last executing test programs: 52.023041573s ago: executing program 4 (id=284): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0xaa, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x2012, r0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0x19) 51.928161459s ago: executing program 4 (id=286): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000480)={{{@in=@multicast2, @in=@private=0xa010100, 0x4e23, 0x5, 0x4e22, 0x5, 0xa, 0x80, 0x20, 0xc}, {0x1000, 0x70d09ffb, 0x8, 0x4, 0x7fffffffffffffff, 0x6, 0x7e9, 0x1}, {0x9, 0xff, 0x1, 0x7}, 0x8, 0x0, 0x0, 0x0, 0x1, 0x1}, {{@in6=@remote, 0x4d2, 0x6c}, 0xa, @in6=@mcast1, 0x3507, 0x1, 0x0, 0x1, 0x5, 0x2, 0x1}}, 0xe8) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 51.749217709s ago: executing program 4 (id=289): ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000400000/0x1000)=nil, 0x20400000}, 0x1}) r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x0, 0x2, 0x2, {0x5, @raw_data="3b6a92045aeb5cb9c572f96b6cca5977d2c236513779304cddc408692f01fecec09ff2c57989b1958e0f47d428dac50f593e4bcd50117eeb26775213495b9ff0118d2e361f65008f7b7b6f3de4f034df68f189e3befbb968d10dae4cbe9e852eab25bcf0c3cfcb495ef44e3f49da413d467328295e4dac2a7a98d251739f5d2ab475bdaa4bf564c2028536e7f6e1222020384c3e41fa10b984d2bc3c99c3eb962b54d7d006e19bee718410fee1e6fd8dab3625e5cbd0fe327f9c534d9a591557a01b3dcf84b1a4cc"}, 0x169b1b21}) ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9, "a000"}, 0x0, 0x2, {}, 0x20800}) 51.500444964s ago: executing program 4 (id=292): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@nojournal_checksum}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x30024, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c}) 51.117835387s ago: executing program 4 (id=299): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000340)={0x200000, 0x200000, 0x0, 0x0, 0x5989}) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@quota}, {@debug}]}, 0x1, 0x246, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x42, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x19, 0x5, 0xb, 0x6, 0xfffffff0, 0x9}) 48.903928938s ago: executing program 4 (id=323): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000002d00)=[{{&(0x7f0000001800)={0xa, 0x4e22, 0x1, @private2, 0x10001}, 0x1c, &(0x7f00000010c0)=[{&(0x7f00000011c0)="e6", 0x1}], 0x1}}, {{&(0x7f0000001100)={0xa, 0x4e20, 0x7fff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xfffffff7}, 0x1c, &(0x7f00000019c0)=[{&(0x7f0000001140)="a5", 0x1}], 0x1}}], 0x2, 0x0) close(0x4) 48.487227843s ago: executing program 32 (id=323): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000002d00)=[{{&(0x7f0000001800)={0xa, 0x4e22, 0x1, @private2, 0x10001}, 0x1c, &(0x7f00000010c0)=[{&(0x7f00000011c0)="e6", 0x1}], 0x1}}, {{&(0x7f0000001100)={0xa, 0x4e20, 0x7fff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xfffffff7}, 0x1c, &(0x7f00000019c0)=[{&(0x7f0000001140)="a5", 0x1}], 0x1}}], 0x2, 0x0) close(0x4) 9.413859241s ago: executing program 2 (id=806): syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$eJzs3V9oXNl9B/DfmStZY22aaLOJN2mz6UBKYpTa+F9sBZcgZxW1AccbIit0n6LRHzvDyiMjyY03bYPakhb6ErovpS9FNF1ayEPpQ7ePVZotJJRCCXlIHwqCJss+9EEPgdKWjcK9c0Ya2fJau15ZsvfzMePvnTu/OzrnntGdO6AzNwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiM9+7tKp0+mgWwEAPExXJr506myKgYNuBwDw8Fz1+R8AAAAAAAAAAAAAAA67FEUcixSDr2ykqep+R/1yq33r9uTY+O6bHU2RohZFVV/e6qfPnD33qfMXRrr55tu/0z4cz01cvdR4duHGzcW5paW52cZkuzWzMDu352d40O3vNFztgMaNF27NXru21Dhz8uyOh28PvTbwxLGhixdOnB/p1k6OjY9P9NT09b/tn36Xe83wOBJFNCPFG0Ovp2ZE1OLB98V9Xjv77WjVieGqE5Nj41VH5lvN9nL5YKrlqlpEo2ej0e4+eghj8UBGI1bK5pcNHi67N3Gzudicnp9rfLG5uNxabi20U63T2rI/jajFSIpYjYj1XSb59kcRH40UL53aSNMRUXT3wyericH3b09tH/q4B2U7G/0Rq7VHYMwOsYEo4kqk+Nmrx2Om3Gf5Fh+P+EKZr0S8XOZnIlL5wjgX8VOTxR8bfVHEv0WKhbSRZqvjQfe4cvnLjc+3ry301HaPK4/8+8PDdMiPTfUoYro64m+kt3+yAwAAAAAAAAAAAAAAAMA77WgU8e1I8UfP/E41rziqeenvuzjynud/s3fO+NP3eZ6y9mRErNT2Nie3P08dTrXy3z50jD2pRxHfyPP//uCgGwMAAAAAAAAAAAAAAAAAAPCuVsTzkeIrJ46n1aiu/XskqmuKt9rXG1eb0/Odq8J2r/3bvWb65ubmZiN1cjTnVM6VnKs513Ku54xa3j7naM6pnCs5V3Ou5VzPGUXePudozqmcKzlXc67lXM8ZfXn7nKM5p3Ku5FzNuZZzPWcckmv3AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8TmpRxM8jxbe+tpEiRcRoxFR0cm3goFsHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJTqqYiTkWLt+Xp1f7UWcTUifr65udm9RcRGmQ/qoPsKAAAAAAAAAAAAAAAAAAAAh1Yq4mOR4qn/20iNiLg99NrAE8eGLl44cX6kiCJSWdJb/9zE1UuNZxdu3FycW1qam21MtlszC7Nze/1x9cut9q3bk2Pj+9KZ+zq6z+0/Wn924eaLi63rX13e9fHB+qXppeXF5szuD8fRqEVM9a4Zrho8OTZeNXq+1WxXm6baPRpYixjda2cAAAAAAAAAAAAAAAAAAAA4NAZTEZ+LFD/5z3OpO2+8rzPn/5c694qt2pd/b/u7AObvyK7e7w/Yy3Laa0OHq4n3jcmx8fGJntV9/XeXlm1KqYinI8UnXvpQNR8+xeCuc+PLuveWdTfO5bqhXynrVnZU1Ycnx8YbVxbaJy7Nzy/MNJeb0/NzjYmbzZn8xQEre+0GAAAAAAAAAAAAAAAAAAAA7GYwFfGjSPHff/vvqXvd+Tz/v69zr2f+/29UU+gr9bQzt1Rz+99bze3vLL/v4sjgR5+51/r9mP9ftimlIr4ZKc7+6EPV9fS78/+n7qgt6/4kUrz+zEdyXe1IWdfsdqfzjNda83Onytq/jBS/+ka3Nqra67n2qe3a02Xt0Ujx5xs7a7+aaz+wXXumrD0eKb73X7vXfnC79mxZ+5NI8Y9/0+jWDpa1v5trj23XnpxZmJ+9324tx/87keKvr/xW6vb5nuPf8/0PK3fklrvG/M2X36nxH+pZt5LH9Y/z+DfvM/7nI8V36h/JdZ19P50ff7L6f3v8PxEp/uNfd9Zey7Xv3649vdduHbRy/L8dKb77Fz/e6nMe//74+/+N7RHfOf6/3Lczt14lBzT+T/asG8rtmnnru+NdZ+nFr7/QnJ+fW7RgwYKFrYWDPjLxMJTv/38aKf7/WJG65zH5/f89nXvb53//843t9/+Ld+SWA3r/f3/Puov5rKW/L6K+fONm/9MR9aUXv36idaN5fe76XPvM6VOf/vT506dOn+8/0j25217a8757HJTj/4NI8cO/++HW55it87/K7uf/g3fklgMa/6d6+7TjvGbPu+JdqRz/v4oUT372x1ufN3eO/87z/+7n/+Mf25lbv38HNP4f6Fk3lNvVeov7AgAAAAAAAAAA4FEymIr4s0jx23/466k7h2gvf/83e0duOaC//zrWs272Ic1r2PNOBgA4RMrzvw9Gin/a/P7WXO6d53/xa93a3vO/ezkM1/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBHXYoifj9SDL6ykdYGyvsd9cut9q3bk2Pju292NEWKWhRVfXmrnz5z9tynzl8Y6eabb/9O+3A8N3H1UuPZhRs3F+eWluZmG5Pt1szC7Nyen+FBt7/TcLUDGjdeuDV77dpS48zJszsevj302sATx4YuXjhxfqRTO9CYHBsfn+ip6et/2z/9Luke649EEd+PFG8MvZ6+OxBRiwffF/d57ey3o1UnhqtOTI6NVx2ZbzXby+WDqZarahGNno1Gu/soj9t+jsUDGY1YKZtfNni47N7EzeZic3p+rvHF5uJya7m10E61TmvL/jSiFiMpYjUi1gfufrr+KOKbkeKlUxvpnwciiu5++OSViS+dOnv/9tT2oY97ULaz0R+xWnsExuwQG4gi/iFS/OzV4/G9gYi+6Nzi4xFfKPOViJfL/ExEKl8Y5yJ+usvriEdTXxRxLlIspI306kB5POgeVy5/ufH59rWFntruceWRf394mA75sakeRfygOuJvpH/xew0AAAAAAAAAAAAAAABwiBSxGim+cuJ4quYHb80pbrWvN642p+c70/q6c/+6c6Y3Nzc3G6mTozmncq7kXM25lnM9Z9Ty9jlHc07lXMm5mnMt53rOKPL2OUdzTuVcybmacy3nes7oy9vnHM05lXMl52rOtZzrOeOQzN0DAAAAAAAAAAAAAAAAAAAeL7Uoqqu4f+trG2lzoHN96ano5JrrgT72fhEAAP//gMd2Mw==") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.current\x00', 0x275a, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[], 0x50}}, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0xc0086c43, &(0x7f0000000080)=0x6ff) 9.080214321s ago: executing program 2 (id=812): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000000), 0xd) 8.901758942s ago: executing program 2 (id=814): r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c) recvmmsg$unix(r0, &(0x7f0000004180)=[{{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000004400)=""/249, 0xf9}], 0x1}}, {{&(0x7f0000001d40), 0x6e, &(0x7f00000021c0)=[{&(0x7f0000001dc0)=""/69, 0x45}, {0x0}, {0x0}], 0x3}}, {{&(0x7f0000002240)=@abs, 0x6e, &(0x7f00000025c0)=[{0x0}, {&(0x7f0000004600)=""/106, 0x6a}], 0x2}}], 0x3, 0x0, 0x0) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) 8.056351052s ago: executing program 2 (id=833): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="3400000015000100fdffffff0000000002380000", @ANYRES32=r1, @ANYBLOB="14000300766574e1300000000000000000"], 0x34}}, 0x0) 7.773679589s ago: executing program 2 (id=837): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) io_pgetevents(0x0, 0xfff, 0x0, 0x0, &(0x7f0000000140)={0x77359400}, 0x0) 7.690498854s ago: executing program 2 (id=839): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2102, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000500)=0x7) 2.36300173s ago: executing program 5 (id=884): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) write(r0, &(0x7f0000000080)="01010101", 0x4) read(r0, &(0x7f00000000c0)=""/4, 0x4) close(r0) 2.224951108s ago: executing program 5 (id=886): r0 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000) ioctl$DVB_DEMUX_DMX_SET_FILTER(r0, 0x403c6f2b, &(0x7f0000001e40)={0x6, {"2ac78e02ff04856af9fb71f0d3fe13be", "3dfab043e15fad27a639f105b5e9f977", "47eb0b1889b90f105d66b3e5a7c94742"}, 0x4, 0x4}) r1 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000) ioctl$DVB_DEMUX_DMX_SET_FILTER(r1, 0x403c6f2b, &(0x7f0000001e40)={0x6, {"2ac78e02ff04856af9fb71f0d3fe13be", "3dfab043e15fad27a639f105b5e9f977", "47eb0b7c4fb9191024da8887f94ba4fb"}, 0x4, 0x5}) ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f0000000080)={0x3, 0x1, 0x3, 0x3}) 1.984421972s ago: executing program 5 (id=887): pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r1 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe) setrlimit(0x7, &(0x7f0000000400)={0x0, 0x1}) keyctl$KEYCTL_WATCH_KEY(0x20, r1, r0, 0x0) keyctl$KEYCTL_WATCH_KEY(0x20, r1, r0, 0xffffffffffffffff) 1.761809936s ago: executing program 5 (id=890): unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000180)={0x1, 0x1, 0xc, 0x80000000, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x1e}, @rand_addr=0x64010102}, 0x10) 1.437189505s ago: executing program 1 (id=895): r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x1, 0x2100) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000003c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000200)={r1, r2, r3, 0x3, 0xfffffff7, 0x80000003, 0x0, 0x0, 0x5, 0xe, 0xc, 0x31e}) 1.35543505s ago: executing program 1 (id=896): r0 = syz_open_dev$sg(&(0x7f0000000280), 0xfa0, 0x40042) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000003200)='./file1\x00', 0x2204206, &(0x7f0000003240)=ANY=[], 0x1, 0x334, &(0x7f0000000880)="$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") r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x6, 0x11, r1, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000024c0)={0x53, 