last executing test programs: 7.871932992s ago: executing program 1 (id=2662): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group']) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x1}, {0x0, 0xc, 0x2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10, 0x0, 0x0, 0x0, 0x4}, {0x800, 0x0, 0x0, 0x2, 0x0, 0x9, 0x0, 0x0, 0x0, 0xff}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc60, 0x1ff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 6.876310628s ago: executing program 4 (id=2666): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x55b, &(0x7f0000000940)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x84) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, 0x0) 6.375683556s ago: executing program 3 (id=2668): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x0, &(0x7f0000000000)={[{@init_itable_val={'init_itable', 0x3d, 0x4}}, {@nombcache}]}, 0x1, 0x589, &(0x7f0000000bc0)="$eJzs3U9oHGUbAPBnJsnXr22+Ly0oqPRQVKhQukn6R6un9CoWCj0IXuKy2YaQTTZmN7UJPaT3IhYUlV7qTUGPiogH8eLRqxfFsyBaVJoeJDLZ3bRNsnGTdncl+/vBbOZ939l93jezz7szywwbQM86mj2kEU9GxIUkYui+tv6oNx6tbbdy+2rhbn8UklhdvfhrEklE3Ll9tdDYPqn/PRgRyxHxRER8MxBxPN0ct7K4NJ0vlYrz9fJwdWZuuLK4dGJqJj9ZnCzOnnrhxTNnT58ZPTn6yMZ6/ccbb13/7uVbNz7+9Mhy4d18EmMxWG+7fxyPUu1/MhBjG+pPtyNYFyXd7gC70lfP84GIeDyGoq+e9cDet7ovYhXoUcmO839/mDNgL2gcB2Tnv43lgQOE5fYef/xyrnYCksVdqS+1lv7adxPx37VzkwO/Jw+cmWTnm4fa2zV6wPK1iBjp79/8/k/q77/dG3kUHaStvj5X21Gb93+a7f83Pqlvt3H+GWx8d/qQGvPfyqb5L12f//qazH8XWozx12s/fdA0/rWIp7aMn6zHT7aIn0bE6y3Gv/nqF2ebta1+GHEsto7fkGz//fDwpalScaT2uGWMr44deWm78R9oEn9sm/FndXMtjv/zbz97utnHaBb/uWe23/9bxc+Owd9uMf7hOx+90qwtiz/RZPzbxc/qbrUY//mxoz+0uCkAAAAAAAAAALAD6dq1bEmaW19P01yudg/vY3EgLZUr1eOXyguzE7Vr3g7FQNq40mqoVk6y8mj9etxG+eSG8qmIOBwR7/TtXyvnCuXSRLcHDwAAAAAAAAAAAAAAAAAAAP8SBzfc//9HX+3+f6BH+Mlv6F3yH3rXg/mfdK0fQOf5/IfeJf+hdzXL/7tfdrgjQMc1/fwf6Gw/gM5z/A+9S/5D75L/0LvkPwAAAAAAAAAAAAAAAAAAAAAAAAAAtMWF8+ezZfXu7auFrDxxeXFhunz5xESxMp2bWSjkCuX5udxkuTxZKuYK5Zl/er1SuTw3ErMLV4arxUp1uLK4ND5TXpitjk/N5CeL40W/KAIAAAAAAAAAAAAAAAAAAACbDa4tSZqLiHRtPU1zuYj/RcShGEguTZWKIxHx/4j4vm9gX1Ye7XanAQAAAAAAAAAAAAAAAAAAYI+pLC5N50ul4vz2K2kL2+y9lYhY3lCzs9cZ/7Nzfc46u6unJ8sPFT2Jbu8mK2168wMAAAAAAAAAAAAAAAAAAB1176bfHT7xWps6BAAAAAAAAAAAAAAAAAAAAD0p/Tl7TCLi2NCzgxtb/5Os9K39jYg3b15870q+Wp0fzep/W6+vvl+vP9mF7gMta+RpI48BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAeyqLS9P5Uqk4v8uVfS28TpeHCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALArfwcAAP//VB3RbA==") bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000740)='ext4_es_lookup_extent_exit\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='ext4_es_lookup_extent_exit\x00', r1, 0x0, 0x40000000}, 0x18) open(0x0, 0x141a42, 0x0) 6.077876321s ago: executing program 1 (id=2670): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000006c0)={0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @private1}]}, &(0x7f0000000000)=0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000001580)={0x0, @in6={{0xa, 0x0, 0x0, @private1}}}, &(0x7f0000001640)=0x90) 5.703173354s ago: executing program 4 (id=2671): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, 0x0, 0x0) r3 = accept(r0, 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f0000000340)=0x9, 0x3a) 5.591741747s ago: executing program 2 (id=2672): mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]}) r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r0, 0x0, 0x0) mkdir(&(0x7f0000000040)='./file1/file0\x00', 0x0) chdir(&(0x7f0000000140)='./bus\x00') name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x9, 0x0, 0xfffffff9, 0x9}, {0x7fff, 0x7, 0x3, 0xd06a}}}, 0x0, 0x600) 5.125801497s ago: executing program 3 (id=2673): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000640)=ANY=[@ANYBLOB=' '], 0xb0) getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport', @ANYRESDEC=r3]) lchown(&(0x7f0000000380)='./file0\x00', r3, 0x0) 4.754623235s ago: executing program 2 (id=2674): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000140)=0x7, 0x4) sendmmsg(r0, &(0x7f0000005400)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000540)="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", 0xfc}, {&(0x7f00000001c0)="7dc56831bc9a3cfbdd90576d74f54a7f37e2eaf3b3c441d367286039281aefcbf3f1cfe908e4abcdb59959c969811d7ba1", 0x31}, {&(0x7f0000000300)="acee4dd4e1204dfdd6ea6458e04cd460e2e15c8932b3873c69dfa7cedf434d986af9349add", 0x25}], 0x3}}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001980)="68d74336cc293842abb9cb4ea587fc3ced207a5ba4b920fe64eb1892ca62235b67694e0e6e9e472426355da2b6141cf538397bb4ef5a4e40193089af44fd5b3eca4385777fc80e07ae9101e479b229aebf945db7c75360c1", 0x58}, {&(0x7f0000001a00)="3d0d443837277085b4fa0c6e0a219a993e7730b2ceab5d2eb98fca35dba08d298060c7d910bdb858296ea0d89d", 0x2d}, {&(0x7f0000001a40)="1d72e38df87099a5a9c9301612dd4ddee5acacd07f9500e550f2b51e002f", 0x1e}], 0x3, 0xfffffffffffffffd}}, {{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000002c40)="b8cb", 0x2}], 0x1}}], 0x3, 0x40) 4.702664145s ago: executing program 0 (id=2675): prlimit64(0x0, 0xe, &(0x7f0000000180)={0x4, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) ioprio_set$pid(0x1, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) r1 = dup(r0) pwritev2(r1, &(0x7f0000000300)=[{&(0x7f0000000680)="bb", 0x1}], 0x1, 0x1000000, 0x0, 0x0) 4.435385807s ago: executing program 1 (id=2676): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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") mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0xa0029, &(0x7f0000000100)=ANY=[@ANYBLOB='nr_inodes=35,size=', @ANYRESOCT]) 4.242512735s ago: executing program 0 (id=2677): r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0) capset(&(0x7f0000000040)={0x20071026}, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000400)="9ef0b94c0000", 0x0, 0xfffffbfc, 0x0, 0x100004, 0x0}) 4.015193076s ago: executing program 4 (id=2678): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x80000) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000080)={0x2}) 4.007226958s ago: executing program 3 (id=2679): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800009c000040"]) 3.831008581s ago: executing program 2 (id=2680): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group']) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x1}, {0x0, 0xc, 0x2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10, 0x0, 0x0, 0x0, 0x4}, {0x800, 0x0, 0x0, 0x2, 0x0, 0x9, 0x0, 0x0, 0x0, 0xff}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc60, 0x1ff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.687762158s ago: executing program 0 (id=2681): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x400448ca, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r1, &(0x7f0000000340)="24000000010001", 0x7) 3.148058361s ago: executing program 4 (id=2682): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r1) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(0x0, r3) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x48, r4, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x48}, 0x4, 0x700000000000000}, 0x0) sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4004) 2.732164987s ago: executing program 1 (id=2683): ioctl$IOMMU_TEST_OP_DESTROY_ACCESS_PAGES(0xffffffffffffffff, 0x3ba0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) ioctl$sock_ifreq(r0, 0x8923, &(0x7f0000000700)={'virt_wifi0\x00', @ifru_addrs=@xdp={0x2c, 0x9, 0x0, 0x15}}) 2.721228398s ago: executing program 0 (id=2684): mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]}) r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r0, 0x0, 0x0) mkdir(&(0x7f0000000040)='./file1/file0\x00', 0x0) chdir(&(0x7f0000000140)='./bus\x00') name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x9, 0x0, 0xfffffff9, 0x9}, {0x7fff, 0x7, 0x3, 0xd06a}}}, 0x0, 0x600) 2.581247318s ago: executing program 3 (id=2685): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}], 0x10) sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r1, &(0x7f0000000b40)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="e9", 0x1}], 0x1}}], 0x1, 0x600c000) r2 = socket$netlink(0x10, 0x3, 0x4) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5", 0x3f}], 0x1) 2.107992997s ago: executing program 4 (id=2686): mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota') syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8205, &(0x7f0000001340)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x15}}, {@stripe}, {@grpid}, {@errors_remount}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x1, 0x60a, &(0x7f0000001c40)="$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") 1.891949999s ago: executing program 2 (id=2687): r0 = syz_io_uring_setup(0x24fd, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 1.776990973s ago: executing program 0 (id=2688): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r3 = accept(r0, 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r3, 0x0, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f0000000340)=0x9, 0x3a) 1.233654409s ago: executing program 1 (id=2689): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000640)=ANY=[@ANYBLOB=' '], 0xb0) getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport', @ANYRESDEC=r3]) lchown(&(0x7f0000000380)='./file0\x00', r3, 0x0) 1.226639531s ago: executing program 2 (id=2690): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000140)=0x7, 0x4) sendmmsg(r0, &(0x7f0000005400)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000540)="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", 0xfc}, {&(0x7f00000001c0)="7dc56831bc9a3cfbdd90576d74f54a7f37e2eaf3b3c441d367286039281aefcbf3f1cfe908e4abcdb59959c969811d7ba1", 0x31}, {&(0x7f0000000300)="acee4dd4e1204dfdd6ea6458e04cd460e2e15c8932b3873c69dfa7cedf434d986af9349add", 0x25}], 0x3}}, {{0x0, 0x0, &(0x7f0000002b40)=[{&(0x7f0000001980)="68d74336cc293842abb9cb4ea587fc3ced207a5ba4b920fe64eb1892ca62235b67694e0e6e9e472426355da2b6141cf538397bb4ef5a4e40193089af44fd5b3eca4385777fc80e07ae9101e479b229aebf945db7c75360c1", 0x58}, {&(0x7f0000001a00)="3d0d443837277085b4fa0c6e0a219a993e7730b2ceab5d2eb98fca35dba08d298060c7d910bdb858296ea0d89d", 0x2d}, {&(0x7f0000001a40)="1d72e38df87099a5a9c9301612dd4ddee5acacd07f9500e550f2b51e002f", 0x1e}, {0x0}], 0x4, 0xfffffffffffffffd}}, {{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000002c40)="b8cb", 0x2}], 0x1}}], 0x3, 0x40) 1.020464981s ago: executing program 3 (id=2691): r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0) capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x0, 0x0, 0x5}) ioctl$SG_IO(r0, 0x2285, 0x0) 537.01014ms ago: executing program 1 (id=2692): syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x278, &(0x7f0000000780)="$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") rename(&(0x7f0000000100)='./file1\x00', &(0x7f0000000180)='./bus\x00') r0 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0) ftruncate(r0, 0x2007ffc) r1 = open(&(0x7f0000000100)='./bus\x00', 0x14937e, 0x0) ftruncate(r1, 0x7fff) 476.145851ms ago: executing program 3 (id=2693): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='discard,keep_last_dots,iocharset=cp1251,utf8,errors=remount-ro,time_offset=0x0000000000000003,fmask=00000000000000000000005,sys_tz,uid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRESHEX=0x0, @ANYBLOB=',\x00'], 0x1, 0x1548, &(0x7f0000000380)="$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") r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x25, 0x4, 0x2}, 0x48) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000380)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000) ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4028af11, &(0x7f00000001c0)) 343.459124ms ago: executing program 4 (id=2694): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r1, &(0x7f0000000340)="24000000010001", 0x7) 280.756125ms ago: executing program 2 (id=2695): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r2}, [@IFA_LOCAL={0x8, 0x2, @multicast2}]}, 0x20}}, 0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r3, &(0x7f00000000c0)="eb", 0x1, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x2, @loopback}, 0x1c) 0s ago: executing program 0 (id=2696): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r1) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(0x0, r3) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x44, r4, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x44}, 0x4, 0x700000000000000}, 0x0) sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x4004) kernel console output (not intermixed with test programs): 91.480324][ T6988] loop3: detected capacity change from 0 to 8192 [ 392.036828][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.120177][ T7004] binder: BINDER_SET_CONTEXT_MGR already set [ 392.128018][ T7004] binder: 7001:7004 ioctl 4018620d 200000000040 returned -16 [ 394.587389][ T7025] loop2: detected capacity change from 0 to 4096 [ 394.642717][ T7032] netlink: 'syz.4.392': attribute type 4 has an invalid length. [ 394.768389][ T7036] netlink: 'syz.4.392': attribute type 4 has an invalid length. [ 394.814017][ T7037] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 394.997842][ T30] audit: type=1800 audit(1753713153.040:15): pid=7025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.389" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 395.046804][ T7025] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 395.099323][ T30] audit: type=1800 audit(1753713153.090:16): pid=7025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.389" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 395.198017][ T7025] Remounting filesystem read-only [ 395.720037][ T5812] Bluetooth: hci0: command 0x0406 tx timeout [ 395.728249][ T5812] Bluetooth: hci2: command 0x0406 tx timeout [ 395.734689][ T5812] Bluetooth: hci1: command 0x0406 tx timeout [ 395.747979][ T5812] Bluetooth: hci3: command 0x0406 tx timeout [ 395.754452][ T5812] Bluetooth: hci4: command 0x0406 tx timeout [ 395.900096][ T7043] binder: BINDER_SET_CONTEXT_MGR already set [ 395.906767][ T7043] binder: 7042:7043 ioctl 4018620d 200000000040 returned -16 [ 396.435541][ T7039] loop3: detected capacity change from 0 to 8192 [ 398.747530][ T7068] netlink: 'syz.2.406': attribute type 4 has an invalid length. [ 398.889452][ T7068] netlink: 'syz.2.406': attribute type 4 has an invalid length. [ 399.325456][ T7071] loop0: detected capacity change from 0 to 1024 [ 399.437701][ T7071] hfsplus: Filesystem is marked locked, mounting read-only. [ 400.629626][ T7081] relay: one or more items not logged [item size (56) > sub-buffer size (6)] [ 400.735784][ T7071] hfsplus: filesystem is marked locked, leaving read-only. [ 401.544287][ T7090] loop2: detected capacity change from 0 to 1024 [ 401.828823][ T7082] loop1: detected capacity change from 0 to 8192 [ 401.909522][ T7090] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 401.969410][ T7090] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 402.228985][ T7095] netlink: 'syz.3.419': attribute type 4 has an invalid length. [ 402.349551][ T7095] netlink: 'syz.3.419': attribute type 4 has an invalid length. [ 402.372363][ T3894] hfsplus: b-tree write err: -5, ino 4 [ 404.919103][ T7119] loop2: detected capacity change from 0 to 1024 [ 405.283332][ T7119] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 405.291900][ T7119] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 405.543850][ T7124] netlink: 'syz.1.432': attribute type 4 has an invalid length. [ 405.596148][ T7120] syz.3.428 (7120): drop_caches: 2 [ 405.653154][ T7124] netlink: 'syz.1.432': attribute type 4 has an invalid length. [ 405.769544][ T57] hfsplus: b-tree write err: -5, ino 4 [ 406.562907][ T7133] loop0: detected capacity change from 0 to 128 [ 406.642109][ T7133] qnx6: superblock #1 checksum error [ 406.888340][ T7126] loop4: detected capacity change from 0 to 8192 [ 408.063756][ T7144] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 408.070645][ T7144] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 