last executing test programs: 25.270318327s ago: executing program 1 (id=332): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000a0000000000000000000001b7080000000001007baaf8ff00000000b5080200000000007b8af0ff00000000bf8100000000000007010000a8d5b120bfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000001000000b705000008000000850000000800000095"], &(0x7f0000000300)='GPL\x00', 0xa, 0xff7, &(0x7f0000001e00)=""/4087, 0x41100}, 0x94) 25.225002627s ago: executing program 1 (id=333): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x64) madvise(&(0x7f0000000000/0x600000)=nil, 0x600b00, 0x8) 25.200279861s ago: executing program 1 (id=335): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELRULE={0x2c, 0x8, 0xa, 0x301, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xa0}}, 0x0) 25.028471235s ago: executing program 1 (id=338): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x8102, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000000)) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000300)=0x10) 25.008030073s ago: executing program 1 (id=339): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$eJzskr9OAkEQxr+9O/5oFDWxooGC+KdQjkONnZbY29lI4ETiocKRKITijDEUFsbSJ+A1THwBLYwPQE1BrM2ZvZ3bLL6C+yvu2/l2ZnZ2c+d+208B+JkOajhEhIkMPhiDBSDHhDcxhD6TfpI+CcE75R2Rf0+a9Xv9JAC+nceKMC6qnud28gC+I09a/sGdgUnU6ms6qPHFKYAwDEPu1QGejgUlxwTQVnKyFrAaXSKUORYNsA6g2G1dF/1ef6vZqjbchnvpmOU9e8e2d53iWdNzbfFlyhF0FXDdBJBKQ8L3EwAeKJ7HLEwZjfbZHE5kbTJ+www9IExZayi1sTK8yrlSSsUx1sDHugmWFLcQdbEQXakCBpOCkqXMJ85KRxvbtSuvPgQDi8tGsGSP0hgJGThqUN4PsChaDallgbRCOiIdk+b+/DJWwL+PFG0EQBK31W63U+KPJFYsXjnSc5YD9cH4qS/G7OXeDGg0Go1Go9FoNBrNf+c3AAD//8PfdhM=") prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) 24.146613295s ago: executing program 1 (id=366): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) 12.991677541s ago: executing program 3 (id=756): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000000)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x5, 0x0, &(0x7f00000000c0)) 12.942543842s ago: executing program 3 (id=758): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008001000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x5, 0xe, 0x0, &(0x7f0000000300)="6121eed4cd50bb2b01e841acde1a", 0x0, 0x192, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 12.83779717s ago: executing program 3 (id=761): setresuid(0xee01, 0xee00, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000240)=@ethtool_flash={0x33, 0x400, './file0\x00'}}) 12.827800513s ago: executing program 3 (id=763): syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./bus\x00', 0x300000a, &(0x7f0000000480), 0x3, 0x55a3, &(0x7f000000e0c0)="$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") setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000340)=ANY=[], 0x700, 0x0) setxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000300), 0x700, 0x2) 12.44767417s ago: executing program 3 (id=774): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r0) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x44, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0xfeffffff}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @local}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}]}, 0x44}}, 0x0) 12.276397s ago: executing program 3 (id=779): syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000340)='./file1\x00', 0x2004000, &(0x7f0000001180)=ANY=[], 0x9, 0x206, &(0x7f0000000440)="$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") sync() openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xa41, 0x0) 9.093330271s ago: executing program 32 (id=366): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) 5.841707575s ago: executing program 5 (id=963): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7) ioctl$TCFLSH(r0, 0x8924, 0x20001116) 5.642916627s ago: executing program 5 (id=970): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x40, 0x0, 0x20}, {0x20, 0x0, 0x3, 0xfffff00c}, {0x6, 0x0, 0x0, 0x2000000}]}, 0x10) writev(r0, &(0x7f0000000500)=[{&(0x7f0000000080)="0ccc3611", 0x4}], 0x1) 5.545348064s ago: executing program 5 (id=973): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x8}) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c) 5.505604609s ago: executing program 5 (id=975): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000005e00679a3601ff81000000000000000000be7ba9bd"], 0x1c}}, 0x4000000) recvmmsg$unix(r0, &(0x7f00000032c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0) 5.462973133s ago: executing program 5 (id=977): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x4, 0x80000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x4, 0xf}, {0xe, 0xfff3}, {0x9, 0x1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x8, 0xc, 0x4}, @TCA_FQ_PIE_BYTEMODE={0x8, 0xb, 0x1}]}}]}, 0x44}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840) 5.369056898s ago: executing program 5 (id=979): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0) sendfile(r1, r0, &(0x7f00000000c0)=0x58, 0x8) 370.93862ms ago: executing program 2 (id=1150): syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00') read$FUSE(r0, &(0x7f0000002080)={0x2020}, 0x54) 341.70841ms ago: executing program 2 (id=1151): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f00000001c0)={0x2, 0x48}, 0x2) 310.749866ms ago: executing program 2 (id=1152): openat$procfs(0xffffffffffffff9c, &(0x7f0000003300)='/proc/cpuinfo\x00', 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x400000000, 0xffffffffffffffff, 0x1e, 0x800, 0x0, 0x4, 0x10000000}, 0x0, &(0x7f0000002240)={0x1f, 0x7f, 0x800000000000, 0x0, 0x1000000000, 0x20000000000000, 0xfffffffffffffffe}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 258.314582ms ago: executing program 4 (id=1157): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), r0) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x300048c0) 232.366435ms ago: executing program 0 (id=1158): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="f8000000160001000000000000000000fe8000000000000000000000000000aae0000002000000ee5b000000000000004e2000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8800000000000000000000000000010000000033000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000010000100000000000000000000000a"], 0xf8}, 0x1, 0x0, 0x0, 0x14}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="f8000000160001000000000000000000ff010000000000000000000000000001ff01000000000000000000000000000100000000000200"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc020000000000000000000000000000000000003300000000000000000000000029050000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000050000000000000000000000000000000400000000000000000000000000000002000000ef6fa802000000000000000000000000000000000000000001000000000000000a00000093"], 0xf8}}, 0x0) 217.257475ms ago: executing program 2 (id=1159): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c010000", @ANYRES16=r1, @ANYBLOB="010000000000000000000c000000200001801400020073797a5f74756e000000000000000000080003000200000018010380100003800c0001800800010000000000440003801c0001800a0002002e2b25402c00000004000300060002005c00000004000180200001800500020000000000070002002c7b000009000200736974300000000004000100500005003b5a1b7775c66f92201f5ceffbffe74b260c6b145ee442dcf6b02cdc32cc7c1d9324c97cd14fd7ebf7afdc8635e60438300b2cbb3c40d3a245edc8730c00038008000180040003005800038018000180"], 0x14c}, 0x1, 0x0, 0x0, 0x40000c1}, 0x0) 208.551976ms ago: executing program 4 (id=1160): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port0\x00', 0x52, 0x1b1c07}) openat$sequencer2(0xffffff9c, &(0x7f00000001c0), 0x80, 0x0) 188.06911ms ago: executing program 0 (id=1161): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000440)={0x28, r1, 0x607, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xfffffffe}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x28}}, 0x20000804) 184.201468ms ago: executing program 2 (id=1162): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x7fffffff}, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xdfa7752c15c2b76, 0x8031, 0xffffffffffffffff, 0xffffe000) 182.842362ms ago: executing program 4 (id=1163): r0 = openat$smackfs_netlabel(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) write$smackfs_netlabel(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='-0000000000000062410.00000000000000000003.00000000000800028916.000/0)'], 0x6f) write$smackfs_netlabel(r0, &(0x7f0000000200)=@l1={{0x2, 0x2e, 0xf, 0x2e, 0x3, 0x2e, 0x3}, 0x20, '/sys/fs/smackfs/netlabel\x00'}, 0x6f) 142.816917ms ago: executing program 0 (id=1164): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x30, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}]}, 0x30}}, 0x0) 123.419985ms ago: executing program 4 (id=1165): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1}) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x3) 93.633595ms ago: executing program 0 (id=1166): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001dc0), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x24}}, 0x80) 64.105094ms ago: executing program 4 (id=1167): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) readahead(r0, 0x0, 0x5) 63.717236ms ago: executing program 0 (id=1168): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setsig(0x4203, r0, 0x80, 0x0) 23.604881ms ago: executing program 4 (id=1169): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000002000010000000000fbdbdf250a408000000000031a00030014000200fc0200000000000000000800000000001400010020010000"], 0x44}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2}]}}}]}, 0x5c}}, 0x0) 348.307µs ago: executing program 2 (id=1170): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x101501, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1) ioctl$TCSETS(r0, 0x89f0, &(0x7f00000000c0)={0x58de3435, 0x0, 0x0, 0x0, 0x0, "bb5dee00000000000300"}) 0s ago: executing program 0 (id=1171): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xa, {"a2e3ad214fc752f91b2909094bf70e0dd038e7ff7fc6e5539b3266078b089b3b083844090890e0878f0e1ac6e7049b3d6d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b333b0d07680936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0afc9397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6258742317662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e0088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76ccc2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2e57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849d11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f9d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f0712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1ccced94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1025}}, 0x1006) kernel console output (not intermixed with test programs): p4: detected capacity change from 0 to 16 [ 34.823369][ T7292] loop3: detected capacity change from 0 to 4096 [ 34.824590][ T7295] erofs (device loop4): mounted with root inode @ nid 36. [ 34.826421][ T7292] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 34.832165][ T7295] Invalid ELF header len 10 [ 34.848014][ T7292] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 34.850051][ T7292] ntfs3(loop3): Failed to load $Extend (-22). [ 34.850113][ T7292] ntfs3(loop3): Failed to initialize $Extend. [ 34.988904][ T7297] loop0: detected capacity change from 0 to 32768 [ 35.010546][ T7297] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.252 (7297) [ 35.015491][ T7297] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 35.015546][ T7297] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 35.075539][ T7297] BTRFS info (device loop0): turning off barriers [ 35.075569][ T7297] BTRFS info (device loop0): enabling free space tree [ 35.075590][ T7297] BTRFS info (device loop0): use zstd compression, level 3 [ 35.088491][ T7302] loop4: detected capacity change from 0 to 32768 [ 35.101133][ T7298] loop2: detected capacity change from 0 to 32768 [ 35.102751][ T7298] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.254 (7298) [ 35.103745][ T7298] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 35.103775][ T7298] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 35.115376][ T7302] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 35.151702][ T7298] BTRFS info (device loop2): enabling ssd optimizations [ 35.151735][ T7298] BTRFS info (device loop2): turning on flush-on-commit [ 35.151756][ T7298] BTRFS info (device loop2): turning on async discard [ 35.151767][ T7298] BTRFS info (device loop2): enabling free space tree [ 35.151778][ T7298] BTRFS info (device loop2): max_inline set to 0 [ 35.190931][ T6549] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 35.193415][ T7342] loop3: detected capacity change from 0 to 8192 [ 35.233745][ T7302] XFS (loop4): Ending clean mount [ 35.234708][ T7302] XFS (loop4): Quotacheck needed: Please wait. [ 35.246623][ T7302] XFS (loop4): Quotacheck: Done. [ 35.291648][ T7347] syz.3.260 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 35.319453][ T6554] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 35.320578][ T6550] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 35.449007][ T7355] loop3: detected capacity change from 0 to 1764 [ 35.661430][ T7376] __nla_validate_parse: 5 callbacks suppressed [ 35.661479][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.273'. [ 35.776487][ T7384] loop4: detected capacity change from 0 to 4096 [ 35.795114][ T7384] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 35.800025][ T7349] loop0: detected capacity change from 0 to 131072 [ 35.804992][ T7384] ntfs3(loop4): ino=19, mi_enum_attr [ 35.813629][ T7349] F2FS-fs (loop0): Test dummy encryption mode enabled [ 35.817922][ T7349] F2FS-fs (loop0): invalid crc value [ 35.876790][ T7349] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 35.877590][ T7349] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 35.906743][ T7349] fscrypt: AES-256-XTS using implementation "xts-aes-ce" [ 35.931353][ T53] Bluetooth: hci0: command tx timeout [ 35.933275][ T6559] Bluetooth: hci3: command tx timeout [ 35.933557][ T6557] Bluetooth: hci1: command tx timeout [ 35.933595][ T6557] Bluetooth: hci4: command tx timeout [ 35.933634][ T6557] Bluetooth: hci2: command tx timeout [ 35.937242][ T7300] loop1: detected capacity change from 0 to 131072 [ 35.976201][ T7300] F2FS-fs (loop1): Test dummy encryption mode enabled [ 35.979759][ T7403] Bluetooth: MGMT ver 1.23 [ 35.984311][ T7399] loop2: detected capacity change from 0 to 4096 [ 35.988250][ T7300] F2FS-fs (loop1): invalid crc value [ 36.025578][ T7407] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 36.066970][ T7300] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 36.068000][ T7300] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 36.110645][ T7413] fuse: Unexpected value for 'default_permissions' [ 36.321045][ T7427] sp0: Synchronizing with TNC [ 36.445288][ T6602] IPVS: starting estimator thread 0... [ 36.478434][ T7429] loop2: detected capacity change from 0 to 32768 [ 36.501483][ T7429] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.295 (7429) [ 36.533442][ T7429] BTRFS info (device loop2): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 36.533505][ T7429] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 36.542332][ T7438] IPVS: using max 51 ests per chain, 122400 per kthread [ 36.551899][ T7447] loop3: detected capacity change from 0 to 64 [ 36.589424][ T7440] loop0: detected capacity change from 0 to 32768 [ 36.593582][ T7440] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.299 (7440) [ 36.613518][ T7440] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 