa5903e91608897c88b43c122bbdb4e5aff9ba47947cdec6c86fc56cb3f1745d444bdfd4bd0d43920347656c773012aba357b88b3d3291381e8b1e1cf6cf37deca20bec877bf9df51ead7b1d9d8db2b597ad069d3430e2b6d6bd057c25b363a036cea419d2ed9ab65f065685055a3ce68a7f270798a884afc6251f1e3b54b8c3eec3566520804b2dd6e56060305679ce19a6e98feb34a8386e29d5aac43bd5582200bacbf1dc66bcbb2f555183caa3759b4599842406c21aae92ced0cd2d720605ef989", 0xc7}, {&(0x7f0000000780)="efa6d2f2b7d502ca15dc50d69de76b7051c81fd66ed77aa4d08ee971e90ab1b0393b476597f8c73e6723b86d68da55705582c37c61263335f5902af94b76cf2bfeff52cee1e991a7f70198388e1503b255b69fb35df108cfc325298e46248d5ee90095e50b2821f9eb5d1d15e3376da2f01ed26ab7540804a10012", 0x7b}, {&(0x7f0000000800)="de33a07f1c2b214aecd7716c092ad7e8d43d9a7f1e24c45016c07ac86b1cdeecc8b96af06e1d8ca61b577632cc3b4f8881bee84490303fc8e07bd9ff635dd4b12901d43ecc98c66584d88b8705cabd6430d79b41ad3ab2f48014ad3de44e1d391b2531340b9ce5466ecbfc7d14c077cd9acd46b7856bfd0b1d05a1cd993f0d1d67015bea819be352169a3e565141be1a71601d766bd5f8511b56fa84d7ef9fa306106f05b845", 0xa6}], 0x5}}, {{0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000000ac0)="3c10012e77bd88b076adaab2cc5c325e628e855c6b4093ba4c96656c3b255ab33c9fa9025874c78401bf283f4f8b5dbeebc621a4d820d04f50ee8a4409aa342384a2b5bbd6f7ee0ac4a9bf49d0d302f4c14dd9b186733b00b76b0b4829ef92eedb7bbca0e711f8530acb6fcf576bda2676f88e47abddae2a4b4a74d844ec3aea1ab33601ba91097a97f3db9ca4b6dedf638f8bc3675cb69cce89ebd1a695bbe19a79f0c95503d80371292adff5491cc49eba64ecc67f66591265f61de311a909781ebfa2ed8859604a6bd2d14297723bfdc3efebd4a3a42f4ce70626095bcd2432d5ae3fb727", 0xe6}, {&(0x7f0000000bc0)="e253d22456792b00e6ff43eee2eb2de4752b556d566e7c74f27d826c48c4b46b31861f490f0c82f2c04428805889e38ca1c32cbd6ad47296a66c96f525ff5c7f0218feb88ddaa1d7a282fd2c94a2fb16b63ebf4f20f8ba08204991d7851d4fa5b4f97a3f360be96bb4db4abf2f3491bd09b3a0d9c63af85b3db81e0e8adcd4f9aee52c0d0034988b054f7eda6bbf7ab1e26c1713a34b927b1d5126f25dda8f66c5d8e8da12f3a040a423c7a45cc7dbc2aecc662cd63b9a42ac46ab5f0f80a8049867bdb73d961e1d35e077bd3632053656bdd147827ad3c7417d4ada0936067f8d046b0672f2500bbbc4054cc9d6091ad43a27a03c198230f9", 0xf9}, {&(0x7f0000000cc0)="531ab930c630c1f373d62f92ebb336bfc4ffd0256e0b66eb759d6a8db2711ced9aa36679689b44c043f813c6969074eab71a72ed522ac0798c44e95b66dc3ac79ec16f56ee73e9eee49830b2eb41dd51e18a5f0f68540683704a35449813cd047e", 0x61}], 0x3}}], 0x4, 0x24008020) kernel console output (not intermixed with test programs): : mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 299.676504][ T30] audit: type=1800 audit(1743213544.235:4): pid=6198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.98" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 300.045999][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.829502][ T6208] loop3: detected capacity change from 0 to 2048 [ 300.901986][ T6208] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 300.912166][ T6208] NILFS (loop3): mounting unchecked fs [ 301.015563][ T6208] NILFS (loop3): recovery complete [ 301.043730][ T6213] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 301.926726][ T6214] loop4: detected capacity change from 0 to 32768 [ 301.942088][ T6214] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.103 (6214) [ 301.978888][ T6214] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 301.989632][ T6214] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 302.000054][ T6214] BTRFS info (device loop4): using free-space-tree [ 302.034532][ T6219] loop2: detected capacity change from 0 to 512 [ 302.123512][ T6217] loop1: detected capacity change from 0 to 4096 [ 302.134841][ T6219] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 302.205538][ T6217] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 302.227686][ T6219] EXT4-fs (loop2): invalid journal inode [ 302.234058][ T6219] EXT4-fs (loop2): can't get journal size [ 302.277026][ T6214] BTRFS info (device loop4): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 302.345915][ T6219] EXT4-fs (loop2): 1 truncate cleaned up [ 302.494515][ T6219] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 302.849890][ T6219] EXT4-fs warning (device loop2): verify_group_input:137: Cannot add at group 186 (only 1 groups) [ 302.990274][ T6217] ntfs3(loop1): ino=19, mi_enum_attr [ 302.996937][ T6217] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 303.412042][ T6234] loop0: detected capacity change from 0 to 4096 [ 303.454692][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.522983][ T6234] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 303.538922][ T6242] program syz.3.109 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 304.206130][ T6234] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 304.246104][ T6246] loop2: detected capacity change from 0 to 1024 [ 304.482614][ T6246] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.253827][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.368845][ T6261] loop4: detected capacity change from 0 to 64 [ 305.486786][ T1942] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 305.701735][ T1942] usb 1-1: Using ep0 maxpacket: 32 [ 305.723984][ T1942] usb 1-1: config index 0 descriptor too short (expected 35577, got 27) [ 305.732952][ T1942] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 305.742181][ T1942] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 305.751616][ T1942] usb 1-1: config 1 has no interface number 0 [ 305.757990][ T1942] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 305.769267][ T1942] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 305.782793][ T1942] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 305.792379][ T1942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 305.838610][ T6266] loop2: detected capacity change from 0 to 256 [ 305.889888][ T6266] exfat: Deprecated parameter 'utf8' [ 305.896038][ T6266] exfat: Deprecated parameter 'utf8' [ 306.079965][ T1942] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found [ 306.139723][ T6266] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 306.305337][ T1942] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached [ 306.415618][ T6272] loop1: detected capacity change from 0 to 2048 [ 306.449722][ T6272] EXT4-fs warning (device loop1): ext4_multi_mount_protect:318: fsck is running on the filesystem [ 306.461292][ T6272] EXT4-fs warning (device loop1): ext4_multi_mount_protect:318: MMP failure info: last update time: 1669132791, last update node: dvyukov-desk.muc.corp.google.com, last update device: loop4 [ 306.892466][ T9] usb 1-1: USB disconnect, device number 2 [ 306.901251][ T9] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected [ 307.608611][ T6275] loop1: detected capacity change from 0 to 4096 [ 308.222970][ T6275] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 308.277441][ T6275] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 309.043340][ T6292] loop2: detected capacity change from 0 to 512 [ 309.106564][ T6292] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 309.210380][ T6292] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 309.315663][ T6292] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002] [ 309.344019][ T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 309.363312][ T6292] System zones: 0-2, 18-18, 34-34 [ 309.400547][ T6292] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 309.514961][ T6292] EXT4-fs (loop2): 1 truncate cleaned up [ 309.523469][ T6292] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 309.601938][ T9] usb 1-1: Using ep0 maxpacket: 8 [ 309.639092][ T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 309.649609][ T9] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 309.661794][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 309.673078][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 309.683183][ T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 309.749224][ T6292] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #2: block 3: comm syz.2.133: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 309.833382][ T6292] EXT4-fs (loop2): Remounting filesystem read-only [ 309.845218][ T9] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 309.855059][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 309.863713][ T9] usb 1-1: Product: syz [ 309.868139][ T9] usb 1-1: Manufacturer: syz [ 309.873235][ T9] usb 1-1: SerialNumber: syz [ 309.878379][ T1942] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 309.912209][ T9] usb 1-1: config 0 descriptor?? [ 310.083690][ T1942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.095297][ T1942] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 310.110807][ T1942] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 310.125884][ T1942] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 310.135845][ T1942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.207881][ T9] radio-si470x 1-1:0.0: DeviceID=0x0000 ChipID=0x0000 [ 310.215146][ T9] radio-si470x 1-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0. [ 310.251928][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.311976][ T1942] usb 2-1: config 0 descriptor?? [ 310.383916][ T9] radio-si470x 1-1:0.0: software version 0, hardware version 0 [ 310.392137][ T9] radio-si470x 1-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0. [ 310.411033][ T9] radio-si470x 1-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org [ 310.619384][ T9] radio-si470x 1-1:0.0: si470x_set_report: usb_control_msg returned -71 [ 310.628638][ T9] radio-si470x 1-1:0.0: submitting int urb failed (-90) [ 310.639277][ T9] radio-si470x 1-1:0.0: si470x_set_report: usb_control_msg returned -71 [ 310.649747][ T9] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -22 [ 310.776374][ T9] usb 1-1: USB disconnect, device number 3 [ 310.846182][ T1942] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 310.862062][ T6309] loop2: detected capacity change from 0 to 256 [ 310.870546][ T6309] exfat: Deprecated parameter 'utf8' [ 310.915532][ T1942] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 311.056737][ T1942] usb 2-1: USB disconnect, device number 2 [ 311.075830][ T6309] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d) [ 311.186350][ T6313] loop3: detected capacity change from 0 to 256 [ 311.264556][ T6313] exfat: Deprecated parameter 'utf8' [ 311.622378][ T6313] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 311.901911][ T6317] loop4: detected capacity change from 0 to 256 [ 311.989941][ T6317] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 312.001387][ T6317] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 312.855322][ T6320] loop2: detected capacity change from 0 to 32768 [ 312.939056][ T6317] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 313.416405][ T6320] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 313.439754][ T6320] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 313.448905][ T6320] bcachefs (loop2): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.25: extent_flags [ 313.448905][ T6320] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes [ 313.471898][ T6320] bcachefs (loop2): dropping and reconstructing all alloc info [ 313.546032][ T6342] loop0: detected capacity change from 0 to 256 [ 313.658310][ T6320] bcachefs (loop2): accounting_read... done [ 313.666645][ T6320] bcachefs (loop2): alloc_read... done [ 313.672761][ T6320] bcachefs (loop2): snapshots_read... done [ 313.689024][ T6320] bcachefs (loop2): done starting filesystem [ 313.853082][ T5805] bcachefs (loop2): shutting down [ 313.983247][ T5805] bcachefs (loop2): shutdown complete [ 314.766976][ T1942] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 315.006281][ T6359] loop3: detected capacity change from 0 to 64 [ 315.029697][ T1942] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 126, changing to 10 [ 315.041552][ T1942] usb 1-1: config 0 interface 0 has no altsetting 0 [ 315.048477][ T1942] usb 1-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00 [ 315.057912][ T1942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 315.194158][ T1942] usb 1-1: config 0 descriptor?? [ 315.702594][ T1942] creative-sb0540 0003:041E:3100.0005: unknown main item tag 0x0 [ 315.710894][ T1942] creative-sb0540 0003:041E:3100.0005: unknown main item tag 0x0 [ 315.719197][ T1942] creative-sb0540 0003:041E:3100.0005: unknown main item tag 0x0 [ 315.727414][ T1942] creative-sb0540 0003:041E:3100.0005: item fetching failed at offset 6/7 [ 315.896276][ T1942] creative-sb0540 0003:041E:3100.0005: parse failed [ 315.903633][ T1942] creative-sb0540 0003:041E:3100.0005: probe with driver creative-sb0540 failed with error -22 [ 315.987393][ T1942] usb 1-1: USB disconnect, device number 4 [ 316.688344][ T6372] loop3: detected capacity change from 0 to 64 [ 318.171668][ T1741] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 318.447025][ T1741] usb 4-1: config index 0 descriptor too short (expected 23569, got 27) [ 318.455826][ T1741] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 318.581748][ T1741] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 318.591317][ T1741] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 318.603328][ T1741] usb 4-1: Manufacturer: syz [ 318.724652][ T1741] usb 4-1: config 0 descriptor?? [ 319.158421][ T6389] loop0: detected capacity change from 0 to 4096 [ 319.271548][ T1741] rc_core: IR keymap rc-hauppauge not found [ 319.277806][ T1741] Registered IR keymap rc-empty [ 319.285678][ T1741] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0 [ 319.299483][ T1741] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input5 [ 319.566283][ T6403] rc rc0: two consecutive events of type space [ 319.774932][ T30] audit: type=1800 audit(1743213564.335:5): pid=6389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.172" name="file0" dev="loop0" ino=0 res=0 errno=0 [ 319.797846][ T1942] usb 4-1: USB disconnect, device number 3 [ 321.014359][ T6415] loop3: detected capacity change from 0 to 256 [ 321.635651][ T6424] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 322.202442][ T6432] netlink: 'syz.0.190': attribute type 1 has an invalid length. [ 322.698739][ T6438] loop3: detected capacity change from 0 to 256 [ 322.970992][ T6438] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f50, chksum : 0xa6aae999, utbl_chksum : 0xe619d30d) [ 323.199349][ T6445] loop4: detected capacity change from 0 to 64 [ 324.192021][ T6452] loop3: detected capacity change from 0 to 2048 [ 324.237251][ T1741] IPVS: starting estimator thread 0... [ 324.312161][ T6459] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 324.341714][ T6458] IPVS: using max 192 ests per chain, 9600 per kthread [ 324.707637][ T6464] loop2: detected capacity change from 0 to 64 [ 324.797811][ T6459] NILFS (loop3): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 324.810713][ T6459] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=16) [ 324.857692][ T6459] Remounting filesystem read-only [ 324.872481][ T5796] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 324.901674][ T6460] loop0: detected capacity change from 0 to 4096 [ 325.348927][ T6470] loop3: detected capacity change from 0 to 512 [ 325.403756][ T6460] ntfs3(loop0): failed to convert "0000" to cp949 [ 325.420736][ T6470] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 325.442665][ T6460] ntfs3(loop0): failed to convert name for inode 1e. [ 325.498472][ T6460] ntfs3(loop0): ino=1f, mi_enum_attr [ 325.504735][ T6460] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 325.514083][ T6460] ntfs3(loop0): ino=1f, mi_enum_attr [ 325.578776][ T6470] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.207: invalid block [ 325.622366][ T6470] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.207: invalid indirect mapped block 4294967295 (level 1) [ 325.688856][ T6470] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.207: invalid indirect mapped block 4294967295 (level 1) [ 325.751998][ T6470] EXT4-fs (loop3): 2 truncates cleaned up [ 325.760345][ T6470] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 326.105973][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.346517][ T6485] loop0: detected capacity change from 0 to 128 [ 326.400085][ T6485] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 326.485097][ T6485] FAT-fs (loop0): FAT read failed (blocknr 234) [ 326.543741][ T6492] FAT-fs (loop0): FAT read failed (blocknr 234) [ 327.347367][ T6488] loop4: detected capacity change from 0 to 32768 [ 327.486893][ T6488] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 327.528107][ T6488] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 327.690836][ T6491] loop3: detected capacity change from 0 to 32768 [ 327.740706][ T6491] gfs2: Invalid block size shift [ 327.963706][ T6488] XFS (loop4): Metadata CRC error detected at xfs_agi_read_verify+0x2b1/0x310, xfs_agi block 0x2 [ 327.975005][ T6488] XFS (loop4): Unmount and run xfs_repair [ 327.980955][ T6488] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 327.988807][ T6488] 00000000: 58 41 47 49 00 00 00 01 00 00 00 00 00 00 10 00 XAGI............ [ 328.000483][ T6488] 00000010: 00 00 00 40 00 00 00 03 00 00 00 01 00 00 00 37 ...@...........7 [ 328.009738][ T6488] 00000020: 00 00 04 20 ff ff ff ff ff ff ff ff ff ff ff ff ... ............ [ 328.025885][ T6488] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 328.037054][ T6488] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 328.046211][ T6488] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 328.055408][ T6488] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 328.064729][ T6488] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 328.073990][ T6488] XFS (loop4): metadata I/O error in "xfs_read_agi+0x246/0x570" at daddr 0x2 len 1 error 74 [ 328.084690][ T6488] XFS (loop4): xfs_imap_lookup: xfs_ialloc_read_agi() returned error -117, agno 0 [ 328.094290][ T6488] XFS (loop4): Failed to read root inode 0x420, error 117 [ 328.101920][ T6488] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair. [ 328.242131][ T6502] netlink: 'syz.2.218': attribute type 3 has an invalid length. [ 329.064241][ T6510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.222'. [ 329.201485][ T6508] loop3: detected capacity change from 0 to 2048 [ 329.283846][ T6508] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 329.292011][ T6508] UDF-fs: Scanning with blocksize 512 failed [ 329.336474][ T6508] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 329.645607][ T6521] loop2: detected capacity change from 0 to 128 [ 329.653713][ T1741] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 329.755256][ T6521] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 329.822278][ T6521] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 329.832353][ T6525] netlink: 504 bytes leftover after parsing attributes in process `syz.0.228'. [ 329.889636][ T1741] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 329.902474][ T1741] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 329.913190][ T1741] usb 2-1: New USB device found, idVendor=044f, idProduct=b304, bcdDevice= 0.00 [ 329.922755][ T1741] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.938918][ T1741] usb 2-1: config 0 descriptor?? [ 330.229813][ T5805] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 330.415100][ T1741] thrustmaster 0003:044F:B304.0006: hidraw0: USB HID vff.fe Device [HID 044f:b304] on usb-dummy_hcd.1-1/input0 [ 330.428485][ T1741] thrustmaster 0003:044F:B304.0006: no inputs found [ 330.621334][ T1741] usb 2-1: USB disconnect, device number 3 [ 330.647053][ T6534] loop3: detected capacity change from 0 to 512 [ 330.810797][ T6536] loop4: detected capacity change from 0 to 256 [ 330.867378][ T6534] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 330.881040][ T6534] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 331.055984][ T6534] EXT4-fs error (device loop3): ext4_search_dir:1476: inode #2: block 3: comm syz.3.232: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0 [ 331.323723][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 332.213017][ T6561] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 332.264758][ T6562] ucma_write: process 105 (syz.3.244) changed security contexts after opening file descriptor, this is not allowed. [ 334.217510][ T6582] loop0: detected capacity change from 0 to 32768 [ 334.262651][ T6582] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.255 (6582) [ 334.284790][ T1942] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 334.295267][ T6582] BTRFS info (device loop0 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 334.306586][ T6582] BTRFS info (device loop0 state S): using crc32c (crc32c-x86_64) checksum algorithm [ 334.311446][ T6594] loop4: detected capacity change from 0 to 256 [ 334.316527][ T6582] BTRFS error (device loop0 state S): nologreplay must be used with ro mount option [ 334.332597][ T6582] BTRFS error (device loop0 state S): cannot disable free-space-tree [ 334.340931][ T6582] BTRFS info (device loop0 state S): disk space caching is enabled [ 334.349299][ T6582] BTRFS warning (device loop0 state S): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 334.372797][ T6582] BTRFS error (device loop0 state S): open_ctree failed: -22 [ 334.413361][ T6593] loop2: detected capacity change from 0 to 1024 [ 334.459590][ T6593] EXT4-fs: Ignoring removed orlov option [ 334.538038][ T1942] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.549726][ T1942] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 334.560064][ T1942] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 334.569497][ T1942] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.622630][ T6593] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 334.839861][ T6593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 334.863880][ T1942] usb 4-1: config 0 descriptor?? [ 335.011338][ T30] audit: type=1800 audit(1743213579.585:6): pid=6593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.260" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 335.399094][ T1942] elan 0003:04F3:0755.0007: unknown main item tag 0x0 [ 335.408119][ T1942] elan 0003:04F3:0755.0007: item fetching failed at offset 3/5 [ 335.456034][ T1942] elan 0003:04F3:0755.0007: Hid Parse failed [ 335.470671][ T1942] elan 0003:04F3:0755.0007: probe with driver elan failed with error -22 [ 335.489587][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.587562][ T1942] usb 4-1: USB disconnect, device number 4 [ 335.762787][ T6607] loop0: detected capacity change from 0 to 512 [ 335.818964][ T6606] loop1: detected capacity change from 0 to 2048 [ 335.859350][ T6607] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.872786][ T6607] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 335.950267][ T6615] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 336.059199][ T6617] netlink: 8 bytes leftover after parsing attributes in process `syz.4.269'. [ 336.069050][ T6617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.269'. [ 336.078314][ T6617] netlink: 'syz.4.269': attribute type 6 has an invalid length. [ 336.127254][ T30] audit: type=1800 audit(1743213580.665:7): pid=6606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.265" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 336.148417][ T30] audit: type=1800 audit(1743213580.675:8): pid=6606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.265" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 336.450771][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.892801][ T6625] loop0: detected capacity change from 0 to 512 [ 336.902888][ T6625] EXT4-fs: Ignoring removed nomblk_io_submit option [ 336.910604][ T6625] EXT4-fs: Ignoring removed i_version option [ 337.012578][ T6625] EXT4-fs (loop0): 1 orphan inode deleted [ 337.020673][ T6625] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 337.148335][ T6634] loop4: detected capacity change from 0 to 2048 [ 337.215811][ T6635] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 337.482419][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.632535][ T6635] NILFS (loop4): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 337.650610][ T6635] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=2) [ 337.732661][ T6635] Remounting filesystem read-only [ 337.739255][ T5789] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 338.634131][ T6653] loop0: detected capacity change from 0 to 256 [ 338.683683][ T6653] exfat: Deprecated parameter 'namecase' [ 338.689821][ T6653] exfat: Deprecated parameter 'utf8' [ 338.842945][ T6653] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 339.056040][ T6655] loop2: detected capacity change from 0 to 2048 [ 339.090893][ T6659] loop4: detected capacity change from 0 to 1024 [ 339.378831][ T6664] loop3: detected capacity change from 0 to 512 [ 339.564689][ T1116] hfsplus: b-tree write err: -5, ino 4 [ 339.611473][ T6668] loop0: detected capacity change from 0 to 512 [ 339.638454][ T6668] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 339.682235][ T6668] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 339.722323][ T6668] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 339.779865][ T6668] System zones: 0-2, 18-18, 34-34 [ 339.800856][ T6668] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 339.834280][ T6668] EXT4-fs (loop0): 1 truncate cleaned up [ 339.845012][ T6668] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.067707][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.245147][ T6664] EXT4-fs: Ignoring removed nomblk_io_submit option [ 340.285679][ T6664] EXT4-fs (loop3): Test dummy encryption mode enabled [ 340.323662][ T6669] loop1: detected capacity change from 0 to 4096 [ 340.382713][ T6669] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 340.435357][ T6664] EXT4-fs (loop3): 1 truncate cleaned up [ 340.448300][ T6664] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.555929][ T6683] capability: warning: `syz.0.297' uses 32-bit capabilities (legacy support in use) [ 340.752155][ T5804] Bluetooth: hci4: command tx timeout [ 340.957803][ T6669] ntfs3(loop1): ino=19, mi_enum_attr [ 340.964018][ T6669] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 340.984363][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.755528][ T6688] loop4: detected capacity change from 0 to 40427 [ 341.793083][ T6688] F2FS-fs (loop4): Wrong NAT boundary, start(2560) end(3584) blocks(1536) [ 341.803833][ T6688] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 341.828949][ T6688] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3fffff [ 341.855981][ T6688] F2FS-fs (loop4): invalid crc value [ 342.236660][ T6688] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 342.244256][ T6688] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 342.549069][ T6702] loop3: detected capacity change from 0 to 1024 [ 342.811743][ T1942] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 342.863300][ T5803] Bluetooth: hci4: command 0x0406 tx timeout [ 342.929456][ T3768] hfsplus: b-tree write err: -5, ino 4 [ 343.022722][ T1942] usb 1-1: Using ep0 maxpacket: 32 [ 343.035799][ T1942] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 343.047966][ T1942] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 343.059866][ T1942] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 343.143690][ T1942] usb 1-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 343.153637][ T1942] usb 1-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 343.162445][ T1942] usb 1-1: Product: syz [ 343.166862][ T1942] usb 1-1: Manufacturer: syz [ 343.171797][ T1942] usb 1-1: SerialNumber: syz [ 343.227386][ T1942] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input6 [ 343.507404][ T1942] usb 1-1: USB disconnect, device number 5 [ 343.580804][ T1942] appletouch 1-1:1.0: input: appletouch disconnected [ 343.652675][ T6716] tipc: Enabling of bearer rejected, failed to enable media [ 344.645201][ T6728] loop3: detected capacity change from 0 to 128 [ 344.714965][ T6731] program syz.0.317 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 345.242286][ T6735] loop1: detected capacity change from 0 to 256 [ 345.519296][ T6735] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d) [ 345.904279][ T6743] loop2: detected capacity change from 0 to 2048 [ 346.012575][ T6748] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 346.264009][ T6751] loop4: detected capacity change from 0 to 128 [ 346.374866][ T6751] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 346.383044][ T6751] FAT-fs (loop4): Filesystem has been set read-only [ 346.445457][ T6757] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 346.562879][ T6748] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 346.574470][ T6748] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 346.660170][ T6748] Remounting filesystem read-only [ 346.679456][ T5805] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 