408.080111][ T7144] vhci_hcd vhci_hcd.0: Device attached [ 408.376586][ T5870] usb 39-1: new low-speed USB device number 2 using vhci_hcd [ 408.438988][ T7145] vhci_hcd: connection closed [ 408.446689][ T4114] vhci_hcd: stop threads [ 408.457137][ T4114] vhci_hcd: release socket [ 408.462094][ T4114] vhci_hcd: disconnect device [ 408.654171][ T7155] loop1: detected capacity change from 0 to 1024 [ 409.117093][ T7155] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 409.149389][ T7158] binder: 7157:7158 ioctl c0306201 0 returned -14 [ 409.157892][ T7155] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 409.270147][ T7161] netlink: 'syz.4.447': attribute type 4 has an invalid length. [ 409.395099][ T7164] netlink: 'syz.4.447': attribute type 4 has an invalid length. [ 409.666144][ T36] hfsplus: b-tree write err: -5, ino 4 [ 410.391239][ T7174] loop4: detected capacity change from 0 to 128 [ 410.490599][ T7173] loop1: detected capacity change from 0 to 1024 [ 410.530328][ T7174] netlink: 300 bytes leftover after parsing attributes in process `syz.4.453'. [ 410.544624][ T7173] EXT4-fs: Ignoring removed oldalloc option [ 410.598820][ T7173] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 410.789458][ T7173] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.458037][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.491603][ T7185] program syz.3.457 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 411.533860][ T7171] loop0: detected capacity change from 0 to 8192 [ 411.540478][ T7187] syz.4.456: attempt to access beyond end of device [ 411.540478][ T7187] loop4: rw=0, sector=2, nr_sectors = 2 limit=0 [ 411.540640][ T7187] vxfs: unable to read disk superblock at 1 [ 411.540990][ T7187] syz.4.456: attempt to access beyond end of device [ 411.540990][ T7187] loop4: rw=0, sector=16, nr_sectors = 2 limit=0 [ 411.541139][ T7187] vxfs: unable to read disk superblock at 8 [ 411.591737][ T7187] vxfs: can't find superblock. [ 411.616817][ T7188] loop2: detected capacity change from 0 to 1024 [ 411.634782][ T7188] hfsplus: Filesystem is marked locked, mounting read-only. [ 411.878592][ T7188] hfsplus: filesystem is marked locked, leaving read-only. [ 412.234716][ T7191] loop3: detected capacity change from 0 to 1024 [ 412.462535][ T7194] binder: 7193:7194 ioctl c0306201 0 returned -14 [ 412.640424][ T7191] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 412.681603][ T7191] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 413.132990][ T36] hfsplus: b-tree write err: -5, ino 4 [ 413.323284][ T7199] loop2: detected capacity change from 0 to 2048 [ 413.489542][ T5870] vhci_hcd: vhci_device speed not set [ 413.667231][ T7199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 413.824523][ T7199] EXT4-fs error (device loop2): ext4_free_inode:354: comm syz.2.462: bit already cleared for inode 15 [ 414.147338][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 414.154565][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 414.435588][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.405193][ T7224] loop4: detected capacity change from 0 to 1024 [ 415.534010][ T7224] hfsplus: Filesystem is marked locked, mounting read-only. [ 415.752059][ T7224] hfsplus: filesystem is marked locked, leaving read-only. [ 416.249503][ T7230] loop2: detected capacity change from 0 to 2048 [ 416.413708][ T7234] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 416.660949][ T7225] loop0: detected capacity change from 0 to 8192 [ 417.158196][ T1978] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 417.255732][ T7241] loop3: detected capacity change from 0 to 2048 [ 417.341205][ T7234] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 417.353322][ T7234] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 417.397080][ T1978] usb 2-1: device descriptor read/64, error -71 [ 417.465464][ T7234] Remounting filesystem read-only [ 417.621721][ T7241] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 417.664997][ T1978] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 417.827083][ T7241] EXT4-fs error (device loop3): ext4_free_inode:354: comm syz.3.481: bit already cleared for inode 15 [ 417.907482][ T1978] usb 2-1: device descriptor read/64, error -71 [ 418.029317][ T1978] usb usb2-port1: attempt power cycle [ 418.340512][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.421050][ T1978] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 418.493604][ T1978] usb 2-1: device descriptor read/8, error -71 [ 418.797761][ T1978] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 418.898551][ T1978] usb 2-1: device descriptor read/8, error -71 [ 419.037488][ T1978] usb usb2-port1: unable to enumerate USB device [ 420.278400][ T7263] loop0: detected capacity change from 0 to 4096 [ 420.345066][ T7263] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 420.932511][ T7263] ntfs3(loop0): ino=19, mi_enum_attr [ 421.765943][ T7274] loop1: detected capacity change from 0 to 8192 [ 425.142934][ T7309] loop3: detected capacity change from 0 to 4096 [ 425.222164][ T7309] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 425.630156][ T7309] ntfs3(loop3): ino=19, mi_enum_attr [ 425.862609][ T7321] loop4: detected capacity change from 0 to 2048 [ 426.215242][ T7321] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 426.434573][ T7321] EXT4-fs error (device loop4): ext4_free_inode:354: comm syz.4.513: bit already cleared for inode 15 [ 426.627354][ T7317] loop2: detected capacity change from 0 to 8192 [ 426.671317][ T5106] Bluetooth: hci3: unexpected event for opcode 0x0411 [ 426.772344][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.950996][ T7343] loop1: detected capacity change from 0 to 1024 [ 429.767433][ T7361] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer. [ 431.298052][ T7369] loop4: detected capacity change from 0 to 8192 [ 435.819685][ T7414] loop4: detected capacity change from 0 to 8192 [ 436.960573][ T7434] loop3: detected capacity change from 0 to 512 [ 437.077631][ T7434] EXT4-fs error (device loop3): __ext4_iget:5379: inode #11: block 1: comm syz.3.563: invalid block [ 437.189210][ T7434] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.563: couldn't read orphan inode 11 (err -117) [ 437.267354][ T7434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 437.773617][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.931174][ T7446] netlink: 20 bytes leftover after parsing attributes in process `syz.4.565'. [ 438.080797][ T7444] loop1: detected capacity change from 0 to 2048 [ 438.251826][ T7444] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 438.287422][ T7454] loop3: detected capacity change from 0 to 1024 [ 438.298815][ T7454] EXT4-fs: Ignoring removed mblk_io_submit option [ 438.305987][ T7454] EXT4-fs: Ignoring removed nomblk_io_submit option [ 438.503507][ T7454] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 438.527813][ T7444] EXT4-fs error (device loop1): ext4_free_inode:354: comm syz.1.567: bit already cleared for inode 15 [ 438.720350][ T7454] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 439.010972][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 439.290219][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.005908][ T7466] loop1: detected capacity change from 0 to 8192 [ 441.565110][ T7482] netlink: 20 bytes leftover after parsing attributes in process `syz.3.582'. [ 442.533781][ T7488] loop3: detected capacity change from 0 to 2048 [ 442.795461][ T7488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 442.912238][ T7488] EXT4-fs error (device loop3): ext4_free_inode:354: comm syz.3.585: bit already cleared for inode 15 [ 443.168722][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.314412][ T7496] loop1: detected capacity change from 0 to 1024 [ 443.333625][ T7496] EXT4-fs: Ignoring removed mblk_io_submit option [ 443.341190][ T7496] EXT4-fs: Ignoring removed nomblk_io_submit option [ 443.391594][ T7496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 444.159406][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 444.384050][ T7506] IPVS: rr: SCTP 127.0.0.1:0 - no destination available [ 444.388007][ T5870] IPVS: starting estimator thread 0... [ 444.487077][ T7507] IPVS: using max 192 ests per chain, 9600 per kthread [ 444.693071][ T7509] vcan0: tx drop: invalid sa for name 0x0000000000000001 [ 445.212893][ T7515] netlink: 20 bytes leftover after parsing attributes in process `syz.3.595'. [ 446.177724][ T7522] loop2: detected capacity change from 0 to 2048 [ 446.402845][ T7529] loop1: detected capacity change from 0 to 1024 [ 446.438929][ T7522] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 446.530265][ T7529] EXT4-fs: Ignoring removed mblk_io_submit option [ 446.537655][ T7529] EXT4-fs: Ignoring removed nomblk_io_submit option [ 446.660887][ T7522] EXT4-fs error (device loop2): ext4_free_inode:354: comm syz.2.599: bit already cleared for inode 15 [ 446.720268][ T7529] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.218512][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.420889][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.778623][ T7547] netlink: 20 bytes leftover after parsing attributes in process `syz.3.610'. [ 447.956721][ T1978] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 448.228225][ T1978] usb 5-1: Using ep0 maxpacket: 8 [ 448.276825][ T1978] usb 5-1: config 0 has an invalid interface number: 125 but max is 0 [ 448.285362][ T1978] usb 5-1: config 0 has no interface number 0 [ 448.349870][ T1978] usb 5-1: New USB device found, idVendor=0df6, idProduct=0059, bcdDevice=a9.dc [ 448.360654][ T1978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.369369][ T1978] usb 5-1: Product: syz [ 448.373907][ T1978] usb 5-1: Manufacturer: syz [ 448.379131][ T1978] usb 5-1: SerialNumber: syz [ 448.497519][ T1978] usb 5-1: config 0 descriptor?? [ 448.557237][ T1978] usbhid 5-1:0.125: couldn't find an input interrupt endpoint [ 448.828693][ T7559] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.606'. [ 448.838937][ T7559] netlink: 24 bytes leftover after parsing attributes in process `syz.4.606'. [ 450.238283][ T7575] netlink: 36 bytes leftover after parsing attributes in process `syz.1.618'. [ 450.583980][ T7577] loop2: detected capacity change from 0 to 1024 [ 450.699377][ T7577] EXT4-fs: Ignoring removed mblk_io_submit option [ 450.706779][ T7577] EXT4-fs: Ignoring removed nomblk_io_submit option [ 450.774112][ T7570] loop0: detected capacity change from 0 to 4096 [ 450.883045][ T7577] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 451.187164][ T1978] usb 5-1: USB disconnect, device number 3 [ 451.623790][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.929205][ T7589] netlink: 20 bytes leftover after parsing attributes in process `syz.1.621'. [ 451.966910][ T5870] usb 5-1: new low-speed USB device number 4 using dummy_hcd [ 452.212140][ T5870] usb 5-1: config 0 interface 0 altsetting 131 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 452.224993][ T5870] usb 5-1: config 0 interface 0 altsetting 131 endpoint 0x81 has invalid wMaxPacketSize 0 [ 452.238201][ T5870] usb 5-1: config 0 interface 0 has no altsetting 0 [ 452.245298][ T5870] usb 5-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00 [ 452.254983][ T5870] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 452.408591][ T7593] loop2: detected capacity change from 0 to 256 [ 452.452697][ T5870] usb 5-1: config 0 descriptor?? [ 452.478906][ T7593] exfat: Deprecated parameter 'utf8' [ 452.619004][ T7593] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 452.759211][ T7587] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 452.770578][ T7587] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 453.114891][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.127521][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.135164][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.142872][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.150686][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.158541][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.166034][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.174016][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.181834][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.189465][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.197393][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.205026][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.213109][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.228126][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.235619][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.245292][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.253297][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.260974][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.268931][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.277133][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.284691][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.292380][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.300255][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.308069][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.315552][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.328326][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.338327][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.346075][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.353960][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.361719][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.369469][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.377189][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.384730][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.392470][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.401691][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.409661][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.417397][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.428299][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.435803][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.444696][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.452559][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.460479][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.468162][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.475902][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.484667][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.492288][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.499887][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.507757][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.515555][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.523768][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.534456][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.543176][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.550800][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.559714][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.567331][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.575131][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.583136][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.590898][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.598910][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x1 [ 453.606473][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.614101][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.621702][ T5870] sunplus 0003:04FC:05D8.0003: unknown main item tag 0x0 [ 453.632607][ T5870] sunplus 0003:04FC:05D8.0003: unexpected long global item [ 453.647770][ T5870] sunplus 0003:04FC:05D8.0003: probe with driver sunplus failed with error -22 [ 453.665929][ T5870] usb 5-1: USB disconnect, device number 4 [ 454.098548][ T7602] ªªªªªª: renamed from veth1_vlan (while UP) [ 454.503449][ T7607] loop1: detected capacity