36.613597][ T7440] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 36.618339][ T7429] BTRFS info (device loop2): enabling ssd optimizations [ 36.618373][ T7429] BTRFS info (device loop2): turning on async discard [ 36.618394][ T7429] BTRFS info (device loop2): enabling free space tree [ 36.643051][ T7431] loop4: detected capacity change from 0 to 40427 [ 36.644900][ T7431] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 36.644945][ T7431] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 36.648429][ T7431] F2FS-fs (loop4): Image doesn't support compression [ 36.648478][ T7431] F2FS-fs (loop4): build fault injection rate: 690 [ 36.648493][ T7431] F2FS-fs (loop4): build fault injection type: 0x35f7 [ 36.649835][ T7431] F2FS-fs (loop4): invalid crc value [ 36.680286][ T7431] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 36.682353][ T6554] BTRFS info (device loop2): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 36.685909][ T7431] F2FS-fs (loop4): Start checkpoint disabled! [ 36.689956][ T7431] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0 [ 36.695520][ T7431] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 36.695568][ T7431] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 36.702643][ T7440] BTRFS info (device loop0): enabling ssd optimizations [ 36.702674][ T7440] BTRFS info (device loop0): turning on async discard [ 36.702698][ T7440] BTRFS info (device loop0): enabling free space tree [ 36.705960][ T7431] F2FS-fs (loop4): Checkpoint should be enabled. [ 36.722855][ T813] kworker/u8:5: attempt to access beyond end of device [ 36.722855][ T813] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 36.722908][ T813] CPU: 1 UID: 0 PID: 813 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT [ 36.722921][ T813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 36.722927][ T813] Workqueue: writeback wb_workfn (flush-7:4) [ 36.722947][ T813] Call trace: [ 36.722950][ T813] show_stack+0x2c/0x3c (C) [ 36.722962][ T813] __dump_stack+0x30/0x40 [ 36.722969][ T813] dump_stack_lvl+0xd8/0x12c [ 36.722974][ T813] dump_stack+0x1c/0x28 [ 36.722979][ T813] f2fs_handle_critical_error+0x34c/0x4b8 [ 36.722987][ T813] f2fs_stop_checkpoint+0x5c/0x70 [ 36.722992][ T813] f2fs_write_end_io+0x768/0xa70 [ 36.722998][ T813] bio_endio+0x858/0x894 [ 36.723004][ T813] submit_bio_noacct+0xd64/0x186c [ 36.723011][ T813] submit_bio+0x3b4/0x550 [ 36.723017][ T813] f2fs_submit_write_bio+0x13c/0x324 [ 36.723022][ T813] __submit_merged_bio+0x254/0x704 [ 36.723028][ T813] __submit_merged_write_cond+0x23c/0x4ac [ 36.723034][ T813] f2fs_write_data_pages+0x1d28/0x2634 [ 36.723040][ T813] do_writepages+0x270/0x468 [ 36.723048][ T813] __writeback_single_inode+0x15c/0x13e8 [ 36.723054][ T813] writeback_sb_inodes+0x55c/0xe40 [ 36.723059][ T813] wb_writeback+0x3cc/0xd70 [ 36.723064][ T813] wb_workfn+0x338/0xdc0 [ 36.723069][ T813] process_one_work+0x7e8/0x155c [ 36.723075][ T813] worker_thread+0x958/0xed8 [ 36.723080][ T813] kthread+0x5fc/0x75c [ 36.723087][ T813] ret_from_fork+0x10/0x20 [ 36.723391][ T813] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 36.823152][ T6549] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 36.829923][ T7486] loop3: detected capacity change from 0 to 256 [ 36.852976][ T7486] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd22393c8, utbl_chksum : 0xe619d30d) [ 36.872636][ T7471] loop1: detected capacity change from 0 to 40427 [ 36.880294][ T7471] F2FS-fs (loop1): build fault injection rate: 771 [ 36.900967][ T7471] F2FS-fs (loop1): invalid crc value [ 36.943835][ T7471] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 36.947727][ T7471] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 37.015716][ T7500] Driver unsupported XDP return value 0 on prog (id 13) dev N/A, expect packet loss! [ 37.086613][ T7505] loop3: detected capacity change from 0 to 2048 [ 37.104110][ T7506] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 37.144089][ T7505] NILFS error (device loop3): nilfs_sufile_mark_dirty: active segment 3 is erroneous [ 37.165696][ T7505] Remounting filesystem read-only [ 37.206853][ T6556] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 37.263753][ T7518] Bluetooth: MGMT ver 1.23 [ 37.284058][ T7517] loop0: detected capacity change from 0 to 2048 [ 37.300521][ T7517] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 37.319898][ T7517] netlink: 24 bytes leftover after parsing attributes in process `syz.0.317'. [ 37.436095][ T7532] sp0: Synchronizing with TNC [ 37.450712][ T7531] [U] è` [ 37.565545][ T7550] Injecting memory failure for pfn 0x126802 at process virtual address 0x20000000 [ 37.569124][ T7550] Memory failure: 0x126802: Sending SIGBUS to syz.1.333:7550 due to hardware memory corruption [ 37.571248][ T7550] Memory failure: 0x126802: recovery action for dirty LRU page: Recovered [ 37.573862][ T7550] Injecting memory failure for pfn 0x20b05a at process virtual address 0x20001000 [ 37.573906][ T7550] Memory failure: 0x20b05a: recovery action for reserved kernel page: Ignored [ 37.656777][ T7547] loop3: detected capacity change from 0 to 32768 [ 37.697113][ T7547] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 37.699301][ T7547] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 37.725085][ T7547] XFS (loop3): Ending clean mount [ 37.726022][ T7547] XFS (loop3): Quotacheck needed: Please wait. [ 37.732858][ T7554] loop4: detected capacity change from 0 to 32768 [ 37.742097][ T7566] netlink: 48 bytes leftover after parsing attributes in process `syz.2.337'. [ 37.749276][ T7547] XFS (loop3): Quotacheck: Done. [ 37.755395][ T7538] loop0: detected capacity change from 0 to 40427 [ 37.758476][ T7538] F2FS-fs (loop0): Image doesn't support compression [ 37.758506][ T7538] F2FS-fs (loop0): build fault injection rate: 690 [ 37.758525][ T7538] F2FS-fs (loop0): build fault injection type: 0x35f7 [ 37.761450][ T7538] F2FS-fs (loop0): invalid crc value [ 37.786695][ T7554] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 37.804528][ T7538] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 37.805780][ T7538] F2FS-fs (loop0): Start checkpoint disabled! [ 37.806313][ T7538] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0 [ 37.806481][ T7538] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 37.815590][ T7573] loop1: detected capacity change from 0 to 8 [ 37.819044][ T7554] (syz.4.334,7554,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=8 [ 37.829949][ T6556] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 37.857954][ T12] kworker/u8:0: attempt to access beyond end of device [ 37.857954][ T12] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 37.858066][ T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT [ 37.858076][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 37.858081][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 37.858096][ T12] Call trace: [ 37.858099][ T12] show_stack+0x2c/0x3c (C) [ 37.858109][ T12] __dump_stack+0x30/0x40 [ 37.858115][ T12] dump_stack_lvl+0xd8/0x12c [ 37.858119][ T12] dump_stack+0x1c/0x28 [ 37.858124][ T12] f2fs_handle_critical_error+0x34c/0x4b8 [ 37.858131][ T12] f2fs_stop_checkpoint+0x5c/0x70 [ 37.858137][ T12] f2fs_write_end_io+0x768/0xa70 [ 37.858143][ T12] bio_endio+0x858/0x894 [ 37.858148][ T12] submit_bio_noacct+0xd64/0x186c [ 37.858155][ T12] submit_bio+0x3b4/0x550 [ 37.858161][ T12] f2fs_submit_write_bio+0x13c/0x324 [ 37.858167][ T12] __submit_merged_bio+0x254/0x704 [ 37.858172][ T12] __submit_merged_write_cond+0x23c/0x4ac [ 37.858178][ T12] f2fs_write_data_pages+0x1d28/0x2634 [ 37.858184][ T12] do_writepages+0x270/0x468 [ 37.858192][ T12] __writeback_single_inode+0x15c/0x13e8 [ 37.858198][ T12] writeback_sb_inodes+0x55c/0xe40 [ 37.858203][ T12] wb_writeback+0x3cc/0xd70 [ 37.858208][ T12] wb_workfn+0x338/0xdc0 [ 37.858213][ T12] process_one_work+0x7e8/0x155c [ 37.858219][ T12] worker_thread+0x958/0xed8 [ 37.858224][ T12] kthread+0x5fc/0x75c [ 37.858231][ T12] ret_from_fork+0x10/0x20 [ 37.858238][ T12] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 37.890875][ T6550] ocfs2: Unmounting device (7,4) on (node local) [ 38.018669][ T7588] loop0: detected capacity change from 0 to 1024 [ 38.033564][ T7589] loop2: detected capacity change from 0 to 512 [ 38.034007][ T7589] EXT4-fs: Ignoring removed orlov option [ 38.038719][ T7589] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 38.061687][ T7589] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 38.071799][ T7589] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.347: corrupted in-inode xattr: e_value size too large [ 38.076908][ T7589] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.347: couldn't read orphan inode 15 (err -117) [ 38.079760][ T7589] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 38.116703][ T7585] loop4: detected capacity change from 0 to 32768 [ 38.138509][ T6554] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.187681][ T7599] loop3: detected capacity change from 0 to 256 [ 38.345431][ T7609] usb usb1: check_ctrlrecip: process 7609 (syz.2.356) requesting ep 01 but needs 81 [ 38.417318][ T7588] hfsplus: extend alloc file! (8192,512,4294935166) [ 38.419628][ T7588] hfsplus: can't free extent: start 134, count 32632 [ 38.460186][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.460186][ T41] loop0: rw=1, sector=3916, nr_sectors = 2536 limit=1024 [ 38.470002][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.470002][ T41] loop0: rw=1, sector=6452, nr_sectors = 2320 limit=1024 [ 38.480794][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.480794][ T41] loop0: rw=1, sector=8772, nr_sectors = 3648 limit=1024 [ 38.498536][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.498536][ T41] loop0: rw=1, sector=12420, nr_sectors = 7280 limit=1024 [ 38.518508][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.518508][ T41] loop0: rw=1, sector=19700, nr_sectors = 5008 limit=1024 [ 38.542914][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.542914][ T41] loop0: rw=1, sector=24708, nr_sectors = 8872 limit=1024 [ 38.546992][ T7618] loop2: detected capacity change from 0 to 40427 [ 38.554225][ T7618] F2FS-fs (loop2): invalid crc value [ 38.568780][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.568780][ T41] loop0: rw=1, sector=33580, nr_sectors = 2048 limit=1024 [ 38.578510][ T41] kworker/u8:2: attempt to access beyond end of device [ 38.578510][ T41] loop0: rw=1, sector=35628, nr_sectors = 2416 limit=1024 [ 38.597156][ T7618] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 38.598829][ T7618] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 38.640628][ T7618] F2FS-fs (loop2): inode mapping table is corrupted, run fsck to fix it, ino:3, nid:3, level:3, offset:167 [ 38.850181][ T7642] loop0: detected capacity change from 0 to 736 [ 38.911150][ T31] audit: type=1326 audit(38.890:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.918078][ T31] audit: type=1326 audit(38.900:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.927092][ T31] audit: type=1326 audit(38.910:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=425 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.932949][ T31] audit: type=1326 audit(38.920:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffb915ba1c code=0x7ffc0000 [ 38.937198][ T31] audit: type=1326 audit(38.920:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.941489][ T31] audit: type=1326 audit(38.930:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.955942][ T31] audit: type=1326 audit(38.940:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=277 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.959760][ T31] audit: type=1326 audit(38.940:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.963275][ T31] audit: type=1326 audit(38.950:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 38.967252][ T31] audit: type=1326 audit(38.950:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7648 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffffb915b9e8 code=0x7ffc0000 [ 39.074620][ T7664] loop0: detected capacity change from 0 to 1764 [ 39.297080][ T7686] netlink: 80 bytes leftover after parsing attributes in process `syz.4.391'. [ 39.297124][ T7686] netlink: 16 bytes leftover after parsing attributes in process `syz.4.391'. [ 39.297145][ T7686] tipc: MTU too low for tipc bearer [ 39.351110][ T7692] netlink: 20 bytes leftover after parsing attributes in process `syz.2.393'. [ 39.379744][ T7696] loop4: detected capacity change from 0 to 512 [ 39.380133][ T7696] EXT4-fs: Ignoring removed orlov option [ 39.380142][ T7696] EXT4-fs: Ignoring removed nobh option [ 39.387455][ T7696] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 39.388493][ T7696] EXT4-fs (loop4): orphan cleanup on readonly fs [ 39.390844][ T7696] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.396: bg 0: block 248: padding at end of block bitmap is not set [ 39.391916][ T7696] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.396: Failed to acquire dquot type 1 [ 39.407471][ T7696] EXT4-fs (loop4): 1 truncate cleaned up [ 39.430246][ T7659] loop3: detected capacity change from 0 to 131072 [ 39.448232][ T7659] XFS (loop3): Mounting V5 Filesystem b93a8937-ccd4-41a2-86c7-66a1570a2846 [ 39.453838][ T7696] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 39.477830][ T7696] EXT4-fs: Ignoring removed orlov option [ 39.477862][ T7696] EXT4-fs: Ignoring removed nobh option [ 39.477908][ T7696] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 39.497735][ T7696] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 39.502971][ T7696] EXT4-fs error (device loop4): __ext4_remount:6748: comm syz.4.396: Abort forced by user [ 39.504569][ T7696] EXT4-fs (loop4): Remounting filesystem read-only [ 39.504630][ T7696] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 39.529879][ T7718] mmap: syz.0.402 (7718) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 39.538639][ T7659] XFS (loop3): Starting recovery (logdev: internal) [ 39.546529][ T7659] XFS (loop3): Ending recovery (logdev: internal) [ 39.550795][ T7720] sctp: [Deprecated]: syz.0.404 (pid 7720) Use of struct sctp_assoc_value in delayed_ack socket option. [ 39.550795][ T7720] Use struct sctp_sack_info instead [ 39.573094][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.608711][ T6556] XFS (loop3): Unmounting Filesystem b93a8937-ccd4-41a2-86c7-66a1570a2846 [ 39.610107][ T7723] loop0: detected capacity change from 0 to 512 [ 39.610553][ T7723] EXT4-fs: Ignoring removed orlov option [ 39.658739][ T7723] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.750995][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.925884][ T7728] loop2: detected capacity change from 0 to 40427 [ 39.930904][ T7728] F2FS-fs: heap/no_heap options were deprecated [ 39.937587][ T7728] F2FS-fs (loop2): invalid crc value [ 39.937637][ T7728] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root and reserve_node [ 39.974270][ T7728] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 39.979058][ T7728] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 40.074030][ T7747] loop0: detected capacity change from 0 to 128 [ 40.155851][ T7753] [U]  [ 40.414331][ T7771] loop3: detected capacity change from 0 to 128 [ 40.419910][ T7771] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 40.424395][ T7771] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 40.439777][ T7771] overlayfs: upper fs needs to support d_type. [ 40.440011][ T7771] overlayfs: upper fs does not support tmpfile. [ 40.569724][ T7788] loop2: detected capacity change from 0 to 128 [ 