347.384382][ T1942] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 347.433826][ T6770] loop0: detected capacity change from 0 to 256 [ 347.464045][ T6770] exfat: Deprecated parameter 'namecase' [ 347.550487][ T6770] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 347.584089][ T1942] usb 3-1: Using ep0 maxpacket: 32 [ 347.598164][ T6774] netlink: 'syz.4.334': attribute type 6 has an invalid length. [ 347.625556][ T1942] usb 3-1: config 0 has an invalid interface number: 51 but max is 0 [ 347.634314][ T1942] usb 3-1: config 0 has no interface number 0 [ 347.669436][ T1942] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 347.684148][ T1942] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.694225][ T1942] usb 3-1: Product: syz [ 347.698656][ T1942] usb 3-1: Manufacturer: syz [ 347.703639][ T1942] usb 3-1: SerialNumber: syz [ 347.732014][ T1942] usb 3-1: config 0 descriptor?? [ 347.759587][ T1942] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 348.031254][ T1942] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 348.134841][ T1942] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 348.455178][ C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 348.456170][ T1741] usb 3-1: USB disconnect, device number 4 [ 348.523174][ T1741] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 348.607592][ T1741] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 348.621529][ T1741] quatech2 3-1:0.51: device disconnected [ 348.832247][ T6791] loop3: detected capacity change from 0 to 64 [ 349.101560][ T1942] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 349.301630][ T1942] usb 1-1: Using ep0 maxpacket: 16 [ 349.348719][ T1942] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 349.358951][ T1942] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 349.374582][ T1942] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 349.384722][ T1942] usb 1-1: config 0 interface 0 has no altsetting 0 [ 349.470883][ T6797] netlink: 32 bytes leftover after parsing attributes in process `syz.2.343'. [ 349.493000][ T1942] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 349.502511][ T1942] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 349.510811][ T1942] usb 1-1: Product: syz [ 349.515390][ T1942] usb 1-1: Manufacturer: syz [ 349.527427][ T1942] usb 1-1: SerialNumber: syz [ 349.548062][ T6797] netlink: 32 bytes leftover after parsing attributes in process `syz.2.343'. [ 349.585112][ T1942] usb 1-1: config 0 descriptor?? [ 349.633694][ T6797] Zero length message leads to an empty skb [ 349.884391][ T1942] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input7 [ 349.903375][ T5135] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 349.994611][ T5135] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 350.095176][ T5135] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 350.132999][ T5135] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 350.217741][ T6790] synaptics_usb 1-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 350.315841][ T1942] usb 1-1: USB disconnect, device number 6 [ 351.385963][ T6814] loop4: detected capacity change from 0 to 256 [ 351.484215][ T6815] netlink: 8 bytes leftover after parsing attributes in process `syz.0.351'. [ 351.498107][ T6815] IPVS: Error joining to the multicast group [ 352.296833][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.306501][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.887067][ T6838] sp0: Synchronizing with TNC [ 352.948416][ T6836] loop3: detected capacity change from 0 to 1024 [ 353.411811][ T1942] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 353.627328][ T1942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 353.638876][ T1942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 353.649277][ T1942] usb 1-1: New USB device found, idVendor=0403, idProduct=97c1, bcdDevice= 0.00 [ 353.658793][ T1942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 353.735609][ T6851] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0 [ 353.751626][ T6850] loop1: detected capacity change from 0 to 64 [ 353.798076][ T1942] usb 1-1: config 0 descriptor?? [ 354.249819][ T1942] hid-retrode 0003:0403:97C1.0008: unknown main item tag 0x3 [ 354.257913][ T1942] hid-retrode 0003:0403:97C1.0008: item fetching failed at offset 3/5 [ 354.345881][ T1942] hid-retrode 0003:0403:97C1.0008: probe with driver hid-retrode failed with error -22 [ 354.456658][ T9] usb 1-1: USB disconnect, device number 7 [ 354.473012][ T6861] netlink: 100 bytes leftover after parsing attributes in process `syz.3.373'. [ 354.693759][ T1942] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 354.861702][ T1942] usb 2-1: Using ep0 maxpacket: 8 [ 354.882743][ T1942] usb 2-1: too many endpoints for config 0 interface 0 altsetting 4: 65, using maximum allowed: 30 [ 354.894311][ T1942] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.905863][ T1942] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.916202][ T1942] usb 2-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 65 [ 354.929625][ T1942] usb 2-1: config 0 interface 0 has no altsetting 0 [ 354.936674][ T1942] usb 2-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 354.946251][ T1942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.970850][ T1942] usb 2-1: config 0 descriptor?? [ 355.430286][ T1942] kye 0003:0458:5011.0009: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 355.478936][ T1942] kye 0003:0458:5011.0009: unknown main item tag 0x0 [ 355.486511][ T1942] kye 0003:0458:5011.0009: unknown main item tag 0x0 [ 355.493831][ T1942] kye 0003:0458:5011.0009: unknown main item tag 0x0 [ 355.500849][ T1942] kye 0003:0458:5011.0009: unknown main item tag 0x0 [ 355.507993][ T1942] kye 0003:0458:5011.0009: unknown main item tag 0x0 [ 355.595382][ T6870] loop2: detected capacity change from 0 to 256 [ 355.664656][ T1942] kye 0003:0458:5011.0009: hidraw0: USB HID v0.05 Device [HID 0458:5011] on usb-dummy_hcd.1-1/input0 [ 355.688161][ T1942] kye 0003:0458:5011.0009: tablet-enabling feature report not found [ 355.697357][ T1942] kye 0003:0458:5011.0009: tablet enabling failed [ 355.754820][ T30] audit: type=1800 audit(1743213600.325:9): pid=6870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.376" name="file2" dev="loop2" ino=23 res=0 errno=0 [ 355.796188][ T1942] usb 2-1: USB disconnect, device number 4 [ 357.061422][ T1741] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 357.264527][ T1741] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 357.273381][ T1741] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 357.287075][ T1741] usb 2-1: config 220 has no interface number 2 [ 357.293960][ T1741] usb 2-1: config 220 interface 1 altsetting 5 endpoint 0x2 has invalid wMaxPacketSize 0 [ 357.307701][ T1741] usb 2-1: config 220 interface 1 altsetting 5 bulk endpoint 0x3 has invalid maxpacket 8 [ 357.322811][ T1741] usb 2-1: config 220 interface 1 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 12 [ 357.336560][ T1741] usb 2-1: config 220 interface 0 has no altsetting 0 [ 357.343704][ T1741] usb 2-1: config 220 interface 76 has no altsetting 0 [ 357.350842][ T1741] usb 2-1: config 220 interface 1 has no altsetting 0 [ 357.577644][ T1741] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 357.587575][ T1741] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 357.599095][ T1741] usb 2-1: Product: syz [ 357.604035][ T1741] usb 2-1: Manufacturer: syz [ 357.608909][ T1741] usb 2-1: SerialNumber: syz [ 357.943898][ T1741] usb 2-1: selecting invalid altsetting 0 [ 357.950443][ T1741] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 357.962435][ T1741] usb 2-1: No valid video chain found. [ 358.096091][ T1741] usb 2-1: selecting invalid altsetting 0 [ 358.105606][ T1741] usbtest 2-1:220.1: probe with driver usbtest failed with error -22 [ 358.196743][ T1741] usb 2-1: USB disconnect, device number 5 [ 358.590990][ T6912] Bluetooth: MGMT ver 1.23 [ 359.374278][ T6923] Bluetooth: MGMT ver 1.23 [ 360.416710][ T6939] loop1: detected capacity change from 0 to 256 [ 360.526596][ T6938] loop2: detected capacity change from 0 to 1024 [ 360.711412][ T6938] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 360.797926][ T6938] process 'syz.2.408' launched './file2' with NULL argv: empty string added [ 360.876437][ T6944] loop4: detected capacity change from 0 to 256 [ 361.086538][ T6946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.413'. [ 361.220212][ T6944] FAT-fs (loop4): Directory bread(block 64) failed [ 361.228607][ T6944] FAT-fs (loop4): Directory bread(block 65) failed [ 361.236155][ T6944] FAT-fs (loop4): Directory bread(block 66) failed [ 361.243105][ T6944] FAT-fs (loop4): Directory bread(block 67) failed [ 361.250088][ T6944] FAT-fs (loop4): Directory bread(block 68) failed [ 361.257114][ T6944] FAT-fs (loop4): Directory bread(block 69) failed [ 361.264242][ T6944] FAT-fs (loop4): Directory bread(block 70) failed [ 361.271295][ T6944] FAT-fs (loop4): Directory bread(block 71) failed [ 361.278261][ T6944] FAT-fs (loop4): Directory bread(block 72) failed [ 361.286468][ T6944] FAT-fs (loop4): Directory bread(block 73) failed [ 361.525666][ T1741] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 361.552408][ T6952] usb usb6: usbfs: process 6952 (syz.2.416) did not claim interface 0 before use [ 361.743294][ T1741] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 361.753563][ T1741] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 361.766752][ T1741] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 361.776968][ T1741] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 361.787403][ T1741] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 361.799879][ T1741] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 361.878134][ T6954] loop0: detected capacity change from 0 to 1024 [ 361.945553][ T1741] usb 2-1: config 0 descriptor?? [ 361.959586][ T6954] EXT4-fs (loop0): Test dummy encryption mode enabled [ 362.095890][ T6954] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 362.160813][ T6959] loop4: detected capacity change from 0 to 256 [ 362.170541][ T6959] vfat: Unknown parameter 'ÿ00000000000000000000000' [ 362.260672][ T1741] hdpvr 2-1:0.0: firmware version 0xc7 dated 5[¦ãKÏToçjÌ<_„H'soº]íŒWy/L" \“úÄÎP$⸠[ 362.274599][ T1741] hdpvr 2-1:0.0: untested firmware, the driver might not work. [ 362.331869][ T6962] loop2: detected capacity change from 0 to 256 [ 362.447934][ T6956] loop3: detected capacity change from 0 to 4096 [ 362.882772][ T1741] hdpvr 2-1:0.0: Could not setup controls [ 362.892120][ T1741] hdpvr 2-1:0.0: registering videodev failed [ 362.966841][ T6956] ntfs3(loop3): failed to convert "0080" to cp857 [ 363.017378][ T1741] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -71 [ 363.119068][ T6954] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 363.138970][ T1741] usb 2-1: USB disconnect, device number 6 [ 363.373492][ T6954] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 363.466818][ T6954] overlayfs: upper fs does not support tmpfile. [ 363.507761][ T6954] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 364.233628][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.458644][ T6979] netlink: 24 bytes leftover after parsing attributes in process `syz.3.424'. [ 364.471618][ T6979] netlink: 264 bytes leftover after parsing attributes in process `syz.3.424'. [ 364.480917][ T6979] netlink: 80 bytes leftover after parsing attributes in process `syz.3.424'. [ 365.125006][ T6992] loop3: detected capacity change from 0 to 164 [ 365.214706][ T6992] Unable to read rock-ridge attributes [ 365.275675][ T6992] Unable to read rock-ridge attributes [ 365.380925][ T6996] loop1: detected capacity change from 0 to 1024 [ 365.546051][ T6996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 365.757860][ T6996] EXT4-fs error (device loop1): ext4_lookup:1781: inode #2: comm syz.1.432: bad inode number: 15 [ 365.831538][ T6996] EXT4-fs (loop1): Remounting filesystem read-only [ 366.142114][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.151887][ T7009] loop3: detected capacity change from 0 to 1024 [ 366.160207][ T7009] EXT4-fs: Ignoring removed nobh option [ 366.166263][ T7009] EXT4-fs: Ignoring removed bh option [ 366.313973][ T7009] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.338818][ T7015] loop4: detected capacity change from 0 to 64 [ 366.985237][ T7024] netlink: 96 bytes leftover after parsing attributes in process `syz.1.443'. [ 366.996640][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.300079][ T7029] loop0: detected capacity change from 0 to 1024 [ 367.482545][ T7029] hfsplus: trying to free free bnode 0(1) [ 367.866518][ T3509] hfsplus: b-tree write err: -5, ino 4 [ 368.218103][ T7042] netlink: 20 bytes leftover after parsing attributes in process `syz.3.452'. [ 368.227807][ T7042] netlink: 'syz.3.452': attribute type 9 has an invalid length. [ 368.625435][ T7046] loop0: detected capacity change from 0 to 8 [ 369.345475][ T7054] tmpfs: Bad value for 'mpol' [ 369.347909][ T7048] loop4: detected capacity change from 0 to 4096 [ 369.537307][ T7060] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 369.804840][ T1741] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 370.061788][ T1741] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.074922][ T1741] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 370.084761][ T1741] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.153793][ T1741] usb 2-1: config 0 descriptor?? [ 370.248196][ T7067] loop2: detected capacity change from 0 to 256 [ 370.258282][ T5882] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 370.300863][ T7067] MINIX-fs: mounting file system with errors, running fsck is recommended [ 370.439543][ T5882] usb 1-1: Using ep0 maxpacket: 32 [ 370.449980][ T7067] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 370.470548][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 370.482541][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.496096][ T5882] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 370.505824][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.646915][ T5882] usb 1-1: config 0 descriptor?? [ 370.654312][ T1741] lg-g15 0003:046D:C222.000A: unbalanced collection at end of report description [ 370.754820][ T1741] lg-g15 0003:046D:C222.000A: probe with driver lg-g15 failed with error -22 [ 370.852389][ T9] usb 2-1: USB disconnect, device number 7 [ 370.990670][ T7075] loop3: detected capacity change from 0 to 16 [ 371.020230][ T7075] erofs (device loop3): mounted with root inode @ nid 36. [ 371.085299][ T7075] erofs (device loop3): corrupted dir block 8200 @ nid 36 [ 371.150365][ T5882] kone 0003:1E7D:2CED.000B: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.0-1/input0 [ 371.330171][ T5882] kone 0003:1E7D:2CED.000B: couldn't init struct kone_device [ 371.343584][ T5882] kone 0003:1E7D:2CED.000B: couldn't install mouse [ 371.416101][ T5882] kone 0003:1E7D:2CED.000B: probe with driver kone failed with error -5 [ 371.465850][ T5882] usb 1-1: USB disconnect, device number 8 [ 371.531786][ T7079] loop4: detected capacity change from 0 to 64 [ 373.024989][ T7104] loop0: detected capacity change from 0 to 256 [ 373.079037][ T7104] exfat: Deprecated parameter 'namecase' [ 373.088789][ T7104] exfat: Deprecated parameter 'utf8' [ 373.094774][ T7101] loop2: detected capacity change from 0 to 1024 [ 373.147604][ T7095] loop3: detected capacity change from 0 to 4096 [ 373.165764][ T7101] EXT4-fs: Ignoring removed nobh option [ 373.172015][ T7101] EXT4-fs: Ignoring removed bh option [ 373.234262][ T7095] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 373.270800][ T7101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 373.298691][ T7104] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe649ead, utbl_chksum : 0xe619d30d) [ 373.540101][ T7109] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.481: inode #1869377390: comm syz.2.481: iget: illegal inode # [ 373.623264][ T7109] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.481: error while reading EA inode 1869377390 err=-117 [ 374.048694][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.116016][ T7095] syz.3.477 (7095) used greatest stack depth: 4936 bytes left [ 374.722083][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 374.734901][ T7124] vlan2: entered promiscuous mode [ 374.740273][ T7124] mac80211_hwsim hwsim6 wlan1: entered promiscuous mode [ 374.833094][ T5797] Bluetooth: hci1: command 0x0406 tx timeout [ 374.839716][ T5090] Bluetooth: hci2: command 0x0406 tx timeout [ 374.839781][ T5790] Bluetooth: hci3: command 0x0406 tx timeout [ 374.952042][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 374.987270][ T7127] loop1: detected capacity change from 0 to 4096 [ 375.010804][ T9] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 375.025877][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.039793][ T7127] ntfs3(loop1): It is recommened to use chkdsk. [ 375.064303][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 375.072995][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 375.084371][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 375.093172][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 375.101686][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc1c00 [ 375.109945][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc2c00 [ 375.121662][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc4c00 [ 375.129928][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffc8c00 [ 375.142837][ T7127] ntfs3(loop1): try to read out of volume at offset 0x3fffffd0c00 [ 375.191429][ T9] usb 3-1: config 0 descriptor?? [ 375.216783][ T9] gspca_main: sunplus-2.14.0 probing 041e:400b [ 375.710080][ T7134] loop3: detected capacity change from 0 to 1024 [ 375.829696][ T3630] hfsplus: b-tree write err: -5, ino 4 [ 375.876949][ T7134] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. leaving read-only. [ 375.890775][ T9] gspca_sunplus: reg_r err -71 [ 375.893731][ T5882] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 375.896526][ T9] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 375.973016][ T9] usb 3-1: USB disconnect, device number 5 [ 376.138463][ T5882] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 376.159876][ T5882] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 376.171350][ T5882] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 376.187741][ T5882] usb 5-1: New USB device found, idVendor=056a, idProduct=00f0, bcdDevice= 0.00 [ 376.197658][ T5882] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 376.219047][ T7138] loop1: detected capacity change from 0 to 64 [ 376.251718][ T5882] usb 5-1: config 0 descriptor?? [ 376.754971][ T5882] wacom 0003:056A:00F0.000C: unbalanced delimiter at end of report description [ 376.839503][ T5882] wacom 0003:056A:00F0.000C: parse failed [ 376.848920][ T5882] wacom 0003:056A:00F0.000C: probe with driver wacom failed with error -22 [ 376.930520][ T5882] usb 5-1: USB disconnect, device number 3 [ 377.265966][ T7150] loop3: detected capacity change from 0 to 512 [ 377.322645][ T7150] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 377.565711][ T5796] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 377.633469][ T7158] tmpfs: Cannot enable swap on remount if it was disabled on first mount [ 378.555438][ T7170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.510'. [ 378.565943][ T7170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.510'. [ 380.177650][ T7180] loop1: detected capacity change from 0 to 32768 [ 380.190505][ T7180] XFS: noikeep mount option is deprecated. [ 380.308715][ T7180] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 380.434936][ T7180] XFS (loop1): Metadata CRC error detected at xfs_agf_read_verify+0x2b1/0x310, xfs_agf block 0x1 [ 380.435194][ T7180] XFS (loop1): Unmount and run xfs_repair [ 380.435284][ T7180] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 380.435403][ T7180] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 01 00 00 XAGF............ [ 380.435516][ T7180] 00000010: 00 00 00 00 00 00 00 02 00 00 00 04 00 00 00 01 ................ [ 380.435645][ T7180] 00000020: 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00 06 ................ [ 380.435754][ T7180] 00000030: 00 00 00 06 00 00 0d cb 00 00 0d ca 00 00 00 00 ................ [ 380.435860][ T7180] 00000040: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 47 a7 4b ab ..*.w.B.....G.K. [ 380.435967][ T7180] 00000050: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 380.436076][ T7180] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 380.436187][ T7180] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 380.436286][ T7180] XFS (loop1): metadata I/O error in "xfs_read_agf+0x235/0x510" at daddr 0x1 len 1 error 74 [ 380.436623][ T7180] XFS (loop1): Error -117 reserving per-AG metadata reserve pool. [ 380.436789][ T7180] XFS (loop1): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x4c1/0x550 (fs/xfs/xfs_fsops.c:566). Shutting down filesystem. [ 380.437038][ T7180] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 380.437153][ T7180] XFS (loop1): Ending clean mount [ 380.437815][ T7180] XFS (loop1): Error -5 reserving per-AG metadata reserve pool. [ 382.217561][ T7206] loop2: detected capacity change from 0 to 40427 [ 382.261572][ T7206] F2FS-fs (loop2): Wrong SIT boundary, start(1536) end(2560) blocks(0) [ 382.261724][ T7206] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 382.265318][ T7206] F2FS-fs (loop2): invalid crc value [ 382.735663][ T7217] loop0: detected capacity change from 0 to 1024 [ 382.770373][ T7217] EXT4-fs: Ignoring removed oldalloc option [ 382.770987][ T7217] EXT4-fs: Ignoring removed orlov option [ 382.800678][ T7217] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 383.084713][ T7217] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 383.242866][ T7217] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4115: comm syz.0.528: Allocating blocks 481-513 which overlap fs metadata [ 383.258865][ T7206] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 383.259004][ T7206] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 383.555712][ T7220] loop4: detected capacity change from 0 to 4096 [ 383.618341][ T7220] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 383.736562][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.796110][ T7227] loop1: detected capacity change from 0 to 64 [ 384.071595][ T7220] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 384.197644][ T7220] ntfs3(loop4): ino=5, "/" indx_read [ 384.206526][ T7220] ntfs3(loop4): ino=5, ntfs_readdir [ 384.379809][ T7229] loop3: detected capacity change from 0 to 2048 [ 384.515029][ T7229] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 384.528108][ T7229] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 385.029993][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.221998][ T30] audit: type=1326 audit(1743213629.775:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7238 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 385.247755][ T30] audit: type=1326 audit(1743213629.785:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7238 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 385.273926][ T30] audit: type=1326 audit(1743213629.805:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7238 comm="syz.1.537" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x0 [ 385.300159][ T30] audit: type=1326 audit(1743213629.825:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7238 comm="syz.1.537" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7fa56db8d169 code=0x0 [ 385.598779][ T7243] loop3: detected capacity change from 0 to 512 [ 385.631972][ T7243] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 385.684674][ T7243] EXT4-fs (loop3): invalid journal inode [ 385.690663][ T7243] EXT4-fs (loop3): can't get journal size [ 385.747228][ T7243] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002] [ 385.792280][ T7243] System zones: 1-12, 13-13 [ 385.822720][ T7243] EXT4-fs error (device loop3): ext4_iget_extra_inode:4704: inode #15: comm syz.3.538: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 385.898771][ T7243] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.538: couldn't read orphan inode 15 (err -117) [ 385.923784][ T7243] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 386.147950][ T7255] netlink: 'syz.2.541': attribute type 1 has an invalid length. [ 386.156266][ T7255] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.541'. [ 386.280318][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.518657][ T7287] random: crng reseeded on system resumption [ 389.650877][ T7297] loop1: detected capacity change from 0 to 2048 [ 389.784336][ T7297] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 390.003079][ T7305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.565'. [ 390.095907][ T7307] overlayfs: conflicting options: metacopy=off,verity=on [ 390.579809][ T7315] loop2: detected capacity change from 0 to 256 [ 390.800396][ T7317] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 392.072022][ T5882] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 392.257249][ T5882] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.268423][ T5882] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 392.280720][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.336666][ T5882] usb 2-1: config 0 descriptor?? [ 392.384115][ T1741] usb 1-1: new full-speed USB device number 9 using dummy_hcd [ 392.628964][ T1741] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 242, using maximum allowed: 30 [ 392.646770][ T1741] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.658395][ T1741] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 242 [ 392.675987][ T1741] usb 1-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00 [ 392.685756][ T1741] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.705656][ T1741] usb 1-1: config 0 descriptor?? [ 392.821665][ T5882] lg-g15 0003:046D:C222.000D: unbalanced collection at end of report description [ 392.910113][ T5882] lg-g15 0003:046D:C222.000D: probe with driver lg-g15 failed with error -22 [ 393.062349][ T9] usb 2-1: USB disconnect, device number 8 [ 393.230670][ T1741] lenovo 0003:17EF:60A3.000E: hidraw0: USB HID v0.03 Device [HID 17ef:60a3] on usb-dummy_hcd.0-1/input0 [ 393.378091][ T7354] loop3: detected capacity change from 0 to 256 [ 393.389685][ T7354] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 393.404249][ T7354] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 393.426159][ T9] usb 1-1: USB disconnect, device number 9 [ 393.512573][ T7354] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 394.928323][ T30] audit: type=1326 audit(1743213639.505:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 394.954874][ T30] audit: type=1326 audit(1743213639.505:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.121848][ T30] audit: type=1326 audit(1743213639.595:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.147725][ T30] audit: type=1326 audit(1743213639.595:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.170648][ T30] audit: type=1326 audit(1743213639.595:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.199238][ T30] audit: type=1326 audit(1743213639.625:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.222858][ T30] audit: type=1326 audit(1743213639.625:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.248704][ T30] audit: type=1326 audit(1743213639.625:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1185b8d169 code=0x7ffc0000 [ 395.287982][ T7382] loop0: detected capacity change from 0 to 1024 [ 395.306292][ T7382] EXT4-fs: inline encryption not supported [ 395.348365][ T7382] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 395.449088][ T7382] EXT4-fs error (device loop0): ext4_map_blocks:706: inode #3: block 1: comm syz.0.600: lblock 1 mapped to illegal pblock 1 (length 1) [ 395.548417][ T7382] EXT4-fs (loop0): Remounting filesystem read-only [ 395.558727][ T7382] Quota error (device loop0): write_blk: dquota write failed [ 395.567094][ T7382] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 395.577730][ T7382] EXT4-fs (loop0): 1 orphan inode deleted [ 395.588816][ T7382] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 395.999752][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.053124][ T7393] loop4: detected capacity change from 0 to 256 [ 396.173865][ T7393] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 396.188210][ T7393] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 396.429635][ T7400] tipc: Enabling of bearer rejected, failed to enable media [ 397.511000][ T7418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.617'. [ 397.537522][ T7421] netlink: 16 bytes leftover after