change from 0 to 256 [ 454.544265][ T7607] exfat: Deprecated parameter 'utf8' [ 454.661469][ T7607] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 455.461819][ T7614] loop0: detected capacity change from 0 to 1024 [ 455.529177][ T7614] EXT4-fs: Ignoring removed mblk_io_submit option [ 455.536782][ T7614] EXT4-fs: Ignoring removed nomblk_io_submit option [ 455.727962][ T7614] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 456.491642][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.034899][ T7649] loop2: detected capacity change from 0 to 2048 [ 459.247779][ T7649] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.269320][ T7649] ext4 filesystem being mounted at /122/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 460.006768][ T7662] Bluetooth: MGMT ver 1.23 [ 460.101371][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.740537][ T7670] loop3: detected capacity change from 0 to 256 [ 460.956908][ T7670] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 461.094665][ T30] audit: type=1800 audit(1753713219.150:17): pid=7670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.657" name="file2" dev="loop3" ino=1048685 res=0 errno=0 [ 462.177192][ T5870] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 462.432229][ T7690] loop4: detected capacity change from 0 to 2048 [ 462.456959][ T5870] usb 1-1: Using ep0 maxpacket: 32 [ 462.525699][ T5870] usb 1-1: config 1 interface 0 has no altsetting 0 [ 462.593808][ T7690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 462.603956][ T5870] usb 1-1: New USB device found, idVendor=046d, idProduct=c087, bcdDevice= 0.40 [ 462.608536][ T7690] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 462.616752][ T5870] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 462.616890][ T5870] usb 1-1: Product: syz [ 462.616993][ T5870] usb 1-1: Manufacturer: syz [ 462.617098][ T5870] usb 1-1: SerialNumber: syz [ 463.480849][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.649432][ T5870] usbhid 1-1:1.0: can't add hid device: -71 [ 463.656454][ T5870] usbhid 1-1:1.0: probe with driver usbhid failed with error -71 [ 463.675443][ T7697] sctp: failed to load transform for md5: -2 [ 463.763330][ T5870] usb 1-1: USB disconnect, device number 2 [ 464.784911][ T7719] fuse: Unknown parameter 'grou00000000000000000000' [ 465.743306][ T7729] loop2: detected capacity change from 0 to 2048 [ 465.970508][ T7729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 465.984621][ T7729] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 466.691497][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 467.212117][ T7749] fuse: Unknown parameter 'grou00000000000000000000' [ 467.747045][ T1978] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 468.004466][ T1978] usb 4-1: Using ep0 maxpacket: 32 [ 468.031863][ T1978] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 468.043464][ T1978] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 468.054020][ T1978] usb 4-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00 [ 468.063611][ T1978] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 468.230136][ T1978] usb 4-1: config 0 descriptor?? [ 468.758799][ T1978] nintendo 0003:057E:200E.0004: unknown main item tag 0x0 [ 468.861182][ T7768] loop1: detected capacity change from 0 to 2048 [ 468.902043][ T1978] nintendo 0003:057E:200E.0004: hidraw0: USB HID v80.00 Device [HID 057e:200e] on usb-dummy_hcd.3-1/input0 [ 468.934983][ T7768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 468.948931][ T7768] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 468.978690][ T1978] nintendo 0003:057E:200E.0004: Failed charging grip handshake [ 468.987086][ T1978] nintendo 0003:057E:200E.0004: Failed to initialize controller; ret=-110 [ 469.087163][ T1978] nintendo 0003:057E:200E.0004: probe - fail = -110 [ 469.110795][ T1978] nintendo 0003:057E:200E.0004: probe with driver nintendo failed with error -110 [ 469.188042][ T1978] usb 4-1: USB disconnect, device number 3 [ 469.469147][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.652394][ T7783] fido_id[7783]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 471.536757][ T5870] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 471.808239][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 471.819671][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 471.830216][ T5870] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 471.839824][ T5870] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 471.938686][ T5870] usb 4-1: config 0 descriptor?? [ 472.350111][ T7811] loop4: detected capacity change from 0 to 2048 [ 472.525118][ T7811] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 472.538554][ T7811] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 472.620802][ T5870] usb 4-1: string descriptor 0 read error: -22 [ 472.877581][ T5870] input: HID 256c:006d as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0005/input/input9 [ 473.063542][ T5870] input: HID 256c:006d as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0005/input/input10 [ 473.313066][ T5870] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0005/input/input11 [ 473.535378][ T5870] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0005/input/input12 [ 473.581833][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.813523][ T5870] uclogic 0003:256C:006D.0005: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.3-1/input0 [ 474.115052][ T5870] usb 4-1: USB disconnect, device number 4 [ 475.427055][ T7839] loop1: detected capacity change from 0 to 2048 [ 475.577686][ T7839] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 475.591349][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.599345][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 475.897170][ T7840] fido_id[7840]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 476.272020][ T7844] loop3: detected capacity change from 0 to 512 [ 476.371394][ T7844] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 476.386852][ T7844] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 476.593636][ T7844] EXT4-fs (loop3): 1 truncate cleaned up [ 476.603218][ T7844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 476.704108][ T30] audit: type=1800 audit(1753713234.750:18): pid=7844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.725" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 477.210021][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 478.695038][ T7865] loop4: detected capacity change from 0 to 256 [ 479.121183][ T7865] FAT-fs (loop4): Directory bread(block 64) failed [ 479.136976][ T7865] FAT-fs (loop4): Directory bread(block 65) failed [ 479.144009][ T7865] FAT-fs (loop4): Directory bread(block 66) failed [ 479.154541][ T7865] FAT-fs (loop4): Directory bread(block 67) failed [ 479.161961][ T7865] FAT-fs (loop4): Directory bread(block 68) failed [ 479.169175][ T7865] FAT-fs (loop4): Directory bread(block 69) failed [ 479.176496][ T7865] FAT-fs (loop4): Directory bread(block 70) failed [ 479.183875][ T7865] FAT-fs (loop4): Directory bread(block 71) failed [ 479.192182][ T7865] FAT-fs (loop4): Directory bread(block 72) failed [ 479.199763][ T7865] FAT-fs (loop4): Directory bread(block 73) failed [ 479.629453][ T5868] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 479.803901][ T5868] usb 5-1: config 8 has an invalid interface number: 223 but max is 0 [ 479.812833][ T5868] usb 5-1: config 8 contains an unexpected descriptor of type 0x1, skipping [ 479.822146][ T5868] usb 5-1: config 8 has an invalid descriptor of length 127, skipping remainder of the config [ 479.833101][ T5868] usb 5-1: config 8 has no interface number 0 [ 479.839811][ T5868] usb 5-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 15872, setting to 64 [ 479.858788][ T5868] usb 5-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 480.078628][ T5868] usb 5-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d [ 480.088828][ T5868] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 480.097573][ T5868] usb 5-1: Product: syz [ 480.102056][ T5868] usb 5-1: Manufacturer: syz [ 480.107667][ T5868] usb 5-1: SerialNumber: syz [ 480.540531][ T5868] usb 5-1: USB disconnect, device number 5 [ 480.960650][ T5870] IPVS: starting estimator thread 0... [ 480.984711][ T7882] IPVS: sh: UDP 0.0.0.0:0 - no destination available [ 481.077755][ T7883] IPVS: using max 192 ests per chain, 9600 per kthread [ 481.138009][ T7884] loop2: detected capacity change from 0 to 256 [ 481.354832][ T7884] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 481.573179][ T30] audit: type=1800 audit(1753713239.600:19): pid=7884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.741" name="bus" dev="loop2" ino=1048686 res=0 errno=0 [ 481.745723][ T30] audit: type=1800 audit(1753713239.800:20): pid=7890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.741" name="bus" dev="loop2" ino=1048686 res=0 errno=0 [ 482.008891][ T7891] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 483.258187][ T7905] loop3: detected capacity change from 0 to 2048 [ 483.467344][ T7905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 483.683852][ T7905] EXT4-fs error (device loop3): ext4_free_inode:354: comm syz.3.750: bit already cleared for inode 15 [ 484.208839][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.130106][ T7944] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 488.654690][ T7972] loop3: detected capacity change from 0 to 256 [ 488.836033][ T7972] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 489.971364][ T7979] loop2: detected capacity change from 0 to 4096 [ 490.130033][ T7988] ALSA: seq fatal error: cannot create timer (-22) [ 490.310551][ T7991] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 492.370606][ T8009] loop4: detected capacity change from 0 to 2048 [ 492.537579][ T8009] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 492.857991][ T8009] UDF-fs: error (device loop4): udf_truncate_tail_extent: Extent after EOF in inode 1368 [ 493.948582][ T8026] kvm: emulating exchange as write [ 494.702707][ T8032] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2 [ 494.712535][ T8032] netdevsim netdevsim1: Falling back to sysfs fallback for: ./file0 [ 495.264849][ T8038] loop3: detected capacity change from 0 to 128 [ 496.446869][ T8049] loop1: detected capacity change from 0 to 2048 [ 496.625498][ T8054] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 497.369821][ T8054] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 497.381474][ T8054] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4) [ 497.453144][ T8054] Remounting filesystem read-only [ 497.507814][ T5809] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 497.999136][ T8068] syz_tun: entered allmulticast mode [ 498.068892][ T8067] syz_tun: left allmulticast mode [ 499.156707][ T8084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.821'. [ 499.908574][ T8087] loop3: detected capacity change from 0 to 2048 [ 500.134505][ T8099] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 500.869711][ T8099] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 500.881487][ T8099] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 500.910370][ T8099] Remounting filesystem read-only [ 500.927757][ T5818] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 503.438393][ T8126] kvm: pic: non byte read [ 503.489541][ T8126] kvm: pic: level sensitive irq not supported [ 503.490222][ T8126] kvm: pic: non byte read [ 505.215601][ T8146] loop1: detected capacity change from 0 to 128 [ 505.394713][ T30] audit: type=1800 audit(1753713263.450:21): pid=8146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.847" name="file1" dev="loop1" ino=1048692 res=0 errno=0 [ 505.407859][ T8146] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 578, start c7000005) [ 505.427066][ T8146] FAT-fs (loop1): Filesystem has been set read-only [ 505.857988][ T8155] IPVS: sh: UDP 0.0.0.0:0 - no destination available [ 506.835429][ T8165] loop2: detected capacity change from 0 to 512 [ 507.237563][ T8165] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 507.251910][ T8165] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 507.870435][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 509.261620][ T8194] syzkaller0: entered promiscuous mode [ 509.267786][ T8194] syzkaller0: entered allmulticast mode [ 509.289081][ T8199] netlink: 'syz.4.869': attribute type 4 has an invalid length. [ 509.375914][ T8198] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487 [ 509.405709][ T8199] netlink: 'syz.4.869': attribute type 4 has an invalid length. [ 511.231132][ T8220] loop3: detected capacity change from 0 to 1024 [ 511.299734][ T8220] EXT4-fs: Ignoring removed oldalloc option [ 511.343071][ T8220] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 511.440291][ T8220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 512.335289][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 512.372256][ T8235] netlink: 'syz.4.885': attribute type 4 has an invalid length. [ 512.467189][ T8235] netlink: 'syz.4.885': attribute type 4 has an invalid length. [ 513.204472][ T8241] loop3: detected capacity change from 0 to 512 [ 513.380804][ T8241] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #17: comm syz.3.887: iget: bogus i_mode (0) [ 513.518246][ T8241] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.887: couldn't read orphan inode 17 (err -117) [ 513.568975][ T8241] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 514.222985][ T8253] binder: 8251:8253 ioctl 4018620d 0 returned -22 [ 514.310896][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.396623][ T1978] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 515.603074][ T1978] usb 2-1: config 0 has no interfaces? [ 515.609586][ T1978] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 515.619382][ T1978] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 515.702959][ T1978] usb 2-1: config 0 descriptor?? [ 516.469050][ T8277] netlink: 'syz.3.903': attribute type 10 has an invalid length. [ 516.648771][ T8277] macvlan1: entered allmulticast mode [ 516.674010][ T8277] ªªªªªª: entered allmulticast mode [ 516.695546][ T8277] team0: Port device macvlan1 added [ 517.859964][ T8287] binder: 8286:8287 ioctl c0306201 0 returned -14 [ 518.673557][ T5870] usb 2-1: USB disconnect, device number 7 [ 518.694909][ T8295] loop0: detected capacity change from 0 to 2048 [ 518.891126][ T8295] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 522.662804][ T8333] loop2: detected capacity change from 0 to 2048 [ 522.875097][ T8333] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 523.284731][ T8333] UDF-fs: warning (device loop2): udf_truncate_tail_extent: Too long extent after EOF in inode 1368: i_size: 28672 lbcount: 32768 extent 97+13312 [ 524.078635][ T8349] loop0: detected capacity change from 0 to 1764 [ 525.095098][ T8365] loop0: detected capacity change from 0 to 512 [ 525.442342][ T8365] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 525.455941][ T8365] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 526.070621][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.297663][ T8378] loop2: detected capacity change from 0 to 2048 [ 526.424860][ T8378] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 526.522673][ T8382] loop3: detected capacity change from 0 to 256 [ 526.803392][ T8382] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 526.819135][ T8378] UDF-fs: warning (device loop2): udf_truncate_tail_extent: Too long extent after EOF in inode 1368: i_size: 36864 lbcount: 40960 extent 129+5632 [ 528.482191][ T8403] loop0: detected capacity change from 0 to 512 [ 528.664732][ T8403] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 528.679173][ T8403] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 529.161953][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 530.348374][ T8418] loop1: detected capacity change from 0 to 2048 [ 530.390563][ T8424] loop0: detected capacity