40.585486][ T7788] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 40.585539][ T7788] hpfs: filesystem error: improperly stopped [ 40.585548][ T7788] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 40.585554][ T7788] hpfs: You really don't want any checks? You are crazy... [ 40.585621][ T7788] hpfs: hpfs_map_sector(): read error [ 40.585627][ T7788] hpfs: code page support is disabled [ 40.585662][ T7788] hpfs: hpfs_map_4sectors(): unaligned read [ 40.585683][ T7788] hpfs: hpfs_map_4sectors(): unaligned read [ 40.585687][ T7788] hpfs: filesystem error: unable to find root dir [ 40.602826][ T7788] hpfs: hpfs_map_4sectors(): unaligned read [ 40.665439][ T7804] loop0: detected capacity change from 0 to 512 [ 40.698566][ T7804] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.441: Failed to acquire dquot type 1 [ 40.700230][ T7804] EXT4-fs (loop0): 1 truncate cleaned up [ 40.700685][ T7804] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.725329][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.961732][ T7832] loop2: detected capacity change from 0 to 32768 [ 40.965020][ T7832] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.453 (7832) [ 40.969382][ T7832] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 40.969441][ T7832] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 41.059730][ T7836] loop3: detected capacity change from 0 to 32768 [ 41.082611][ T7836] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 41.088979][ T7836] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 41.097205][ T7832] BTRFS info (device loop2): enabling ssd optimizations [ 41.097235][ T7832] BTRFS info (device loop2): turning on async discard [ 41.097254][ T7832] BTRFS info (device loop2): enabling free space tree [ 41.108953][ T7832] BTRFS warning (device loop2): can't clear the free_space_tree,verity,compat_ro:4,compat_ro:6,compat_ro:10,compat_ro:12,compat_ro:14,compat_ro:19,compat_ro:20,compat_ro:23,compat_ro:24,compat_ro:25,compat_ro:26,compat_ro:28,compat_ro:29,compat_ro:32,compat_ro:33,compat_ro:35,compat_ro:37,compat_ro:38,compat_ro:39,compat_ro:41,compat_ro:42,compat_ro:43,compat_ro:44,compat_ro:45,compat_ro:46,compat_ro:52,compat_ro:55,compat_ro:57,compat_ro:61,compat_ro:63 feature bits while mounted [ 41.125649][ T6556] ocfs2: Unmounting device (7,3) on (node local) [ 41.139637][ T6554] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 41.284180][ T7866] loop3: detected capacity change from 0 to 4096 [ 41.285917][ T7866] EXT4-fs: Ignoring removed nomblk_io_submit option [ 41.293125][ T7866] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 41.305811][ T7866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.328764][ T6556] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.360677][ T7871] netlink: 8 bytes leftover after parsing attributes in process `syz.3.463'. [ 41.360720][ T7871] netlink: 16 bytes leftover after parsing attributes in process `syz.3.463'. [ 41.366806][ T7869] netlink: 20 bytes leftover after parsing attributes in process `syz.2.462'. [ 41.760482][ T7904] loop2: detected capacity change from 0 to 64 [ 41.767776][ T7822] loop4: detected capacity change from 0 to 262144 [ 41.772482][ T7822] BTRFS: device fsid f9acc048-ac89-4f9b-90b4-9ee8f3de7bde devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.449 (7822) [ 41.793609][ T7822] BTRFS info (device loop4): first mount of filesystem f9acc048-ac89-4f9b-90b4-9ee8f3de7bde [ 41.793670][ T7822] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 41.802393][ T7911] loop0: detected capacity change from 0 to 64 [ 41.841704][ T7822] BTRFS info (device loop4): rebuilding free space tree [ 41.862357][ T7822] BTRFS info (device loop4): enabling ssd optimizations [ 41.862397][ T7822] BTRFS info (device loop4): enabling free space tree [ 41.862405][ T7822] BTRFS info (device loop4): force clearing of disk cache [ 42.017318][ T15] BTRFS error (device loop4): cow_file_range failed, root=5 inode=260 start=0 len=4096 cur_offset=0 cur_alloc_size=0: -28 [ 42.017367][ T15] BTRFS error (device loop4): run_delalloc_nocow failed, root=5 inode=260 start=0 len=4096 cur_offset=4096 oe_cleanup=0 oe_cleanup_len=0 untouched_start=4096 untouched_len=0: -28 [ 42.017418][ T15] BTRFS error (device loop4): failed to run delalloc range, root=5 ino=260 folio=0 submit_bitmap=0 start=0 len=4096: -28 [ 42.036183][ T6550] BTRFS info (device loop4): last unmount of filesystem f9acc048-ac89-4f9b-90b4-9ee8f3de7bde [ 42.264697][ T7969] loop0: detected capacity change from 0 to 1024 [ 42.273712][ T7969] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.298482][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.332909][ T7961] loop4: detected capacity change from 0 to 32768 [ 42.343183][ T7961] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.498 (7961) [ 42.355842][ T7961] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 42.355896][ T7961] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 42.355918][ T7961] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 42.398197][ T7961] BTRFS info (device loop4): rebuilding free space tree [ 42.404304][ T7967] loop2: detected capacity change from 0 to 32768 [ 42.406011][ T7967] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.502 (7967) [ 42.415111][ T7967] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 42.415164][ T7967] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm [ 42.419275][ T7961] BTRFS info (device loop4): disabling free space tree [ 42.419323][ T7961] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 42.419332][ T7961] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 42.421624][ T7961] BTRFS info (device loop4): enabling ssd optimizations [ 42.421639][ T7961] BTRFS info (device loop4): turning on sync discard [ 42.421647][ T7961] BTRFS info (device loop4): enabling disk space caching [ 42.421653][ T7961] BTRFS info (device loop4): force clearing of disk cache [ 42.421659][ T7961] BTRFS info (device loop4): enabling auto defrag [ 42.421665][ T7961] BTRFS info (device loop4): max_inline set to 0 [ 42.445175][ T7967] BTRFS info (device loop2): rebuilding free space tree [ 42.454421][ T7967] BTRFS info (device loop2): disabling free space tree [ 42.454488][ T7967] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 42.454512][ T7967] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 42.472186][ T7967] BTRFS info (device loop2): enabling ssd optimizations [ 42.472220][ T7967] BTRFS info (device loop2): turning on sync discard [ 42.472241][ T7967] BTRFS info (device loop2): force clearing of disk cache [ 42.472253][ T7967] BTRFS info (device loop2): enabling auto defrag [ 42.508535][ T12] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 42.520122][ T8012] sch_fq: defrate 4294967295 ignored. [ 42.555813][ T6550] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 42.559428][ T6554] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 42.651518][ T53] Bluetooth: hci4: command tx timeout [ 42.954171][ T8045] loop4: detected capacity change from 0 to 32768 [ 42.965730][ T8061] loop3: detected capacity change from 0 to 256 [ 42.979204][ T8045] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 42.982832][ T8061] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 43.007895][ T8045] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 43.026665][ T8045] XFS (loop4): Starting recovery (logdev: internal) [ 43.036760][ T8045] XFS (loop4): Ending recovery (logdev: internal) [ 43.043041][ T8045] XFS (loop4): Quotacheck needed: Please wait. [ 43.063850][ T8045] XFS (loop4): Quotacheck: Done. [ 43.118090][ T6550] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 43.264652][ T8069] loop2: detected capacity change from 0 to 32768 [ 43.274835][ T8069] JBD2: Ignoring recovery information on journal [ 43.294832][ T8069] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 43.295203][ T8080] loop4: detected capacity change from 0 to 512 [ 43.302186][ T8080] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.536: inode has both inline data and extents flags [ 43.304497][ T8080] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.536: couldn't read orphan inode 15 (err -117) [ 43.307591][ T8080] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.313582][ T8071] loop3: detected capacity change from 0 to 40427 [ 43.324924][ T8071] F2FS-fs (loop3): Image doesn't support compression [ 43.324962][ T8071] F2FS-fs (loop3): build fault injection rate: 690 [ 43.328872][ T8071] F2FS-fs (loop3): invalid crc value [ 43.339075][ T6554] ocfs2: Unmounting device (7,2) on (node local) [ 43.339299][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.353729][ T8071] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 43.355555][ T8071] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 43.421060][ T8093] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 43.545682][ T8103] loop4: detected capacity change from 0 to 256 [ 43.552053][ T8102] netlink: 104 bytes leftover after parsing attributes in process `syz.3.540'. [ 43.552119][ T8102] netlink: 'syz.3.540': attribute type 6 has an invalid length. [ 43.558033][ T8103] FAT-fs (loop4): Directory bread(block 64) failed [ 43.558051][ T8103] FAT-fs (loop4): Directory bread(block 65) failed [ 43.558073][ T8103] FAT-fs (loop4): Directory bread(block 66) failed [ 43.558083][ T8103] FAT-fs (loop4): Directory bread(block 67) failed [ 43.558112][ T8103] FAT-fs (loop4): Directory bread(block 68) failed [ 43.558122][ T8103] FAT-fs (loop4): Directory bread(block 69) failed [ 43.558142][ T8103] FAT-fs (loop4): Directory bread(block 70) failed [ 43.558151][ T8103] FAT-fs (loop4): Directory bread(block 71) failed [ 43.558170][ T8103] FAT-fs (loop4): Directory bread(block 72) failed [ 43.558180][ T8103] FAT-fs (loop4): Directory bread(block 73) failed [ 43.667746][ T8097] loop2: detected capacity change from 0 to 40427 [ 43.684499][ T8097] F2FS-fs (loop2): invalid crc value [ 43.720135][ T8097] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 43.720362][ T8097] F2FS-fs (loop2): Start checkpoint disabled! [ 43.720864][ T8097] F2FS-fs (loop2): f2fs_disable_checkpoint() finish, err:0 [ 43.721059][ T8097] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 43.747497][ T8097] bio_check_eod: 6 callbacks suppressed [ 43.748138][ T8097] syz.2.543: attempt to access beyond end of device [ 43.748138][ T8097] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 43.748610][ T8097] CPU: 1 UID: 0 PID: 8097 Comm: syz.2.543 Not tainted syzkaller #0 PREEMPT [ 43.748626][ T8097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 43.748634][ T8097] Call trace: [ 43.748638][ T8097] show_stack+0x2c/0x3c (C) [ 43.748653][ T8097] __dump_stack+0x30/0x40 [ 43.748662][ T8097] dump_stack_lvl+0xd8/0x12c [ 43.748669][ T8097] dump_stack+0x1c/0x28 [ 43.748675][ T8097] f2fs_handle_critical_error+0x34c/0x4b8 [ 43.748686][ T8097] f2fs_stop_checkpoint+0x5c/0x70 [ 43.748693][ T8097] f2fs_write_end_io+0x768/0xa70 [ 43.748703][ T8097] bio_endio+0x858/0x894 [ 43.748709][ T8097] submit_bio_noacct+0xd64/0x186c [ 43.748719][ T8097] submit_bio+0x3b4/0x550 [ 43.748727][ T8097] f2fs_submit_write_bio+0x13c/0x324 [ 43.748735][ T8097] __submit_merged_bio+0x254/0x704 [ 43.748743][ T8097] __submit_merged_write_cond+0x23c/0x4ac [ 43.748751][ T8097] f2fs_write_data_pages+0x1d28/0x2634 [ 43.748760][ T8097] do_writepages+0x270/0x468 [ 43.748782][ T8097] filemap_fdatawrite+0x14c/0x1f4 [ 43.748788][ T8097] f2fs_quota_on+0x1cc/0x320 [ 43.748797][ T8097] quota_quotaon+0x110/0x15c [ 43.748808][ T8097] do_quotactl+0x4cc/0x738 [ 43.748817][ T8097] __arm64_sys_quotactl+0x298/0xb34 [ 43.748827][ T8097] invoke_syscall+0x98/0x254 [ 43.748833][ T8097] el0_svc_common+0xe8/0x23c [ 43.748839][ T8097] do_el0_svc+0x48/0x58 [ 43.748845][ T8097] el0_svc+0x5c/0x254 [ 43.748854][ T8097] el0t_64_sync_handler+0x84/0x12c [ 43.748863][ T8097] el0t_64_sync+0x198/0x19c [ 43.748872][ T8097] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 43.980357][ T8133] loop4: detected capacity change from 0 to 32768 [ 43.984253][ T8133] (syz.4.559,8133,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 43.987005][ T8133] (syz.4.559,8133,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 43.995626][ T8133] JBD2: Ignoring recovery information on journal [ 44.040569][ T8133] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 44.111425][ T6550] ocfs2: Unmounting device (7,4) on (node local) [ 44.121122][ T8151] loop3: detected capacity change from 0 to 4096 [ 44.126609][ T8151] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 44.240719][ T8159] loop3: detected capacity change from 0 to 2048 [ 44.261192][ T8159] CPU: 1 UID: 0 PID: 8159 Comm: syz.3.569 Not tainted syzkaller #0 PREEMPT [ 44.261222][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.261231][ T8159] Call trace: [ 44.261235][ T8159] show_stack+0x2c/0x3c (C) [ 44.261259][ T8159] __dump_stack+0x30/0x40 [ 44.261272][ T8159] dump_stack_lvl+0xd8/0x12c [ 44.261280][ T8159] dump_stack+0x1c/0x28 [ 44.261286][ T8159] nilfs_btree_do_lookup+0x85c/0x9a0 [ 44.261296][ T8159] nilfs_btree_lookup_contig+0xc8/0x968 [ 44.261303][ T8159] nilfs_bmap_lookup_contig+0x88/0x13c [ 44.261310][ T8159] nilfs_get_block+0x1a0/0x7a8 [ 44.261320][ T8159] __block_write_begin_int+0x53c/0x15e8 [ 44.261331][ T8159] block_write_begin+0xa0/0x128 [ 44.261339][ T8159] nilfs_write_begin+0xa8/0x11c [ 44.261347][ T8159] generic_perform_write+0x244/0x7bc [ 44.261355][ T8159] __generic_file_write_iter+0xfc/0x204 [ 44.261362][ T8159] generic_file_write_iter+0x10c/0x47c [ 44.261369][ T8159] vfs_write+0x540/0xa3c [ 44.261377][ T8159] ksys_write+0x120/0x210 [ 44.261383][ T8159] __arm64_sys_write+0x7c/0x90 [ 44.261389][ T8159] invoke_syscall+0x98/0x254 [ 44.261396][ T8159] el0_svc_common+0xe8/0x23c [ 44.261401][ T8159] do_el0_svc+0x48/0x58 [ 44.261407][ T8159] el0_svc+0x5c/0x254 [ 44.261417][ T8159] el0t_64_sync_handler+0x84/0x12c [ 44.261425][ T8159] el0t_64_sync+0x198/0x19c [ 44.261797][ T8159] NILFS (loop3): btree level mismatch (ino=16): 1 != 3 [ 44.261890][ T8159] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 44.264748][ T8162] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 44.264797][ T8159] Remounting filesystem read-only [ 44.264872][ T8159] CPU: 1 UID: 0 PID: 8159 Comm: syz.3.569 Not tainted syzkaller #0 PREEMPT [ 44.264881][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.264887][ T8159] Call trace: [ 44.264890][ T8159] show_stack+0x2c/0x3c (C) [ 44.264904][ T8159] __dump_stack+0x30/0x40 [ 44.264913][ T8159] dump_stack_lvl+0xd8/0x12c [ 44.264919][ T8159] dump_stack+0x1c/0x28 [ 44.264924][ T8159] nilfs_btree_do_lookup+0x85c/0x9a0 [ 44.264933][ T8159] nilfs_btree_lookup_contig+0xc8/0x968 [ 44.264940][ T8159] nilfs_bmap_lookup_contig+0x88/0x13c [ 44.264946][ T8159] nilfs_get_block+0x1a0/0x7a8 [ 44.264955][ T8159] block_truncate_page+0x2f4/0x6b8 [ 44.264965][ T8159] nilfs_truncate+0x1ec/0x400 [ 44.264973][ T8159] nilfs_write_failed+0x88/0xa4 [ 44.264980][ T8159] nilfs_write_begin+0xfc/0x11c [ 44.264988][ T8159] generic_perform_write+0x244/0x7bc [ 44.264996][ T8159] __generic_file_write_iter+0xfc/0x204 [ 44.265003][ T8159] generic_file_write_iter+0x10c/0x47c [ 44.265010][ T8159] vfs_write+0x540/0xa3c [ 44.265017][ T8159] ksys_write+0x120/0x210 [ 44.265024][ T8159] __arm64_sys_write+0x7c/0x90 [ 44.265030][ T8159] invoke_syscall+0x98/0x254 [ 44.265036][ T8159] el0_svc_common+0xe8/0x23c [ 44.265042][ T8159] do_el0_svc+0x48/0x58 [ 44.265047][ T8159] el0_svc+0x5c/0x254 [ 44.265056][ T8159] el0t_64_sync_handler+0x84/0x12c [ 44.265065][ T8159] el0t_64_sync+0x198/0x19c [ 44.265073][ T8159] NILFS (loop3): btree level mismatch (ino=16): 1 != 3 [ 44.265088][ T8159] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 44.265144][ T8159] CPU: 1 UID: 0 PID: 8159 Comm: syz.3.569 Not tainted syzkaller #0 PREEMPT [ 44.265150][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 44.265154][ T8159] Call trace: [ 44.265155][ T8159] show_stack+0x2c/0x3c (C) [ 44.265161][ T8159] __dump_stack+0x30/0x40 [ 44.265167][ T8159] dump_stack_lvl+0xd8/0x12c [ 44.265172][ T8159] dump_stack+0x1c/0x28 [ 44.265177][ T8159] nilfs_btree_last_key+0x394/0x4d0 [ 44.265183][ T8159] nilfs_bmap_last_key+0x74/0x124 [ 44.265189][ T8159] nilfs_truncate_bmap+0xdc/0x2c0 [ 44.265197][ T8159] nilfs_truncate+0x1f8/0x400 [ 44.265205][ T8159] nilfs_write_failed+0x88/0xa4 [ 44.265213][ T8159] nilfs_write_begin+0xfc/0x11c [ 44.265220][ T8159] generic_perform_write+0x244/0x7bc [ 44.265227][ T8159] __generic_file_write_iter+0xfc/0x204 [ 44.265234][ T8159] generic_file_write_iter+0x10c/0x47c [ 44.265240][ T8159] vfs_write+0x540/0xa3c [ 44.265246][ T8159] ksys_write+0x120/0x210 [ 44.265252][ T8159] __arm64_sys_write+0x7c/0x90 [ 44.265259][ T8159] invoke_syscall+0x98/0x254 [ 44.265264][ T8159] el0_svc_common+0xe8/0x23c [ 44.265270][ T8159] do_el0_svc+0x48/0x58 [ 44.265275][ T8159] el0_svc+0x5c/0x254 [ 44.265283][ T8159] el0t_64_sync_handler+0x84/0x12c [ 44.265291][ T8159] el0t_64_sync+0x198/0x19c [ 44.265298][ T8159] NILFS (loop3): btree level mismatch (ino=16): 1 != 3 [ 44.265349][ T8159] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16) [ 44.265355][ T8159] NILFS (loop3): error -5 truncating bmap (ino=16) [ 44.300368][ T6556] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 44.586890][ T8177] loop3: detected capacity change from 0 to 32768 [ 44.605600][ T8177] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 44.624300][ T8177] XFS (loop3): Ending clean mount [ 44.631684][ T8177] XFS (loop3): Quotacheck needed: Please wait. [ 44.656919][ T8177] XFS (loop3): Quotacheck: Done. [ 44.695025][ T8217] Injecting memory failure for pfn 0x13ec9e at process virtual address 0x20001000 [ 44.700645][ T8217] Memory failure: 0x13ec9e: recovery action for clean LRU page: Recovered [ 44.710455][ T8217] Injecting memory failure for pfn 0x124747 at process virtual address 0x20002000 [ 44.710546][ T8217] Memory failure: 0x124747: recovery action for clean LRU page: Recovered [ 44.710584][ T8217] Injecting memory failure for pfn 0x13f2f1 at process virtual address 0x20003000 [ 44.710626][ T8217] Memory failure: 0x13f2f1: recovery action for clean LRU page: Recovered [ 44.726741][ T6556] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 44.739172][ T8219] openvswitch: netlink: IP tunnel attribute has 1604 unknown bytes. [ 44.802221][ T8221] netlink: 24 bytes leftover after parsing attributes in process `syz.3.596'. [ 44.941504][ T8245] loop2: detected capacity change from 0 to 16 [ 44.945115][ T8245] erofs (device loop2): mounted with root inode @ nid 36. [ 44.994312][ T8251] loop2: detected capacity change from 0 to 512 [ 45.001824][ T8251] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 45.001862][ T8251] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 45.005350][ T8251] EXT4-fs (loop2): 1 truncate cleaned up [ 45.005830][ T8251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.021931][ T8251] EXT4-fs error (device loop2): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.2.608: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 45.022519][ T8251] EXT4-fs (loop2): Remounting filesystem read-only [ 45.022546][ T8251] EXT4-fs warning (device loop2): ext4_rename_delete:3731: inode #2: comm syz.2.608: Deleting old file: nlink 4, error=-117 [ 45.044801][ T8209] loop4: detected capacity change from 0 to 65536 [ 45.046350][ T6554] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.066677][ T8209] XFS (loop4): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 45.077001][ T8209] XFS (loop4): Ending clean mount [ 45.078749][ T8209] XFS (loop4): Quotacheck needed: Please wait. [ 45.089419][ T8209] XFS (loop4): Quotacheck: Done. [ 45.135249][ T8272] netlink: 8 bytes leftover after parsing attributes in process `syz.2.616'. [ 45.143755][ T6550] XFS (loop4): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 45.185960][ T8277] netlink: 44 bytes leftover after parsing attributes in process `syz.3.620'. [ 45.223293][ T8281] netlink: 19 bytes leftover after parsing attributes in process `syz.4.618'. [ 45.313179][ T24] hid-generic 0003:0000:0020.0001: unknown main item tag 0x0 [ 45.313221][ T24] hid-generic 0003:0000:0020.0001: unknown main item tag 0x0 [ 45.313232][ T24] hid-generic 0003:0000:0020.0001: unknown main item tag 0x0 [ 45.320250][ T24] hid-generic 0003:0000:0020.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 45.356745][ T8296] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 45.356790][ T8296] overlayfs: missing 'lowerdir' [ 45.434812][ T8294] fido_id[8294]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 45.459823][ T8279] loop0: detected capacity change from 0 to 65536 [ 45.479497][ T8279] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 45.491978][ T8279] XFS (loop0): Ending clean mount [ 45.493648][ T8279] XFS (loop0): Quotacheck needed: Please wait. [ 45.509350][ T8279] XFS (loop0): Quotacheck: Done. [ 45.542666][ T6549] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 45.569722][ T8290] loop3: detected capacity change from 0 to 65536 [ 45.571123][ T8293] loop4: detected capacity change from 0 to 32768 [ 45.577891][ T8290] XFS (loop3): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 45.605238][ T8290] XFS (loop3): Ending clean mount [ 45.605938][ T8290] XFS (loop3): Quotacheck needed: Please wait. [ 45.613446][ T8290] XFS (loop3): Quotacheck: Done. [ 45.623519][ T8293] (syz.4.626,8293,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 45.624359][ T8293] (syz.4.626,8293,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 45.632831][ T8293] JBD2: Ignoring recovery information on journal [ 45.659996][ T8293] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 45.708507][ T6556] XFS (loop3): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 45.725532][ T8321] loop0: detected capacity change from 0 to 32768 [ 45.747836][ T8321] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 45.783060][ T8339] loop2: detected capacity change from 0 to 256 [ 45.818746][ T8321] XFS (loop0): Ending clean mount [ 45.822239][ T8321] XFS (loop0): Quotacheck needed: Please wait. [ 45.825812][ T6550] ocfs2: Unmounting device (7,4) on (node local) [ 45.847982][ T8321] XFS (loop0): Quotacheck: Done. [ 45.959878][ T8347] loop4: detected capacity change from 0 to 164 [ 45.962116][ T8347] Unable to read rock-ridge attributes [ 45.963714][ T8347] Unable to read rock-ridge attributes [ 45.984286][ T6549] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 46.026152][ T8354] Zero length message leads to an empty skb [ 46.202970][ T8382] loop4: detected capacity change from 0 to 1024 [ 46.207003][ T8382] EXT4-fs: inline encryption not supported [ 46.208065][ T8382] EXT4-fs: Ignoring removed i_version option [ 46.209729][ T8382] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 46.240905][ T8382] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.654: lblock 2 mapped to illegal pblock 2 (length 1) [ 46.241830][ T8382] __quota_error: 5 callbacks suppressed [ 46.241839][ T8382] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 46.241856][ T8382] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.654: lblock 0 mapped to illegal pblock 48 (length 1) [ 46.241931][ T8382] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 46.241938][ T8382] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.654: Failed to acquire dquot type 0 [ 46.242128][ T8382] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 46.243554][ T8382] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.654: mark_inode_dirty error [ 46.243707][ T8382] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 46.243758][ T8382] EXT4-fs (loop4): 1 orphan inode deleted [ 46.244214][ T8382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.247951][ T8382] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.654: Invalid inode table block 1 in block_group 0 [ 46.248518][ T8382] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 46.259660][ T15] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 46.267499][ T15] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 46.267650][ T15] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0 [ 46.274407][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.274814][ T6550] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 46.275816][ T6550] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 46.276023][ T6550] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 46.317092][ T8392] loop3: detected capacity change from 0 to 1024 [ 46.338415][ T8396] loop0: detected capacity change from 0 to 512 [ 46.366234][ T8396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.402596][ T8401] sp0: Synchronizing with TNC [ 46.407092][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.414066][ T8403] loop3: detected capacity change from 0 to 1024 [ 46.414464][ T8403] EXT4-fs: Ignoring removed orlov option [ 46.416940][ T8403] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 46.429829][ T8403] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.454610][ T8408] loop2: detected capacity change from 0 to 256 [ 46.462553][ T6556] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.536462][ T8414] binder: 8413:8414 ioctl c018620c 20000100 returned -22 [ 46.569664][ T8422] netlink: 8 bytes leftover after parsing attributes in process `syz.2.672'. [ 46.639935][ T8428] loop0: detected capacity change from 0 to 4096 [ 46.682468][ T8428] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 46.703097][ T8428] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 46.715291][ T8428] ntfs3(loop0): ino=1a, mi_enum_attr [ 46.715425][ T8428] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 46.779429][ T8440] loop4: detected capacity change from 0 to 40427 [ 46.790186][ T8440] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 46.790229][ T8440] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 46.790261][ T8440] F2FS-fs (loop4): build fault injection rate: 771 [ 46.791417][ T8440] F2FS-fs (loop4): invalid crc value [ 46.814074][ T8440] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 46.840660][ T8440] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 46.840707][ T8440] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 46.844775][ T8440] F2FS-fs (loop4): Can't enable fs-verity on inode 10: the verity feature is not enabled on this filesystem [ 46.861910][ T6550] syz-executor: attempt to access beyond end of device [ 46.861910][ T6550] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 46.861964][ T6550] CPU: 0 UID: 0 PID: 6550 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 46.861973][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 46.861979][ T6550] Call trace: [ 46.861983][ T6550] show_stack+0x2c/0x3c (C) [ 46.861999][ T6550] __dump_stack+0x30/0x40 [ 46.862009][ T6550] dump_stack_lvl+0xd8/0x12c [ 46.862015][ T6550] dump_stack+0x1c/0x28 [ 46.862021][ T6550] f2fs_handle_critical_error+0x34c/0x4b8 [ 46.862029][ T6550] f2fs_stop_checkpoint+0x5c/0x70 [ 46.862034][ T6550] f2fs_write_end_io+0x768/0xa70 [ 46.862041][ T6550] bio_endio+0x858/0x894 [ 46.862046][ T6550] submit_bio_noacct+0xd64/0x186c [ 46.862053][ T6550] submit_bio+0x3b4/0x550 [ 46.862059][ T6550] f2fs_submit_write_bio+0x13c/0x324 [ 46.862064][ T6550] __submit_merged_bio+0x254/0x704 [ 46.862070][ T6550] __submit_merged_write_cond+0x23c/0x4ac [ 46.862076][ T6550] f2fs_write_data_pages+0x1d28/0x2634 [ 46.862082][ T6550] do_writepages+0x270/0x468 [ 46.862090][ T6550] filemap_fdatawrite+0x14c/0x1f4 [ 46.862095][ T6550] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 46.862100][ T6550] f2fs_write_checkpoint+0x70c/0x1c30 [ 46.862105][ T6550] kill_f2fs_super+0x228/0x594 [ 46.862111][ T6550] deactivate_locked_super+0xc4/0x12c [ 46.862118][ T6550] deactivate_super+0xe0/0x100 [ 46.862124][ T6550] cleanup_mnt+0x31c/0x3ac [ 46.862130][ T6550] __cleanup_mnt+0x20/0x30 [ 46.862136][ T6550] task_work_run+0x1dc/0x260 [ 46.862142][ T6550] exit_to_user_mode_loop+0xfc/0x178 [ 46.862149][ T6550] el0_svc+0x170/0x254 [ 46.862157][ T6550] el0t_64_sync_handler+0x84/0x12c [ 46.862163][ T6550] el0t_64_sync+0x198/0x19c [ 46.862170][ T6550] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 46.902189][ T8447] netlink: 'syz.0.685': attribute type 12 has an invalid length. [ 46.902223][ T8447] netlink: 132 bytes leftover after parsing attributes in process `syz.0.685'. [ 47.034449][ T8438] loop3: detected capacity change from 0 to 40427 [ 47.042415][ T8438] F2FS-fs (loop3): invalid crc value [ 47.076233][ T8438] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 47.080914][ T8438] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 47.193109][ T6556] syz-executor: attempt to access beyond end of device [ 47.193109][ T6556] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 47.193158][ T6556] CPU: 1 UID: 0 PID: 6556 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 47.193169][ T6556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 47.193175][ T6556] Call trace: [ 47.193178][ T6556] show_stack+0x2c/0x3c (C) [ 47.193192][ T6556] __dump_stack+0x30/0x40 [ 47.193198][ T6556] dump_stack_lvl+0xd8/0x12c [ 47.193203][ T6556] dump_stack+0x1c/0x28 [ 47.193207][ T6556] f2fs_handle_critical_error+0x34c/0x4b8 [ 47.193216][ T6556] f2fs_stop_checkpoint+0x5c/0x70 [ 47.193221][ T6556] f2fs_write_end_io+0x768/0xa70 [ 47.193227][ T6556] bio_endio+0x858/0x894 [ 47.193232][ T6556] submit_bio_noacct+0xd64/0x186c [ 47.193239][ T6556] submit_bio+0x3b4/0x550 [ 47.193245][ T6556] f2fs_submit_write_bio+0x13c/0x324 [ 47.193250][ T6556] __submit_merged_bio+0x254/0x704 [ 47.193256][ T6556] __submit_merged_write_cond+0x23c/0x4ac [ 47.193262][ T6556] f2fs_write_data_pages+0x1d28/0x2634 [ 47.193268][ T6556] do_writepages+0x270/0x468 [ 47.193276][ T6556] filemap_fdatawrite+0x14c/0x1f4 [ 47.193281][ T6556] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 47.193286][ T6556] f2fs_write_checkpoint+0x70c/0x1c30 [ 47.193291][ T6556] kill_f2fs_super+0x228/0x594 [ 47.193297][ T6556] deactivate_locked_super+0xc4/0x12c [ 47.193304][ T6556] deactivate_super+0xe0/0x100 [ 47.193310][ T6556] cleanup_mnt+0x31c/0x3ac [ 47.193317][ T6556] __cleanup_mnt+0x20/0x30 [ 47.193323][ T6556] task_work_run+0x1dc/0x260 [ 47.193329][ T6556] exit_to_user_mode_loop+0xfc/0x178 [ 47.193335][ T6556] el0_svc+0x170/0x254 [ 47.193343][ T6556] el0t_64_sync_handler+0x84/0x12c [ 47.193349][ T6556] el0t_64_sync+0x198/0x19c [ 47.193371][ T6556] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 47.243788][ T8449] loop0: detected capacity change from 0 to 32768 [ 47.250535][ T8449] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 47.269542][ T8449] XFS (loop0): Ending clean mount [ 47.305959][ T6549] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 47.545268][ T8474] loop0: detected capacity change from 0 to 4096 [ 47.548937][ T8474] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 47.548963][ T8474] EXT4-fs (loop0): Test dummy encryption mode enabled [ 47.567412][ T8474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.615686][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.665062][ T8430] loop2: detected capacity change from 0 to 262144 [ 47.665682][ T8430] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.678 (8430) [ 47.673952][ T8430] BTRFS info (device loop2): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 47.674028][ T8430] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 47.713466][ T8430] BTRFS info (device loop2): enabling ssd optimizations [ 47.713504][ T8430] BTRFS info (device loop2): turning on async discard [ 47.713513][ T8430] BTRFS info (device loop2): enabling free space tree [ 47.792502][ T6554] BTRFS info (device loop2): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 48.050249][ T8504] loop0: detected capacity change from 0 to 32768 [ 48.075436][ T8504] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 48.106653][ T8504] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature [ 48.106729][ T8504] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 48.106752][ T8504] OCFS2: File system is now read-only. [ 48.106765][ T8504] (syz.0.700,8504,0):ocfs2_search_chain:1852 ERROR: status = -30 [ 48.106784][ T8504] (syz.0.700,8504,0):ocfs2_search_chain:1940 ERROR: status = -30 [ 48.106801][ T8504] (syz.0.700,8504,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30 [ 48.106816][ T8504] (syz.0.700,8504,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30 [ 48.106827][ T8504] (syz.0.700,8504,0):__ocfs2_claim_clusters:2438 ERROR: status = -30 [ 48.106839][ T8504] (syz.0.700,8504,0):__ocfs2_claim_clusters:2446 ERROR: status = -30 [ 48.106851][ T8504] (syz.0.700,8504,0):ocfs2_local_alloc_new_window:1199 ERROR: status = -30 [ 48.106862][ T8504] (syz.0.700,8504,0):ocfs2_local_alloc_new_window:1224 ERROR: status = -30 [ 48.106872][ T8504] (syz.0.700,8504,0):ocfs2_local_alloc_slide_window:1298 ERROR: status = -30 [ 48.107050][ T8504] (syz.0.700,8504,0):ocfs2_local_alloc_slide_window:1317 ERROR: status = -30 [ 48.107064][ T8504] (syz.0.700,8504,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30 [ 48.107080][ T8504] (syz.0.700,8504,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30 [ 48.107094][ T8504] (syz.0.700,8504,0):ocfs2_reserve_clusters_with_limit:1172 ERROR: status = -30 [ 48.107115][ T8504] (syz.0.700,8504,0):ocfs2_reserve_clusters_with_limit:1221 ERROR: status = -30 [ 48.107126][ T8504] (syz.0.700,8504,0):ocfs2_lock_allocators:2775 ERROR: status = -30 [ 48.107136][ T8504] (syz.0.700,8504,0):ocfs2_write_begin_nolock:1723 ERROR: status = -30 [ 48.107159][ T8504] (syz.0.700,8504,0):ocfs2_dio_wr_get_block:2218 ERROR: status = -30 [ 48.107269][ T8504] (syz.0.700,8504,0):ocfs2_dio_end_io:2401 ERROR: Direct IO failed, bytes = -30 [ 48.116744][ T6549] (syz-executor,6549,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72 [ 48.132950][ T6549] ocfs2: Unmounting device (7,0) on (node local) [ 48.220840][ T8457] loop4: detected capacity change from 0 to 262144 [ 48.225225][ T8457] BTRFS: device fsid f9acc048-ac89-4f9b-90b4-9ee8f3de7bde devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.689 (8457) [ 48.236213][ T8457] BTRFS info (device loop4): first mount of filesystem f9acc048-ac89-4f9b-90b4-9ee8f3de7bde [ 48.236287][ T8457] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 48.309041][ T8537] loop2: detected capacity change from 0 to 256 [ 48.310231][ T8457] BTRFS info (device loop4): enabling ssd optimizations [ 48.310266][ T8457] BTRFS info (device loop4): turning on async discard [ 48.310274][ T8457] BTRFS info (device loop4): enabling free space tree [ 48.382044][ T8543] loop3: detected capacity change from 0 to 4096 [ 48.397063][ T8541] loop0: detected capacity change from 0 to 32768 [ 48.451037][ T8541] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 48.489277][ T8549] loop2: detected capacity change from 0 to 64 [ 48.489652][ T8549] hfs: Unknown parameter 'creatoœÐ¥MËa‹þnˆr' [ 48.523012][ T6549] ocfs2: Unmounting device (7,0) on (node local) [ 48.579134][ T8554] loop2: detected capacity change from 0 to 4096 [ 48.623097][ T6550] BTRFS info (device loop4): last unmount of filesystem f9acc048-ac89-4f9b-90b4-9ee8f3de7bde [ 48.699123][ T8554] ntfs3(loop2): new label is too long [ 48.732898][ T8565] loop0: detected capacity change from 0 to 512 [ 48.736250][ T8565] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 48.748859][ T8565] EXT4-fs (loop0): orphan cleanup on readonly fs [ 48.749434][ T8565] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.719: Block bitmap for bg 0 marked uninitialized [ 48.756671][ T8565] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 48.758138][ T8565] EXT4-fs (loop0): 1 orphan inode deleted [ 48.758693][ T8565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 48.795923][ T8565] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 48.802470][ T8565] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 48.804303][ T8565] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.719: Block bitmap for bg 0 marked uninitialized [ 48.833638][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.898730][ T8579] loop3: detected capacity change from 0 to 256 [ 48.939032][ T8579] FAT-fs (loop3): Directory bread(block 64) failed [ 48.939075][ T8579] FAT-fs (loop3): Directory bread(block 65) failed [ 48.939107][ T8579] FAT-fs (loop3): Directory bread(block 66) failed [ 48.939118][ T8579] FAT-fs (loop3): Directory bread(block 67) failed [ 48.939140][ T8579] FAT-fs (loop3): Directory bread(block 68) failed [ 48.939149][ T8579] FAT-fs (loop3): Directory bread(block 69) failed [ 48.939168][ T8579] FAT-fs (loop3): Directory bread(block 70) failed [ 48.939182][ T8579] FAT-fs (loop3): Directory bread(block 71) failed [ 48.939202][ T8579] FAT-fs (loop3): Directory bread(block 72) failed [ 48.939212][ T8579] FAT-fs (loop3): Directory bread(block 73) failed [ 49.117286][ T8594] loop2: detected capacity change from 0 to 1024 [ 49.143419][ T8583] loop4: detected capacity change from 0 to 32768 [ 49.145623][ T8583] XFS (loop4): Cannot mount filesystem with identical rtdev and ddev/logdev. [ 49.259226][ T8603] loop4: detected capacity change from 0 to 256 [ 49.285380][ T8591] loop3: detected capacity change from 0 to 32768 [ 49.290094][ T8591] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.731 (8591) [ 49.305260][ T8591] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 49.305319][ T8591] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm [ 49.305336][ T8591] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 49.311218][ T8603] FAT-fs (loop4): Directory bread(block 64) failed [ 49.311282][ T8603] FAT-fs (loop4): Directory bread(block 65) failed [ 49.311309][ T8603] FAT-fs (loop4): Directory bread(block 66) failed [ 49.311324][ T8603] FAT-fs (loop4): Directory bread(block 67) failed [ 49.311347][ T8603] FAT-fs (loop4): Directory bread(block 68) failed [ 49.311357][ T8603] FAT-fs (loop4): Directory bread(block 69) failed [ 49.311378][ T8603] FAT-fs (loop4): Directory bread(block 70) failed [ 49.311387][ T8603] FAT-fs (loop4): Directory bread(block 71) failed [ 49.311406][ T8603] FAT-fs (loop4): Directory bread(block 72) failed [ 49.311415][ T8603] FAT-fs (loop4): Directory bread(block 73) failed [ 49.339249][ T8597] loop0: detected capacity change from 0 to 32768 [ 49.348470][ T8597] [ 49.348470][ T8597] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 49.348470][ T8597] [ 49.357317][ T8597] ERROR: (device loop0): diWrite: ixpxd invalid [ 49.357317][ T8597] [ 49.364092][ T8597] ERROR: (device loop0): txAbort: [ 49.364092][ T8597] [ 49.366780][ T8591] BTRFS info (device loop3): rebuilding free space tree [ 49.381641][ T8591] BTRFS info (device loop3): disabling free space tree [ 49.381684][ T8591] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 49.381707][ T8591] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 49.382811][ T8591] BTRFS info (device loop3): enabling ssd optimizations [ 49.382821][ T8591] BTRFS info (device loop3): enabling disk space caching [ 49.382827][ T8591] BTRFS info (device loop3): force clearing of disk cache [ 49.382833][ T8591] BTRFS info (device loop3): force zstd compression, level 3 [ 49.396107][ T6549] [ 49.396107][ T6549] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 49.396107][ T6549] [ 49.402093][ T6549] [ 49.402093][ T6549] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 49.402093][ T6549] [ 49.411150][ T6556] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 49.479202][ T8630] sctp: [Deprecated]: syz.3.743 (pid 8630) Use of int in maxseg socket option. [ 49.479202][ T8630] Use struct sctp_assoc_value instead [ 49.499955][ T8632] loop4: detected capacity change from 0 to 256 [ 49.591593][ T8643] loop2: detected capacity change from 0 to 256 [ 49.599054][ T8643] exfat: Deprecated parameter 'utf8' [ 49.599115][ T8643] exfat: Deprecated parameter 'namecase' [ 49.604067][ T8643] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 49.621446][ T8645] netlink: 48 bytes leftover after parsing attributes in process `syz.3.750'. [ 49.774260][ T8654] syz.2.754 uses obsolete (PF_INET,SOCK_PACKET) [ 49.801541][ T8641] loop0: detected capacity change from 0 to 65536 [ 49.814922][ T8641] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 49.865637][ T8641] XFS (loop0): Starting recovery (logdev: internal) [ 49.897726][ T8641] XFS (loop0): Ending recovery (logdev: internal) [ 49.903205][ T8641] XFS (loop0): Quotacheck needed: Please wait. [ 49.914849][ T8641] XFS (loop0): Quotacheck: Done. [ 49.936902][ T8673] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 50.035659][ T6549] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 50.077546][ T8679] loop3: detected capacity change from 0 to 32768 [ 50.094123][ T8679] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.763 (8679) [ 50.113785][ T8679] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 50.113845][ T8679] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 50.242291][ T8679] BTRFS info (device loop3): enabling ssd optimizations [ 50.242323][ T8679] BTRFS info (device loop3): turning on async discard [ 50.242348][ T8679] BTRFS info (device loop3): enabling free space tree [ 50.255264][ T8719] loop0: detected capacity change from 0 to 512 [ 50.259484][ T8719] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 50.287854][ T8719] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128 [ 50.387618][ T6556] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 50.411129][ T8707] loop2: detected capacity change from 0 to 32768 [ 50.442591][ T8707] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 50.448815][ T8707] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 50.502999][ T8730] netlink: 277 bytes leftover after parsing attributes in process `syz.4.777'. [ 50.518746][ T6554] ocfs2: Unmounting device (7,2) on (node local) [ 50.542193][ T8735] loop3: detected capacity change from 0 to 64 [ 50.712681][ T8747] netlink: 'syz.2.784': attribute type 29 has an invalid length. [ 50.713204][ T8747] netlink: 'syz.2.784': attribute type 29 has an invalid length. [ 50.743570][ T8744] loop4: detected capacity change from 0 to 40427 [ 50.747933][ T8744] F2FS-fs (loop4): invalid crc value [ 50.752294][ T8752] netlink: 28 bytes leftover after parsing attributes in process `syz.2.785'. [ 50.770583][ T8744] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 50.781165][ T8744] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 50.814898][ T8748] f2fs_ckpt-7:4: attempt to access beyond end of device [ 50.814898][ T8748] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 50.815429][ T8748] CPU: 0 UID: 0 PID: 8748 Comm: f2fs_ckpt-7:4 Not tainted syzkaller #0 PREEMPT [ 50.815444][ T8748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 50.815449][ T8748] Call trace: [ 50.815452][ T8748] show_stack+0x2c/0x3c (C) [ 50.815466][ T8748] __dump_stack+0x30/0x40 [ 50.815473][ T8748] dump_stack_lvl+0xd8/0x12c [ 50.815478][ T8748] dump_stack+0x1c/0x28 [ 50.815482][ T8748] f2fs_handle_critical_error+0x34c/0x4b8 [ 50.815491][ T8748] f2fs_stop_checkpoint+0x5c/0x70 [ 50.815498][ T8748] f2fs_write_end_io+0x768/0xa70 [ 50.815506][ T8748] bio_endio+0x858/0x894 [ 50.815511][ T8748] submit_bio_noacct+0xd64/0x186c [ 50.815520][ T8748] submit_bio+0x3b4/0x550 [ 50.815525][ T8748] f2fs_submit_write_bio+0x13c/0x324 [ 50.815531][ T8748] __submit_merged_bio+0x254/0x704 [ 50.815537][ T8748] __submit_merged_write_cond+0x23c/0x4ac [ 50.815543][ T8748] f2fs_write_data_pages+0x1d28/0x2634 [ 50.815549][ T8748] do_writepages+0x270/0x468 [ 50.815557][ T8748] filemap_fdatawrite+0x14c/0x1f4 [ 50.815563][ T8748] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 50.815568][ T8748] f2fs_write_checkpoint+0x70c/0x1c30 [ 50.815573][ T8748] __checkpoint_and_complete_reqs+0xf4/0x3d4 [ 50.815581][ T8748] issue_checkpoint_thread+0xcc/0x240 [ 50.815587][ T8748] kthread+0x5fc/0x75c [ 50.815595][ T8748] ret_from_fork+0x10/0x20 [ 50.816162][ T8748] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 50.863378][ T8739] loop0: detected capacity change from 0 to 65536 [ 50.880218][ T8739] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 50.890789][ T8739] XFS (loop0): Ending clean mount [ 50.977797][ T8769] loop2: detected capacity change from 0 to 4096 [ 50.983768][ T6549] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 51.124813][ T8777] loop0: detected capacity change from 0 to 1024 [ 51.138373][ T8777] hfsplus: bad catalog entry type [ 51.161854][ T12] hfsplus: b-tree write err: -5, ino 4 [ 51.292670][ T8797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.803'. [ 51.295735][ T8797] netlink: 'syz.4.803': attribute type 2 has an invalid length. [ 51.295771][ T8797] netlink: 24 bytes leftover after parsing attributes in process `syz.4.803'. [ 51.323777][ T8785] loop0: detected capacity change from 0 to 32768 [ 51.329832][ T8801] loop4: detected capacity change from 0 to 1024 [ 51.332264][ T8785] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 51.352457][ T8785] XFS (loop0): Ending clean mount [ 51.366985][ T813] hfsplus: b-tree write err: -5, ino 4 [ 51.387812][ T8815] loop4: detected capacity change from 0 to 64 [ 51.392328][ T6549] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 51.435996][ T8815] hfs: request for non-existent node 1280 in B*Tree [ 51.436031][ T8815] hfs: request for non-existent node 1280 in B*Tree [ 51.452876][ T813] hfs: request for non-existent node 1280 in B*Tree [ 51.452906][ T813] hfs: request for non-existent node 1280 in B*Tree [ 51.546802][ T8834] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_hsr, syncid = 4, id = 0 [ 51.746803][ T8842] loop4: detected capacity change from 0 to 32768 [ 51.781587][ T8842] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 51.819974][ T8842] XFS (loop4): Ending clean mount [ 51.827844][ T8842] XFS (loop4): Quotacheck needed: Please wait. [ 51.846200][ T8842] XFS (loop4): Quotacheck: Done. [ 51.878529][ T6550] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 51.980582][ T8836] loop2: detected capacity change from 0 to 131072 [ 51.980957][ T8836] F2FS-fs: heap/no_heap options were deprecated [ 52.002499][ T8836] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 52.004324][ T8836] F2FS-fs (loop2): Mounted with checkpoint version = 1b41e955 [ 52.064580][ T8872] netlink: 8 bytes leftover after parsing attributes in process `syz.0.828'. [ 52.129653][ T8876] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 52.189119][ T8880] loop4: detected capacity change from 0 to 512 [ 52.202278][ T8880] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 52.202449][ T8880] EXT4-fs (loop4): orphan cleanup on readonly fs [ 52.205687][ T8880] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 52.212437][ T8880] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 