parsing attributes in process `syz.4.616'. [ 398.029875][ T7428] loop1: detected capacity change from 0 to 164 [ 398.099441][ T7431] loop3: detected capacity change from 0 to 256 [ 398.115090][ T7431] exfat: Deprecated parameter 'utf8' [ 398.121315][ T7431] exfat: Deprecated parameter 'namecase' [ 398.340134][ T7431] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 398.568538][ T7433] loop0: detected capacity change from 0 to 1024 [ 398.814697][ T7433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.827638][ T7433] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 399.076899][ T7433] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 399.150267][ T7445] loop2: detected capacity change from 0 to 256 [ 399.303401][ T7449] loop4: detected capacity change from 0 to 2048 [ 399.312682][ T7445] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 399.415869][ T7449] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.565924][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.736831][ T7454] loop2: detected capacity change from 0 to 256 [ 399.895551][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.365336][ T7460] loop1: detected capacity change from 0 to 16 [ 400.460937][ T7460] erofs (device loop1): mounted with root inode @ nid 36. [ 400.816315][ T7456] loop3: detected capacity change from 0 to 32768 [ 400.835773][ T7456] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.633 (7456) [ 400.855927][ T7456] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 400.870354][ T7456] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 400.882048][ T7456] BTRFS info (device loop3): using free-space-tree [ 401.408632][ T5796] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 404.073371][ T7512] loop2: detected capacity change from 0 to 32768 [ 404.278865][ T7512] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 404.302112][ T7512] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 404.316845][ T7512] bcachefs (loop2): Version upgrade required: [ 404.316845][ T7512] Version upgrade from 0.10: bkey_renumber to 1.7: mi_btree_bitmap incomplete [ 404.316845][ T7512] Doing incompatible version upgrade from 0.10: bkey_renumber to 1.25: extent_flags [ 404.316845][ T7512] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 404.390500][ T7512] bcachefs (loop2): dropping and reconstructing all alloc info [ 404.649843][ T7512] invalid bkey in btree_node btree=inodes level=0: u64s 18 type inode_v3 0:536870914:U32_MAX len 0 ver 0: [ 404.649950][ T7512] mode=100740 [ 404.650018][ T7512] flags=(5300000) [ 404.650082][ T7512] journal_seq=4 [ 404.650147][ T7512] hash_seed=d483206f1ed95abf [ 404.650215][ T7512] hash_type=siphash [ 404.650279][ T7512] bi_size=100 [ 404.650341][ T7512] bi_sectors=8 [ 404.650405][ T7512] bi_version=1126999418470400 [ 404.650473][ T7512] bi_atime=0 [ 404.650534][ T7512] bi_ctime=0 [ 404.650596][ T7512] bi_mtime=0 [ 404.650658][ T7512] bi_otime=2780562352 [ 404.650724][ T7512] bi_uid=2780562352 [ 404.650788][ T7512] bi_gid=0 [ 404.650848][ T7512] bi_nlink=0 [ 404.650910][ T7512] bi_generation=0 [ 404.650979][ T7512] bi_dev=0 [ 404.651237][ T7512] bi_data_checksum=0 [ 404.651303][ T7512] bi_compression=0 [ 404.651369][ T7512] bi_project=0 [ 404.651432][ T7512] bi_background_compression=0 [ 404.651501][ T7512] bi_data_replicas=0 [ 404.651565][ T7512] bi_promote_target=0 [ 404.651631][ T7512] bi_foreground_target=0 [ 404.651697][ T7512] bi_background_target=0 [ 404.651783][ T7512] bi_erasure_code=0 [ 404.651849][ T7512] bi_fields_set=0 [ 404.651913][ T7512] bi_dir=0 [ 404.651980][ T7512] bi_dir_offset=0 [ 404.652044][ T7512] bi_subvol=0 [ 404.652106][ T7512] bi_parent_subvol=0 [ 404.652171][ T7512] bi_nocow=0 [ 404.652233][ T7512] bi_depth=0 [ 404.652295][ T7512] bi_inodes_32bit=0 [ 404.652365][ T7512] invalid fields_start (got 0, min 6 max 13): deleting [ 404.979357][ T7512] bcachefs (loop2): error validating btree node on loop2 at btree deleted_inodes level 0/0 [ 404.979480][ T7512] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1db8f60c84bb244c written 65535 min_key R POS_MIN durability: 1 ptr: 0:42:0 gen 0 [ 404.979593][ T7512] node offset 8/65535: btree node data missing: expected 65535 sectors, found 8, exiting [ 405.015571][ T7512] bcachefs (loop2): Unable to continue, halting [ 405.029586][ T7512] bcachefs (loop2): flagging btree deleted_inodes lost data [ 405.037264][ T7512] bcachefs (loop2): running explicit recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 405.049309][ T7512] bcachefs (loop2): running explicit recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 405.063678][ T7512] error reading btree root btree=deleted_inodes level=0: btree_node_read_error, fixing [ 405.076579][ T7512] bcachefs (loop2): scan_for_btree_nodes... [ 405.706217][ T7537] netlink: 100 bytes leftover after parsing attributes in process `syz.0.659'. [ 405.754793][ T7535] loop1: detected capacity change from 0 to 4096 [ 405.763554][ T7512] bcachefs (loop2): btree node scan found 7 nodes after overwrites [ 405.772134][ T7512] done [ 405.775098][ T7512] bcachefs (loop2): check_topology... [ 405.777840][ T7512] bcachefs (loop2): btree root deleted_inodes unreadable, must recover from scan [ 405.793765][ T7512] bcachefs (loop2): bch2_get_scanned_nodes(): recovery btree=deleted_inodes level=0 POS_MIN - SPOS_MAX [ 405.806002][ T7512] bcachefs (loop2): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1db8f60c84bb244c written 8 min_key POS_MIN durability: 1 ptr: 0:42:0 gen 0 [ 405.837792][ T7512] done [ 405.845878][ T7512] bcachefs (loop2): accounting_read... done [ 405.856502][ T7512] bcachefs (loop2): alloc_read... done [ 405.862538][ T7512] bcachefs (loop2): snapshots_read... done [ 405.872245][ T7512] bcachefs (loop2): done starting filesystem [ 406.027443][ T5805] bcachefs (loop2): shutting down [ 406.121709][ T5805] bcachefs (loop2): shutdown complete [ 406.424340][ T7543] mkiss: ax0: crc mode is auto. [ 406.580382][ T7539] loop3: detected capacity change from 0 to 4096 [ 406.607400][ T7539] ntfs3: Bad value for 'uid' [ 406.613451][ T7539] ntfs3: Bad value for 'uid' [ 406.812906][ T7539] netlink: zone id is out of range [ 406.818372][ T7539] netlink: zone id is out of range [ 406.824131][ T7539] netlink: zone id is out of range [ 406.829468][ T7539] netlink: zone id is out of range [ 406.834982][ T7539] netlink: zone id is out of range [ 406.840279][ T7539] netlink: zone id is out of range [ 406.846581][ T7539] netlink: zone id is out of range [ 406.852077][ T7539] netlink: zone id is out of range [ 406.857401][ T7539] netlink: zone id is out of range [ 406.862847][ T7539] netlink: zone id is out of range [ 407.966495][ T7564] loop1: detected capacity change from 0 to 16 [ 408.265411][ T7567] warning: `syz.0.673' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 409.029740][ T7577] loop4: detected capacity change from 0 to 128 [ 409.099519][ T7577] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 409.375244][ T7582] loop3: detected capacity change from 0 to 1024 [ 409.483048][ T7582] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869) [ 409.493950][ T7582] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 409.549716][ T7582] EXT4-fs (loop3): invalid journal inode [ 409.556001][ T7582] EXT4-fs (loop3): can't get journal size [ 409.564315][ T5789] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 409.617790][ T7582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 409.731647][ T7582] EXT4-fs (loop3): Can't support bigalloc feature without extents feature [ 409.731647][ T7582] [ 409.863680][ T7591] loop2: detected capacity change from 0 to 8 [ 410.119456][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.459950][ T7596] loop0: detected capacity change from 0 to 2048 [ 410.540478][ T7596] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 410.636597][ T7605] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 412.570535][ T7631] pimreg: entered allmulticast mode [ 412.858499][ T7636] loop0: detected capacity change from 0 to 64 [ 413.154728][ T7640] loop3: detected capacity change from 0 to 512 [ 413.194805][ T7640] EXT4-fs: Ignoring removed nomblk_io_submit option [ 413.202227][ T7640] EXT4-fs: Ignoring removed mblk_io_submit option [ 413.300161][ T7640] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 413.309408][ T7640] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 413.402277][ T7640] EXT4-fs (loop3): 1 truncate cleaned up [ 413.410277][ T7640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.440658][ T7640] EXT4-fs error (device loop3): ext4_map_blocks:672: inode #2: block 4: comm syz.3.705: lblock 0 mapped to illegal pblock 4 (length 1) [ 413.476507][ T7640] EXT4-fs (loop3): Remounting filesystem read-only [ 413.645891][ T7650] loop2: detected capacity change from 0 to 128 [ 413.656176][ T7651] loop1: detected capacity change from 0 to 8 [ 413.698036][ T7652] loop0: detected capacity change from 0 to 8 [ 413.738055][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.747945][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 413.800207][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.464791][ T7672] loop1: detected capacity change from 0 to 128 [ 415.496880][ T7666] loop3: detected capacity change from 0 to 32768 [ 415.507976][ T7666] XFS (loop3): invalid logbufsize: 464 [not 16k,32k,64k,128k or 256k] [ 415.666365][ T7672] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 415.777540][ T7672] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 415.935091][ T7676] loop4: detected capacity change from 0 to 1024 [ 416.323097][ T7678] mkiss: ax0: crc mode is auto. [ 416.412247][ T3509] hfsplus: b-tree write err: -5, ino 4 [ 417.288704][ T7694] can0: slcan on ttyS3. [ 417.424942][ T7694] can0 (unregistered): slcan off ttyS3. [ 419.286514][ T7721] loop2: detected capacity change from 0 to 1024 [ 419.288786][ T7725] netlink: 256 bytes leftover after parsing attributes in process `syz.1.743'. [ 419.303696][ T7725] netlink: 72 bytes leftover after parsing attributes in process `syz.1.743'. [ 419.753210][ T3509] hfsplus: b-tree write err: -5, ino 4 [ 420.103210][ T7733] loop4: detected capacity change from 0 to 512 [ 420.157313][ T7733] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 420.331815][ T7733] EXT4-fs (loop4): 1 truncate cleaned up [ 420.339581][ T7733] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 420.547230][ T7744] program syz.3.751 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 420.595138][ T7733] EXT4-fs: Ignoring removed orlov option [ 420.601970][ T7733] EXT4-fs: can't change dax mount option while remounting [ 420.955072][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.964455][ T7747] loop2: detected capacity change from 0 to 4096 [ 420.984528][ T7747] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 421.323233][ T7747] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 422.404670][ T7771] loop1: detected capacity change from 0 to 64 [ 423.474357][ T1741] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 423.536934][ T7788] netlink: 8 bytes leftover after parsing attributes in process `syz.4.774'. [ 423.703910][ T1741] usb 3-1: config index 0 descriptor too short (expected 23569, got 27) [ 423.715611][ T1741] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 423.794281][ T7780] loop1: detected capacity change from 0 to 4096 [ 423.812976][ T1741] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 423.822727][ T1741] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 423.834185][ T1741] usb 3-1: Manufacturer: syz [ 423.905402][ T1741] usb 3-1: config 0 descriptor?? [ 424.228000][ T1741] rc_core: IR keymap rc-hauppauge not found [ 424.234499][ T1741] Registered IR keymap rc-empty [ 424.241584][ T1741] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0 [ 424.257583][ T1741] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input9 [ 424.509863][ C1] igorplugusb 3-1:0.0: receive overflow invalid: 28 [ 424.770240][ T1741] usb 3-1: USB disconnect, device number 6 [ 425.046939][ T7804] loop1: detected capacity change from 0 to 47 [ 425.175944][ T7804] MINIX-fs: deleted inode referenced: 9 [ 425.215906][ T7804] MINIX-fs: deleted inode referenced: 9 [ 425.861678][ T7815] tmpfs: Bad value for 'mpol' [ 426.157246][ T7820] loop4: detected capacity change from 0 to 512 [ 426.264309][ T7820] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 426.298355][ T7820] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002] [ 426.341583][ T7820] System zones: 1-12 [ 426.346717][ T7820] EXT4-fs (loop4): orphan cleanup on readonly fs [ 426.422779][ T7820] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 426.495102][ T7820] EXT4-fs (loop4): 1 truncate cleaned up [ 426.507002][ T7820] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 426.545174][ T30] audit: type=1326 audit(1743213671.125:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.0.791" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8f6ff8d169 code=0x0 [ 426.928060][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.963810][ T7835] loop1: detected capacity change from 0 to 256 [ 427.004236][ T7835] exfat: Deprecated parameter 'utf8' [ 427.079704][ T7835] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4d5ffc9d, utbl_chksum : 0xe619d30d) [ 427.888380][ T7845] loop2: detected capacity change from 0 to 1024 [ 428.006452][ T7845] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.522882][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.840427][ T7867] loop0: detected capacity change from 0 to 32768 [ 429.883325][ T7867] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.810 (7867) [ 429.948295][ T7867] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 429.963789][ T7867] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 429.973585][ T7867] BTRFS error (device loop0): ignorebadroots must be used with ro mount option [ 429.983122][ T7867] BTRFS info (device loop0): disk space caching is enabled [ 429.990601][ T7867] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 430.035824][ T7867] BTRFS error (device loop0): open_ctree failed: -22 [ 430.273633][ T7880] loop2: detected capacity change from 0 to 16 [ 430.385998][ T7880] erofs (device loop2): mounted with root inode @ nid 36. [ 431.804502][ T7882] loop3: detected capacity change from 0 to 32768 [ 431.818421][ T7890] netlink: 12 bytes leftover after parsing attributes in process `syz.2.819'. [ 