change from 0 to 256 [ 530.525565][ T8418] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 530.582057][ T8424] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 532.018297][ T8438] loop1: detected capacity change from 0 to 1024 [ 532.121675][ T8438] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 532.137673][ T8438] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 533.058295][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.294466][ T8457] loop3: detected capacity change from 0 to 256 [ 533.571262][ T8457] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 534.782176][ T8465] loop0: detected capacity change from 0 to 4096 [ 534.975769][ T8472] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 535.780861][ T8479] fuse: Unknown parameter 'user_i00000000000000000000' [ 537.028906][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 537.035717][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 537.271918][ T8491] loop2: detected capacity change from 0 to 256 [ 537.448402][ T8491] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 538.773387][ T8504] loop1: detected capacity change from 0 to 4096 [ 539.100040][ T8517] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 540.077933][ T8526] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 540.200848][ T8529] evm: overlay not supported [ 540.310406][ T8524] loop3: detected capacity change from 0 to 4096 [ 541.452540][ T8524] EXT4-fs (loop3): Test dummy encryption mode enabled [ 541.579557][ T8524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.719745][ T8549] loop2: detected capacity change from 0 to 128 [ 541.990706][ T8551] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 542.261265][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.993671][ T8560] bridge0: port 3(syz_tun) entered blocking state [ 543.001382][ T8560] bridge0: port 3(syz_tun) entered disabled state [ 543.008863][ T8560] syz_tun: entered allmulticast mode [ 543.018642][ T8560] syz_tun: entered promiscuous mode [ 543.037395][ T8560] bridge0: port 3(syz_tun) entered blocking state [ 543.044697][ T8560] bridge0: port 3(syz_tun) entered forwarding state [ 543.301485][ T8555] loop2: detected capacity change from 0 to 4096 [ 543.481281][ T8562] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 543.923427][ T8566] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 544.775457][ T8575] loop1: detected capacity change from 0 to 512 [ 544.879608][ T8575] EXT4-fs: Ignoring removed mblk_io_submit option [ 545.034647][ T8575] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 545.244223][ T8579] loop4: detected capacity change from 0 to 128 [ 545.536735][ T8581] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 547.120641][ T8592] loop2: detected capacity change from 0 to 4096 [ 547.484750][ T8604] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 548.577162][ T8617] loop1: detected capacity change from 0 to 512 [ 548.704477][ T8617] EXT4-fs (loop1): #clusters per group too big: 598016 [ 550.998434][ T8638] loop1: detected capacity change from 0 to 4096 [ 551.151033][ T8647] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 551.267988][ T8650] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 553.630226][ T8683] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 554.347654][ T8685] loop0: detected capacity change from 0 to 4096 [ 554.684032][ T8694] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 555.089602][ T8700] netlink: 'syz.2.1083': attribute type 4 has an invalid length. [ 555.208521][ T8700] netlink: 'syz.2.1083': attribute type 4 has an invalid length. [ 556.984621][ T8722] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 558.085058][ T8734] netlink: 'syz.2.1099': attribute type 4 has an invalid length. [ 558.228590][ T8734] netlink: 'syz.2.1099': attribute type 4 has an invalid length. [ 559.191465][ T8748] loop2: detected capacity change from 0 to 256 [ 559.235022][ T8750] loop1: detected capacity change from 0 to 64 [ 559.431719][ T8748] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 560.719657][ T8763] loop4: detected capacity change from 0 to 1024 [ 560.833975][ T8763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 560.855006][ T8763] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 560.915463][ T8771] netlink: 'syz.2.1115': attribute type 4 has an invalid length. [ 560.967856][ T8771] netlink: 'syz.2.1115': attribute type 4 has an invalid length. [ 561.523185][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.265947][ T8781] loop4: detected capacity change from 0 to 64 [ 562.593434][ T1978] IPVS: starting estimator thread 0... [ 562.726737][ T8786] IPVS: using max 192 ests per chain, 9600 per kthread [ 563.761358][ T8796] overlayfs: failed to resolve './file1': -2 [ 564.058684][ T8799] netlink: 'syz.1.1127': attribute type 4 has an invalid length. [ 564.193922][ T8803] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 564.231521][ T8804] netlink: 'syz.1.1127': attribute type 4 has an invalid length. [ 564.293052][ T8802] loop0: detected capacity change from 0 to 1024 [ 564.474175][ T8802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 564.487456][ T8802] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 565.170413][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 566.538540][ T8836] ALSA: seq fatal error: cannot create timer (-22) [ 567.258390][ T5868] IPVS: starting estimator thread 0... [ 567.348359][ T8845] IPVS: using max 192 ests per chain, 9600 per kthread [ 567.579963][ T8847] loop2: detected capacity change from 0 to 1024 [ 567.765518][ T8847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 567.778817][ T8847] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 568.390229][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 569.778437][ T8878] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 570.061216][ T5870] IPVS: starting estimator thread 0... [ 570.166710][ T8884] IPVS: using max 192 ests per chain, 9600 per kthread [ 570.531783][ T8886] loop4: detected capacity change from 0 to 1024 [ 570.635623][ T8889] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 570.735854][ T8886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 570.748877][ T8886] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 571.504573][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 574.238937][ T8935] loop0: detected capacity change from 0 to 1024 [ 574.381705][ T8935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 574.395163][ T8935] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 575.099829][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 577.261978][ T8978] loop3: detected capacity change from 0 to 1024 [ 577.497785][ T8978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 577.511220][ T8978] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 578.225766][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 579.235895][ T9009] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1211'. [ 579.733693][ T9013] loop4: detected capacity change from 0 to 64 [ 579.778968][ T9013] bfs: Unknown parameter 'ÿ' [ 580.083855][ T9019] netlink: 'syz.0.1216': attribute type 4 has an invalid length. [ 580.175640][ T9021] netlink: 'syz.0.1216': attribute type 4 has an invalid length. [ 580.348977][ T9023] overlayfs: failed to resolve './file0': -2 [ 582.769889][ T9053] loop0: detected capacity change from 0 to 512 [ 582.830564][ T9053] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 582.871342][ T9058] overlayfs: failed to resolve './file0': -2 [ 582.895772][ T9057] netlink: 'syz.3.1232': attribute type 4 has an invalid length. [ 582.997117][ T9053] EXT4-fs (loop0): 1 truncate cleaned up [ 583.005501][ T9053] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 583.718829][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 584.891138][ T5106] Bluetooth: hci3: unexpected event for opcode 0x0c7b [ 585.619286][ T9089] netlink: 'syz.2.1244': attribute type 4 has an invalid length. [ 585.774218][ T9091] loop3: detected capacity change from 0 to 1024 [ 586.055123][ T9091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 586.069433][ T9091] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 586.704520][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.950063][ T9112] overlayfs: missing 'lowerdir' [ 587.173776][ T9114] batman_adv: batadv0: Adding interface: dummy0 [ 587.181161][ T9114] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 587.207944][ T9114] batman_adv: batadv0: Interface activated: dummy0 [ 588.050128][ T9127] netlink: 'syz.2.1259': attribute type 4 has an invalid length. [ 588.768643][ T9130] binder: BINDER_SET_CONTEXT_MGR already set [ 588.775279][ T9130] binder: 9129:9130 ioctl 4018620d 200000000040 returned -16 [ 588.981813][ T9138] loop2: detected capacity change from 0 to 1024 [ 589.243746][ T9138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 589.258866][ T9138] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 589.803764][ T9150] overlayfs: missing 'lowerdir' [ 590.098756][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 591.168122][ T9162] netlink: 'syz.0.1274': attribute type 4 has an invalid length. [ 592.275110][ T9171] binder: BINDER_SET_CONTEXT_MGR already set [ 592.283772][ T9171] binder: 9169:9171 ioctl 4018620d 200000000040 returned -16 [ 592.317631][ T9168] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 592.491088][ T9168] kvm: pic: non byte read [ 592.502179][ T9168] kvm: pic: non byte read [ 592.517481][ T9168] kvm: pic: single mode not supported [ 592.517586][ T9168] kvm: pic: level sensitive irq not supported [ 592.559295][ T9168] kvm: pic: non byte read [ 592.631589][ T9168] kvm: pic: non byte read [ 593.382445][ T9182] loop2: detected capacity change from 0 to 1024 [ 593.434995][ T9184] overlayfs: missing 'lowerdir' [ 593.698286][ T9188] fuse: Unknown parameter '0x0000000000000005' [ 593.707364][ T9182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 593.728535][ T9182] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 594.266903][ T9193] loop3: detected capacity change from 0 to 256 [ 594.454900][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 594.477464][ T9195] netlink: 'syz.1.1286': attribute type 4 has an invalid length. [ 594.498558][ T9193] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 594.682960][ T9197] loop0: detected capacity change from 0 to 64 [ 596.159892][ T9214] overlayfs: missing 'lowerdir' [ 596.399703][ T9218] fuse: Unknown parameter 'fd0x0000000000000005' [ 596.726396][ T9221] loop3: detected capacity change from 0 to 1024 [ 596.803733][ T9213] loop2: detected capacity change from 0 to 4096 [ 596.860741][ T9213] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 596.935817][ T9221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 596.949937][ T9221] ext4 filesystem being mounted at /257/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 597.414881][ T9227] netlink: 'syz.0.1300': attribute type 4 has an invalid length. [ 597.708689][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.420915][ T9233] loop3: detected capacity change from 0 to 64 [ 598.488077][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 598.495387][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 598.650108][ T9237] loop0: detected capacity change from 0 to 256 [ 598.773123][ T9239] loop4: detected capacity change from 0 to 256 [ 598.848621][ T9237] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 599.025451][ T9239] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 599.264930][ T30] audit: type=1800 audit(1753713357.300:22): pid=9239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1305" name="bus" dev="loop4" ino=1048715 res=0 errno=0 [ 599.870899][ T5106] Bluetooth: hci3: unexpected event for opcode 0x0c03 [ 600.511712][ T9246] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 601.069071][ T9260] netlink: 'syz.4.1313': attribute type 4 has an invalid length. [ 602.163006][ T9272] loop0: detected capacity change from 0 to 256 [ 602.260555][ T9274] loop1: detected capacity change from 0 to 256 [ 602.349965][ T9272] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 602.458003][ T9274] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 602.585516][ T30] audit: type=1800 audit(1753713360.630:23): pid=9272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1319" name="bus" dev="loop0" ino=1048716 res=0 errno=0 [ 603.042004][ T9282] binder: BINDER_SET_CONTEXT_MGR already set [ 603.050871][ T9282] binder: 9281:9282 ioctl 4018620d 200000000040 returned -16 [ 603.877933][ T9293] netlink: 'syz.2.1328': attribute type 4 has an invalid length. [ 604.315334][ T9297] binder: 9296:9297 ioctl 4018620d 0 returned -22 [ 605.110327][ T9307] loop0: detected capacity change from 0 to 256 [ 605.237834][ T9307] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 605.441869][ T30] audit: type=1800 audit(1753713363.490:24): pid=9307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1334" name="bus" dev="loop0" ino=1048720 res=0 errno=0 [ 605.895698][ T9314] loop4: detected capacity change from 0 to 256 [ 606.093584][ T9314] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 606.950335][ T9325] netlink: 'syz.2.1342': attribute type 4 has an invalid length. [ 607.217891][ T9329] binder: 9328:9329 ioctl 4018620d 0 returned -22 [ 607.865983][ T9338] loop1: detected capacity change from 0 to 24 [ 607.925309][ T9338] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 609.025960][ T9350] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1353'. [ 609.246070][ T9353] loop3: detected capacity change from 0 to 256 [ 609.524652][ T9353] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 609.779191][ T9357] netlink: 'syz.0.1357': attribute type 4 has an invalid length. [ 610.082676][ T9362] binder: BINDER_SET_CONTEXT_MGR already set [ 610.089293][ T9362] binder: 9361:9362 ioctl 4018620d 200000004a80 returned -16 [ 610.981287][ T9373] loop3: detected capacity change from 0 to 24 [ 611.027764][ T9373] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 612.614595][ T9393] loop3: detected capacity change from 0 to 256 [ 612.881826][ T9393] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 612.975222][ T9398] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1372'. [ 613.229012][ T9402] loop0: detected capacity change from 0 to 256 [ 613.545025][ T9402] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 613.905372][ T9408] loop4: detected capacity change from 0 to 1024 [ 614.259919][ T9408] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 614.273201][ T9408] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 614.857924][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 615.427694][ T9428] binder: 9425:9428 ioctl c018620b 0 returned -14 [ 616.050812][ T9435] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1385'. [ 616.128957][ T9437] loop1: detected capacity change from 0 to 256 [ 616.303047][ T9437] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 616.831456][ T9445] loop2: detected capacity change from 0 to 256 [ 617.041211][ T9447] loop4: detected capacity change from 0 to 1024 [ 617.096959][ T9445] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 617.322218][ T9447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 617.336966][ T9447] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 618.051799][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 618.871947][ T9467] binder: 9465:9467 ioctl c018620b 0 returned -14 [ 619.470923][ T9472] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1399'. [ 619.945765][ T9478] loop3: detected capacity change from 0 to 256 [ 620.184617][ T9478] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 620.709869][ T9486] loop2: detected capacity change from 0 to 1024 [ 620.897303][ T9486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 620.911165][ T9486] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 620.948520][ T9491] loop4: detected capacity