0xfffffffffffffffc, 0x6, 0x6c, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000240)="edea56458882", &(0x7f0000001480)=""/4096, 0x100000, 0x10002, 0xffffffffffffffff, 0x0}) 1.165809341s ago: executing program 1 (id=898): bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x2, 0x4, 0x8, 0xc}, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200) 1.122633464s ago: executing program 0 (id=900): socket$inet_udp(0x2, 0x2, 0x0) socket$packet(0x11, 0xa, 0x300) r0 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0x707b, 0x0, 0xc, 0x288}, &(0x7f00000001c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0xfffffffffffffff9, 0x0}) io_uring_enter(r0, 0x3516, 0xeb9, 0x4, 0x0, 0x0) 1.053508648s ago: executing program 0 (id=901): recvmmsg(0xffffffffffffffff, &(0x7f000000cec0)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000004200)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000006200)=""/4096, 0x1000}], 0x1}}], 0x2, 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001, 0x9}, 0x8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) 1.00172974s ago: executing program 3 (id=902): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x237a, 0x4) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0xb2, 0x4) sendmmsg$inet6(r0, &(0x7f0000000e00)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0xa, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000040)=[{{0x0, 0x2f, 0x0, 0x0, &(0x7f0000000140)=""/90, 0x5f}, 0x4}], 0x43, 0x12141, 0x0) 964.496963ms ago: executing program 3 (id=903): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./bus\x00', 0x3c9c9b, 0x0, 0x0, 0x0, &(0x7f0000000140)) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') unlinkat(r0, &(0x7f0000000040)='./bus\x00', 0x200) unlink(&(0x7f0000000000)='./file1\x00') 944.673944ms ago: executing program 0 (id=904): r0 = socket(0x2, 0x80805, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x98, 0x20, 0x8d, 0xd, 0x0, 0x2, 0x0, 0x7, 0x4, 0x0, 0x0, 0x2, 0x4}, 0xe) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000001c0)=0x5, 0x4) recvmmsg$unix(r0, &(0x7f0000006400)=[{{0x0, 0x0, 0x0}}], 0x1, 0x1, 0x0) 883.187638ms ago: executing program 3 (id=905): r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88) r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fcntl$setlease(r0, 0x400, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0xa0c02, 0x0) fcntl$setlease(r1, 0x400, 0x0) 882.869048ms ago: executing program 5 (id=906): socket$inet6_udplite(0xa, 0x2, 0x88) syz_open_dev$video4linux(&(0x7f0000000000), 0x5, 0x0) r0 = syz_io_uring_setup(0xa1, &(0x7f0000000640)={0x0, 0xe8ce, 0x0, 0x20, 0x40000333}, &(0x7f00000006c0)=0x0, &(0x7f00000020c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0) 821.826601ms ago: executing program 0 (id=907): r0 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0) wait4(0x0, 0x0, 0x40000000, 0x0) ptrace(0x10, r0) ptrace$peeksig(0x4209, r0, 0x0, 0x0) wait4(r0, 0x0, 0x20000000, 0x0) 821.472491ms ago: executing program 3 (id=908): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x200000, &(0x7f0000000000)={[{@nogrpid}, {@oldalloc}]}, 0xff, 0x58d, &(0x7f0000000240)="$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") r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x4000423) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x60000, 0x3) getdents(r1, &(0x7f0000000380)=""/4096, 0x1000) 811.571102ms ago: executing program 5 (id=909): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000003140)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x820, 0xc, @private1, 0x9}]}, &(0x7f0000003180)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000004c0)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000000)={r2, 0x5}, 0x8) 723.353707ms ago: executing program 0 (id=910): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1) sendmsg$key(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x2}, 0x10}}, 0x0) madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15) ioctl$TIOCSLCKTRMIOS(r0, 0x89f0, &(0x7f0000000180)) 566.899737ms ago: executing program 1 (id=911): r0 = syz_io_uring_setup(0x111, &(0x7f0000000140)={0x0, 0x0, 0x800, 0x3, 0x1}, &(0x7f0000000340)=0x0, &(0x7f0000000000)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) unshare(0x20000400) syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000001c0)='./file0/../file0\x00', 0x26, 0x80}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf) 500.73027ms ago: executing program 3 (id=912): syz_mount_image$hfs(&(0x7f0000000140), &(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2810880, &(0x7f0000000000)=ANY=[], 0x3, 0x2cc, &(0x7f0000002500)="$eJzs3U9rE08cx/HP7KZp+mt/ddVKQTxItehJ2oogXgpSfAxeFLVJoRha1Ar+A4tn8a73IvgAfBCeRPCsJ08+gN5WZrNJZpudpE1NNsH3C6rT7Pz5zu5md76BdAXgn3Vz7cfe1V/2x0ihQkk3pMBuOq+SpDOarzzd2tncqdeq3ToKpYqSHyMlLU1HnfWtWl5T2y5pkYrsbyXNuK9hMOI4jn8WHQSKVEn/D/M2BtJk+u4M3crjbDeUdosOomBmX/t6ptmi4wAAFMs07u9Bep+fSdfvQSAtprd99/7//f+C4z2eS9ovOoSCOff/JMuKjT2+J5JN7XwvSeHs9qCZJR51HLt4LKtxZmUWmCabVXYmi0kswdTGZr12ZX27Xg30Rqspp9qcpFVV05w11SPahZzhsso6fG9NH1/Nbxx4aTqZw4Sdw4on/tN5g/a7tw/DfDFfzV0T6YOqrfVfKW7vkah1pG5NtONf8nW3/ehO0qpRyzPLk8kgZ7M7tussQ19GonRPxaGyHxBE2TjLua3KOtCqMbtlW7z23jeWPUo5rVZ88aWt5myrT06r9tnsbzlo5p25bRb0W5+15qz/A7u3F9X5zszvJKmZnhnN+eTmhqWkZuS+tHsut8+gv/kgyz1PvW8g6a0e6Lpmnzx/8fB+vV573Fko+Tf9hYKNYTA9j17hZXkkwmgXmifBqMTTX8FeY4d70rYK5WPvuoqOVLlzpm6heek8RIfNi3TPQQdzdcJoaR90f53XwwwIw2YvHqaR/zn5ylKSENh/oi7r9LjXss3pcTknN5hsVfzP6cmkn8/7M6BpfwbXLefac+pduCxddH7vkXNFOiVNdZ3rODFr+qZ7fP4PAAAAAAAAAAAAAAAAAAAwbobxbQ1nOP6iDwAAAAAAAAAAAAAAAAAAAAAAffA//7eiAT7/N/M9gGM8/7fLA04A9PInAAD//1Xedjg=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.self_freezing\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x11) pwritev2(r1, &(0x7f0000000000)=[{&(0x7f0000000240)=';', 0x1}], 0x1, 0x800fff, 0xc, 0x4) ftruncate(r0, 0xc17a) 423.923835ms ago: executing program 0 (id=913): syz_emit_ethernet(0xbd, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaa"], 0x0) r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106a053103000000000001090224000100008000090400101c0300010009210000000122f80409058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) setsockopt$TIPC_DEST_DROPPABLE(0xffffffffffffffff, 0x10f, 0x81, &(0x7f0000000480), 0x4) 333.75003ms ago: executing program 1 (id=914): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) listen(r0, 0xfffffffc) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b45602067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1) 307.514162ms ago: executing program 1 (id=915): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x204010, &(0x7f0000000000), 0x6, 0x640, &(0x7f0000000b00)="$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") pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @auto="62ed992ee70e419c"}}) symlink(&(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 0s ago: executing program 3 (id=916): sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="20040000f303872429bd7000f8ffffff02000000020000003600000008000000020000007d0600000100000005000000d1c30000020000003c3b0c16040000000400000000800000020000007f0000000080000010000000ff0100007f00000008000000ffffffff0400000003000000030000000000000000000000018000002e2900001000000002000094890ef7ebc94edbe4ab3900ff030000000100000500000002000000cd224671df43ffff01800000fbffffff00020000080000000104000009000000ffffffff0b00000009000000000400000b00000007000000cc040000f500000000000000090000006d0e000003000000b4acffff0000000001040000d60600000900000000000000050000000000000004000000ab0000000500000001000000040000000f000000070000000400000009000000090000000f00000040000000c00000"], 0x420}, 0x1, 0x0, 0x0, 0x4001}, 0x24000000) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020d0000100000002f3144e8edffffff03000600ff18000002004909000100000000000000001e0e080012000200010000d200000000000030006c540203009f7eae02000000adb20200000000f52c000000cdff00000001020014bb000001000000002300001300030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0) kernel console output (not intermixed with test programs): ce loop3): balance: invalid convert data profile dup [ 59.165929][ T4252] usb 3-1: config 0 interface 0 has no altsetting 0 [ 59.187145][ T4252] usb 3-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00 [ 59.203200][ T4252] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.238654][ T4252] usb 3-1: config 0 descriptor?? [ 59.344075][ T23] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 59.551887][ T21] usb 2-1: USB disconnect, device number 2 [ 59.609058][ T4358] netlink: 56 bytes leftover after parsing attributes in process `syz.0.12'. [ 59.628247][ T4358] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12'. [ 59.748715][ T4252] lenovo 0003:17EF:60A3.0001: hidraw0: USB HID v0.00 Device [HID 17ef:60a3] on usb-dummy_hcd.2-1/input0 [ 59.779769][ T4364] loop0: detected capacity change from 0 to 16 [ 59.817319][ T4340] loop4: detected capacity change from 0 to 40427 [ 59.825673][ T4252] Bluetooth: hci2: command 0x0419 tx timeout [ 59.838793][ T4260] Bluetooth: hci4: command 0x0419 tx timeout [ 59.838810][ T4252] Bluetooth: hci0: command 0x0419 tx timeout [ 59.847160][ T4260] Bluetooth: hci1: command 0x0419 tx timeout [ 59.852166][ T4364] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 59.878640][ T4364] erofs: (device loop0): mounted with root inode @ nid 36. [ 59.903262][ T4252] Bluetooth: hci3: command 0x0419 tx timeout [ 59.941474][ T4252] usb 3-1: USB disconnect, device number 2 [ 59.942275][ T4340] F2FS-fs (loop4): Found nat_bits in checkpoint [ 60.081064][ T4340] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 60.228309][ T4374] fido_id[4374]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 60.334634][ T4384] loop6: detected capacity change from 0 to 