431.860213][ T7882] (syz.3.815,7882,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 431.872970][ T7882] (syz.3.815,7882,1):ocfs2_inode_is_valid_to_delete:866 ERROR: Skipping delete of root inode. [ 431.903893][ T7882] (syz.3.815,7882,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 432.633712][ T7898] loop4: detected capacity change from 0 to 512 [ 432.664161][ T7898] ext4: Unknown parameter 'noacl' [ 433.189626][ T7906] loop1: detected capacity change from 0 to 2048 [ 433.230629][ T7906] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 433.241904][ T7906] UDF-fs: Scanning with blocksize 512 failed [ 433.326276][ T7906] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 434.025420][ T7920] netlink: 24 bytes leftover after parsing attributes in process `syz.4.834'. [ 434.578818][ T7922] loop1: detected capacity change from 0 to 4096 [ 435.204249][ T7922] syz.1.832 (7922) used greatest stack depth: 4904 bytes left [ 437.510714][ T7963] loop4: detected capacity change from 0 to 512 [ 437.639493][ T7963] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 437.652849][ T7963] ext4 filesystem being mounted at /179/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 437.775110][ T7967] loop0: detected capacity change from 0 to 4096 [ 437.857829][ T7963] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.853: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1 [ 437.927543][ T7963] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 12: comm syz.4.853: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 437.958975][ T7963] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 13: comm syz.4.853: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0 [ 438.070743][ T7963] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 14: comm syz.4.853: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 438.168931][ T7961] loop3: detected capacity change from 0 to 8192 [ 438.463982][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 439.796780][ T7993] netlink: 11 bytes leftover after parsing attributes in process `syz.4.864'. [ 439.835459][ T7992] loop1: detected capacity change from 0 to 1024 [ 440.629686][ T8005] loop0: detected capacity change from 0 to 1024 [ 440.634923][ T8004] loop4: detected capacity change from 0 to 1024 [ 441.083590][ T8003] loop1: detected capacity change from 0 to 4096 [ 441.389517][ T3630] hfsplus: b-tree write err: -5, ino 4 [ 442.219895][ T8024] loop0: detected capacity change from 0 to 256 [ 442.423085][ T8028] netlink: 56 bytes leftover after parsing attributes in process `syz.2.882'. [ 443.506208][ T8045] mmap: syz.2.890 (8045) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 443.962917][ T8052] netlink: 8 bytes leftover after parsing attributes in process `syz.3.894'. [ 444.816063][ T8067] netlink: 'syz.4.900': attribute type 3 has an invalid length. [ 445.401186][ T8077] loop0: detected capacity change from 0 to 1024 [ 445.412527][ T8077] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 445.424820][ T8077] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 445.436261][ T8077] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 445.446507][ T8077] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (7003!=20869) [ 445.456557][ T8077] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 445.478793][ T8077] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #17: comm syz.0.905: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 445.507156][ T8077] EXT4-fs (loop0): no journal found [ 445.924897][ T8085] loop1: detected capacity change from 0 to 256 [ 446.040576][ T8085] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 446.057407][ T8085] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 446.375846][ T8091] loop4: detected capacity change from 0 to 2048 [ 446.449267][ T8093] loop2: detected capacity change from 0 to 128 [ 446.565766][ T8091] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 447.284653][ T8105] netlink: 20 bytes leftover after parsing attributes in process `syz.3.920'. [ 447.363394][ T8101] loop0: detected capacity change from 0 to 1024 [ 447.437453][ T8101] EXT4-fs: Ignoring removed oldalloc option [ 447.444011][ T8101] EXT4-fs: Ignoring removed bh option [ 447.555167][ T8101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 448.158941][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 448.889448][ T8129] loop0: detected capacity change from 0 to 2048 [ 449.021611][ T8129] EXT4-fs error (device loop0): __ext4_fill_super:5502: inode #2: comm syz.0.927: iget: bad extended attribute block 281474976710655 [ 449.045828][ T8129] EXT4-fs (loop0): get root inode failed [ 449.055013][ T8129] EXT4-fs (loop0): mount failed [ 449.400485][ T8139] loop1: detected capacity change from 0 to 512 [ 449.486709][ T8139] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 449.603285][ T8139] EXT4-fs (loop1): 1 truncate cleaned up [ 449.611905][ T8139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.722854][ T8142] netlink: 104 bytes leftover after parsing attributes in process `syz.3.933'. [ 450.113049][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.475581][ T8157] loop4: detected capacity change from 0 to 256 [ 450.644085][ T8160] loop0: detected capacity change from 0 to 128 [ 450.669598][ T8157] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xc14df490, utbl_chksum : 0xe619d30d) [ 450.685121][ T8160] EXT4-fs (loop0): Test dummy encryption mode enabled [ 450.742488][ T8160] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 450.784540][ T8160] ext4 filesystem being mounted at /189/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 451.018705][ T8166] loop3: detected capacity change from 0 to 128 [ 451.218786][ T8166] FAT-fs (loop3): error, clusters badly computed (2 != 0) [ 451.226599][ T8166] FAT-fs (loop3): Filesystem has been set read-only [ 451.257350][ T5793] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 451.573375][ T8171] loop4: detected capacity change from 0 to 256 [ 451.654134][ T8171] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 451.692498][ T8174] netlink: 'syz.1.948': attribute type 2 has an invalid length. [ 452.255211][ T8183] loop1: detected capacity change from 0 to 16 [ 452.292372][ T8183] erofs (device loop1): mounted with root inode @ nid 36. [ 453.205943][ T8198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.959'. [ 454.642184][ T8210] loop3: detected capacity change from 0 to 32768 [ 454.668886][ T8210] (syz.3.964,8210,0):ocfs2_verify_volume:2309 ERROR: bad cluster size bit found: 327693 [ 454.680457][ T8210] (syz.3.964,8210,0):ocfs2_verify_volume:2328 ERROR: status = -22 [ 454.693141][ T8210] (syz.3.964,8210,0):ocfs2_fill_super:989 ERROR: superblock probe failed! [ 454.703299][ T8210] (syz.3.964,8210,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 455.283804][ T9] kernel write not supported for file /input/event0 (pid: 9 comm: kworker/0:0) [ 455.894788][ T8230] block nbd4: not configured, cannot reconfigure [ 456.697627][ T8238] loop2: detected capacity change from 0 to 1024 [ 456.767220][ T8238] EXT4-fs: Ignoring removed nomblk_io_submit option [ 456.819375][ T8238] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 456.888447][ T8238] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 456.930535][ T8245] loop3: detected capacity change from 0 to 128 [ 456.962911][ T8238] System zones: 0-1, 3-36 [ 457.018992][ T8238] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.424807][ T8236] loop0: detected capacity change from 0 to 32768 [ 457.480085][ T8236] gfs2: Invalid block size shift [ 457.848404][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.202229][ T8255] loop2: detected capacity change from 0 to 64 [ 458.371652][ T30] audit: type=1800 audit(1743213702.945:23): pid=8255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.985" name="file2" dev="loop2" ino=6 res=0 errno=0 [ 459.473168][ T8276] tipc: Enabling of bearer rejected, failed to enable media [ 460.105188][ T5804] Bluetooth: hci4: link tx timeout [ 460.110589][ T5804] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 461.975078][ T8314] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1012'. [ 462.019919][ T8312] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1012'. [ 462.191603][ T5804] Bluetooth: hci4: command 0x0406 tx timeout [ 462.323875][ T8319] loop4: detected capacity change from 0 to 2048 [ 462.336943][ T8319] hpfs: Bad version 183,140. Mount readonly to go around [ 462.344687][ T8319] hpfs: please try recent version of HPFS driver at http://artax.karlin.mff.cuni.cz/~mikulas/vyplody/hpfs/index-e.cgi and if it still can't understand this format, contact author - mikulas@artax.karlin.mff.cuni.cz [ 463.369072][ T8338] loop0: detected capacity change from 0 to 256 [ 466.609310][ T8373] loop1: detected capacity change from 0 to 512 [ 466.732998][ T8373] EXT4-fs (loop1): Test dummy encryption mode enabled [ 466.906961][ T8373] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 467.018902][ T8373] EXT4-fs (loop1): 1 orphan inode deleted [ 467.027411][ T8373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 467.099282][ T8370] loop2: detected capacity change from 0 to 32768 [ 467.170801][ T8370] gfs2: fsid=meta: Trying to join cluster "lock_nolock", "meta" [ 467.185640][ T8370] gfs2: fsid=meta: Now mounting FS (format 0)... [ 467.219485][ T8370] gfs2: fsid=meta.s: journal 0 mapped with 5 extents in 0ms [ 467.476491][ T8370] gfs2: fsid=meta.s: first mount done, others may mount [ 467.623595][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.222045][ T8392] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1048'. [ 468.524439][ T8397] loop3: detected capacity change from 0 to 16 [ 468.573230][ T8397] erofs (device loop3): mounted with root inode @ nid 36. [ 469.055349][ T8401] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1053'. [ 469.161557][ T8403] loop3: detected capacity change from 0 to 512 [ 469.313378][ T8403] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 469.326854][ T8403] ext4 filesystem being mounted at /211/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 469.515530][ T8403] EXT4-fs error (device loop3): ext4_empty_dir:3086: inode #12: block 32: comm syz.3.1055: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 469.577789][ T8403] EXT4-fs warning (device loop3): ext4_empty_dir:3088: inode #12: comm syz.3.1055: directory missing '.' [ 469.958094][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.154401][ T8416] loop4: detected capacity change from 0 to 1024 [ 470.730917][ T4141] hfsplus: b-tree write err: -5, ino 4 [ 471.109150][ T8433] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1065'. [ 471.603854][ T8442] loop3: detected capacity change from 0 to 64 [ 471.871512][ T5882] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 471.924832][ T8447] loop2: detected capacity change from 0 to 128 [ 471.999627][ T8447] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 472.091203][ T5882] usb 5-1: config 0 has an invalid interface number: 153 but max is 0 [ 472.103475][ T5882] usb 5-1: config 0 has no interface number 0 [ 472.130241][ T5882] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=76.d3 [ 472.131539][ T8452] loop1: detected capacity change from 0 to 64 [ 472.139652][ T5882] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.154621][ T5882] usb 5-1: Product: syz [ 472.159002][ T5882] usb 5-1: Manufacturer: syz [ 472.164058][ T5882] usb 5-1: SerialNumber: syz [ 472.192371][ T5882] usb 5-1: config 0 descriptor?? [ 472.222267][ T5882] cp210x 5-1:0.153: cp210x converter detected [ 472.231630][ T8453] tipc: Started in network mode [ 472.236861][ T8453] tipc: Node identity aaaaaaaaaa34, cluster identity 4711 [ 472.247077][ T8453] tipc: Enabled bearer , priority 10 [ 472.619174][ T5882] cp210x 5-1:0.153: failed to get vendor val 0x000e size 3: -71 [ 472.634049][ T5882] usb 5-1: cp210x converter now attached to ttyUSB0 [ 472.665599][ T5882] usb 5-1: USB disconnect, device number 4 [ 472.701779][ T5882] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 472.715335][ T5882] cp210x 5-1:0.153: device disconnected [ 473.090452][ T30] audit: type=1326 audit(1743213717.665:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8461 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 473.113123][ C1] vkms_vblank_simulate: vblank timer overrun [ 473.123401][ T30] audit: type=1326 audit(1743213717.665:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8461 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 473.260990][ T8459] loop3: detected capacity change from 0 to 4096 [ 473.318692][ T8459] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 473.352232][ T30] audit: type=1326 audit(1743213717.745:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8461 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 473.378459][ T30] audit: type=1326 audit(1743213717.815:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8461 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 473.400855][ C1] vkms_vblank_simulate: vblank timer overrun [ 473.407773][ T30] audit: type=1326 audit(1743213717.815:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8461 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56db8d169 code=0x7ffc0000 [ 473.430247][ C1] vkms_vblank_simulate: vblank timer overrun [ 473.443070][ T5882] tipc: Node number set to 10398378 [ 473.800733][ T8459] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 473.809346][ T8471] loop4: detected capacity change from 0 to 64 [ 473.909641][ T8471] hfs: inconsistency in B*Tree (1,0,2,2,3) [ 473.921203][ T8459] ntfs3(loop3): ino=1e, mi_enum_attr [ 473.926819][ T8459] ntfs3(loop3): ino=1e, mi_enum_attr [ 474.164861][ T8475] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1086'. [ 474.448556][ T8481] loop1: detected capacity change from 0 to 64 [ 474.620596][ T8480] Trying to free block not in datazone [ 474.773901][ T8484] loop2: detected capacity change from 0 to 1024 [ 474.946280][ T8484] hfsplus: xattr searching failed [ 475.178927][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.185908][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 475.716620][ T8502] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1099'. [ 475.900389][ T8505] loop3: detected capacity change from 0 to 256 [ 475.947710][ T8505] exfat: Deprecated parameter 'utf8' [ 476.157830][ T8505] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 