change from 0 to 256 [ 621.179196][ T9491] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 621.629719][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 622.269629][ T9503] binder: 9500:9503 ioctl c018620b 0 returned -14 [ 622.978324][ T9509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1414'. [ 623.151000][ T9516] overlayfs: failed to resolve './file1': -2 [ 623.224108][ T9515] loop2: detected capacity change from 0 to 256 [ 623.561032][ T9515] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 623.925846][ T9523] loop3: detected capacity change from 0 to 256 [ 624.035298][ T9522] loop0: detected capacity change from 0 to 1024 [ 624.203975][ T9523] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 624.211924][ T9522] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 624.233692][ T9522] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 624.338018][ T9528] binder: 9527:9528 ioctl c0306201 0 returned -14 [ 624.820002][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 626.218040][ T9547] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1430'. [ 626.320853][ T9549] overlayfs: failed to resolve './file1': -2 [ 626.967720][ T9557] loop0: detected capacity change from 0 to 256 [ 627.048439][ T9556] loop4: detected capacity change from 0 to 1024 [ 627.148227][ T9557] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 627.261354][ T9556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 627.275524][ T9556] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 627.603748][ T9563] loop2: detected capacity change from 0 to 256 [ 627.857240][ T9563] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 628.081633][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 629.509926][ T9583] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1445'. [ 630.351097][ T9592] loop0: detected capacity change from 0 to 256 [ 630.622624][ T9592] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 630.752888][ T9598] loop1: detected capacity change from 0 to 256 [ 630.766913][ T9596] loop4: detected capacity change from 0 to 1024 [ 630.846921][ T9596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 630.860581][ T9596] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 630.939408][ T9598] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 631.457845][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 632.353939][ T9613] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 632.669388][ T9620] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1461'. [ 633.991429][ T9632] loop4: detected capacity change from 0 to 256 [ 634.052723][ T9633] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 634.241506][ T9635] loop0: detected capacity change from 0 to 256 [ 634.246032][ T9632] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 634.399569][ T9635] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 636.379902][ T9658] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1478'. [ 636.777591][ T9661] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 637.077251][ T9666] loop0: detected capacity change from 0 to 256 [ 637.204746][ T9666] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 637.222405][ T9668] loop4: detected capacity change from 0 to 256 [ 637.469119][ T9668] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 637.610297][ T9674] binder: 9673:9674 ioctl 4018620d 0 returned -22 [ 638.598455][ T9678] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 639.788178][ T9699] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1495'. [ 640.013893][ T9701] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 640.461552][ T9709] binder: 9708:9709 ioctl 4018620d 0 returned -22 [ 640.773408][ T9711] loop2: detected capacity change from 0 to 256 [ 641.018649][ T9711] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 641.467905][ T9719] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 641.929540][ T9729] overlayfs: missing 'lowerdir' [ 642.115015][ T9727] loop3: detected capacity change from 0 to 2048 [ 642.629143][ T9735] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1510'. [ 644.385718][ T9755] loop4: detected capacity change from 0 to 256 [ 644.549387][ T9755] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 644.581545][ T9749] loop3: detected capacity change from 0 to 4096 [ 644.658191][ T9749] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 644.694661][ T9757] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 644.912774][ T9760] overlayfs: missing 'lowerdir' [ 644.987713][ T9761] veth0_to_bridge: vlans aren't supported yet for dev_uc|mc_add() [ 645.141399][ T9749] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 645.174530][ T9749] ntfs3(loop3): Failed to load $Extend (-22). [ 645.181608][ T9749] ntfs3(loop3): Failed to initialize $Extend. [ 645.829860][ T9768] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1524'. [ 646.799529][ T9777] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1528'. [ 647.784976][ T9790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1535'. [ 648.404333][ T9797] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1538'. [ 648.748746][ T9801] overlayfs: missing 'lowerdir' [ 649.735366][ T9813] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1544'. [ 651.225133][ T9829] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1552'. [ 651.306749][ T9832] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 651.840526][ T9834] overlayfs: missing 'lowerdir' [ 651.957871][ T9838] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 652.031204][ T9840] bridge0: port 3(syz_tun) entered blocking state [ 652.041208][ T9840] bridge0: port 3(syz_tun) entered disabled state [ 652.049042][ T9840] syz_tun: entered allmulticast mode [ 652.059213][ T9840] syz_tun: entered promiscuous mode [ 652.067443][ T9840] bridge0: port 3(syz_tun) entered blocking state [ 652.074705][ T9840] bridge0: port 3(syz_tun) entered forwarding state [ 652.793127][ T9846] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1559'. [ 654.481609][ T9861] loop1: detected capacity change from 0 to 1024 [ 654.597696][ T9866] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1566'. [ 654.740248][ T9861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 654.754760][ T9861] ext4 filesystem being mounted at /315/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 654.781900][ T9867] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 654.791578][ T9867] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 655.397113][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 655.489879][ T9877] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 655.718367][ T9879] bridge0: port 3(syz_tun) entered blocking state [ 655.726514][ T9879] bridge0: port 3(syz_tun) entered disabled state [ 655.734746][ T9879] syz_tun: entered allmulticast mode [ 655.744862][ T9879] syz_tun: entered promiscuous mode [ 655.753302][ T9879] bridge0: port 3(syz_tun) entered blocking state [ 655.760474][ T9879] bridge0: port 3(syz_tun) entered forwarding state [ 656.060210][ T9883] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1572'. [ 657.013542][ T9895] binder: 9893:9895 ioctl 4018620d 0 returned -22 [ 657.607441][ T9900] overlayfs: statfs failed on './file0' [ 658.330202][ T9908] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 658.340005][ T9908] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 658.440016][ T9911] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 659.204596][ T9921] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1588'. [ 659.384833][ T5106] Bluetooth: hci4: unexpected event for opcode 0x2011 [ 659.919894][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 659.927973][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 660.118600][ T9928] binder: 9927:9928 ioctl 4018620d 0 returned -22 [ 661.340061][ T9946] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 662.435452][ T9957] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1603'. [ 663.313765][ T9968] binder: 9964:9968 ioctl c0306201 0 returned -14 [ 664.251354][ T9980] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1611'. [ 664.507608][ T9985] netlink: 'syz.1.1614': attribute type 9 has an invalid length. [ 665.885902][T10002] binder: 10001:10002 ioctl c0306201 0 returned -14 [ 668.520451][T10039] binder: 10038:10039 ioctl c0306201 0 returned -14 [ 668.632859][ T5870] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 668.857043][ T5870] usb 3-1: Using ep0 maxpacket: 8 [ 668.893432][ T5870] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 668.902973][ T5870] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 668.915546][ T5870] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 669.035447][ T5870] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 669.046054][ T5870] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 669.054821][ T5870] usb 3-1: Product: syz [ 669.059966][ T5870] usb 3-1: Manufacturer: syz [ 669.065002][ T5870] usb 3-1: SerialNumber: syz [ 669.575933][T10037] loop2: detected capacity change from 0 to 512 [ 669.827035][T10037] EXT4-fs (loop2): Test dummy encryption mode enabled [ 669.988317][T10037] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.1634: casefold flag without casefold feature [ 670.045532][T10037] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1634: couldn't read orphan inode 15 (err -117) [ 670.101381][T10037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 672.184758][T10061] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 672.350545][T10061] EXT4-fs error (device loop2): ext4_add_entry:2417: inode #2: comm syz.2.1634: Directory hole found for htree leaf block 0 [ 674.309890][ T5870] usb 3-1: 0:2 : does not exist [ 674.618054][ T5868] usb 3-1: USB disconnect, device number 3 [ 674.715149][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 674.849675][ T6007] udevd[6007]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 677.187241][T10124] loop1: detected capacity change from 0 to 4096 [ 678.216961][ T30] audit: type=1800 audit(1753713436.250:25): pid=10124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1664" name="file1" dev="loop1" ino=33 res=0 errno=0 [ 679.875256][T10154] loop1: detected capacity change from 0 to 4096 [ 680.256691][T10165] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 680.527017][ T30] audit: type=1800 audit(1753713438.580:26): pid=10154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1676" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 681.157857][T10177] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 683.287781][ T5868] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 683.492378][ T5868] usb 5-1: Using ep0 maxpacket: 16 [ 683.552208][ T5868] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 683.563896][ T5868] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 683.577292][ T5868] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 683.588116][ T5868] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 683.598554][ T5868] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 683.648997][ T5868] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 683.659197][ T5868] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 683.668304][ T5868] usb 5-1: Manufacturer: syz [ 683.711457][ T5868] usb 5-1: config 0 descriptor?? [ 684.306394][ T5868] rc_core: IR keymap rc-hauppauge not found [ 684.314986][ T5868] Registered IR keymap rc-empty [ 684.324821][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.480084][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.525647][ T5868] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 684.555075][ T5868] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input13 [ 684.678552][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.732311][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.805261][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.827147][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.900635][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.927617][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 684.997200][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 685.047155][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 685.097624][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 685.180809][ T5868] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 685.234009][ T5868] mceusb 5-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 685.245073][ T5868] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 685.285134][T10219] 9pnet_fd: Insufficient options for proto=fd [ 685.406575][ T5868] usb 5-1: USB disconnect, device number 6 [ 686.408995][T10232] netlink: 'syz.4.1703': attribute type 4 has an invalid length. [ 688.297437][T10255] 9pnet_fd: Insufficient options for proto=fd [ 689.720062][T10268] netlink: 'syz.0.1718': attribute type 4 has an invalid length. [ 691.180915][T10285] 9pnet_fd: Insufficient options for proto=fd [ 692.258089][T10290] loop3: detected capacity change from 0 to 4096 [ 692.396763][T10290] NILFS (loop3): invalid segment: Checksum error in segment payload [ 692.405319][T10290] NILFS (loop3): trying rollback from an earlier position [ 692.526639][T10290] NILFS (loop3): recovery complete [ 692.569516][T10305] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 693.360162][T10310] 9p: Unknown access argument 18446744073709551615: -34 [ 693.509164][T10313] binder: 10311:10313 ioctl c0306201 0 returned -14 [ 693.708665][T10318] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1738'. [ 693.720001][T10318] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1738'. [ 695.175807][T10331] loop0: detected capacity change from 0 to 1024 [ 695.359679][T10331] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 695.372846][T10331] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 695.379044][T10335] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1746'. [ 696.234158][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 697.044537][T10350] 9p: Unknown access argument 18446744073709551615: -34 [ 697.620730][T10354] binder: 10352:10354 ioctl c0306201 0 returned -14 [ 699.228773][T10371] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1758'. [ 699.249484][T10366] loop1: detected capacity change from 0 to 1024 [ 699.429146][T10366] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 699.443221][T10366] ext4 filesystem being mounted at /350/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 699.801863][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.975681][T10382] 9p: Unknown access argument 18446744073709551615: -34 [ 700.394969][T10384] binder: 10383:10384 ioctl c0306201 0 returned -14 [ 701.136917][ T1736] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 701.433642][ T1736] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0093, bcdDevice=23.5a [ 701.446756][ T1736] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 701.455697][ T1736] usb 4-1: Product: syz [ 701.460444][ T1736] usb 4-1: Manufacturer: syz [ 701.466341][ T1736] usb 4-1: SerialNumber: syz [ 701.639471][ T1736] usb 4-1: config 0 descriptor?? [ 701.878358][T10400] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1773'. [ 701.978844][ T1736] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 701.986389][ T1736] dvb_usb_af9035 4-1:0.0: probe with driver dvb_usb_af9035 failed with error -22 [ 702.076580][ T1736] usb 4-1: USB disconnect, device number 5 [ 702.552948][T10405] loop2: detected capacity change from 0 to 512 [ 702.662219][T10409] 9pnet_fd: Insufficient options for proto=fd [ 702.743709][T10405] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.1776: casefold flag without casefold feature [ 702.783030][T10407] loop0: detected capacity change from 0 to 1024 [ 702.859559][T10405] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1776: couldn't read orphan inode 15 (err -117) [ 702.966613][T10407] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 702.983914][T10405] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 