52.213773][ T8880] EXT4-fs error (device loop4): __ext4_iget:5443: inode #16: block 127754: comm syz.4.834: invalid block [ 52.215894][ T8880] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.834: couldn't read orphan inode 16 (err -117) [ 52.223650][ T8880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 52.277335][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.316756][ T8887] loop4: detected capacity change from 0 to 512 [ 52.345653][ T8887] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.379317][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.427025][ T8889] loop0: detected capacity change from 0 to 40427 [ 52.429776][ T8889] F2FS-fs: heap/no_heap options were deprecated [ 52.431640][ T8889] F2FS-fs (loop0): build fault injection rate: 19 [ 52.431668][ T8889] F2FS-fs (loop0): build fault injection type: 0x3bfe8c [ 52.432607][ T8889] F2FS-fs (loop0): invalid crc value [ 52.442768][ T8889] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac [ 52.468155][ T8889] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0 [ 52.469351][ T8889] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 52.470652][ T8889] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 52.515737][ T8889] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x19c/0x868 [ 52.523374][ T8889] F2FS-fs (loop0): inject checkpoint error in f2fs_balance_fs of f2fs_zero_range+0x978/0xc80 [ 52.523878][ T8889] CPU: 0 UID: 0 PID: 8889 Comm: syz.0.838 Not tainted syzkaller #0 PREEMPT [ 52.523888][ T8889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 52.523893][ T8889] Call trace: [ 52.523896][ T8889] show_stack+0x2c/0x3c (C) [ 52.523907][ T8889] __dump_stack+0x30/0x40 [ 52.523914][ T8889] dump_stack_lvl+0xd8/0x12c [ 52.523919][ T8889] dump_stack+0x1c/0x28 [ 52.523924][ T8889] f2fs_handle_critical_error+0x34c/0x4b8 [ 52.523934][ T8889] f2fs_stop_checkpoint+0x5c/0x70 [ 52.523941][ T8889] f2fs_balance_fs+0x278/0x6ec [ 52.523947][ T8889] f2fs_zero_range+0x978/0xc80 [ 52.523953][ T8889] f2fs_fallocate+0x408/0x8ec [ 52.523963][ T8889] vfs_fallocate+0x52c/0x668 [ 52.523975][ T8889] file_ioctl+0x584/0x75c [ 52.523981][ T8889] do_vfs_ioctl+0xa10/0x1834 [ 52.523986][ T8889] __arm64_sys_ioctl+0xe4/0x1c4 [ 52.523991][ T8889] invoke_syscall+0x98/0x254 [ 52.523998][ T8889] el0_svc_common+0xe8/0x23c [ 52.524003][ T8889] do_el0_svc+0x48/0x58 [ 52.524009][ T8889] el0_svc+0x5c/0x254 [ 52.524019][ T8889] el0t_64_sync_handler+0x84/0x12c [ 52.524027][ T8889] el0t_64_sync+0x198/0x19c [ 52.524036][ T8889] F2FS-fs (loop0): Stopped filesystem due to reason: 1 [ 52.555392][ T8907] loop4: detected capacity change from 0 to 4096 [ 52.592916][ T8905] loop2: detected capacity change from 0 to 32768 [ 52.596854][ T8905] btrfs: Deprecated parameter 'usebackuproot' [ 52.597914][ T8905] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 52.602390][ T8905] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.842 (8905) [ 52.605885][ T8905] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 52.605935][ T8905] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm [ 52.647375][ T42] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 52.649946][ T8905] BTRFS error (device loop2): failed to load root extent [ 52.649996][ T8905] BTRFS warning (device loop2): try to load backup roots slot 1 [ 52.652576][ T42] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 52.655047][ T8905] BTRFS warning (device loop2): couldn't read tree root [ 52.656474][ T8905] BTRFS warning (device loop2): try to load backup roots slot 2 [ 52.658123][ T12] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 52.659876][ T8905] BTRFS warning (device loop2): couldn't read tree root [ 52.661027][ T8905] BTRFS warning (device loop2): try to load backup roots slot 3 [ 52.668463][ T8905] BTRFS info (device loop2): rebuilding free space tree [ 52.680488][ T8905] BTRFS info (device loop2): checking UUID tree [ 52.682539][ T8905] BTRFS info (device loop2): setting nodatasum [ 52.683717][ T8905] BTRFS info (device loop2): setting nodatacow [ 52.683743][ T8905] BTRFS info (device loop2): enabling ssd optimizations [ 52.683764][ T8905] BTRFS info (device loop2): turning off barriers [ 52.683776][ T8905] BTRFS info (device loop2): turning on sync discard [ 52.683787][ T8905] BTRFS info (device loop2): enabling free space tree [ 52.683796][ T8905] BTRFS info (device loop2): force clearing of disk cache [ 52.683805][ T8905] BTRFS info (device loop2): trying to use backup root at mount time [ 52.683814][ T8905] BTRFS info (device loop2): max_inline set to 0 [ 52.763566][ T6554] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 53.079345][ T8956] loop2: detected capacity change from 0 to 1024 [ 53.205199][ T8967] Soft offlining pfn 0x13ceb3 at process virtual address 0x20cb3000 [ 53.219393][ T8967] Memory failure: 0x13ceb3: unhandlable page. [ 53.243472][ T8926] loop0: detected capacity change from 0 to 131072 [ 53.251691][ T8926] F2FS-fs (loop0): Invalid log sectors per block(570425347) log sectorsize(9) [ 53.251728][ T8926] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 53.261382][ T8926] F2FS-fs (loop0): invalid crc value [ 53.292411][ T8926] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=3000000, run fsck to fix. [ 53.296770][ T8926] F2FS-fs (loop0): Bad quota inode 2:50331648 [ 53.297848][ T8926] F2FS-fs (loop0): Failed to enable quota tracking (type=2, err=-22). Please run fsck to fix. [ 53.299478][ T8926] F2FS-fs (loop0): Cannot turn on quotas: error -22 [ 53.300523][ T8926] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 53.305291][ T8926] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 53.306521][ T8926] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b [ 53.313182][ T8926] F2FS-fs (loop0): quota sysfile already exists [ 53.521974][ T8991] binder: 8990:8991 BC_ACQUIRE_DONE u0000000000000002 node 2 cookie mismatch 00000000000000fc != 0000000000000000 [ 53.644328][ T8995] loop4: detected capacity change from 0 to 32768 [ 53.664515][ T8995] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 53.709308][ T8997] loop0: detected capacity change from 0 to 40427 [ 53.709758][ T8997] F2FS-fs: heap/no_heap options were deprecated [ 53.716951][ T8997] F2FS-fs (loop0): build fault injection rate: 19 [ 53.716988][ T8997] F2FS-fs (loop0): build fault injection type: 0x3bfe8c [ 53.718986][ T8997] F2FS-fs (loop0): invalid crc value [ 53.719237][ T6550] ocfs2: Unmounting device (7,4) on (node local) [ 53.726212][ T8997] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac [ 53.737938][ T8997] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0 [ 53.750182][ T8997] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 53.752112][ T8997] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 53.767541][ T6559] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 53.770280][ T6559] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 53.773722][ T6559] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 53.776046][ T6559] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 53.776299][ T6559] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 53.795013][ T8997] syz.0.868: attempt to access beyond end of device [ 53.795013][ T8997] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 53.813561][ T6549] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x70/0x1ec [ 53.915522][ T9004] chnl_net:caif_netlink_parms(): no params data found [ 53.939513][ T9004] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.940175][ T9004] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.940284][ T9004] bridge_slave_0: entered allmulticast mode [ 53.940771][ T9004] bridge_slave_0: entered promiscuous mode [ 53.945618][ T9004] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.948075][ T9004] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.948212][ T9004] bridge_slave_1: entered allmulticast mode [ 53.948680][ T9004] bridge_slave_1: entered promiscuous mode [ 53.970211][ T9004] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.977165][ T9004] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.994297][ T9004] team0: Port device team_slave_0 added [ 53.996173][ T9004] team0: Port device team_slave_1 added [ 54.005194][ T9004] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.006478][ T9004] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.010956][ T9004] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.014879][ T9004] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.016277][ T9004] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.020623][ T9004] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.045051][ T9004] hsr_slave_0: entered promiscuous mode [ 54.050585][ T9004] hsr_slave_1: entered promiscuous mode [ 54.053330][ T9004] debugfs: 'hsr0' already exists in 'hsr' [ 54.053560][ T9004] Cannot create hsr debugfs directory [ 54.147528][ T9004] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 54.149907][ T9004] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 54.152627][ T9004] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 54.153754][ T9004] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 54.165030][ T9004] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.165087][ T9004] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.165158][ T9004] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.165193][ T9004] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.189955][ T9004] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.195077][ T15] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.196711][ T15] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.200529][ T9043] loop0: detected capacity change from 0 to 4096 [ 54.204297][ T9004] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.208856][ T813] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.208921][ T813] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.227212][ T9044] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 54.227341][ T9043] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 54.229910][ T15] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.229939][ T15] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.244239][ T9043] Remounting filesystem read-only [ 54.250499][ T9004] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 54.250539][ T9004] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 54.343932][ T9004] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.445473][ T9004] veth0_vlan: entered promiscuous mode [ 54.454114][ T9004] veth1_vlan: entered promiscuous mode [ 54.469053][ T9004] veth0_macvtap: entered promiscuous mode [ 54.474448][ T9004] veth1_macvtap: entered promiscuous mode [ 54.482405][ T9004] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.487929][ T9004] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.495793][ T15] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.498714][ T15] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.498766][ T15] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.498783][ T15] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.549256][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.549294][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.573871][ T15] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.573905][ T15] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.604564][ T9072] loop2: detected capacity change from 0 to 32768 [ 54.616992][ T9074] loop0: detected capacity change from 0 to 40427 [ 54.618880][ T9072] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 54.623239][ T9074] F2FS-fs (loop0): Invalid log sectors per block(0) log sectorsize(9) [ 54.623277][ T9074] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 54.640658][ T9074] F2FS-fs (loop0): invalid crc value [ 54.661039][ T9072] XFS (loop2): Ending clean mount [ 54.662657][ T9072] XFS (loop2): Quotacheck needed: Please wait. [ 54.664950][ T9074] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 54.666707][ T9074] F2FS-fs (loop0): Start checkpoint disabled! [ 54.668556][ T9074] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0 [ 54.674883][ T9074] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 54.674921][ T9074] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 54.700620][ T9072] XFS (loop2): Quotacheck: Done. [ 54.738258][ T9091] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 54.738287][ T9091] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 54.739011][ T9091] vhci_hcd vhci_hcd.0: Device attached [ 54.747727][ T9091] loop4: detected capacity change from 0 to 256 [ 54.769915][ T6554] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 54.776549][ T9091] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 54.792034][ T9091] exFAT-fs (loop4): start_clu is invalid cluster(0x0) [ 54.792790][ T9092] vhci_hcd: connection closed [ 54.793331][ T42] vhci_hcd: stop threads [ 54.794222][ T42] vhci_hcd: release socket [ 54.794236][ T42] vhci_hcd: disconnect device [ 55.026904][ T9117] loop2: detected capacity change from 0 to 2048 [ 55.032827][ T9117] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 55.127905][ T9127] loop2: detected capacity change from 0 to 256 [ 55.138371][ T9127] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 55.158439][ T9111] loop0: detected capacity change from 0 to 32768 [ 55.159142][ T9111] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.905 (9111) [ 55.167685][ T9111] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 55.167767][ T9111] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 55.240200][ T9111] BTRFS info (device loop0): turning off barriers [ 55.240233][ T9111] BTRFS info (device loop0): enabling free space tree [ 55.240243][ T9111] BTRFS info (device loop0): use zstd compression, level 3 [ 55.276882][ T6549] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 55.518688][ T9131] loop2: detected capacity change from 0 to 65536 [ 55.552094][ T9131] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 55.618468][ T9131] XFS (loop2): Starting recovery (logdev: internal) [ 55.624508][ T9131] XFS (loop2): Ending recovery (logdev: internal) [ 55.628004][ T9131] XFS (loop2): Quotacheck needed: Please wait. [ 55.654355][ T9131] XFS (loop2): Quotacheck: Done. [ 55.702711][ T6554] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 55.714722][ T9168] loop4: detected capacity change from 0 to 32768 [ 55.798006][ T9190] loop5: detected capacity change from 0 to 1024 [ 55.846469][ T9190] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.852424][ T6559] Bluetooth: hci5: command tx timeout [ 55.884226][ T9004] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.911566][ T9200] netlink: 12 bytes leftover after parsing attributes in process `syz.5.939'. [ 55.918763][ T9201] netlink: 16 bytes leftover after parsing attributes in process `syz.2.938'. [ 55.936470][ T9170] loop0: detected capacity change from 0 to 131072 [ 55.938319][ T9170] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(3584) blocks(0) [ 55.938366][ T9170] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 55.944723][ T9170] F2FS-fs (loop0): invalid crc value [ 55.967664][ T9170] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 55.970422][ T9170] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 55.972376][ T9170] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 56.015992][ T9209] loop5: detected capacity change from 0 to 1024 [ 56.018073][ T9207] loop2: detected capacity change from 0 to 2048 [ 56.025031][ T9209] hfsplus: Unknown parameter 'ÿÿÿÿ0x000000000000ee01' [ 56.028340][ T9209] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 