476.321390][ T30] audit: type=1804 audit(1743213720.875:29): pid=8505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1101" name="/newroot/219/file0/bus" dev="loop3" ino=70 res=1 errno=0 [ 476.390401][ T8515] loop4: detected capacity change from 0 to 8 [ 476.544976][ T8517] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1107'. [ 476.555218][ T8517] hsr0: entered promiscuous mode [ 476.778938][ T8519] loop2: detected capacity change from 0 to 1024 [ 477.234995][ T3509] hfsplus: b-tree write err: -5, ino 4 [ 477.558974][ T8533] loop2: detected capacity change from 0 to 1024 [ 477.702247][ T8533] hfsplus: bad catalog entry type [ 477.947552][ T3509] hfsplus: b-tree write err: -5, ino 4 [ 478.421387][ T5882] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 478.621786][ T5882] usb 2-1: Using ep0 maxpacket: 32 [ 478.656133][ T5882] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 478.664659][ T5882] usb 2-1: config 0 has no interface number 0 [ 478.671252][ T5882] usb 2-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 478.682737][ T5882] usb 2-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 478.696273][ T5882] usb 2-1: config 0 interface 1 has no altsetting 0 [ 478.703434][ T5882] usb 2-1: New USB device found, idVendor=076a, idProduct=0300, bcdDevice= 0.00 [ 478.713150][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 478.776793][ T5882] usb 2-1: config 0 descriptor?? [ 479.363056][ T5882] hid-generic 0003:076A:0300.000F: hidraw0: USB HID v0.05 Device [HID 076a:0300] on usb-dummy_hcd.1-1/input1 [ 479.533166][ T9] usb 2-1: USB disconnect, device number 9 [ 480.166048][ T8566] tipc: Enabled bearer , priority 4 [ 480.387345][ T8570] syz.4.1131 uses obsolete (PF_INET,SOCK_PACKET) [ 480.567167][ T8575] loop2: detected capacity change from 0 to 256 [ 480.580590][ T8575] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 480.593679][ T8575] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 480.699835][ T8575] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 480.803321][ T9] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 481.369191][ T8582] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 481.465800][ T8584] loop3: detected capacity change from 0 to 164 [ 481.604632][ T8584] rock: directory entry would overflow storage [ 481.611655][ T8584] rock: sig=0x66, size=4, remaining=3 [ 481.698992][ T8580] loop4: detected capacity change from 0 to 32768 [ 481.711759][ T8580] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1136 (8580) [ 481.754536][ T8580] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 481.757807][ T8584] rock: directory entry would overflow storage [ 481.765151][ T8580] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 481.771646][ T8584] rock: sig=0x66, size=4, remaining=3 [ 481.780478][ T8580] BTRFS info (device loop4): disk space caching is enabled [ 481.793758][ T8580] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 481.809967][ T9] usb 2-1: Using ep0 maxpacket: 8 [ 481.826699][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 481.838344][ T9] usb 2-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00 [ 481.847812][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 481.903860][ T9] usb 2-1: config 0 descriptor?? [ 482.066940][ T8580] BTRFS info (device loop4): rebuilding free space tree [ 482.148099][ T8580] BTRFS info (device loop4): disabling free space tree [ 482.156242][ T8580] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 482.166610][ T8580] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 482.211235][ T8580] BTRFS info (device loop4): checking UUID tree [ 482.406995][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.414552][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.422709][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.430005][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.459869][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.477761][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.485307][ T9] belkin 0003:050D:3201.0010: unknown main item tag 0x0 [ 482.510553][ T9] belkin 0003:050D:3201.0010: hiddev0,hidraw0: USB HID v0.00 Device [HID 050d:3201] on usb-dummy_hcd.1-1/input0 [ 482.558849][ T5789] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 482.601992][ T5882] usb 2-1: USB disconnect, device number 10 [ 482.861550][ T9] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 482.952773][ T8611] loop0: detected capacity change from 0 to 128 [ 482.988785][ T8611] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 483.062254][ T9] usb 4-1: Using ep0 maxpacket: 16 [ 483.105414][ T9] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 483.117039][ T9] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0 [ 483.127368][ T9] usb 4-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 483.140578][ T9] usb 4-1: config 0 interface 0 has no altsetting 0 [ 483.147743][ T9] usb 4-1: New USB device found, idVendor=172f, idProduct=0501, bcdDevice= 0.00 [ 483.162361][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 483.323706][ T9] usb 4-1: config 0 descriptor?? [ 483.863019][ T9] waltop 0003:172F:0501.0011: unknown main item tag 0x0 [ 483.875825][ T9] waltop 0003:172F:0501.0011: unknown main item tag 0x0 [ 483.931727][ T9] waltop 0003:172F:0501.0011: hidraw0: USB HID v0.00 Device [HID 172f:0501] on usb-dummy_hcd.3-1/input0 [ 483.943770][ T5882] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 484.088472][ T9] usb 4-1: USB disconnect, device number 5 [ 484.154876][ T5882] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 484.165433][ T5882] usb 3-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00 [ 484.180152][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 484.222268][ T5882] usb 3-1: config 0 descriptor?? [ 484.354760][ T8625] loop4: detected capacity change from 0 to 64 [ 484.701463][ T5882] magicmouse 0003:05AC:0265.0012: item fetching failed at offset 5/7 [ 484.736459][ T5882] magicmouse 0003:05AC:0265.0012: magicmouse hid parse failed [ 484.745039][ T5882] magicmouse 0003:05AC:0265.0012: probe with driver magicmouse failed with error -22 [ 484.899445][ T1942] usb 3-1: USB disconnect, device number 7 [ 485.057572][ T8629] loop0: detected capacity change from 0 to 1024 [ 485.179066][ T8629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 485.192276][ T8629] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 485.266996][ T8629] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz.0.1150: path /225/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0 [ 485.616502][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 485.932445][ T8647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1157'. [ 485.941857][ T8647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1157'. [ 485.979028][ T8649] loop2: detected capacity change from 0 to 64 [ 486.379949][ T8653] netlink: 'syz.1.1160': attribute type 1 has an invalid length. [ 486.392356][ T8653] netlink: 'syz.1.1160': attribute type 2 has an invalid length. [ 488.032056][ T8681] loop0: detected capacity change from 0 to 128 [ 488.199859][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.209447][ T8681] FAT-fs (loop0): Filesystem has been set read-only [ 488.216689][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.226079][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.235246][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.244385][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.253788][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.263017][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.272144][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.286620][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.297203][ T8681] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 550) [ 488.342247][ T30] audit: type=1800 audit(1743213732.745:30): pid=8681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1173" name="file2" dev="loop0" ino=73 res=0 errno=0 [ 488.347746][ T8675] loop3: detected capacity change from 0 to 32768 [ 488.363689][ T30] audit: type=1800 audit(1743213732.775:31): pid=8681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1173" name="file2" dev="loop0" ino=73 res=0 errno=0 [ 488.390525][ C0] vkms_vblank_simulate: vblank timer overrun [ 488.511497][ T1741] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 488.579012][ T8675] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 488.693646][ T1741] usb 3-1: config 0 has an invalid interface number: 117 but max is 0 [ 488.705755][ T1741] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 488.716382][ T1741] usb 3-1: config 0 has no interface number 0 [ 488.722917][ T1741] usb 3-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 488.733284][ T1741] usb 3-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 488.763415][ T1741] usb 3-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 488.773029][ T1741] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 488.781592][ T1741] usb 3-1: Product: syz [ 488.789482][ T1741] usb 3-1: Manufacturer: syz [ 488.795637][ T1741] usb 3-1: SerialNumber: syz [ 488.914007][ T1741] usb 3-1: config 0 descriptor?? [ 488.970824][ T8694] net_ratelimit: 313 callbacks suppressed [ 488.970909][ T8694] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 489.037212][ T8696] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1177'. [ 489.046845][ T8696] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1177'. [ 489.056280][ T8696] netlink: 'syz.1.1177': attribute type 7 has an invalid length. [ 489.356267][ T8675] XFS (loop3): Ending clean mount [ 489.414263][ T8675] XFS (loop3): Quotacheck needed: Please wait. [ 489.460350][ T8675] XFS (loop3): Quotacheck: Done. [ 489.586332][ T1942] usb 3-1: USB disconnect, device number 8 [ 489.597378][ T5796] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 489.668903][ T8700] x_tables: ip_tables: udp match: only valid for protocol 17 [ 491.553847][ T8726] loop3: detected capacity change from 0 to 1024 [ 491.767766][ T8723] loop0: detected capacity change from 0 to 4096 [ 491.908106][ T8732] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1193'. [ 491.974072][ T8733] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 491.990055][ T3630] hfsplus: b-tree write err: -5, ino 4 [ 492.336502][ T8735] loop1: detected capacity change from 0 to 512 [ 492.480833][ T8735] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 492.494382][ T8735] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 492.770683][ T8741] loop3: detected capacity change from 0 to 4096 [ 492.774651][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 492.830631][ T8741] NILFS (loop3): invalid segment: Checksum error in segment payload [ 492.840339][ T8741] NILFS (loop3): trying rollback from an earlier position [ 492.929717][ T8741] NILFS (loop3): recovery complete [ 492.973291][ T8751] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 493.430739][ T8760] loop2: detected capacity change from 0 to 1024 [ 493.518503][ T8760] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 493.592799][ T8760] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 493.772229][ T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 493.909376][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 493.995464][ T9] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 494.005093][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 494.061273][ T9] usb 5-1: config 0 descriptor?? [ 494.076731][ T9] cp210x 5-1:0.0: cp210x converter detected [ 494.294087][ T8771] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1209'. [ 494.560377][ T9] usb 5-1: cp210x converter now attached to ttyUSB0 [ 494.759517][ T1741] usb 5-1: USB disconnect, device number 5 [ 494.770372][ T1741] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 494.785573][ T1741] cp210x 5-1:0.0: device disconnected [ 495.889060][ T8787] loop2: detected capacity change from 0 to 64 [ 496.395731][ T8795] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1219'. [ 497.509508][ T8813] loop3: detected capacity change from 0 to 128 [ 497.751616][ T8811] loop4: detected capacity change from 0 to 4096 [ 497.916570][ T8822] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 498.011687][ T8811] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 498.083570][ T8823] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 498.243902][ T8825] loop2: detected capacity change from 0 to 512 [ 498.275139][ T8825] ext4: Invalid gid '0x00000000ffffffff' [ 498.375682][ T8830] tipc: Started in network mode [ 498.380933][ T8830] tipc: Node identity , cluster identity 4711 [ 498.387729][ T8830] tipc: Failed to obtain node identity [ 498.393725][ T8830] tipc: Enabling of bearer rejected, failed to enable media [ 498.961516][ T8834] loop2: detected capacity change from 0 to 1024 [ 499.111581][ T8834] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 499.124821][ T8834] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 500.043103][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.213934][ T8842] loop3: detected capacity change from 0 to 32768 [ 500.246829][ T8842] gfs2: fsid=meta: Trying to join cluster "lock_nolock", "meta" [ 500.259432][ T8842] gfs2: fsid=meta: Now mounting FS (format 1802)... [ 500.307311][ T8842] gfs2: fsid=meta.s: fatal: filesystem consistency error - inode = 1 19, function = gfs2_jdesc_check, file = fs/gfs2/super.c, line = 119 [ 500.322005][ T8842] gfs2: fsid=meta.s: G: s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:2 [ 500.331655][ T8842] gfs2: fsid=meta.s: H: s:SH f:eEcH e:0 p:8842 [syz.3.1241] init_journal+0x3246/0x3a40 [ 500.341896][ T8842] gfs2: fsid=meta.