703.004416][T10407] ext4 filesystem being mounted at /356/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 703.454544][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 703.579487][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 704.446315][T10429] loop4: detected capacity change from 0 to 256 [ 704.592758][T10429] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 705.268406][T10436] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1787'. [ 706.088701][T10443] binder: 10442:10443 ioctl 4018620d 0 returned -22 [ 706.124650][T10444] 9pnet_fd: Insufficient options for proto=fd [ 706.480189][T10448] loop2: detected capacity change from 0 to 1024 [ 706.640418][T10448] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 706.655173][T10448] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 707.354916][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 707.592135][ T5106] Bluetooth: hci0: unexpected event for opcode 0x2035 [ 708.792998][T10475] binder: 10473:10475 ioctl c0306201 0 returned -14 [ 708.803854][T10476] 9pnet_fd: Insufficient options for proto=fd [ 709.519269][T10482] loop3: detected capacity change from 0 to 1024 [ 709.789761][T10482] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 709.803773][T10482] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 710.221814][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 710.713710][T10499] loop3: detected capacity change from 0 to 64 [ 710.829465][T10499] hfs: request for non-existent node 131072 in B*Tree [ 710.837678][T10499] hfs: request for non-existent node 131072 in B*Tree [ 710.948953][T10499] hfs: request for non-existent node 131072 in B*Tree [ 710.956717][T10499] hfs: request for non-existent node 131072 in B*Tree [ 711.051109][T10505] hfs: request for non-existent node 131072 in B*Tree [ 711.058885][T10505] hfs: request for non-existent node 131072 in B*Tree [ 711.217796][T10499] hfs: request for non-existent node 131072 in B*Tree [ 711.225999][T10499] hfs: request for non-existent node 131072 in B*Tree [ 712.126793][T10514] binder: 10512:10514 ioctl c0306201 0 returned -14 [ 712.859176][T10520] loop0: detected capacity change from 0 to 1024 [ 712.994654][T10522] loop2: detected capacity change from 0 to 1024 [ 713.061240][T10520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 713.074700][T10520] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 713.517473][ T1736] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 713.810349][ T1736] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 713.823382][ T1736] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 713.823811][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 713.945261][ T1736] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 713.956895][ T1736] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 713.965508][ T1736] usb 3-1: SerialNumber: syz [ 714.310830][ T1736] usb 3-1: 0:2 : does not exist [ 714.529085][ T1736] usb 3-1: USB disconnect, device number 4 [ 714.866514][ T6007] udevd[6007]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 715.785418][T10547] binder: 10545:10547 ioctl c0306201 0 returned -14 [ 716.608749][T10555] loop2: detected capacity change from 0 to 1024 [ 716.923468][T10555] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 716.937914][T10555] ext4 filesystem being mounted at /357/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 717.768150][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 718.060295][T10572] loop3: detected capacity change from 0 to 2048 [ 718.425271][T10572] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 718.473492][T10572] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 718.808307][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 719.863411][T10595] loop0: detected capacity change from 0 to 2048 [ 720.015928][T10595] loop0: p1 < > p3 p4 < > [ 720.109055][T10595] loop0: p3 start 4284289 is beyond EOD, truncated [ 720.291208][T10603] loop3: detected capacity change from 0 to 1024 [ 720.442378][T10603] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 720.458562][T10603] ext4 filesystem being mounted at /365/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 720.583523][ T5166] loop0: p1 < > p3 p4 < > [ 720.650951][ T5166] loop0: p3 start 4284289 is beyond EOD, truncated [ 721.201612][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 721.340185][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 721.348231][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 721.964332][ T6007] udevd[6007]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 722.000519][ T6003] udevd[6003]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 722.564721][ T6007] udevd[6007]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 722.589116][ T6008] udevd[6008]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 723.542525][T10646] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 723.603364][T10642] loop0: detected capacity change from 0 to 1024 [ 723.759282][T10642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 723.782505][T10642] ext4 filesystem being mounted at /377/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 724.441300][T10652] loop2: detected capacity change from 0 to 512 [ 724.574374][T10652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 724.724098][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 725.269606][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 726.302975][T10671] overlayfs: missing 'lowerdir' [ 727.290885][T10682] loop4: detected capacity change from 0 to 1024 [ 727.537330][T10682] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 727.551972][T10682] ext4 filesystem being mounted at /394/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 728.171291][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 729.162524][T10706] overlayfs: missing 'lowerdir' [ 729.328237][ T1736] usb 4-1: new full-speed USB device number 6 using dummy_hcd [ 729.558003][ T1736] usb 4-1: config 0 has an invalid interface number: 168 but max is 0 [ 729.566947][ T1736] usb 4-1: config 0 has no interface number 0 [ 729.573483][ T1736] usb 4-1: New USB device found, idVendor=07c9, idProduct=0012, bcdDevice=dd.b8 [ 729.583180][ T1736] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 729.734155][ T1736] usb 4-1: config 0 descriptor?? [ 729.978336][ T5868] usb 4-1: USB disconnect, device number 6 [ 730.414895][T10715] loop1: detected capacity change from 0 to 4096 [ 731.314814][T10723] loop2: detected capacity change from 0 to 1024 [ 731.385080][T10728] loop3: detected capacity change from 0 to 512 [ 731.488755][T10723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 731.502470][T10723] ext4 filesystem being mounted at /373/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 731.785140][T10728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 731.798865][T10728] ext4 filesystem being mounted at /371/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 732.129629][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 732.439471][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 732.765644][T10737] loop4: detected capacity change from 0 to 4096 [ 733.004080][T10745] overlayfs: missing 'lowerdir' [ 733.017921][T10746] 9pnet_fd: Insufficient options for proto=fd [ 733.038106][T10747] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 735.339825][T10770] loop3: detected capacity change from 0 to 1024 [ 735.347433][T10774] process 'syz.4.1927' launched '/dev/fd/3' with NULL argv: empty string added [ 735.502165][T10770] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 735.515804][T10770] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 735.868215][T10779] overlayfs: missing 'lowerdir' [ 736.029766][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 736.208417][T10781] binder: 10780:10781 unknown command 0 [ 736.214424][T10781] binder: 10780:10781 ioctl c0306201 200000000a80 returned -22 [ 737.198485][T10784] loop3: detected capacity change from 0 to 4096 [ 737.477350][T10791] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 737.656475][ T30] audit: type=1800 audit(1753713495.690:27): pid=10784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1930" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 738.073282][T10794] loop4: detected capacity change from 0 to 512 [ 738.254956][T10794] EXT4-fs (loop4): #blocks per group too big: 16809984 [ 738.576415][T10794] loop4: detected capacity change from 0 to 1024 [ 738.638719][T10794] EXT4-fs: Ignoring removed i_version option [ 738.762280][T10794] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 738.973657][T10802] binder: 10798:10802 ioctl c0306201 0 returned -14 [ 739.279135][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 741.348950][T10829] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 741.657947][T10831] IPv6: sit1: Disabled Multicast RS [ 741.928633][T10825] loop1: detected capacity change from 0 to 4096 [ 742.176788][T10836] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 742.307273][ T30] audit: type=1800 audit(1753713500.350:28): pid=10825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1946" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 742.428689][T10837] binder: BINDER_SET_CONTEXT_MGR already set [ 742.435143][T10837] binder: 10835:10837 ioctl 4018620d 200000000040 returned -16 [ 742.547197][T10837] binder: 10835:10837 ioctl c0306201 0 returned -14 [ 743.639731][T10840] loop2: detected capacity change from 0 to 4096 [ 743.737872][T10840] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 744.586825][T10853] loop4: detected capacity change from 0 to 1024 [ 744.782997][T10853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 744.983691][T10853] EXT4-fs error (device loop4): ext4_generic_delete_entry:2668: inode #2: block 48: comm syz.4.1958: bad entry in directory: inode out of bounds - offset=0, inode=64, rec_len=12, size=1024 fake=1 [ 745.057231][T10853] EXT4-fs error (device loop4) in ext4_delete_entry:2739: Corrupt filesystem [ 745.459505][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 745.911310][T10870] binder: 10868:10870 ioctl c0306201 0 returned -14 [ 746.730064][T10873] loop4: detected capacity change from 0 to 4096 [ 746.899825][T10882] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 747.022956][ T30] audit: type=1800 audit(1753713505.080:29): pid=10873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1964" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 747.682250][T10885] loop2: detected capacity change from 0 to 4096 [ 747.910098][T10885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 748.187655][T10885] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #15: comm syz.2.1971: corrupted inode contents [ 748.267492][T10885] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #15: comm syz.2.1971: mark_inode_dirty error [ 748.361816][T10885] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #15: comm syz.2.1971: corrupted inode contents [ 748.428152][T10885] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #15: comm syz.2.1971: mark_inode_dirty error [ 748.522888][T10885] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #15: comm syz.2.1971: corrupted inode contents [ 748.626531][T10885] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #15: comm syz.2.1971: mark_inode_dirty error [ 748.711577][T10885] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #15: comm syz.2.1971: corrupted inode contents [ 748.728877][T10885] EXT4-fs error (device loop2): ext4_truncate:4597: inode #15: comm syz.2.1971: mark_inode_dirty error [ 748.743775][T10885] EXT4-fs error (device loop2) in ext4_setattr:5986: Corrupt filesystem [ 748.766027][T10892] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #15: comm syz.2.1971: corrupted inode contents [ 749.103429][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 751.253306][T10925] loop1: detected capacity change from 0 to 64 [ 753.953584][T10953] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 754.371512][T10957] loop3: detected capacity change from 0 to 1024 [ 754.433034][T10957] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869) [ 754.444106][T10957] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 754.547165][T10957] EXT4-fs (loop3): invalid journal inode [ 754.553595][T10957] EXT4-fs (loop3): can't get journal size [ 754.682229][T10957] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 754.917070][T10957] 9pnet: p9_errstr2errno: server reported unknown error œæçâ [ 755.370290][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 757.380765][T10995] loop3: detected capacity change from 0 to 256 [ 757.470364][T10995] exfat: Deprecated parameter 'utf8' [ 757.670135][T10995] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 758.877363][T11012] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) ! [ 760.959243][T11036] loop1: detected capacity change from 0 to 64 [ 761.108239][ T30] audit: type=1800 audit(1753713519.170:30): pid=11036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2038" name="file0" dev="loop1" ino=1 res=0 errno=0 [ 762.490464][T11051] binder: BINDER_SET_CONTEXT_MGR already set [ 762.497271][T11051] binder: 11050:11051 ioctl 4018620d 200000000040 returned -16 [ 762.748666][T11054] Bluetooth: hci0: Opcode 0x0401 failed: -112 [ 764.761725][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 766.858991][T11111] xt_ecn: cannot match TCP bits for non-tcp packets [ 769.195830][T11140] loop2: detected capacity change from 0 to 512 [ 769.353780][T11140] EXT4-fs (loop2): Test dummy encryption mode enabled [ 769.441345][T11146] syz.1.2087 uses obsolete (PF_INET,SOCK_PACKET) [ 769.506360][T11140] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.2084: casefold flag without casefold feature [ 769.629404][T11140] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2084: couldn't read orphan inode 15 (err -117) [ 769.759513][T11140] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 769.899364][T11140] EXT4-fs error (device loop2): ext4_add_entry:2417: inode #2: comm syz.2.2084: Directory hole found for htree leaf block 0 [ 770.461308][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 772.638361][T11182] loop2: detected capacity change from 0 to 512 [ 772.699706][T11182] EXT4-fs (loop2): Test dummy encryption mode enabled [ 772.799639][T11182] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.2103: casefold flag without casefold feature [ 772.904923][T11182] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2103: couldn't read orphan inode 15 (err -117) [ 772.980158][T11182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 773.144238][T11182] EXT4-fs error (device loop2): ext4_add_entry:2417: inode #2: comm syz.2.2103: Directory hole found for htree leaf block 0 [ 773.263682][T11195] loop1: detected capacity change from 0 to 256 [ 773.311660][T11195] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 773.612577][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 775.933020][T11224] loop4: detected capacity change from 0 to 512 [ 776.056806][T11224] EXT4-fs (loop4): Test dummy encryption mode enabled [ 776.179652][T11224] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.2121: casefold flag without casefold feature [ 776.255220][T11224] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2121: couldn't read orphan inode 15 (err -117) [ 776.279825][T11224] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 776.403143][T11224] EXT4-fs error (device loop4): ext4_add_entry:2417: inode #2: comm syz.4.2121: Directory hole found for htree leaf block 0 [ 776.433358][T11228] loop2: detected capacity change from 0 to 1024 [ 776.876880][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.699384][T11256] loop4: detected capacity change from 0 to 512 [ 779.808399][T11256] EXT4-fs (loop4): Test dummy encryption mode enabled [ 779.919948][T11256] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.2135: casefold