524288000 [ 60.395970][ T4188] attempt to access beyond end of device [ 60.395970][ T4188] loop4: rw=2049, want=45112, limit=40427 [ 60.415198][ T4386] loop_set_status: loop6 ( 6tPΪŔA8*V^3c) has still dirty pages (nrpages=1) [ 60.594304][ T4390] loop0: detected capacity change from 0 to 64 [ 60.645832][ T4392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.26'. [ 60.791056][ T4390] hfs: request for non-existent node 24 in B*Tree [ 60.807523][ T4390] hfs: request for non-existent node 24 in B*Tree [ 60.852313][ T4396] netlink: 312 bytes leftover after parsing attributes in process `syz.2.28'. [ 61.158673][ T4385] loop3: detected capacity change from 0 to 40427 [ 61.210520][ T4412] Zero length message leads to an empty skb [ 61.235881][ T4385] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x1ffff [ 61.284936][ T4385] F2FS-fs (loop3): invalid crc value [ 61.314817][ T4385] F2FS-fs (loop3): Found nat_bits in checkpoint [ 61.503002][ T4385] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 61.631513][ T4437] loop2: detected capacity change from 0 to 64 [ 61.761831][ T4443] loop1: detected capacity change from 0 to 256 [ 61.771350][ T4191] attempt to access beyond end of device [ 61.771350][ T4191] loop3: rw=2049, want=45112, limit=40427 [ 62.069473][ T4451] EXT4-fs (loop0): orphan cleanup on readonly fs [ 62.140258][ T4451] EXT4-fs warning (device loop0): ext4_xattr_inode_get:506: inode #11: comm syz.0.54: EA inode hash validation failed [ 62.170785][ T4460] capability: warning: `syz.2.57' uses 32-bit capabilities (legacy support in use) [ 62.202122][ T4463] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 62.202338][ T4451] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2807: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 62.265097][ T4451] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:984: inode #11: comm syz.0.54: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 62.292514][ T4451] EXT4-fs (loop0): Remounting filesystem read-only [ 62.304357][ T4451] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1178: inode #11: comm syz.0.54: ea_inode dec ref err=-117 [ 62.346454][ T4451] EXT4-fs (loop0): 1 orphan inode deleted [ 62.363040][ T4451] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000005c,nouid32,errors=remount-ro,acl,init_itable=0x0000000000008d55,. Quota mode: none. [ 62.509806][ T4474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.50'. [ 62.524535][ T4474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.50'. [ 62.562886][ T4472] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled [ 62.611568][ T4472] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 62.705583][ T4472] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,abort,noblock_validity,max_batch_time=0x0000000000000003,data=ordered,mblk_io_submit,usrquota,nodioread_nolock,nouid32,bsddf,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 62.778011][ T4482] set_capacity_and_notify: 3 callbacks suppressed [ 62.778025][ T4482] loop0: detected capacity change from 0 to 64 [ 63.028837][ T4486] loop4: detected capacity change from 0 to 512 [ 63.167453][ T4486] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.66: inode has both inline data and extents flags [ 63.320800][ T4486] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.66: couldn't read orphan inode 15 (err -117) [ 63.347031][ T4503] loop1: detected capacity change from 0 to 512 [ 63.409974][ T4486] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 63.454240][ T4503] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 63.509837][ T4497] loop3: detected capacity change from 0 to 40427 [ 63.531193][ T4503] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 63.571361][ T4503] EXT4-fs (loop1): 1 truncate cleaned up [ 63.578007][ T4503] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable,resuid=0x0000000000000000,stripe=0x0000000000000000,,errors=continue. Quota mode: none. [ 63.578497][ T4497] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 63.624068][ T4497] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 63.644902][ T26] audit: type=1800 audit(1770829101.172:2): pid=4503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.73" name="file2" dev="loop1" ino=19 res=0 errno=0 [ 63.759997][ T4497] F2FS-fs (loop3): Found nat_bits in checkpoint [ 63.800596][ T4523] loop4: detected capacity change from 0 to 256 [ 63.886718][ T4497] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 63.898355][ T4523] exfat: Deprecated parameter 'namecase' [ 63.923016][ T4497] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 63.929980][ T4523] exfat: Deprecated parameter 'utf8' [ 63.991164][ T4523] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 64.015206][ T4534] netlink: 56 bytes leftover after parsing attributes in process `syz.0.86'. [ 64.061101][ T4191] attempt to access beyond end of device [ 64.061101][ T4191] loop3: rw=2049, want=45104, limit=40427 [ 64.106191][ T4536] loop1: detected capacity change from 0 to 256 [ 64.211183][ T4536] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 64.242185][ T4536] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 64.378248][ T4536] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 64.626348][ T4562] loop0: detected capacity change from 0 to 128 [ 64.660253][ T4565] loop3: detected capacity change from 0 to 512 [ 64.674487][ T4562] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 64.699031][ T4562] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 64.751722][ T4565] EXT4-fs (loop3): mounted filesystem without journal. Opts: resgid=0x0000000000000000,max_dir_size_kb=0x0000000000000009,usrjquota=,sysvgroups,usrquota,,errors=continue. Quota mode: writeback. [ 64.775647][ T4565] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 64.780156][ T4562] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 64.810299][ T4565] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.88: bg 0: block 217: padding at end of block bitmap is not set [ 64.832750][ T4565] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 64.858434][ T4562] FAT-fs (loop0): Filesystem has been set read-only [ 65.148991][ T4589] loop0: detected capacity change from 0 to 1024 [ 65.256498][ T4589] EXT4-fs (loop0): inline encryption not supported [ 65.286492][ T4589] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 65.347831][ T4589] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,delalloc,errors=remount-ro,grpquota,minixdf,user_xattr,mb_optimize_scan=0x0000000000000001,errors=remount-ro,. Quota mode: writeback. [ 65.467412][ T4603] device veth1_macvtap left promiscuous mode [ 65.477128][ T4607] loop1: detected capacity change from 0 to 1024 [ 65.573331][ T4607] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,bsddf,nombcache,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,noblock_validity,noauto_da_alloc,,errors=continue. Quota mode: writeback. [ 65.685107][ T4584] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 65.724157][ T4584] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 65.815472][ T4584] F2FS-fs (loop2): Found nat_bits in checkpoint [ 65.938980][ T4584] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 65.942578][ T4636] EXT4-fs (loop1): Ignoring removed nobh option [ 65.957359][ T4584] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 65.965253][ T26] audit: type=1800 audit(1770829103.482:3): pid=4634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.128" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 65.989745][ T4636] EXT4-fs (loop1): Test dummy encryption mode enabled [ 66.042730][ T4636] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,test_dummy_encryption=v1,,errors=continue. Quota mode: none. [ 66.075374][ T4636] ext4 filesystem being mounted at /23/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 66.225523][ T4652] netlink: 8 bytes leftover after parsing attributes in process `syz.4.133'. [ 66.447330][ T4636] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 66.779853][ T4674] netlink: 'syz.1.142': attribute type 25 has an invalid length. [ 66.787867][ T21] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 66.796181][ T4674] netlink: 'syz.1.142': attribute type 28 has an invalid length. [ 66.957904][ T4655] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop0 scanned by syz.0.135 (4655) [ 66.992161][ T4655] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 67.002473][ T4655] BTRFS info (device loop0): using free space tree [ 67.009080][ T4655] BTRFS info (device loop0): has skinny extents [ 67.036348][ T23] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 67.055939][ T4655] BTRFS info (device loop0): enabling ssd optimizations [ 67.087992][ T4655] BTRFS warning (device loop0): can't set the free_space_tree feature bit while mounted [ 67.162719][ T21] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 67.176928][ T21] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 67.187533][ T21] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 67.205620][ T21] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 67.220049][ T21] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 67.353380][ T21] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 67.378062][ T21] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 67.387344][ T4709] netlink: 8 bytes leftover after parsing attributes in process `syz.1.150'. [ 67.395241][ T4180] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 9 /dev/loop0 scanned by udevd (4180) [ 67.408444][ T21] usb 3-1: Product: syz [ 67.412892][ T23] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 67.413100][ T4709] netlink: 'syz.1.150': attribute type 11 has an invalid length. [ 67.422553][ T21] usb 3-1: Manufacturer: syz [ 67.437678][ T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 67.460452][ T23] usb 5-1: config 0 descriptor?? [ 67.493446][ T21] cdc_wdm 3-1:1.0: skipping garbage [ 67.503927][ T21] cdc_wdm 3-1:1.0: skipping garbage [ 67.518915][ T21] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 67.532786][ T21] cdc_wdm 3-1:1.0: Unknown control protocol [ 67.797168][ T21] usb 3-1: USB disconnect, device number 3 [ 67.880103][ T4721] netlink: 'syz.1.156': attribute type 1 has an invalid length. [ 67.937661][ T4723] set_capacity_and_notify: 4 callbacks suppressed [ 67.937676][ T4723] loop0: detected capacity change from 0 to 256 [ 67.987502][ T23] [drm] Initialized udl 0.0.1 20120220 for 5-1:0.0 on minor 2 [ 67.988371][ T4723] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 67.999298][ T23] [drm] Initialized udl on minor 2 [ 68.224429][ T4252] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 68.255789][ T4727] loop0: detected capacity change from 0 to 32768 [ 68.361000][ T4727] [ 68.361000][ T4727] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 68.361000][ T4727] [ 68.384021][ T4727] ERROR: (device loop0): diWrite: ixpxd invalid [ 68.384021][ T4727] [ 68.397900][ T4727] ERROR: (device loop0): txCommit: [ 68.397900][ T4727] [ 68.434005][ T23] [drm:udl_get_edid_block] *ERROR* Read EDID byte 1 failed err ffffffb9 [ 68.448294][ T4192] [ 68.448294][ T4192] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 68.448294][ T4192] [ 68.477927][ T4729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.160'. [ 68.478930][ T4252] usb 2-1: Using ep0 maxpacket: 8 [ 68.493539][ T23] udl 5-1:0.0: [drm] Cannot find any crtc or sizes [ 68.504476][ T23] usb 5-1: USB disconnect, device number 2 [ 68.512875][ T4192] [ 68.512875][ T4192] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 68.512875][ T4192] [ 68.514334][ T4253] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffed [ 68.557078][ T4253] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffed [ 68.566799][ T4253] udl 5-1:0.0: [drm] Cannot find any crtc or sizes [ 68.624574][ T4252] usb 2-1: config 0 interface 0 altsetting 208 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 68.642505][ T4252] usb 2-1: config 0 interface 0 altsetting 208 endpoint 0x81 has invalid wMaxPacketSize 0 [ 68.654500][ T4252] usb 2-1: config 0 interface 0 has no altsetting 0 [ 68.661126][ T4252] usb 2-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00 [ 68.682547][ T4252] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.704796][ T4252] usb 2-1: config 0 descriptor?? [ 68.875629][ T4739] loop3: detected capacity change from 0 to 512 [ 68.975498][ T4739] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 68.998969][ T4731] loop2: detected capacity change from 0 to 32768 [ 69.013908][ T4739] EXT4-fs (loop3): orphan cleanup on readonly fs [ 69.038508][ T4739] EXT4-fs warning (device loop3): ext4_enable_quotas:6486: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 69.069734][ T4743] loop4: detected capacity change from 0 to 1024 [ 69.099338][ T4739] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 69.109969][ T4731] XFS (loop2): Mounting V5 Filesystem [ 69.115988][ T4739] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #13: comm syz.3.164: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 69.135485][ T4739] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.164: couldn't read orphan inode 13 (err -117) [ 69.170756][ T4737] loop0: detected capacity change from 0 to 32768 [ 69.179253][ T4252] holtek 0003:1241:5015.0002: unknown main item tag 0x0 [ 69.187545][ T4252] holtek 0003:1241:5015.0002: unknown global tag 0xd [ 69.195888][ T4252] holtek 0003:1241:5015.0002: item 0 2 1 13 parsing failed [ 69.203763][ T4252] holtek 0003:1241:5015.0002: parse failed [ 69.209585][ T4252] holtek: probe of 0003:1241:5015.0002 failed with error -22 [ 69.229318][ T4739] EXT4-fs (loop3): mounted filesystem without journal. Opts: sysvgroups,noblock_validity,min_batch_time=0x000000000000082f,grpquota,debug,journal_dev=0x0000000000000001,grpid,inode_readahead_blks=0x0000000000002000,,errors=continue. Quota mode: writeback. [ 69.234573][ T4737] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.163 (4737) [ 69.312714][ T4737] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 69.322930][ T4739] EXT4-fs error (device loop3): ext4_lookup:1858: comm syz.3.164: inode #15: comm syz.3.164: iget: illegal inode # [ 69.335481][ T4737] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 69.346498][ T4737] BTRFS info (device loop0): force zstd compression, level 3 [ 69.355590][ T4739] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 69.367318][ T4737] BTRFS info (device loop0): turning on sync discard [ 69.376365][ T4737] BTRFS info (device loop0): force clearing of disk cache [ 69.383887][ T4739] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 69.407216][ T4737] BTRFS info (device loop0): enabling disk space caching [ 69.407718][ T4737] BTRFS info (device loop0): turning off discard [ 69.407734][ T4737] BTRFS info (device loop0): disk space caching is enabled [ 69.407747][ T4737] BTRFS info (device loop0): has skinny extents [ 69.418842][ T4739] EXT4-fs warning (device loop3): ext4_enable_quotas:6486: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 69.482643][ T4731] XFS (loop2): Ending clean mount [ 69.499368][ T4731] XFS (loop2): Quotacheck needed: Please wait. [ 69.524865][ T4253] usb 2-1: USB disconnect, device number 3 [ 69.583808][ T4731] XFS (loop2): Quotacheck: Done. [ 69.729564][ T4187] XFS (loop2): Unmounting Filesystem [ 69.745555][ T4737] BTRFS info (device loop0): enabling ssd optimizations [ 69.771759][ T4737] BTRFS info (device loop0): clearing free space tree [ 69.809535][ T4737] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 69.852559][ T4260] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 69.857349][ T4737] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 69.867156][ T4768] loop3: detected capacity change from 0 to 40427 [ 69.893134][ T4768] F2FS-fs (loop3): invalid crc value [ 69.967527][ T4768] F2FS-fs (loop3): Found nat_bits in checkpoint [ 70.063504][ T4768] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 70.282795][ T4260] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 70.321486][ T4260] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 70.332014][ T4191] attempt to access beyond end of device [ 70.332014][ T4191] loop3: rw=2049, want=45104, limit=40427 [ 70.398220][ T4260] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 70.438974][ T4260] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 70.488809][ T4260] usb 5-1: config 0 descriptor?? [ 70.557819][ T4800] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 70.565484][ T4800] IPv6: NLM_F_CREATE should be set when creating new route [ 70.572764][ T4800] IPv6: NLM_F_CREATE should be set when creating new route [ 70.579974][ T4800] IPv6: NLM_F_CREATE should be set when creating new route [ 70.954339][ T4814] program syz.0.183 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 70.959948][ T4816] loop3: detected capacity change from 0 to 256 [ 71.024379][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.049206][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.080001][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.093270][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.108667][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.116120][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.129350][ T4260] holtek_kbd 0003:04D9:A055.0003: unknown main item tag 0x0 [ 71.151652][ T4260] holtek_kbd 0003:04D9:A055.0003: hidraw0: USB HID v0.00 Device [HID 04d9:a055] on usb-dummy_hcd.4-1/input0 [ 71.186244][ T1424] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.195364][ T1424] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.209643][ T3578] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 71.218116][ T4806] loop2: detected capacity change from 0 to 32768 [ 71.228701][ T4260] usb 5-1: USB disconnect, device number 3 [ 71.253386][ T4806] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.178 (4806) [ 71.326592][ T4806] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 71.385443][ T4806] BTRFS info (device loop2): using free space tree [ 71.391988][ T4806] BTRFS info (device loop2): has skinny extents [ 71.417198][ T4824] fido_id[4824]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 71.482701][ T3578] usb 2-1: Using ep0 maxpacket: 8 [ 71.602590][ T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 71.623849][ T3578] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 71.632865][ T3578] usb 2-1: config 179 has no interface number 0 [ 71.639179][ T3578] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 71.650971][ T3578] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 71.651578][ T4806] BTRFS info (device loop2): enabling ssd optimizations [ 71.663304][ T3578] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 102, changing to 10 [ 71.681938][ T3578] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 26223, setting to 1024 [ 71.693766][ T3578] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 71.707416][ T3578] usb 2-1: config 179 interface 65 has no altsetting 0 [ 71.715122][ T3578] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 71.724481][ T3578] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.753274][ T4812] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 71.825657][ T3578] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input5 [ 71.833868][ T4848] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 72.037049][ T7] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 72.057966][ T7] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 1 [ 72.186386][ T7] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 72.205549][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 72.216865][ T7] usb 1-1: SerialNumber: syz [ 72.311689][ T4861] loop3: detected capacity change from 0 to 128 [ 72.330353][ T4237] usb 2-1: USB disconnect, device number 4 [ 72.336272][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 72.353688][ T4237] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 72.373505][ T4251] Bluetooth: hci2: command 0x0401 tx timeout [ 72.432848][ T4861] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only [ 72.448875][ T4861] hpfs: filesystem error: improperly stopped [ 72.455080][ T4861] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 72.465037][ T4861] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories [ 72.475360][ T4861] hpfs: filesystem error: dir band size mismatch: dir_band_start==7b318cc2, dir_band_end==7b318cc3, n_dir_band==00000003 [ 72.786502][ T4237] usb 1-1: USB disconnect, device number 2 [ 72.954170][ T4883] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 73.037529][ T4889] set_capacity_and_notify: 1 callbacks suppressed [ 73.037544][ T4889] loop1: detected capacity change from 0 to 2048 [ 73.133761][ T4892] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 73.351199][ T26] audit: type=1326 audit(1770829110.872:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4897 comm="syz.2.207" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3e11900f79 code=0x0 [ 73.443091][ T4900] loop0: detected capacity change from 0 to 4096 [ 73.571046][ T4900] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 73.617175][ T4900] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 73.629590][ T4919] loop4: detected capacity change from 0 to 128 [ 73.699669][ T4919] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 73.720254][ T4919] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 73.927178][ T4929] loop4: detected capacity change from 0 to 512 [ 74.050733][ T4934] program syz.0.225 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 74.060338][ T4857] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 74.217740][ T4945] loop2: detected capacity change from 0 to 4096 [ 74.298733][ T4945] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 74.312777][ T4857] usb 2-1: Using ep0 maxpacket: 16 [ 74.372661][ T4945] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 74.399725][ T4953] capability: warning: `syz.0.234' uses deprecated v2 capabilities in a way that may be insecure [ 74.436951][ T4857] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 74.460723][ T4857] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 74.490036][ T4857] usb 2-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00 [ 74.511043][ T4857] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 74.543595][ T4857] usb 2-1: config 0 descriptor?? [ 74.952650][ T26] audit: type=1326 audit(1770829112.482:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e11900f79 code=0x7ffc0000 [ 74.992198][ T26] audit: type=1326 audit(1770829112.512:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e11900f79 code=0x7ffc0000 [ 75.026960][ T26] audit: type=1326 audit(1770829112.512:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3e11900f79 code=0x7ffc0000 [ 75.060264][ T4857] wacom 0003:056A:0084.0004: hidraw0: USB HID v0.00 Device [HID 056a:0084] on usb-dummy_hcd.1-1/input0 [ 75.078825][ T26] audit: type=1326 audit(1770829112.512:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e11900f79 code=0x7ffc0000 [ 75.141813][ T26] audit: type=1326 audit(1770829112.512:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e11900f79 code=0x7ffc0000 [ 75.163812][ C1] vkms_vblank_simulate: vblank timer overrun [ 75.201584][ T26] audit: type=1326 audit(1770829112.512:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3e11902807 code=0x7ffc0000 [ 75.254339][ T4237] usb 2-1: USB disconnect, device number 5 [ 75.260112][ T26] audit: type=1326 audit(1770829112.512:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f3e118c184e code=0x7ffc0000 [ 75.271504][ T4997] fido_id[4997]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 75.315201][ T26] audit: type=1326 audit(1770829112.512:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f3e118c184e code=0x7ffc0000 [ 75.345919][ T26] audit: type=1326 audit(1770829112.512:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4985 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f3e118c184e code=0x7ffc0000 [ 75.358955][ T5000] syz.0.256 (5000) used greatest stack depth: 21008 bytes left [ 75.477038][ T5005] loop0: detected capacity change from 0 to 4096 [ 75.788418][ T5011] loop4: detected capacity change from 0 to 32768 [ 75.826881][ T5011] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.259 (5011) [ 75.904027][ T5011] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 75.925601][ T5011] BTRFS info (device loop4): using free space tree [ 75.963571][ T5011] BTRFS info (device loop4): has skinny extents [ 75.973681][ T5016] netlink: 72 bytes leftover after parsing attributes in process `syz.1.261'. [ 76.038034][ T5019] loop3: detected capacity change from 0 to 2048 [ 76.087759][ T5030] loop1: detected capacity change from 0 to 16 [ 76.120241][ T5019] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 76.159760][ T5019] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 76.224600][ T5030] erofs: (device loop1): mounted with root inode @ nid 36. [ 76.252544][ T5011] BTRFS info (device loop4): enabling ssd optimizations [ 76.315013][ T1111] cfg80211: failed to load regulatory.db [ 76.341276][ T5019] overlayfs: null uuid detected in lower fs '/', falling back to xino=off,index=off,nfs_export=off. [ 76.345331][ T5040] loop2: detected capacity change from 0 to 4096 [ 76.507615][ T5040] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 76.646296][ T4187] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22. [ 76.772170][ T5051] netlink: 'syz.2.269': attribute type 11 has an invalid length. [ 76.927921][ T5049] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 76.978711][ T5049] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.088853][ T5060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.272'. [ 77.170777][ T5062] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 77.665303][ T5047] JBD2: Ignoring recovery information on journal [ 77.675062][ T881] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm kworker/u4:3: bg 0: block 345: padding at end of block bitmap is not set [ 77.699823][ T5071] netlink: 'syz.2.277': attribute type 1 has an invalid length. [ 77.730762][ T881] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1446 with error 117 [ 77.829947][ T5047] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 77.839175][ T881] EXT4-fs (loop4): This should not happen!! Data will be lost [ 77.839175][ T881] [ 78.096559][ T4191] ocfs2: Unmounting device (7,3) on (node local) [ 78.306983][ T5090] set_capacity_and_notify: 5 callbacks suppressed [ 78.306998][ T5090] loop1: detected capacity change from 0 to 64 [ 78.382439][ T5093] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 78.425548][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 78.425561][ T26] audit: type=1800 audit(1770829115.952:20): pid=5012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.258" name="file1" dev="loop0" ino=33 res=0 errno=0 [ 78.484476][ T5095] loop3: detected capacity change from 0 to 128 [ 78.534774][ T5095] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 78.707807][ T5095] ext4 filesystem being mounted at /35/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 78.749814][ T5095] fscrypt (loop3, inode 12): Direct key flag not allowed with different contents and filenames modes [ 78.857818][ T5106] loop4: detected capacity change from 0 to 512 [ 78.980197][ T5106] EXT4-fs (loop4): mounted filesystem without journal. Opts: nojournal_checksum,,errors=continue. Quota mode: writeback. [ 78.995780][ T5110] loop1: detected capacity change from 0 to 4096 [ 79.094535][ T5106] EXT4-fs error (device loop4): __ext4_find_entry:1696: inode #12: comm syz.4.292: checksumming directory block 0 [ 79.113926][ T5106] overlayfs: failed to create directory ./file0/work (errno: 74); mounting read-only [ 79.142091][ T5110] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 79.186748][ T5110] ntfs3: loop1: Failed to load $Extend. [ 79.206236][ T4188] EXT4-fs error (device loop4): ext4_readdir:223: inode #12: comm syz-executor: path /51/file0/file0: directory fails checksum at offset 0 [ 79.246037][ T4188] EXT4-fs error (device loop4): ext4_empty_dir:3139: inode #12: comm syz-executor: Directory block failed checksum [ 79.329827][ T4188] EXT4-fs error (device loop4): ext4_readdir:223: inode #12: comm syz-executor: path /51/file0/file0: directory fails checksum at offset 0 [ 79.338565][ T5110] ntfs3: loop1: ino=1b, "file0" directory corrupted [ 79.380469][ T4188] EXT4-fs error (device loop4): ext4_empty_dir:3139: inode #12: comm syz-executor: Directory block failed checksum [ 79.434454][ T4188] EXT4-fs error (device loop4): ext4_readdir:223: inode #12: comm syz-executor: path /51/file0/file0: directory fails checksum at offset 0 [ 79.509402][ T4188] EXT4-fs error (device loop4): ext4_empty_dir:3139: inode #12: comm syz-executor: Directory block failed checksum [ 79.549219][ T4188] EXT4-fs error (device loop4): ext4_readdir:223: inode #12: comm syz-executor: path /51/file0/file0: directory fails checksum at offset 0 [ 79.649557][ T5141] loop0: detected capacity change from 0 to 32768 [ 79.666645][ T4188] EXT4-fs error (device loop4): ext4_empty_dir:3139: inode #12: comm syz-executor: Directory block failed checksum [ 79.686837][ T4188] EXT4-fs error (device loop4): ext4_readdir:223: inode #12: comm syz-executor: path /51/file0/file0: directory fails checksum at offset 0 [ 79.705530][ T5141] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.305 (5141) [ 79.722353][ T5141] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 79.731706][ T5141] BTRFS info (device loop0): force zlib compression, level 3 [ 79.739164][ T5141] BTRFS info (device loop0): force clearing of disk cache [ 79.746454][ T5141] BTRFS info (device loop0): setting nodatasum [ 79.752696][ T5141] BTRFS info (device loop0): allowing degraded mounts [ 79.759498][ T5141] BTRFS info (device loop0): enabling disk space caching [ 79.766652][ T5141] BTRFS info (device loop0): disk space caching is enabled [ 79.773926][ T5141] BTRFS info (device loop0): has skinny extents [ 79.871881][ T5154] loop2: detected capacity change from 0 to 64 [ 80.000419][ T5141] BTRFS info (device loop0): clearing free space tree [ 80.008191][ T5141] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 80.018281][ T5141] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 80.057424][ T5141] BTRFS warning (device loop0): get dev_stats failed, device not found [ 80.187912][ T4855] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 80.260294][ T5177] loop2: detected capacity change from 0 to 8192 [ 80.582624][ T4855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 80.608868][ T4855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 80.630748][ T4855] usb 2-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01 [ 80.649927][ T4855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.699777][ T4855] usb 2-1: config 0 descriptor?? [ 80.853686][ T154] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.931040][ T5180] loop0: detected capacity change from 0 to 32768 [ 81.051535][ T5189] loop3: detected capacity change from 0 to 32768 [ 81.274871][ T4855] arvo 0003:1E7D:30D4.0005: unknown main item tag 0x1 [ 81.286885][ T5195] loop2: detected capacity change from 0 to 65536 [ 81.289179][ T4855] arvo 0003:1E7D:30D4.0005: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.1-1/input0 [ 81.319482][ T5189] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 81.328033][ T5189] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 81.335529][ T5195] XFS: attr2 mount option is deprecated. [ 81.352859][ T5189] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 81.352859][ T5189] inode = 1 19 [ 81.352859][ T5189] function = gfs2_check_internal_file_size, file = fs/gfs2/inode.h, line = 87 [ 81.372567][ T5189] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 81.389948][ T5189] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 81.398850][ T5189] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 81.405512][ T5189] gfs2: fsid=syz:syz.0: File system withdrawn [ 81.411611][ T5189] CPU: 1 PID: 5189 Comm: syz.3.320 Not tainted syzkaller #0 [ 81.418899][ T5189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 81.428970][ T5189] Call Trace: [ 81.432254][ T5189] [ 81.435189][ T5189] dump_stack_lvl+0x188/0x250 [ 81.439882][ T5189] ? kobject_uevent_env+0x371/0x890 [ 81.445093][ T5189] ? show_regs_print_info+0x20/0x20 [ 81.450311][ T5189] ? load_image+0x400/0x400 [ 81.454835][ T5189] ? kobject_uevent_env+0x371/0x890 [ 81.460048][ T5189] ? lockref_put_or_lock+0x6e/0xb0 [ 81.465179][ T5189] gfs2_withdraw+0x1149/0x1490 [ 81.469968][ T5189] ? gfs2_lm+0x240/0x240 [ 81.474230][ T5189] ? gfs2_glock_nq+0xcb0/0x1550 [ 81.479109][ T5189] ? gfs2_consist_inode_i+0xc0/0xe0 [ 81.484327][ T5189] gfs2_jdesc_check+0x137/0x290 [ 81.487416][ T5180] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 81.489187][ T5189] init_journal+0xd02/0x22f0 [ 81.489244][ T5189] ? end_bio_io_page+0x100/0x100 [ 81.489263][ T5189] ? vsnprintf+0x1b21/0x1c20 [ 81.489291][ T5189] ? snprintf+0xe5/0x140 [ 81.515811][ T5189] ? init_journal+0x74d/0x22f0 [ 81.520588][ T5189] ? vscnprintf+0x80/0x80 [ 81.524927][ T5189] ? gfs2_glock_nq_num+0x17a/0x1b0 [ 81.530051][ T5189] init_inodes+0xdb/0x320 [ 81.534396][ T5189] gfs2_fill_super+0x16b2/0x1f00 [ 81.539359][ T5189] ? gfs2_reconfigure+0xd30/0xd30 [ 81.544396][ T5189] ? gfs2_glock_nq_num+0x82/0x1b0 [ 81.549442][ T5189] ? sb_set_blocksize+0xa5/0xe0 [ 81.554304][ T5189] get_tree_bdev+0x3f1/0x610 [ 81.558908][ T5189] ? gfs2_reconfigure+0xd30/0xd30 [ 81.559594][ T5180] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 81.563939][ T5189] gfs2_get_tree+0x4d/0x1e0 [ 81.563966][ T5189] vfs_get_tree+0x88/0x270 [ 81.563984][ T5189] do_new_mount+0x24a/0xa40 [ 81.564008][ T5189] __se_sys_mount+0x2e3/0x3d0 [ 81.564030][ T5189] ? __x64_sys_mount+0xc0/0xc0 [ 81.564051][ T5189] ? lockdep_hardirqs_on+0x94/0x140 [ 81.564070][ T5189] ? __x64_sys_mount+0x1c/0xc0 [ 81.564089][ T5189] do_syscall_64+0x4c/0xa0 [ 81.564103][ T5189] ? clear_bhb_loop+0x30/0x80 [ 81.564119][ T5189] ? clear_bhb_loop+0x30/0x80 [ 81.564135][ T5189] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 81.625347][ T5189] RIP: 0033:0x7f4f8dae920a [ 81.629772][ T5189] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 81.638639][ T5195] XFS (loop2): Mounting V5 Filesystem [ 81.649380][ T5189] RSP: 002b:00007f4f8bd41e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 81.649406][ T5189] RAX: ffffffffffffffda RBX: 00007f4f8bd41ee0 RCX: 00007f4f8dae920a [ 81.649418][ T5189] RDX: 0000200000000100 RSI: 0000200000012500 RDI: 00007f4f8bd41ea0 [ 81.649430][ T5189] RBP: 0000200000000100 R08: 00007f4f8bd41ee0 R09: 0000000000000010 [ 81.649441][ T5189] R10: 0000000000000010 R11: 0000000000000246 R12: 0000200000012500 [ 81.649450][ T5189] R13: 00007f4f8bd41ea0 R14: 000000000001260c R15: 0000200000000040 [ 81.649474][ T5189] [ 81.650611][ T5189] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5 [ 81.661362][ T154] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.746204][ T1277] (kworker/u4:4,1277,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214 [ 81.805952][ T5180] (syz.0.314,5180,1):ocfs2_double_lock:1188 ERROR: status = -2 [ 81.860066][ T5180] (syz.0.314,5180,0):ocfs2_rename:1297 ERROR: status = -2 [ 81.870646][ T5180] (syz.0.314,5180,0):ocfs2_rename:1687 ERROR: status = -2 [ 81.943922][ T1111] usb 2-1: USB disconnect, device number 6 [ 81.954547][ T154] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.993201][ T4192] ocfs2: Unmounting device (7,0) on (node local) [ 81.998732][ T5195] XFS (loop2): Ending clean mount [ 82.002279][ T5210] fido_id[5210]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 82.026333][ T5195] XFS (loop2): Quotacheck needed: Please wait. [ 82.097120][ T5195] XFS (loop2): Quotacheck: Done. [ 82.204696][ T154] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 82.209116][ T4187] XFS (loop2): Unmounting Filesystem [ 82.439929][ T5222] pimreg: tun_chr_ioctl cmd 1074812118 [ 82.581781][ T5226] netlink: 'syz.1.331': attribute type 3 has an invalid length. [ 82.624945][ T5226] netlink: 'syz.1.331': attribute type 1 has an invalid length. [ 82.645935][ T5229] netlink: 28 bytes leftover after parsing attributes in process `syz.3.332'. [ 82.660823][ T5226] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.331'. [ 82.905919][ T5219] chnl_net:caif_netlink_parms(): no params data found [ 83.190142][ T5261] EXT4-fs (loop3): Ignoring removed bh option [ 83.323378][ T5261] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,abort,user_xattr,bh,errors=remount-ro,. Quota mode: writeback. [ 83.411758][ T5219] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.412066][ T5278] set_capacity_and_notify: 1 callbacks suppressed [ 83.412078][ T5278] loop1: detected capacity change from 0 to 512 [ 83.443950][ T5219] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.472308][ T5219] device bridge_slave_0 entered promiscuous mode [ 83.513326][ T5219] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.560014][ T5219] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.588702][ T5219] device bridge_slave_1 entered promiscuous mode [ 83.742127][ T5278] EXT4-fs (loop1): Test dummy encryption mode enabled [ 83.758668][ T5278] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 83.786381][ T5219] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.815940][ T5278] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.344: bad orphan inode 131083 [ 83.828767][ T5219] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.840160][ T5278] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none. [ 84.006014][ T5303] loop3: detected capacity change from 0 to 1024 [ 84.031900][ T5308] loop1: detected capacity change from 0 to 64 [ 84.033506][ T5219] team0: Port device team_slave_0 added [ 84.045113][ T5306] netlink: 44 bytes leftover after parsing attributes in process `syz.2.354'. [ 84.172283][ T5219] team0: Port device team_slave_1 added [ 84.269834][ T5311] syz.0.355 (5311) used greatest stack depth: 19504 bytes left [ 84.314903][ T5303] attempt to access beyond end of device [ 84.314903][ T5303] loop3: rw=0, want=393740, limit=1024 [ 84.333347][ T5219] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.340321][ T5219] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.395956][ T4237] Bluetooth: hci4: command 0x0409 tx timeout [ 84.420788][ T5325] loop0: detected capacity change from 0 to 512 [ 84.430167][ T5323] loop2: detected capacity change from 0 to 2048 [ 84.471033][ T5219] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.514558][ T5325] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.359: inode has both inline data and extents flags [ 84.597923][ T5325] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.359: couldn't read orphan inode 15 (err -117) [ 84.663943][ T5323] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 84.687596][ T5323] ext4 filesystem being mounted at /92/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 