56.033828][ T9209] CIFS mount error: No usable UNC path provided in device string! [ 56.033828][ T9209] [ 56.035584][ T9209] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 56.049918][ T9207] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 56.172941][ T9221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.947'. [ 56.185873][ T9223] vhci_hcd: invalid port number 236 [ 56.185911][ T9223] vhci_hcd: invalid port number 236 [ 56.218683][ T9229] loop4: detected capacity change from 0 to 256 [ 56.232548][ T9229] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 56.246995][ T9229] exFAT-fs (loop4): valid_size(150994954) is greater than size(10) [ 56.454685][ T9231] loop0: detected capacity change from 0 to 32768 [ 56.477842][ T9233] loop2: detected capacity change from 0 to 32768 [ 56.478679][ T9233] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.952 (9233) [ 56.481019][ T9233] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 56.481054][ T9233] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 56.481073][ T9233] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 56.527991][ T9231] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 56.553786][ T9231] XFS (loop0): Ending clean mount [ 56.554864][ T9231] XFS (loop0): Quotacheck needed: Please wait. [ 56.581462][ T9231] XFS (loop0): Quotacheck: Done. [ 56.587768][ T9233] BTRFS info (device loop2): rebuilding free space tree [ 56.598815][ T9233] BTRFS info (device loop2): disabling free space tree [ 56.598875][ T9233] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 56.598888][ T9233] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 56.604139][ T9233] BTRFS info (device loop2): enabling ssd optimizations [ 56.604170][ T9233] BTRFS info (device loop2): turning on async discard [ 56.604183][ T9233] BTRFS info (device loop2): enabling disk space caching [ 56.604190][ T9233] BTRFS info (device loop2): force clearing of disk cache [ 56.604196][ T9233] BTRFS info (device loop2): enabling auto defrag [ 56.604202][ T9233] BTRFS info (device loop2): force zlib compression, level 3 [ 56.619711][ T6549] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 56.665322][ T9233] ªªªªªªrag,metad: renamed from lo (while UP) [ 56.742425][ T9262] netlink: 'syz.5.956': attribute type 1 has an invalid length. [ 56.766681][ T9264] loop0: detected capacity change from 0 to 1024 [ 56.781824][ T9235] loop4: detected capacity change from 0 to 131072 [ 56.788426][ T9235] F2FS-fs (loop4): Invalid segment/section count (31, 24 x 150994945) [ 56.788481][ T9235] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 56.798649][ T6554] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 56.798766][ T9235] F2FS-fs (loop4): invalid crc value [ 56.820830][ T2160] hfsplus: b-tree write err: -5, ino 4 [ 56.826071][ T9271] Bluetooth: MGMT ver 1.23 [ 56.848959][ T9235] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 56.857514][ T9235] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 56.857548][ T9235] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 56.863376][ T9274] loop5: detected capacity change from 0 to 256 [ 56.892890][ T9274] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 56.896692][ T9278] usb usb6: usbfs: process 9278 (syz.0.959) did not claim interface 0 before use [ 56.898816][ T9276] netlink: 64 bytes leftover after parsing attributes in process `syz.2.955'. [ 56.898850][ T9276] block nbd0: not configured, cannot reconfigure [ 56.920161][ T9235] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=8000000, run fsck to fix. [ 56.944406][ T9282] capability: warning: `syz.2.962' uses 32-bit capabilities (legacy support in use) [ 56.988327][ T9284] loop2: detected capacity change from 0 to 64 [ 57.009768][ T9287] sp0: Synchronizing with TNC [ 57.265010][ T9291] loop2: detected capacity change from 0 to 32768 [ 57.268714][ T9291] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.966 (9291) [ 57.286700][ T9291] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 57.286775][ T9291] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 57.335674][ T9291] BTRFS info (device loop2): enabling ssd optimizations [ 57.335711][ T9291] BTRFS info (device loop2): turning on async discard [ 57.335734][ T9291] BTRFS info (device loop2): enabling free space tree [ 57.353183][ T9325] netlink: 8 bytes leftover after parsing attributes in process `syz.5.977'. [ 57.353213][ T9325] netlink: 4 bytes leftover after parsing attributes in process `syz.5.977'. [ 57.353245][ T9325] netlink: 'syz.5.977': attribute type 12 has an invalid length. [ 57.353252][ T9325] netlink: 'syz.5.977': attribute type 11 has an invalid length. [ 57.358904][ T9327] loop4: detected capacity change from 0 to 512 [ 57.399049][ T9330] loop0: detected capacity change from 0 to 1024 [ 57.399755][ T9327] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 57.399868][ T9327] EXT4-fs (loop4): orphan cleanup on readonly fs [ 57.400162][ T9327] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 57.400547][ T9327] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 57.403062][ T9327] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #13: comm syz.4.965: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 57.409143][ T9327] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.965: couldn't read orphan inode 13 (err -117) [ 57.409846][ T9327] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 57.442439][ T6554] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 57.448139][ T9330] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.492142][ T9327] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 57.512749][ T9327] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 57.519286][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.520954][ T9327] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=2856c09c, mo2=0002] [ 57.540321][ T9327] System zones: 0-2, 18-18, 34-34 [ 57.540569][ T9327] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 57.593183][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.680509][ T9348] netlink: 52 bytes leftover after parsing attributes in process `syz.2.985'. [ 57.680558][ T9348] IPVS: Unknown mcast interface: vetN1_macvtap [ 57.754660][ T9353] loop0: detected capacity change from 0 to 1024 [ 57.797298][ T9353] hfsplus: request for non-existent node 33554434 in B*Tree [ 57.797336][ T9353] hfsplus: request for non-existent node 33554434 in B*Tree [ 57.816229][ T15] hfsplus: request for non-existent node 33554434 in B*Tree [ 57.816262][ T15] hfsplus: request for non-existent node 33554434 in B*Tree [ 57.861433][ T9357] loop4: detected capacity change from 0 to 40427 [ 57.869387][ T9357] F2FS-fs (loop4): invalid crc value [ 57.893105][ T9357] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 57.900726][ T9357] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 57.931558][ T6559] Bluetooth: hci5: command tx timeout [ 57.954938][ T6550] syz-executor: attempt to access beyond end of device [ 57.954938][ T6550] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 57.954991][ T6550] CPU: 0 UID: 0 PID: 6550 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 57.955001][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 57.955007][ T6550] Call trace: [ 57.955010][ T6550] show_stack+0x2c/0x3c (C) [ 57.955025][ T6550] __dump_stack+0x30/0x40 [ 57.955033][ T6550] dump_stack_lvl+0xd8/0x12c [ 57.955039][ T6550] dump_stack+0x1c/0x28 [ 57.955045][ T6550] f2fs_handle_critical_error+0x34c/0x4b8 [ 57.955054][ T6550] f2fs_stop_checkpoint+0x5c/0x70 [ 57.955060][ T6550] f2fs_write_end_io+0x768/0xa70 [ 57.955067][ T6550] bio_endio+0x858/0x894 [ 57.955073][ T6550] submit_bio_noacct+0xd64/0x186c [ 57.955079][ T6550] submit_bio+0x3b4/0x550 [ 57.955085][ T6550] f2fs_submit_write_bio+0x13c/0x324 [ 57.955091][ T6550] __submit_merged_bio+0x254/0x704 [ 57.955097][ T6550] __submit_merged_write_cond+0x23c/0x4ac [ 57.955103][ T6550] f2fs_write_data_pages+0x1d28/0x2634 [ 57.955109][ T6550] do_writepages+0x270/0x468 [ 57.955117][ T6550] filemap_fdatawrite+0x14c/0x1f4 [ 57.955121][ T6550] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 57.955127][ T6550] f2fs_write_checkpoint+0x70c/0x1c30 [ 57.955132][ T6550] kill_f2fs_super+0x228/0x594 [ 57.955138][ T6550] deactivate_locked_super+0xc4/0x12c [ 57.955145][ T6550] deactivate_super+0xe0/0x100 [ 57.955151][ T6550] cleanup_mnt+0x31c/0x3ac [ 57.955157][ T6550] __cleanup_mnt+0x20/0x30 [ 57.955163][ T6550] task_work_run+0x1dc/0x260 [ 57.955169][ T6550] exit_to_user_mode_loop+0xfc/0x178 [ 57.955180][ T6550] el0_svc+0x170/0x254 [ 57.955190][ T6550] el0t_64_sync_handler+0x84/0x12c [ 57.955198][ T6550] el0t_64_sync+0x198/0x19c [ 57.955206][ T6550] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 58.001975][ T9367] loop2: detected capacity change from 0 to 32768 [ 58.020851][ T9367] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.039831][ T9367] XFS (loop2): Ending clean mount [ 58.044706][ T9367] XFS (loop2): Quotacheck needed: Please wait. [ 58.069675][ T9367] XFS (loop2): Quotacheck: Done. [ 58.135032][ T6554] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.278318][ T9383] loop0: detected capacity change from 0 to 32768 [ 58.292724][ T9383] JBD2: Ignoring recovery information on journal [ 58.313557][ T9383] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 58.395201][ T6549] ocfs2: Unmounting device (7,0) on (node local) [ 58.421104][ T9406] loop4: detected capacity change from 0 to 32768 [ 58.432823][ T9406] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.437262][ T9409] loop2: detected capacity change from 0 to 4096 [ 58.462756][ T9406] XFS (loop4): Ending clean mount [ 58.464765][ T9406] XFS (loop4): Quotacheck needed: Please wait. [ 58.493894][ T9406] XFS (loop4): Quotacheck: Done. [ 58.529819][ T6550] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 58.697864][ T9429] loop4: detected capacity change from 0 to 32768 [ 58.706258][ T9429] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 58.720776][ T9429] XFS (loop4): Ending clean mount [ 58.723096][ T9429] XFS (loop4): Quotacheck needed: Please wait. [ 58.738481][ T9429] XFS (loop4): Quotacheck: Done. [ 58.775023][ T6550] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 58.799440][ T9455] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1024'. [ 58.859380][ T9457] loop2: detected capacity change from 0 to 4096 [ 58.882639][ T9457] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 58.882676][ T9457] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 58.916269][ T9457] ntfs3(loop2): ino=1e, "file1" attr_set_size [ 58.930927][ T2160] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22. [ 58.941174][ T6554] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 58.941236][ T6554] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 58.941486][ T6554] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 58.946446][ T42] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22. [ 59.041709][ T9473] loop4: detected capacity change from 0 to 32768 [ 59.098259][ T9481] loop0: detected capacity change from 0 to 64 [ 59.117000][ T9481] syz.0.1037: attempt to access beyond end of device [ 59.117000][ T9481] loop0: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 59.119736][ T9481] Buffer I/O error on dev loop0, logical block 134217734, async page read [ 59.193785][ T9487] loop0: detected capacity change from 0 to 8 [ 59.200468][ T9487] SQUASHFS error: xz decompression failed, data probably corrupt [ 59.200513][ T9487] SQUASHFS error: Failed to read block 0x108: -5 [ 59.200521][ T9487] SQUASHFS error: Unable to read metadata cache entry [106] [ 59.200528][ T9487] SQUASHFS error: Unable to read inode 0x11f [ 59.213513][ T9487] binder: 9486:9487 IncRefs 0 refcount change on invalid ref 0 ret -22 [ 59.213545][ T9487] binder: 9486:9487 unknown command 2737281151 [ 59.213841][ T9487] binder: 9486:9487 ioctl c0306201 20000080 returned -22 [ 59.244886][ T9493] loop2: detected capacity change from 0 to 256 [ 59.407545][ T9505] nftables ruleset with unbound set [ 59.502011][ T9512] loop4: detected capacity change from 0 to 256 [ 59.513912][ T9512] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 59.549810][ T9516] loop2: detected capacity change from 0 to 128 [ 59.554660][ T9516] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 59.571742][ T6554] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 59.673981][ T9520] loop4: detected capacity change from 0 to 32768 [ 59.676715][ T9520] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1054 (9520) [ 59.689318][ T9520] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 59.689370][ T9520] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm [ 59.748508][ T9520] BTRFS info (device loop4): allowing degraded mounts [ 59.748538][ T9520] BTRFS info (device loop4): enabling ssd optimizations [ 59.748637][ T9520] BTRFS info (device loop4): enabling free space tree [ 59.748648][ T9520] BTRFS info (device loop4): force zlib compression, level 3 [ 59.806229][ T9520] BTRFS info (device loop4): setting compat-ro feature flag for VERITY (0x4) [ 59.847508][ T6550] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 59.871109][ T9559] loop2: detected capacity change from 0 to 256 [ 59.890040][ T9559] FAT-fs (loop2): Directory bread(block 64) failed [ 59.890079][ T9559] FAT-fs (loop2): Directory bread(block 65) failed [ 59.891536][ T9559] FAT-fs (loop2): Directory bread(block 66) failed [ 59.891574][ T9559] FAT-fs (loop2): Directory bread(block 67) failed [ 59.891634][ T9559] FAT-fs (loop2): Directory bread(block 68) failed [ 59.891652][ T9559] FAT-fs (loop2): Directory bread(block 69) failed [ 59.891679][ T9559] FAT-fs (loop2): Directory bread(block 70) failed [ 59.891693][ T9559] FAT-fs (loop2): Directory bread(block 71) failed [ 59.891717][ T9559] FAT-fs (loop2): Directory bread(block 72) failed [ 59.891729][ T9559] FAT-fs (loop2): Directory bread(block 73) failed [ 60.012672][ T6559] Bluetooth: hci5: command tx timeout [ 60.066459][ T9577] overlay: Unknown parameter '\' [ 60.157477][ T9587] loop2: detected capacity change from 0 to 4096 [ 60.159164][ T9587] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 60.192063][ T9587] ntfs3(loop2): ino=5, "/" ntfs_readdir [ 60.242194][ T9591] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1082'. [ 60.289375][ T9589] loop4: detected capacity change from 0 to 40427 [ 60.293439][ T9589] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 60.294664][ T9589] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 60.299072][ T9589] F2FS-fs (loop4): invalid crc value [ 60.319436][ T9589] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 60.328218][ T9589] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 60.328256][ T9589] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 60.383415][ T6550] syz-executor: attempt to access beyond end of device [ 60.383415][ T6550] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 60.383472][ T6550] CPU: 1 UID: 0 PID: 6550 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 60.383482][ T6550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 60.383487][ T6550] Call trace: [ 60.383491][ T6550] show_stack+0x2c/0x3c (C) [ 60.383505][ T6550] __dump_stack+0x30/0x40 [ 60.383512][ T6550] dump_stack_lvl+0xd8/0x12c [ 60.383518][ T6550] dump_stack+0x1c/0x28 [ 60.383523][ T6550] f2fs_handle_critical_error+0x34c/0x4b8 [ 60.383532][ T6550] f2fs_stop_checkpoint+0x5c/0x70 [ 60.383538][ T6550] f2fs_write_end_io+0x768/0xa70 [ 60.383545][ T6550] bio_endio+0x858/0x894 [ 60.383551][ T6550] submit_bio_noacct+0xd64/0x186c [ 60.383557][ T6550] submit_bio+0x3b4/0x550 [ 60.383563][ T6550] f2fs_submit_write_bio+0x13c/0x324 [ 60.383569][ T6550] __submit_merged_bio+0x254/0x704 [ 60.383575][ T6550] __submit_merged_write_cond+0x23c/0x4ac [ 60.383581][ T6550] f2fs_write_data_pages+0x1d28/0x2634 [ 60.383587][ T6550] do_writepages+0x270/0x468 [ 60.383595][ T6550] filemap_fdatawrite+0x14c/0x1f4 [ 60.383600][ T6550] f2fs_sync_dirty_inodes+0x2b8/0x788 [ 60.383611][ T6550] f2fs_write_checkpoint+0x70c/0x1c30 [ 60.383618][ T6550] kill_f2fs_super+0x228/0x594 [ 60.383627][ T6550] deactivate_locked_super+0xc4/0x12c [ 60.383636][ T6550] deactivate_super+0xe0/0x100 [ 60.383641][ T6550] cleanup_mnt+0x31c/0x3ac [ 60.383648][ T6550] __cleanup_mnt+0x20/0x30 [ 60.383654][ T6550] task_work_run+0x1dc/0x260 [ 60.383661][ T6550] exit_to_user_mode_loop+0xfc/0x178 [ 60.383667][ T6550] el0_svc+0x170/0x254 [ 60.383675][ T6550] el0t_64_sync_handler+0x84/0x12c [ 60.383681][ T6550] el0t_64_sync+0x198/0x19c [ 60.383688][ T6550] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 60.428590][ T9608] syz.2.1088 (9608): /proc/9607/oom_adj is deprecated, please use /proc/9607/oom_score_adj instead. [ 60.685886][ T9610] loop2: detected capacity change from 0 to 40427 [ 60.687165][ T9610] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 60.687181][ T9610] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 60.690329][ T9610] F2FS-fs (loop2): invalid crc value [ 60.723969][ T9623] loop4: detected capacity change from 0 to 512 [ 60.726487][ T9610] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 60.735853][ T9610] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 60.735898][ T9610] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 60.761059][ T9623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 60.803530][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.840171][ T9628] loop4: detected capacity change from 0 to 512 [ 60.840566][ T9628] EXT4-fs: Ignoring removed oldalloc option [ 60.849514][ T9628] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.1095: Parent and EA inode have the same ino 15 [ 60.851184][ T9628] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.1095: Parent and EA inode have the same ino 15 [ 60.854344][ T9628] EXT4-fs (loop4): 1 orphan inode deleted [ 60.854821][ T9628] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.872515][ T9628] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.1095: unexpected EA_INODE flag [ 60.880044][ T6550] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.026097][ T9604] loop0: detected capacity change from 0 to 262144 [ 61.028075][ T9604] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1085 (9604) [ 61.031190][ T9604] BTRFS info (device loop0): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 61.031418][ T9604] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 61.068630][ T9604] BTRFS info (device loop0): enabling ssd optimizations [ 61.068666][ T9604] BTRFS info (device loop0): turning on async discard [ 61.068677][ T9604] BTRFS info (device loop0): enabling free space tree [ 61.116790][ T6549] BTRFS info (device loop0): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 61.238644][ T9654] loop4: detected capacity change from 0 to 32768 [ 61.270172][ T9654] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 61.356635][ T9667] loop2: detected capacity change from 0 to 32768 [ 61.360937][ T9654] XFS (loop4): Ending clean mount [ 61.363694][ T9654] XFS (loop4): Quotacheck needed: Please wait. [ 61.377781][ T9667] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 61.382042][ T9687] loop0: detected capacity change from 0 to 512 [ 61.396629][ T9654] XFS (loop4): Quotacheck: Done. [ 61.398352][ T9687] EXT4-fs (loop0): orphan cleanup on readonly fs [ 61.400526][ T9687] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.1108: corrupted inode contents [ 61.406666][ T9687] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 61.409655][ T9687] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.1108: corrupted inode contents [ 61.410018][ T9687] EXT4-fs error (device loop0): ext4_evict_inode:302: inode #15: comm syz.0.1108: mark_inode_dirty error [ 61.410439][ T9687] EXT4-fs (loop0): 1 orphan inode deleted [ 61.410902][ T9687] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 61.426025][ T9667] XFS (loop2): Ending clean mount [ 61.426803][ T9667] XFS (loop2): Quotacheck needed: Please wait. [ 61.454775][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.467328][ T9667] XFS (loop2): Quotacheck: Done. [ 61.478801][ T6550] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 61.508282][ T6554] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 61.578285][ T9697] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1110'. [ 61.687783][ T9714] loop2: detected capacity change from 0 to 256 [ 61.709730][ T9714] FAT-fs (loop2): Directory bread(block 64) failed [ 61.709774][ T9714] FAT-fs (loop2): Directory bread(block 65) failed [ 61.709799][ T9714] FAT-fs (loop2): Directory bread(block 66) failed [ 61.709812][ T9714] FAT-fs (loop2): Directory bread(block 67) failed [ 61.709835][ T9714] FAT-fs (loop2): Directory bread(block 68) failed [ 61.709845][ T9714] FAT-fs (loop2): Directory bread(block 69) failed [ 61.709864][ T9714] FAT-fs (loop2): Directory bread(block 70) failed [ 61.709874][ T9714] FAT-fs (loop2): Directory bread(block 71) failed [ 61.709893][ T9714] FAT-fs (loop2): Directory bread(block 72) failed [ 61.709902][ T9714] FAT-fs (loop2): Directory bread(block 73) failed [ 61.822511][ T9725] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1125'. [ 62.050801][ T9746] loop0: detected capacity change from 0 to 32768 [ 62.068997][ T9746] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 62.090816][ T9746] XFS (loop0): Ending clean mount [ 62.100980][ T6559] Bluetooth: hci5: command tx timeout [ 62.117235][ T9747] loop4: detected capacity change from 0 to 40427 [ 62.125335][ T6549] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 62.134997][ T9747] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 62.135036][ T9747] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 62.142945][ T9747] F2FS-fs (loop4): invalid crc value [ 62.195354][ T9747] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 62.201745][ T9747] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 62.201776][ T9747] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 62.206722][ T9751] loop2: detected capacity change from 0 to 32768 [ 62.234558][ T9751] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 62.245274][ T9751] XFS (loop2): Ending clean mount [ 62.309032][ T6554] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 62.400132][ T9789] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«= [ 62.402642][ T9789] [U] J"—E:ÀÆ" [ 62.436491][ T9791] loop4: detected capacity change from 0 to 4096 [ 62.437834][ T9791] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 62.460175][ T9791] ntfs3(loop4): ino=1a, mi_enum_attr [ 62.460213][ T9791] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 62.462734][ T9791] ntfs3(loop4): ino=1a, mi_enum_attr [ 62.462771][ T9791] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 62.490747][ T9791] ntfs3(loop4): ino=1b, mi_enum_attr [ 62.490788][ T9791] ntfs3(loop4): ino=1b, mi_enum_attr [ 62.499760][ T9801] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1153'. [ 62.519692][ T9803] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1155'. [ 62.528763][ T9805] vivid-000: disconnect [ 62.529053][ T9804] vivid-000: reconnect [ 62.645438][ T31] audit: type=1400 audit(62.630:13): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9820 comm="syz.4.1163" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.650055][ T31] audit: type=1400 audit(62.630:14): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=6550 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.657085][ T31] audit: type=1400 audit(62.640:15): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=6549 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.660533][ T31] audit: type=1400 audit(62.640:16): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=6549 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.674735][ T31] audit: type=1400 audit(62.660:17): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9824 comm="syz-executor" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.686519][ T31] audit: type=1400 audit(62.670:18): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9824 comm="syz.4.1165" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.701805][ T31] audit: type=1400 audit(62.690:19): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=23 comm="ksoftirqd/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.705309][ T31] audit: type=1400 audit(62.690:20): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=2160 comm="kworker/u8:6" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.733341][ T31] audit: type=1400 audit(62.720:21): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9818 comm="syz.2.1162" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.736745][ T31] audit: type=1400 audit(62.720:22): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=9818 comm="syz.2.1162" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 62.946622][ T9843] loop4: detected capacity change from 0 to 32768 [ 62.957549][ T9843] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1173 (9843) [ 62.962133][ T9843] BTRFS info (device loop4): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 62.962202][ T9843] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 62.989731][ T9843] BTRFS info (device loop4): enabling ssd optimizations [ 62.989765][ T9843] BTRFS info (device loop4): turning on async discard [ 62.989774][ T9843] BTRFS info (device loop4): enabling free space tree [ 62.989783][ T9843] BTRFS info (device loop4): use lzo compression, level 1 [ 63.009753][ T6550] BTRFS info (device loop4): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 64.494196][ T2453] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.494252][ T2453] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.502516][ T11] cfg80211: failed to load regulatory.db [ 69.372197][ T31] kauditd_printk_skb: 16 callbacks suppressed [ 69.372235][ T31] audit: type=1400 audit(69.360:39): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 69.533834][ T31] audit: type=1400 audit(69.520:40): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 76.442571][ T31] audit: type=1400 audit(76.430:41): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 76.652478][ T31] audit: type=1400 audit(76.640:42): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 90.270639][ T31] audit: type=1400 audit(90.250:43): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 90.734593][ T31] audit: type=1400 audit(90.720:44): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 118.253215][ T31] audit: type=1400 audit(118.240:45): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 119.193888][ T31] audit: type=1400 audit(119.180:46): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 125.931774][ T2453] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.932822][ T2453] ieee802154 phy1 wpan1: encryption failed: -22 [ 153.614734][ T6563] Bluetooth: hci0: command 0x0406 tx timeout [ 153.615214][ T6563] Bluetooth: hci2: command 0x0406 tx timeout [ 153.615249][ T6563] Bluetooth: hci3: command 0x0406 tx timeout [ 153.617118][ T6147] Bluetooth: hci1: command 0x0406 tx timeout [ 174.092045][ T6559] Bluetooth: hci4: command 0x0406 tx timeout [ 174.494498][ T31] audit: type=1400 audit(174.480:47): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=0 comm="swapper/1" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 177.133597][ T31] audit: type=1400 audit(177.120:48): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject=")" object="_" requested=w pid=1855 comm="kworker/1:2" saddr=10.128.0.169 src=30028 daddr=10.128.0.151 dest=37016 netif=enp0s0 [ 184.331458][ T6559] Bluetooth: hci5: command 0x0406 tx timeout [ 187.372922][ T2453] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.372971][ T2453] ieee802154 phy1 wpan1: encryption failed: -22 [ 188.651385][ T32 ** replaying previous printk message ** [ 188.651385][ T32] INFO: task syz-executor:6561 blocked for more than 143 seconds. [ 188.651424][ T32] Not tainted syzkaller #0 [ 188.651444][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.651454][ T32] task:syz-executor state:D stack:0 pid:6561 tgid:6561 ppid:1 task_flags:0x400140 flags:0x00000011 [ 188.651471][ T32] Call trace: [ 188.651475][ T32] __switch_to+0x418/0x87c (T) [ 188.651492][ T32] __schedule+0x13b0/0x2864 [ 188.651499][ T32] schedule+0xb4/0x230 [ 188.651505][ T32] io_schedule+0x84/0xf0 [ 188.651511][ T32] folio_wait_bit_common+0x56c/0x9e0 [ 188.651519][ T32] __filemap_get_folio+0x1ec/0xc38 [ 188.651525][ T32] truncate_inode_pages_range+0x38c/0xe18 [ 188.651532][ T32] truncate_inode_pages_final+0x8c/0xbc [ 188.651539][ T32] evict+0x420/0x928 [ 188.651545][ T32] evict_inodes+0x638/0x6d0 [ 188.651551][ T32] generic_shutdown_super+0xa0/0x2b8 [ 188.651559][ T32] kill_block_super+0x44/0x90 [ 188.651566][ T32] deactivate_locked_super+0xc4/0x12c [ 188.651572][ T32] deactivate_super+0xe0/0x100 [ 188.651579][ T32] cleanup_mnt+0x31c/0x3ac [ 188.651586][ T32] __cleanup_mnt+0x20/0x30 [ 188.651593][ T32] task_work_run+0x1dc/0x260 [ 188.651604][ T32] exit_to_user_mode_loop+0xfc/0x178 [ 188.651613][ T32] el0_svc+0x170/0x254 [ 188.651620][ T32] el0t_64_sync_handler+0x84/0x12c [ 188.651628][ T32] el0t_64_sync+0x198/0x19c [ 188.651652][ T32] [ 188.651652][ T32] Showing all locks held in the system: [ 188.651657][ T32] 1 lock held by khungtaskd/32: [ 188.651662][ T32] #0: ffff80008f76b660 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 188.651683][ T32] 3 locks held by kworker/u8:3/42: [ 188.651688][ T32] 2 locks held by pr/ttyAMA-1/43: [ 188.651700][ T32] 2 locks held by getty/6335: [ 188.651703][ T32] #0: ffff0000ce89a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 188.651721][ T32] #1: ffff80009bb2b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x34c/0xfa4 [ 188.651741][ T32] 1 lock held by syz-executor/6561: [ 188.651745][ T32] #0: ffff0000f5f620e0 (&type->s_umount_key#92){++++}-{4:4}, at: deactivate_super+0xd8/0x100 [ 188.651765][ T32] 1 lock held by syz.3.779/8735: [ 188.651769][ T32] #0: ffff0000f5f620e0 (&type->s_umount_key#92){++++}-{4:4}, at: super_lock+0x240/0x32c [ 188.651788][ T32] 1 lock held by syz.5.979/9333: [ 188.651791][ T32] #0: ffff0000da79a420 (sb_writers#4){.+.+}-{0:0}, at: direct_splice_actor+0x54/0x14c [ 188.651811][ T32] [ 188.651813][ T32] ============================================= [ 188.651813][ T32] [ 188.651818][ T32] Kernel panic - not syncing: hung_task: blocked tasks [ 188.690863][ T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 188.692068][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 188.693543][ T32] Call trace: [ 188.694061][ T32] show_stack+0x2c/0x3c (C) [ 188.694751][ T32] __dump_stack+0x30/0x40 [ 188.695451][ T32] dump_stack_lvl+0x30/0x12c [ 188.696135][ T32] dump_stack+0x1c/0x28 [ 188.696752][ T32] vpanic+0x22c/0x6c0 [ 188.697327][ T32] vpanic+0x0/0x6c0 [ 188.697928][ T32] hung_task_panic+0x0/0x2c [ 188.698576][ T32] kthread+0x5fc/0x75c [ 188.699189][ T32] ret_from_fork+0x10/0x20 [ 188.699860][ T32] SMP: stopping secondary CPUs [ 188.700554][ T32] Kernel Offset: disabled [ 188.701165][ T32] CPU features: 0x100000,0001e000,42702281,5427fea7 [ 188.702014][ T32] Memory Limit: none [ 188.996130][ T32] Rebooting in 86400 seconds..