flag without casefold feature [ 780.088689][T11256] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2135: couldn't read orphan inode 15 (err -117) [ 780.148685][T11256] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 780.303896][T11256] EXT4-fs error (device loop4): ext4_add_entry:2417: inode #2: comm syz.4.2135: Directory hole found for htree leaf block 0 [ 780.671716][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 782.795970][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 782.804612][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 783.780499][T11288] binder: BINDER_SET_CONTEXT_MGR already set [ 783.787302][T11288] binder: 11286:11288 ioctl 4018620d 200000000040 returned -16 [ 783.799087][T11283] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 787.632159][T11325] loop4: detected capacity change from 0 to 64 [ 787.827098][T11318] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 787.889934][ T30] audit: type=1800 audit(1753713545.920:31): pid=11325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2166" name="file0" dev="loop4" ino=1 res=0 errno=0 [ 789.600794][T11341] overlayfs: failed to resolve './file0': -2 [ 790.395209][T11352] loop1: detected capacity change from 0 to 64 [ 790.528979][ T30] audit: type=1800 audit(1753713548.570:32): pid=11352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2178" name="file0" dev="loop1" ino=1 res=0 errno=0 [ 791.690253][T11358] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 792.259720][T11376] 9pnet_fd: Insufficient options for proto=fd [ 792.293790][T11373] binder_alloc: 11371: binder_alloc_buf, no vma [ 792.920478][T11384] loop1: detected capacity change from 0 to 1024 [ 793.162265][T11384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 793.176008][T11384] ext4 filesystem being mounted at /438/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 793.622754][T11395] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 793.936770][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 795.227030][T11404] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 795.578416][T11413] 9pnet_fd: Insufficient options for proto=fd [ 796.695602][T11425] loop4: detected capacity change from 0 to 64 [ 796.953726][ T30] audit: type=1800 audit(1753713555.000:33): pid=11425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2207" name="file0" dev="loop4" ino=1 res=0 errno=0 [ 797.764747][T11431] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 799.275280][T11451] 9p: Unknown access argument 18446744073709551615: -34 [ 799.428645][T11442] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 799.562495][T11455] loop2: detected capacity change from 0 to 64 [ 799.626240][T11456] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 799.634134][T11456] IPv6: NLM_F_CREATE should be set when creating new route [ 799.642102][T11456] IPv6: NLM_F_CREATE should be set when creating new route [ 799.834152][ T30] audit: type=1800 audit(1753713557.890:34): pid=11455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2219" name="file0" dev="loop2" ino=1 res=0 errno=0 [ 800.324075][T11464] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 800.349162][T11465] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 801.035919][ T36] Bluetooth: hci5: Frame reassembly failed (-84) [ 801.201991][T11471] loop3: detected capacity change from 0 to 256 [ 801.300262][T11471] exfat: Deprecated parameter 'utf8' [ 801.398389][T11478] input: syz0 as /devices/virtual/input/input14 [ 801.443968][T11471] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 801.925790][T11483] 9p: Unknown access argument 18446744073709551615: -34 [ 802.808312][T11487] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 803.076948][T11058] Bluetooth: hci5: command 0x1003 tx timeout [ 803.084362][ T5106] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 803.500991][T11497] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 803.628684][T11500] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 804.601072][T11516] loop1: detected capacity change from 0 to 256 [ 804.688536][T11516] exfat: Deprecated parameter 'utf8' [ 805.039131][T11516] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 805.590384][T11526] 9p: Unknown access argument 18446744073709551615: -34 [ 806.561707][T11539] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 806.768130][T11534] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 807.662802][T11555] syz.1.2256 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 808.003306][T11558] loop3: detected capacity change from 0 to 256 [ 808.079506][T11558] exfat: Deprecated parameter 'utf8' [ 808.186460][T11560] 9p: Unknown access argument 18446744073709551615: -34 [ 808.216525][T11558] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 809.073013][T11572] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 810.002024][T11576] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 810.884676][T11594] loop2: detected capacity change from 0 to 256 [ 810.900762][T11593] 9p: Unknown access argument 18446744073709551615: -34 [ 810.975707][T11594] exfat: Deprecated parameter 'utf8' [ 811.219926][T11594] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 811.868888][T11608] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 812.002176][T11605] loop3: detected capacity change from 0 to 2048 [ 812.121040][T11605] UDF-fs: warning (device loop3): udf_fill_super: No fileset found [ 812.370604][T11613] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2282'. [ 812.994542][T11617] overlayfs: failed to resolve './file1': -2 [ 813.920014][T11627] 9p: Unknown access argument 18446744073709551615: -34 [ 814.240048][T11634] loop0: detected capacity change from 0 to 256 [ 814.279903][T11634] exfat: Deprecated parameter 'utf8' [ 814.340030][T11636] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 814.540852][T11634] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 815.080968][T11646] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2296'. [ 815.477016][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 816.863126][T11662] loop3: detected capacity change from 0 to 1024 [ 816.874822][T11664] 9p: Unknown access argument 18446744073709551615: -34 [ 817.003960][T11669] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 817.104675][T11662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 817.118012][T11662] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 817.247070][T11675] loop4: detected capacity change from 0 to 256 [ 817.369643][T11675] exfat: Deprecated parameter 'utf8' [ 817.587235][T11675] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 817.672401][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 817.796809][T11679] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2310'. [ 818.199503][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 818.550823][ T5106] Bluetooth: hci4: unexpected event for opcode 0x0c5b [ 819.318655][T11701] 9p: Unknown access argument 18446744073709551615: -34 [ 819.922029][T11706] loop4: detected capacity change from 0 to 1024 [ 820.059216][T11708] loop1: detected capacity change from 0 to 256 [ 820.071298][T11706] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 820.084975][T11706] ext4 filesystem being mounted at /486/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 820.128072][T11708] exfat: Deprecated parameter 'utf8' [ 820.170696][T11716] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2326'. [ 820.308000][T11708] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 820.775978][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 821.156898][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 822.287801][T11736] 9p: Unknown access argument 18446744073709551615: -34 [ 823.128661][T11743] binder_alloc: 11742: binder_alloc_buf, no vma [ 823.803001][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 823.814673][T11749] loop2: detected capacity change from 0 to 256 [ 823.834490][T11747] loop0: detected capacity change from 0 to 1024 [ 823.888495][T11749] exfat: Deprecated parameter 'utf8' [ 824.119976][T11747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 824.134779][T11747] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 824.246463][T11749] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 824.834423][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 826.388040][T11775] binder_alloc: 11774: binder_alloc_buf, no vma [ 827.000568][T11781] loop2: detected capacity change from 0 to 1024 [ 827.120104][T11783] loop3: detected capacity change from 0 to 256 [ 827.181193][T11783] exfat: Deprecated parameter 'utf8' [ 827.207081][T11781] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 827.220296][T11781] ext4 filesystem being mounted at /455/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 827.382988][T11783] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 827.506325][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 827.531975][T11790] loop1: detected capacity change from 0 to 16 [ 827.554939][T11790] erofs (device loop1): mounted with root inode @ nid 36. [ 827.949025][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 829.089500][T11808] binder_alloc: 11807: binder_alloc_buf, no vma [ 830.300184][ T5106] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 830.783265][T11826] loop1: detected capacity change from 0 to 1024 [ 830.913622][T11828] loop0: detected capacity change from 0 to 256 [ 831.011355][T11826] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 831.026937][T11826] ext4 filesystem being mounted at /471/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 831.080257][T11828] exfat: Deprecated parameter 'utf8' [ 831.292968][T11828] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 831.846525][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 832.153843][T11838] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 833.132620][T11858] fuseblk: Bad value for 'fd' [ 833.268763][T11860] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 834.054233][T11868] loop2: detected capacity change from 0 to 256 [ 834.128163][T11868] exfat: Deprecated parameter 'utf8' [ 834.380103][T11868] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 835.436710][T11887] fuseblk: Bad value for 'fd' [ 836.059349][T11893] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2403'. [ 836.880941][T11906] loop4: detected capacity change from 0 to 256 [ 836.997013][T11906] exfat: Deprecated parameter 'utf8' [ 837.111025][T11906] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 838.598422][T11924] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2417'. [ 838.694978][T11926] loop0: detected capacity change from 0 to 512 [ 838.930798][T11926] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 838.945252][T11926] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 839.085068][T11926] EXT4-fs (loop0): 1 truncate cleaned up [ 839.093636][T11926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 839.339874][T11926] EXT4-fs: group quota file already specified [ 839.760786][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 839.899252][T11940] overlayfs: missing 'lowerdir' [ 840.243233][T11942] loop1: detected capacity change from 0 to 256 [ 840.328445][T11942] exfat: Deprecated parameter 'utf8' [ 840.487448][T11944] binder: BINDER_SET_CONTEXT_MGR already set [ 840.494208][T11944] binder: 11943:11944 ioctl 4018620d 200000000040 returned -16 [ 840.529634][T11947] binder: 11943:11947 ioctl c0306201 2000000003c0 returned -22 [ 840.552879][T11942] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 841.581716][T11959] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2431'. [ 842.479717][T11967] netlink: 'syz.1.2434': attribute type 10 has an invalid length. [ 842.511071][T11967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 842.534604][T11967] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 842.602549][T11972] overlayfs: missing 'lowerdir' [ 843.640382][T11984] binder: BINDER_SET_CONTEXT_MGR already set [ 843.647236][T11984] binder: 11983:11984 ioctl 4018620d 200000000040 returned -16 [ 843.734604][T11984] binder: 11983:11984 ioctl c0306201 2000000003c0 returned -22 [ 844.225101][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 844.232327][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 845.452907][T12007] binder_alloc: 12002: binder_alloc_buf, no vma [ 845.640930][T12006] netlink: 'syz.0.2452': attribute type 10 has an invalid length. [ 845.672050][T12006] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 845.698227][T12006] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 846.657426][T12017] binder: BINDER_SET_CONTEXT_MGR already set [ 846.664125][T12017] binder: 12016:12017 ioctl 4018620d 200000000040 returned -16 [ 846.773274][T12017] binder: 12016:12017 ioctl c0306201 2000000003c0 returned -22 [ 847.550653][T12028] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 848.407878][T12039] netlink: 'syz.0.2467': attribute type 10 has an invalid length. [ 848.827264][ T5868] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 849.059141][ T5868] usb 4-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24 [ 849.068969][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 849.078163][ T5868] usb 4-1: Product: syz [ 849.082729][ T5868] usb 4-1: Manufacturer: syz [ 849.087961][ T5868] usb 4-1: SerialNumber: syz [ 849.213415][ T5868] usb 4-1: config 0 descriptor?? [ 849.267931][ T5868] powermate 4-1:0.0: probe with driver powermate failed with error -22 [ 850.324795][T12060] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 850.694360][T12067] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 851.786779][T10530] usb 4-1: USB disconnect, device number 7 [ 851.865163][T12077] bond0: entered promiscuous mode [ 851.871021][T12077] bond_slave_0: entered promiscuous mode [ 851.881732][T12077] bond_slave_1: entered promiscuous mode [ 851.889753][T12077] batadv0: entered promiscuous mode [ 853.203572][T12092] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 854.685554][T12100] loop2: detected capacity change from 0 to 4096 [ 854.758604][T12100] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 855.131051][T12109] Bluetooth: hci0: Opcode 0x0401 failed: -22 [ 855.224141][T12100] ntfs3(loop2): Inode r=19 is not in use! [ 855.231604][T12100] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 855.308440][T12100] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 855.384686][T12100] ntfs3(loop2): ino=1b, mi_enum_attr [ 855.391402][T12100] ntfs3(loop2): ino=1b, mi_enum_attr [ 855.484393][T12115] ntfs3(loop2): ino=1e, mi_enum_attr [ 855.547837][T12100] ntfs3(loop2): ino=1e, mi_enum_attr [ 856.524841][T12121] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 857.168725][ T5106] Bluetooth: hci0: command tx timeout [ 857.634442][T12137] loop3: detected capacity change from 0 to 1024 [ 857.811708][T12137] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 857.826571][T12137] ext4 filesystem being mounted at /499/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 858.427421][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 858.454839][T12148] loop0: detected capacity change from 0 to 1024 [ 859.142031][T12157] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 859.813750][T12164] binder_alloc: 12162: binder_alloc_buf, no vma [ 860.740347][T12176] loop2: detected capacity change from 0 to 1024 [ 860.811724][T12176] EXT4-fs: Ignoring removed i_version option [ 860.964778][T12178] loop3: detected capacity change from 0 to 1024 [ 861.055331][T12176] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 861.137108][T12178] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 861.151165][T12178] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 861.668637][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 861.704081][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 862.294249][T12196] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 863.287594][T12207] binder_alloc: 