84.726465][ T5325] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 84.739738][ T5323] fs-verity: sha512 using implementation "sha512-avx2" [ 84.762913][ T5219] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.780150][ T5219] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.815625][ T5219] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.046901][ T5219] device hsr_slave_0 entered promiscuous mode [ 85.069689][ T5219] device hsr_slave_1 entered promiscuous mode [ 85.120404][ T5219] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.137683][ T5219] Cannot create hsr debugfs directory [ 85.179453][ T5348] mmap: syz.3.362 (5348) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 85.225043][ T5350] program syz.2.365 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 85.264691][ T4317] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 85.341167][ T5355] loop2: detected capacity change from 0 to 128 [ 85.405073][ T154] device hsr_slave_0 left promiscuous mode [ 85.455415][ T154] device hsr_slave_1 left promiscuous mode [ 85.512546][ T4317] usb 1-1: Using ep0 maxpacket: 32 [ 85.523642][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 85.541124][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 85.599870][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 85.632615][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 85.632672][ T4317] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 85.656460][ T154] device bridge_slave_1 left promiscuous mode [ 85.674883][ T154] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.679008][ T4317] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 85.727006][ T4317] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00 [ 85.742254][ T154] device bridge_slave_0 left promiscuous mode [ 85.753125][ T4317] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.779779][ T154] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.783860][ T4317] usb 1-1: config 0 descriptor?? [ 85.856003][ T154] device veth0_macvtap left promiscuous mode [ 85.884377][ T154] device veth1_vlan left promiscuous mode [ 85.900928][ T154] device veth0_vlan left promiscuous mode [ 86.055726][ T5387] loop1: detected capacity change from 0 to 512 [ 86.139941][ T5387] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 86.295947][ T4317] koneplus 0003:1E7D:2D51.0006: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.0-1/input0 [ 86.462541][ T5178] Bluetooth: hci4: command 0x041b tx timeout [ 86.499062][ T5401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.380'. [ 86.512639][ T4317] koneplus 0003:1E7D:2D51.0006: couldn't init struct koneplus_device [ 86.520771][ T4317] koneplus 0003:1E7D:2D51.0006: couldn't install mouse [ 86.579944][ T4317] koneplus: probe of 0003:1E7D:2D51.0006 failed with error -71 [ 86.627509][ T4317] usb 1-1: USB disconnect, device number 3 [ 86.738211][ T154] team0 (unregistering): Port device team_slave_1 removed [ 86.785297][ T5406] fido_id[5406]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 86.808744][ T154] team0 (unregistering): Port device team_slave_0 removed [ 86.837321][ T5412] loop1: detected capacity change from 0 to 4096 [ 86.849874][ T5413] vivid-000: disconnect [ 86.858756][ T5409] vivid-000: reconnect [ 86.867181][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 86.892520][ T5412] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 86.937463][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 86.975553][ T5412] ntfs3: loop1: ntfs_set_state r=3 failed, -22. [ 87.062827][ T5417] loop2: detected capacity change from 0 to 1024 [ 87.071615][ T881] ntfs3: loop1: ntfs3_write_inode r=3 failed, -22. [ 87.092214][ T4186] ntfs3: loop1: ntfs_set_state r=3 failed, -22. [ 87.108580][ T4186] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 87.136214][ T4186] ntfs3: loop1: ntfs_set_state r=3 failed, -22. [ 87.162725][ T5206] ntfs3: loop1: ntfs3_write_inode r=3 failed, -22. [ 87.170615][ T4186] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 87.183890][ T4186] ntfs3: loop1: ntfs_evict_inode r=3 failed, -22. [ 87.204677][ T154] bond0 (unregistering): Released all slaves [ 87.238471][ T5417] EXT4-fs (loop2): mounted filesystem without journal. Opts: auto_da_alloc,nodioread_nolock,noquota,barrier,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none. [ 87.308542][ T5417] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.318328][ T5385] A link change request failed with some changes committed already. Interface nicvf0 may have been left with an inconsistent configuration, please check. [ 87.334851][ T5417] EXT4-fs error (device loop2): ext4_map_blocks:739: inode #15: block 3: comm syz.2.387: lblock 3 mapped to illegal pblock 3 (length 3) [ 87.367061][ T5417] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 87.421110][ T5417] EXT4-fs (loop2): This should not happen!! Data will be lost [ 87.421110][ T5417] [ 87.473541][ T5434] EXT4-fs error (device loop2): ext4_ext_remove_space:2929: inode #15: comm syz.2.387: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 87.537596][ T5439] loop1: detected capacity change from 0 to 1024 [ 87.544486][ T5434] EXT4-fs error (device loop2) in ext4_setattr:5626: Corrupt filesystem [ 87.553755][ T5433] block nbd0: server does not support multiple connections per device. [ 87.583491][ T5433] block nbd0: shutting down sockets [ 87.700021][ T5219] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 87.812331][ T5219] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 87.843520][ T5359] hfsplus: b-tree write err: -5, ino 4 [ 87.843947][ T5219] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 87.919161][ T5219] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 88.136006][ T5449] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 88.146598][ T5449] REISERFS (device loop2): using ordered data mode [ 88.154920][ T5449] reiserfs: using flush barriers [ 88.162159][ T5449] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 88.181036][ T5449] REISERFS (device loop2): checking transaction log (loop2) [ 88.196132][ T5449] REISERFS (device loop2): Using rupasov hash to sort names [ 88.205365][ T5449] REISERFS (device loop2): using 3.5.x disk format [ 88.216730][ T5449] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 88.228628][ T5449] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 88.240151][ T5219] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.240904][ T5449] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 88.259817][ T5449] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 88.330552][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 88.348420][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 88.379377][ T5219] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.439468][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 88.455874][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 88.486419][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.493584][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.523273][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 88.542209][ T5478] set_capacity_and_notify: 1 callbacks suppressed [ 88.542223][ T5478] loop1: detected capacity change from 0 to 128 [ 88.542577][ T4317] Bluetooth: hci4: command 0x040f tx timeout [ 88.568137][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 88.582083][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 88.612607][ T4237] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 88.637616][ T1277] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.644771][ T1277] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.703530][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 88.725809][ T5478] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 88.744398][ T5485] loop2: detected capacity change from 0 to 256 [ 88.774504][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 88.789905][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 88.798111][ T5478] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 88.822113][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 88.838653][ T5485] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 88.882870][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 88.913999][ T4237] usb 1-1: Using ep0 maxpacket: 16 [ 88.932155][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 88.975836][ T5219] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 89.003310][ T5219] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 89.055015][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 89.067791][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 89.075952][ T4237] usb 1-1: config 0 has no interfaces? [ 89.102294][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 89.122234][ T5495] loop2: detected capacity change from 0 to 256 [ 89.153105][ T4237] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 89.157517][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 89.170916][ T5497] netlink: 60 bytes leftover after parsing attributes in process `syz.1.410'. [ 89.174449][ T4237] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 89.184445][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 89.211083][ T4237] usb 1-1: SerialNumber: syz [ 89.224366][ T5495] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 89.236174][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 89.258320][ T4237] usb 1-1: config 0 descriptor?? [ 89.292154][ T5497] netlink: 60 bytes leftover after parsing attributes in process `syz.1.410'. [ 89.332744][ T5498] netlink: 60 bytes leftover after parsing attributes in process `syz.1.410'. [ 89.371248][ T5499] netlink: 60 bytes leftover after parsing attributes in process `syz.1.410'. [ 89.508085][ T7] usb 1-1: USB disconnect, device number 4 [ 