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0 [ 500.350374][ T8842] gfs2: fsid=meta.s: about to withdraw this file system [ 500.362395][ T8842] gfs2: fsid=meta.s: Journal recovery skipped for jid 0 until next mount. [ 500.372518][ T8842] gfs2: fsid=meta.s: Glock dequeues delayed: 0 [ 500.379218][ T8842] gfs2: fsid=meta.s: File system withdrawn [ 500.386175][ T8842] CPU: 0 UID: 0 PID: 8842 Comm: syz.3.1241 Not tainted 6.14.0-syzkaller-07540-geff5f16bfd87 #0 PREEMPT(undef) [ 500.386356][ T8842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 500.386467][ T8842] Call Trace: [ 500.386526][ T8842] [ 500.386585][ T8842] dump_stack_lvl+0x216/0x2d0 [ 500.386798][ T8842] dump_stack+0x1e/0x24 [ 500.386964][ T8842] gfs2_withdraw+0x1c7d/0x21a0 [ 500.387230][ T8842] gfs2_consist_inode_i+0x1ba/0x230 [ 500.387471][ T8842] gfs2_jdesc_check+0x187/0x430 [ 500.387655][ T8842] check_journal_clean+0x1e3/0x4c0 [ 500.387865][ T8842] ? init_journal+0x3246/0x3a40 [ 500.388009][ T8842] ? kmsan_get_metadata+0x13e/0x1c0 [ 500.388221][ T8842] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 500.388460][ T8842] init_journal+0x3246/0x3a40 [ 500.388650][ T8842] ? init_inodes+0x125/0x510 [ 500.388838][ T8842] ? init_inodes+0x125/0x510 [ 500.388978][ T8842] init_inodes+0x125/0x510 [ 500.389109][ T8842] ? gfs2_fill_super+0x3f0a/0x4bc0 [ 500.389263][ T8842] gfs2_fill_super+0x447e/0x4bc0 [ 500.389404][ T8842] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 500.389667][ T8842] ? setup_bdev_super+0xa2c/0xa90 [ 500.389868][ T8842] ? init_locking+0xf0/0x510 [ 500.390007][ T8842] get_tree_bdev_flags+0x6ec/0x910 [ 500.390224][ T8842] ? __pfx_gfs2_fill_super+0x10/0x10 [ 500.390376][ T8842] ? __pfx_gfs2_fill_super+0x10/0x10 [ 500.390529][ T8842] get_tree_bdev+0x37/0x50 [ 500.390724][ T8842] gfs2_get_tree+0x5c/0x340 [ 500.390867][ T8842] ? __pfx_gfs2_get_tree+0x10/0x10 [ 500.391017][ T8842] vfs_get_tree+0xb1/0x5a0 [ 500.391212][ T8842] ? mount_capable+0x97/0x120 [ 500.391398][ T8842] do_new_mount+0x71f/0x15e0 [ 500.391541][ T8842] ? kmsan_get_metadata+0x13e/0x1c0 [ 500.391782][ T8842] path_mount+0x742/0x1f10 [ 500.391932][ T8842] ? user_path_at+0x321/0x410 [ 500.392131][ T8842] __se_sys_mount+0x71f/0x800 [ 500.392325][ T8842] __x64_sys_mount+0xe4/0x150 [ 500.392588][ T8842] x64_sys_call+0xed5/0x3c80 [ 500.392795][ T8842] do_syscall_64+0xcd/0x1e0 [ 500.392963][ T8842] ? clear_bhb_loop+0x25/0x80 [ 500.393122][ T8842] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.393291][ T8842] RIP: 0033:0x7f0b75f8e90a [ 500.393421][ T8842] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.393551][ T8842] RSP: 002b:00007f0b76e3ae68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 500.393711][ T8842] RAX: ffffffffffffffda RBX: 00007f0b76e3aef0 RCX: 00007f0b75f8e90a [ 500.393819][ T8842] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007f0b76e3aeb0 [ 500.393924][ T8842] RBP: 0000200000000400 R08: 00007f0b76e3aef0 R09: 0000000001800004 [ 500.394024][ T8842] R10: 0000000001800004 R11: 0000000000000246 R12: 0000200000012500 [ 500.394153][ T8842] R13: 00007f0b76e3aeb0 R14: 000000000001263e R15: 0000200000000240 [ 500.394304][ T8842] [ 500.683732][ T8842] gfs2: fsid=meta.s: Error checking journal for spectator mount. [ 501.211819][ T8854] loop1: detected capacity change from 0 to 2048 [ 501.264008][ T8856] loop4: detected capacity change from 0 to 1024 [ 501.371807][ T1741] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 501.402620][ T8854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 501.469553][ T8854] ext4 filesystem being mounted at /250/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 501.552279][ T8856] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 501.581858][ T1741] usb 3-1: Using ep0 maxpacket: 32 [ 501.624562][ T1741] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 501.636346][ T1741] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 501.646779][ T1741] usb 3-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.00 [ 501.656258][ T1741] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.675964][ T1741] usb 3-1: config 0 descriptor?? [ 501.703706][ T8856] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 501.717968][ T8856] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.1248: missing EA_INODE flag [ 501.776276][ T8856] EXT4-fs (loop4): Remounting filesystem read-only [ 501.802003][ T8867] loop3: detected capacity change from 0 to 512 [ 501.826607][ T8867] EXT4-fs error (device loop3): ext4_orphan_get:1416: comm syz.3.1250: bad orphan inode 13 [ 501.855905][ T8867] ext4_test_bit(bit=12, block=4) = 1 [ 501.861802][ T8867] is_bad_inode(inode)=0 [ 501.866460][ T8867] NEXT_ORPHAN(inode)=0 [ 501.870748][ T8867] max_ino=32 [ 501.874708][ T8867] i_nlink=1 [ 501.880248][ T8867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 502.029328][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.146270][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.196727][ T1741] waterforce 0003:1044:7A4D.0013: item fetching failed at offset 0/3 [ 502.253353][ T1741] waterforce 0003:1044:7A4D.0013: hid parse failed with -22 [ 502.264673][ T1741] waterforce 0003:1044:7A4D.0013: probe with driver waterforce failed with error -22 [ 502.388901][ T1741] usb 3-1: USB disconnect, device number 9 [ 502.434986][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.909866][ T8880] loop3: detected capacity change from 0 to 1024 [ 503.146094][ T8880] hfsplus: failed to load root directory [ 503.368868][ T8880] overlay: Unknown parameter 'nobarrier' [ 503.424482][ T8877] loop4: detected capacity change from 0 to 32768 [ 503.507593][ T8877] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 503.771311][ T8897] loop1: detected capacity change from 0 to 47 [ 503.804120][ T8877] XFS (loop4): Corruption warning: Metadata has LSN (98305:16) ahead of current LSN (1:80). Please unmount and run xfs_repair (>= v4.3) to resolve. [ 503.822701][ T8877] XFS (loop4): Metadata CRC error detected at xfs_inobt_read_verify+0xae/0x2f0, xfs_inobt block 0x18 [ 503.835737][ T8877] XFS (loop4): Unmount and run xfs_repair [ 503.847804][ T8877] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 503.855637][ T8877] 00000000: 49 41 42 33 00 00 00 01 ff ff ff ff ff ff ff ff IAB3............ [ 503.864995][ T8877] 00000010: 00 00 00 00 00 00 00 18 00 01 80 01 00 00 00 10 ................ [ 503.874363][ T8877] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 47 a7 4b ab ..*.w.B.....G.K. [ 503.883704][ T8877] 00000030: 00 00 00 00 80 e5 f6 6c 00 00 04 20 00 00 00 37 .......l... ...7 [ 503.893132][ T8877] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 503.902504][ T8877] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 503.911791][ T8877] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 503.920939][ T8877] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 503.930301][ T8877] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x354/0x5c0" at daddr 0x18 len 8 error 74 [ 503.947825][ T8877] XFS (loop4): Failed to read root inode 0x420, error 117 [ 503.956011][ T8877] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair. [ 504.767438][ T8906] loop1: detected capacity change from 0 to 2048 [ 504.787591][ T8906] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 504.881560][ T8906] syz.1.1263: attempt to access beyond end of device [ 504.881560][ T8906] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 504.897229][ T8907] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 505.043329][ T8910] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1265'. [ 506.208633][ T8929] loop4: detected capacity change from 0 to 1024 [ 506.234540][ T8929] EXT4-fs: Ignoring removed orlov option [ 506.269076][ T8927] loop3: detected capacity change from 0 to 2048 [ 506.277091][ T8929] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 506.328896][ T8927] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 506.337276][ T8927] UDF-fs: Scanning with blocksize 512 failed [ 506.362447][ T8931] loop0: detected capacity change from 0 to 1024 [ 506.396772][ T8927] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 506.433392][ T8929] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 506.453807][ T30] audit: type=1800 audit(1743213751.035:32): pid=8927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1274" name="bus" dev="loop3" ino=830 res=0 errno=0 [ 506.534547][ T8931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 506.986233][ T5789] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.999759][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.007477][ T8952] netlink: 'syz.2.1283': attribute type 29 has an invalid length. [ 508.134466][ T8952] netlink: 'syz.2.1283': attribute type 29 has an invalid length. [ 508.191898][ T8948] loop0: detected capacity change from 0 to 4096 [ 508.301488][ T8946] loop1: detected capacity change from 0 to 40427 [ 508.320463][ T8946] F2FS-fs (loop1): journaled quota format not specified [ 508.563622][ T8948] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 508.851765][ T8948] fs-verity: sha512 using implementation "sha512-generic" [ 509.259303][ T8948] syz.0.1280 (8948) used greatest stack depth: 4648 bytes left [ 509.353244][ T5803] Bluetooth: hci4: unexpected event for opcode 0x1005 [ 509.377839][ T5793] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 509.909918][ T8976] loop2: detected capacity change from 0 to 8 [ 509.968687][ T8975] loop4: detected capacity change from 0 to 2048 [ 510.002579][ T8976] SQUASHFS error: zlib decompression failed, data probably corrupt [ 510.010951][ T8976] SQUASHFS error: Failed to read block 0x9b: -5 [ 510.017794][ T8976] SQUASHFS error: Unable to read metadata cache entry [99] [ 510.025500][ T8976] SQUASHFS error: Unable to read inode 0x127 [ 510.119388][ T8975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 510.299280][ T1116] ===================================================== [ 510.307018][ T1116] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x539/0xb40 [ 510.316048][ T1116] n_tty_receive_buf_closing+0x539/0xb40 [ 510.322050][ T1116] n_tty_receive_buf_common+0x1a8b/0x25b0 [ 510.328023][ T1116] n_tty_receive_buf2+0x4c/0x60 [ 510.333250][ T1116] tty_ldisc_receive_buf+0xd0/0x290 [ 510.338659][ T1116] tty_port_default_receive_buf+0xdf/0x190 [ 510.344986][ T1116] flush_to_ldisc+0x475/0xdb0 [ 510.349868][ T1116] process_scheduled_works+0xc1d/0x1e80 [ 510.356513][ T1116] worker_thread+0xea3/0x1500 [ 510.361680][ T1116] kthread+0x6ce/0xf10 [ 510.365956][ T1116] ret_from_fork+0x6d/0x90 [ 510.370594][ T1116] ret_from_fork_asm+0x1a/0x30 [ 510.375937][ T1116] [ 510.378394][ T1116] Uninit was created at: [ 510.382998][ T1116] __kmalloc_noprof+0x946/0x1260 [ 510.388161][ T1116] __tty_buffer_request_room+0x36e/0x6d0 [ 510.397667][ T1116] __tty_insert_flip_string_flags+0x14c/0x680 [ 510.405130][ T1116] uart_insert_char+0x3a1/0xa10 [ 510.410366][ T1116] serial8250_read_char+0x1a7/0x5d0 [ 510.415979][ T1116] serial8250_handle_irq+0x971/0x1130 [ 510.421747][ T1116] serial8250_default_handle_irq+0x120/0x2b0 [ 510.427968][ T1116] serial8250_interrupt+0xc5/0x360 [ 510.433428][ T1116] __handle_irq_event_percpu+0x118/0xca0 [ 510.439314][ T1116] handle_irq_event+0xef/0x2c0 [ 510.444452][ T1116] handle_edge_irq+0x340/0xfb0 [ 510.449477][ T1116] __common_interrupt+0x97/0x1f0 [ 510.454752][ T1116] common_interrupt+0x92/0xb0 [ 510.459652][ T1116] asm_common_interrupt+0x2b/0x40 [ 510.465737][ T1116] [ 510.468211][ T1116] CPU: 1 UID: 0 PID: 1116 Comm: kworker/u8:7 Not tainted 6.14.0-syzkaller-07540-geff5f16bfd87 #0 PREEMPT(undef) [ 510.480509][ T1116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 510.491222][ T1116] Workqueue: events_unbound flush_to_ldisc [ 510.501199][ T1116] ===================================================== [ 510.508284][ T1116] Disabling lock debugging due to kernel taint [ 510.515983][ T1116] Kernel panic - not syncing: kmsan.panic set ... [ 510.522591][ T1116] CPU: 1 UID: 0 PID: 1116 Comm: kworker/u8:7 Tainted: G B 6.14.0-syzkaller-07540-geff5f16bfd87 #0 PREEMPT(undef) [ 510.536220][ T1116] Tainted: [B]=BAD_PAGE [ 510.540506][ T1116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 510.550751][ T1116] Workqueue: events_unbound flush_to_ldisc [ 510.556770][ T1116] Call Trace: [ 510.560158][ T1116] [ 510.563210][ T1116] dump_stack_lvl+0x216/0x2d0 [ 510.568118][ T1116] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 510.574176][ T1116] dump_stack+0x1e/0x24 [ 510.578566][ T1116] panic+0x4e5/0xcf0 [ 510.582680][ T1116] ? __pfx_kmsan_save_stack_with_flags+0x10/0x10 [ 510.589280][ T1116] kmsan_report+0x2ca/0x2d0 [ 510.594034][ T1116] ? try_to_merge_one_page+0x2277/0x2a00 [ 510.599874][ T1116] ? __msan_warning+0x95/0x120 [ 510.604861][ T1116] ? n_tty_receive_buf_closing+0x539/0xb40 [ 510.610895][ T1116] ? n_tty_receive_buf_common+0x1a8b/0x25b0 [ 510.617029][ T1116] ? n_tty_receive_buf2+0x4c/0x60 [ 510.622292][ T1116] ? tty_ldisc_receive_buf+0xd0/0x290 [ 510.627859][ T1116] ? tty_port_default_receive_buf+0xdf/0x190 [ 510.634046][ T1116] ? flush_to_ldisc+0x475/0xdb0 [ 510.639096][ T1116] ? process_scheduled_works+0xc1d/0x1e80 [ 510.645036][ T1116] ? worker_thread+0xea3/0x1500 [ 510.650127][ T1116] ? kthread+0x6ce/0xf10 [ 510.654539][ T1116] ? ret_from_fork+0x6d/0x90 [ 510.659344][ T1116] ? ret_from_fork_asm+0x1a/0x30 [ 510.664534][ T1116] ? kmsan_get_metadata+0x13e/0x1c0 [ 510.669971][ T1116] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 510.676029][ T1116] ? __rb_insert_augmented+0x9e/0x10e0 [ 510.681710][ T1116] ? __pfx_min_vruntime_cb_rotate+0x10/0x10 [ 510.687807][ T1116] ? kmsan_internal_set_shadow_origin+0x6c/0x100 [ 510.694365][ T1116] ? kmsan_get_metadata+0x13e/0x1c0 [ 510.699820][ T1116] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 510.705888][ T1116] ? kmsan_get_metadata+0x13e/0x1c0 [ 510.711419][ T1116] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 510.717528][ T1116] ? kmsan_get_metadata+0x13e/0x1c0 [ 510.722966][ T1116] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 510.729013][ T1116] __msan_warning+0x95/0x120 [ 510.733837][ T1116] n_tty_receive_buf_closing+0x539/0xb40 [ 510.739735][ T1116] n_tty_receive_buf_common+0x1a8b/0x25b0 [ 510.745697][ T1116] ? tracing_record_taskinfo_sched_switch+0xcd/0x750 [ 510.752645][ T1116] n_tty_receive_buf2+0x4c/0x60 [ 510.757698][ T1116] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 510.763464][ T1116] tty_ldisc_receive_buf+0xd0/0x290 [ 510.768936][ T1116] tty_port_default_receive_buf+0xdf/0x190 [ 510.774951][ T1116] flush_to_ldisc+0x475/0xdb0 [ 510.779859][ T1116] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 510.786505][ T1116] ? __pfx_flush_to_ldisc+0x10/0x10 [ 510.791922][ T1116] process_scheduled_works+0xc1d/0x1e80 [ 510.797730][ T1116] worker_thread+0xea3/0x1500 [ 510.802651][ T1116] kthread+0x6ce/0xf10 [ 510.806879][ T1116] ? __pfx_worker_thread+0x10/0x10 [ 510.812223][ T1116] ? __pfx_kthread+0x10/0x10 [ 510.816978][ T1116] ret_from_fork+0x6d/0x90 [ 510.821629][ T1116] ? __pfx_kthread+0x10/0x10 [ 510.826401][ T1116] ret_from_fork_asm+0x1a/0x30 [ 510.831422][ T1116] [ 510.834732][ T1116] Kernel Offset: disabled [ 510.839150][ T1116] Rebooting in 86400 seconds..