12206: binder_alloc_buf, no vma [ 863.951588][T12215] loop1: detected capacity change from 0 to 1024 [ 864.038875][T12215] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 864.059045][T12215] ext4 filesystem being mounted at /507/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 864.659881][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 865.344253][T12231] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 867.010242][T12250] binder: BINDER_SET_CONTEXT_MGR already set [ 867.019397][T12250] binder: 12248:12250 ioctl 4018620d 200000000040 returned -16 [ 867.180718][T12252] loop2: detected capacity change from 0 to 1024 [ 867.367847][T12252] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 867.380848][T12252] ext4 filesystem being mounted at /497/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 867.766654][T12262] vxcan1: entered allmulticast mode [ 868.091341][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 870.723784][T12296] loop3: detected capacity change from 0 to 1024 [ 870.969131][T12296] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 870.983117][T12296] ext4 filesystem being mounted at /512/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 871.608492][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 874.008720][T12336] loop4: detected capacity change from 0 to 1024 [ 874.199512][T12336] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 874.212685][T12336] ext4 filesystem being mounted at /536/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 874.935549][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 876.410628][T12366] loop1: detected capacity change from 0 to 256 [ 876.477297][T12366] exfat: Deprecated parameter 'utf8' [ 876.649234][T12366] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 877.217980][T12378] binder: BINDER_SET_CONTEXT_MGR already set [ 877.224564][T12378] binder: 12375:12378 ioctl 4018620d 2000000001c0 returned -16 [ 877.584869][T12382] loop1: detected capacity change from 0 to 1024 [ 877.607476][T12370] loop2: detected capacity change from 0 to 4096 [ 877.709062][T12382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 877.723104][T12382] ext4 filesystem being mounted at /520/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 878.191500][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 879.602230][T12399] overlayfs: failed to resolve './file0': -2 [ 879.725777][T12404] binder: BINDER_SET_CONTEXT_MGR already set [ 879.732817][T12404] binder: 12402:12404 ioctl 4018620d 200000000040 returned -16 [ 879.813443][T12406] loop1: detected capacity change from 0 to 256 [ 879.884829][T12406] exfat: Deprecated parameter 'utf8' [ 880.009002][T12406] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 881.120002][T12421] binder: BINDER_SET_CONTEXT_MGR already set [ 881.127961][T12421] binder: 12418:12421 ioctl 4018620d 2000000001c0 returned -16 [ 881.570836][T12428] bond0: entered promiscuous mode [ 881.576757][T12428] bond_slave_0: entered promiscuous mode [ 881.583987][T12428] bond_slave_1: entered promiscuous mode [ 881.988314][T12420] loop2: detected capacity change from 0 to 4096 [ 882.551351][T12435] overlayfs: failed to resolve './file0': -2 [ 883.415124][T12444] loop4: detected capacity change from 0 to 256 [ 883.462004][T12444] exfat: Deprecated parameter 'utf8' [ 883.722818][T12444] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 884.368134][T12453] loop1: detected capacity change from 0 to 1024 [ 884.595354][T12459] binder: BINDER_SET_CONTEXT_MGR already set [ 884.602593][T12459] binder: 12457:12459 ioctl 4018620d 2000000001c0 returned -16 [ 885.702255][T12469] overlayfs: failed to resolve './file1': -2 [ 886.636857][T12480] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 886.793050][T12482] bond0: entered promiscuous mode [ 886.800253][T12482] bond_slave_0: entered promiscuous mode [ 886.808884][T12482] bond_slave_1: entered promiscuous mode [ 887.759212][T12490] loop4: detected capacity change from 0 to 2048 [ 887.895394][T12490] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 888.149393][T12490] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 888.310901][T12490] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28 [ 888.331057][T12490] EXT4-fs (loop4): This should not happen!! Data will be lost [ 888.331057][T12490] [ 888.343492][T12490] EXT4-fs (loop4): Total free blocks count 0 [ 888.350046][T12490] EXT4-fs (loop4): Free/Dirty block details [ 888.356654][T12490] EXT4-fs (loop4): free_blocks=66060288 [ 888.362905][T12490] EXT4-fs (loop4): dirty_blocks=16 [ 888.368671][T12490] EXT4-fs (loop4): Block reservation details [ 888.374997][T12490] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 888.634953][T12506] overlayfs: failed to resolve './file1': -2 [ 889.008633][ T1896] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 889.821600][T12518] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 890.018428][T12518] kvm: pic: non byte read [ 890.047380][T12518] kvm: pic: non byte read [ 890.053520][T12518] kvm: pic: non byte read [ 890.138414][T12518] kvm: pic: non byte read [ 890.144677][T12518] kvm: pic: non byte read [ 890.270859][T12518] kvm: pic: non byte read [ 890.374078][T12518] kvm: pic: non byte read [ 890.777467][T12530] loop4: detected capacity change from 0 to 1024 [ 890.987006][T12530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 891.001216][T12530] ext4 filesystem being mounted at /549/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 891.138838][T12539] loop3: detected capacity change from 0 to 1024 [ 891.272075][T12539] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 891.285355][T12539] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 891.383156][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 891.995723][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 893.157483][T12560] loop1: detected capacity change from 0 to 512 [ 893.497886][T12560] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 893.511765][T12560] ext4 filesystem being mounted at /533/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 893.785701][T12560] devtmpfs: Too few inodes for current use [ 893.957999][T12571] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 894.047531][T12571] kvm: pic: non byte read [ 894.073249][T12571] kvm: pic: non byte read [ 894.138195][T12571] kvm: pic: non byte read [ 894.271268][T12571] kvm: pic: level sensitive irq not supported [ 894.328859][T12571] kvm: pic: level sensitive irq not supported [ 894.659362][ T5809] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 895.268419][T12587] net veth1_virt_wifi ,: renamed from virt_wifi0 [ 895.598368][T12588] loop4: detected capacity change from 0 to 1024 [ 895.682441][T12588] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 895.799989][T12588] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 895.862771][T12588] EXT4-fs (loop4): orphan cleanup on readonly fs [ 895.948329][T12588] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem [ 896.017201][T12588] EXT4-fs (loop4): Remounting filesystem read-only [ 896.024892][T12588] Quota error (device loop4): write_blk: dquota write failed [ 896.033998][T12588] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 896.045208][T12588] EXT4-fs (loop4): 1 truncate cleaned up [ 896.064787][T12588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 896.635459][ T5808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 896.762453][T12604] loop3: detected capacity change from 0 to 256 [ 896.811699][T12604] exfat: Deprecated parameter 'utf8' [ 897.035190][T12604] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 897.192153][T12609] loop1: detected capacity change from 0 to 64 [ 897.384612][ T30] audit: type=1800 audit(1753713655.440:35): pid=12609 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2692" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 897.405315][ C0] vkms_vblank_simulate: vblank timer overrun [ 897.421357][T12609] ===================================================== [ 897.435936][T12609] BUG: KMSAN: uninit-value in hfs_find_set_zero_bits+0x74d/0xb60 [ 897.446589][T12609] hfs_find_set_zero_bits+0x74d/0xb60 [ 897.452771][T12609] hfs_vbm_search_free+0x13c/0x5b0 [ 897.459088][T12609] hfs_extend_file+0x6a5/0x1b00 [ 897.464530][T12609] hfs_get_block+0x435/0x1150 [ 897.469784][T12609] __block_write_begin_int+0xa76/0x3030 [ 897.476287][T12609] cont_write_begin+0x10e1/0x1bc0 [ 897.481955][T12609] hfs_write_begin+0x85/0x130 [ 897.487462][T12609] cont_write_begin+0x35a/0x1bc0 [ 897.492964][T12609] hfs_write_begin+0x85/0x130 [ 897.498063][T12609] hfs_file_truncate+0x1d6/0xe60 [ 897.503274][T12609] hfs_inode_setattr+0x964/0xaa0 [ 897.508852][T12609] notify_change+0x1993/0x1aa0 [ 897.514204][T12609] do_truncate+0x28f/0x310 [ 897.519171][T12609] do_ftruncate+0x698/0x730 [ 897.523949][T12609] __x64_sys_ftruncate+0x11b/0x250 [ 897.529626][T12609] x64_sys_call+0xfe3/0x3db0 [ 897.540938][T12609] do_syscall_64+0xd9/0x210 [ 897.545871][T12609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 897.554111][T12609] [ 897.556828][T12609] Uninit was created at: [ 897.561500][T12609] __kmalloc_cache_noprof+0x7f7/0xed0 [ 897.567465][T12609] hfs_mdb_get+0x1cc8/0x2a90 [ 897.572344][T12609] hfs_fill_super+0x3d0/0xb80 [ 897.577543][T12609] get_tree_bdev_flags+0x6e3/0x920 [ 897.583147][T12609] get_tree_bdev+0x38/0x50 [ 897.588401][T12609] hfs_get_tree+0x35/0x40 [ 897.593001][T12609] vfs_get_tree+0xb0/0x5c0 [ 897.598063][T12609] do_new_mount+0x738/0x1610 [ 897.603043][T12609] path_mount+0x6db/0x1e90 [ 897.608364][T12609] __se_sys_mount+0x6eb/0x7d0 [ 897.613326][T12609] __x64_sys_mount+0xe4/0x150 [ 897.618451][T12609] x64_sys_call+0xfa7/0x3db0 [ 897.623439][T12609] do_syscall_64+0xd9/0x210 [ 897.628513][T12609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 897.641488][T12609] [ 897.644026][T12609] CPU: 1 UID: 0 PID: 12609 Comm: syz.1.2692 Not tainted 6.16.0-syzkaller #0 PREEMPT(none) [ 897.656519][T12609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 897.667261][T12609] ===================================================== [ 897.674491][T12609] Disabling lock debugging due to kernel taint [ 897.681390][T12609] Kernel panic - not syncing: kmsan.panic set ... [ 897.688600][T12609] CPU: 1 UID: 0 PID: 12609 Comm: syz.1.2692 Tainted: G B 6.16.0-syzkaller #0 PREEMPT(none) [ 897.700893][T12609] Tainted: [B]=BAD_PAGE [ 897.705218][T12609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 897.715601][T12609] Call Trace: [ 897.719143][T12609] [ 897.722253][T12609] __dump_stack+0x26/0x30 [ 897.727128][T12609] dump_stack_lvl+0x53/0x270 [ 897.732230][T12609] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 897.738362][T12609] dump_stack+0x1e/0x25 [ 897.743490][T12609] panic+0x4bd/0xd50 [ 897.747864][T12609] kmsan_report+0x31c/0x320 [ 897.752772][T12609] ? __msan_warning+0x1b/0x30 [ 897.758179][T12609] ? hfs_find_set_zero_bits+0x74d/0xb60 [ 897.763998][T12609] ? hfs_vbm_search_free+0x13c/0x5b0 [ 897.770061][T12609] ? hfs_extend_file+0x6a5/0x1b00 [ 897.775416][T12609] ? hfs_get_block+0x435/0x1150 [ 897.780743][T12609] ? __block_write_begin_int+0xa76/0x3030 [ 897.786790][T12609] ? cont_write_begin+0x10e1/0x1bc0 [ 897.793142][T12609] ? hfs_write_begin+0x85/0x130 [ 897.798358][T12609] ? cont_write_begin+0x35a/0x1bc0 [ 897.803783][T12609] ? hfs_write_begin+0x85/0x130 [ 897.809044][T12609] ? hfs_file_truncate+0x1d6/0xe60 [ 897.814522][T12609] ? hfs_inode_setattr+0x964/0xaa0 [ 897.820249][T12609] ? notify_change+0x1993/0x1aa0 [ 897.825636][T12609] ? do_truncate+0x28f/0x310 [ 897.830658][T12609] ? do_ftruncate+0x698/0x730 [ 897.835758][T12609] ? __x64_sys_ftruncate+0x11b/0x250 [ 897.841323][T12609] ? x64_sys_call+0xfe3/0x3db0 [ 897.846619][T12609] ? do_syscall_64+0xd9/0x210 [ 897.851701][T12609] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 897.858216][T12609] ? hfs_get_block+0x435/0x1150 [ 897.863334][T12609] ? __block_write_begin_int+0xa76/0x3030 [ 897.869476][T12609] ? cont_write_begin+0x10e1/0x1bc0 [ 897.875030][T12609] ? hfs_write_begin+0x85/0x130 [ 897.880344][T12609] ? cont_write_begin+0x35a/0x1bc0 [ 897.885843][T12609] ? hfs_write_begin+0x85/0x130 [ 897.891185][T12609] ? hfs_file_truncate+0x1d6/0xe60 [ 897.896795][T12609] ? hfs_inode_setattr+0x964/0xaa0 [ 897.902319][T12609] ? notify_change+0x1993/0x1aa0 [ 897.907679][T12609] ? do_truncate+0x28f/0x310 [ 897.912721][T12609] ? do_ftruncate+0x698/0x730 [ 897.917741][T12609] ? __x64_sys_ftruncate+0x11b/0x250 [ 897.923441][T12609] ? x64_sys_call+0xfe3/0x3db0 [ 897.928621][T12609] ? do_syscall_64+0xd9/0x210 [ 897.933787][T12609] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 897.940174][T12609] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 897.946241][T12609] ? kfree+0x1a1/0xec0 [ 897.950569][T12609] ? filter_irq_stacks+0x49/0x190 [ 897.955999][T12609] ? stack_depot_save_flags+0x35/0x7b0 [ 897.961821][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 897.967518][T12609] __msan_warning+0x1b/0x30 [ 897.972488][T12609] hfs_find_set_zero_bits+0x74d/0xb60 [ 897.978457][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 897.984158][T12609] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 897.990432][T12609] hfs_vbm_search_free+0x13c/0x5b0 [ 897.996014][T12609] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 898.002081][T12609] hfs_extend_file+0x6a5/0x1b00 [ 898.007359][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 898.012805][T12609] hfs_get_block+0x435/0x1150 [ 898.017715][T12609] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 898.024100][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 898.029640][T12609] __block_write_begin_int+0xa76/0x3030 [ 898.035602][T12609] ? __pfx_hfs_get_block+0x10/0x10 [ 898.040980][T12609] cont_write_begin+0x10e1/0x1bc0 [ 898.046702][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 898.052155][T12609] ? kmsan_get_metadata+0xfb/0x160 [ 898.057695][T12609] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 898.063818][T12609] hfs_write_begin+0x85/0x130 [ 898.068849][T12609] ? __pfx_hfs_get_block+0x10/0x10 [ 898.074193][T12609] ? __pfx_hfs_write_begin+0x10/0x10 [ 898.080061][T12609] cont_write_begin+0x35a/0x1bc0 [ 898.085394][T12609] hfs_write_begin+0x85/0x130 [ 898.090444][T12609] ? __pfx_hfs_get_block+0x10/0x10 [ 898.095796][T12609] hfs_file_truncate+0x1d6/0xe60 [ 898.100960][T12609] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 898.107352][T12609] ? up_read+0x6a/0xf0 [ 898.111994][T12609] ? truncate_setsize+0x13d/0x1c0 [ 898.117606][T12609] hfs_inode_setattr+0x964/0xaa0 [ 898.123380][T12609] ? __pfx_hfs_inode_setattr+0x10/0x10 [ 898.129333][T12609] ? __pfx_hfs_inode_setattr+0x10/0x10 [ 898.135817][T12609] notify_change+0x1993/0x1aa0 [ 898.141126][T12609] do_truncate+0x28f/0x310 [ 898.146102][T12609] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 898.152991][T12609] do_ftruncate+0x698/0x730 [ 898.158042][T12609] __x64_sys_ftruncate+0x11b/0x250 [ 898.163420][T12609] x64_sys_call+0xfe3/0x3db0 [ 898.168440][T12609] do_syscall_64+0xd9/0x210 [ 898.173258][T12609] ? irqentry_exit+0x16/0x60 [ 898.178067][T12609] ? clear_bhb_loop+0x40/0x90 [ 898.183008][T12609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 898.189253][T12609] RIP: 0033:0x7efc5678e9a9 [ 898.193867][T12609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 898.214629][T12609] RSP: 002b:00007efc575a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 898.223510][T12609] RAX: ffffffffffffffda RBX: 00007efc569b5fa0 RCX: 00007efc5678e9a9 [ 898.232046][T12609] RDX: 0000000000000000 RSI: 0000000002007ffc RDI: 0000000000000004 [ 898.240243][T12609] RBP: 00007efc56810d69 R08: 0000000000000000 R09: 0000000000000000 [ 898.248412][T12609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 898.256893][T12609] R13: 0000000000000000 R14: 00007efc569b5fa0 R15: 00007ffe9d43d078 [ 898.265501][T12609] [ 898.269143][T12609] Kernel Offset: disabled [ 898.274128][T12609] Rebooting in 86400 seconds..