89.558578][ T5512] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 89.742226][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 89.763432][ T5519] loop3: detected capacity change from 0 to 64 [ 89.782778][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 89.817123][ T5219] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 90.527341][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 90.551371][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 90.603814][ T5569] loop0: detected capacity change from 0 to 64 [ 90.632688][ T7] Bluetooth: hci4: command 0x0419 tx timeout [ 90.690536][ T5219] device veth0_vlan entered promiscuous mode [ 90.717398][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 90.726419][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 90.777840][ T5219] device veth1_vlan entered promiscuous mode [ 90.818152][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 90.828503][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 90.853485][ T1277] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 90.952673][ T5577] netlink: 'syz.2.435': attribute type 1 has an invalid length. [ 91.002609][ T5577] netlink: 'syz.2.435': attribute type 2 has an invalid length. [ 91.033103][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 91.041623][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 91.110821][ T5582] netlink: 4 bytes leftover after parsing attributes in process `syz.0.436'. [ 91.163953][ T5219] device veth0_macvtap entered promiscuous mode [ 91.199803][ T5219] device veth1_macvtap entered promiscuous mode [ 91.207419][ T5546] loop1: detected capacity change from 0 to 40427 [ 91.270567][ T5546] F2FS-fs (loop1): invalid crc value [ 91.306645][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.318421][ T5546] F2FS-fs (loop1): Found nat_bits in checkpoint [ 91.362941][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.409791][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.455064][ T4180] udevd[4180]: incorrect f2fs checksum on /dev/loop1 [ 91.484273][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.495269][ T5546] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 91.515753][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.528001][ T26] audit: type=1800 audit(1770829129.052:21): pid=5546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.425" name="file1" dev="loop1" ino=10 res=0 errno=0 [ 91.581363][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.627624][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.677906][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.684683][ T5573] loop3: detected capacity change from 0 to 32768 [ 91.697113][ T4180] udevd[4180]: incorrect f2fs checksum on /dev/loop1 [ 91.723050][ T4186] attempt to access beyond end of device [ 91.723050][ T4186] loop1: rw=2049, want=45104, limit=40427 [ 91.732077][ T5219] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.752209][ T1281] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 91.774606][ T1281] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 91.810529][ T5573] JBD2: Ignoring recovery information on journal [ 91.846369][ T1281] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 91.907575][ T1281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 91.921178][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.959689][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.973612][ T5573] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 92.026227][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.082008][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.165418][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.209880][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.260711][ T5219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.326039][ T5219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.371641][ T5219] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.405325][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 92.405329][ T4191] ocfs2: Unmounting device (7,3) on (node local) [ 92.405970][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 92.507058][ T5219] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.528482][ T5219] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.555994][ T5219] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.577278][ T5219] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.611360][ T5627] loop0: detected capacity change from 0 to 256 [ 92.712776][ T4251] Bluetooth: hci4: command 0x0411 tx timeout [ 92.794343][ T5627] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 92.909196][ T5206] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.946418][ T5206] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.976429][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 92.991961][ T5601] loop2: detected capacity change from 0 to 40427 [ 93.068744][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.102194][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.108843][ T5638] program syz.3.443 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 93.133355][ T1281] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 93.172694][ T5601] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x35f7 [ 93.180876][ T5601] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x1ffff [ 93.273364][ T5601] F2FS-fs (loop2): invalid crc value [ 93.331429][ T5601] F2FS-fs (loop2): Found nat_bits in checkpoint [ 93.461246][ T5646] loop3: detected capacity change from 0 to 2048 [ 93.535252][ T5646] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 93.608158][ T5601] F2FS-fs (loop2): Start checkpoint disabled! [ 93.718276][ T5601] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 93.794804][ T5601] attempt to access beyond end of device [ 93.794804][ T5601] loop2: rw=10241, want=45104, limit=40427 [ 94.139507][ T144] attempt to access beyond end of device [ 94.139507][ T144] loop2: rw=2049, want=40976, limit=40427 [ 94.328314][ T5689] loop0: detected capacity change from 0 to 512 [ 94.389052][ T5689] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 94.411850][ T5689] EXT4-fs (loop0): shut down requested (1) [ 94.552623][ T4855] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 94.726203][ T5715] loop5: detected capacity change from 0 to 256 [ 94.781432][ T5715] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d) [ 94.847537][ T4855] usb 2-1: Using ep0 maxpacket: 16 [ 94.920455][ T5727] loop2: detected capacity change from 0 to 64 [ 94.972705][ T4855] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 32, changing to 9 [ 95.013702][ T5732] loop5: detected capacity change from 0 to 1764 [ 95.035921][ T4855] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.074306][ T4855] usb 2-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 95.090702][ T4855] usb 2-1: config 0 interface 0 has no altsetting 0 [ 95.115943][ T4855] usb 2-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00 [ 95.161645][ T4855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.200176][ T4855] usb 2-1: config 0 descriptor?? [ 95.551176][ T5751] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.583137][ T5751] device bridge_slave_0 left promiscuous mode [ 95.594028][ T5751] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.637388][ T5741] loop2: detected capacity change from 0 to 32768 [ 95.659196][ T5753] loop5: detected capacity change from 0 to 256 [ 95.685187][ T5741] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.484 (5741) [ 95.686654][ T4855] playstation 0003:054C:0CE6.0007: hidraw0: USB HID v0.00 Device [HID 054c:0ce6] on usb-dummy_hcd.1-1/input0 [ 95.719208][ T5741] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 95.744586][ T5753] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 95.747303][ T5741] BTRFS info (device loop2): using free space tree [ 95.775622][ T5741] BTRFS info (device loop2): has skinny extents [ 95.884095][ T5741] BTRFS info (device loop2): enabling ssd optimizations [ 95.902986][ T4855] playstation 0003:054C:0CE6.0007: Invalid reportID received, expected 9 got 89 [ 95.912062][ T4855] playstation 0003:054C:0CE6.0007: Failed to retrieve DualSense pairing info: -22 [ 95.962802][ T4855] playstation 0003:054C:0CE6.0007: Failed to get MAC address from DualSense [ 95.971539][ T4855] playstation 0003:054C:0CE6.0007: Failed to create dualsense. [ 95.998459][ T4855] playstation: probe of 0003:054C:0CE6.0007 failed with error -22 [ 96.079201][ T5779] loop5: detected capacity change from 0 to 128 [ 96.144561][ T4646] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 10 /dev/loop2 scanned by udevd (4646) [ 96.174769][ T5779] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 96.212331][ T5779] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.406292][ T4789] usb 2-1: USB disconnect, device number 7 [ 96.564264][ T5797] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input11 [ 96.844355][ T5811] loop5: detected capacity change from 0 to 1024 [ 96.952628][ T4789] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 97.013415][ T5816] netlink: 8 bytes leftover after parsing attributes in process `syz.5.504'. [ 97.043473][ T5816] netlink: 16 bytes leftover after parsing attributes in process `syz.5.504'. [ 97.061337][ T5795] loop0: detected capacity change from 0 to 40427 [ 97.095062][ T5795] F2FS-fs (loop0): Invalid segment count (1) [ 97.135509][ T5795] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 97.164068][ T5795] F2FS-fs (loop0): invalid crc value [ 97.172287][ T5820] netlink: 'syz.3.505': attribute type 9 has an invalid length. [ 97.210506][ T5795] F2FS-fs (loop0): Found nat_bits in checkpoint [ 97.212494][ T4789] usb 3-1: Using ep0 maxpacket: 32 [ 97.322136][ T5795] F2FS-fs (loop0): recover fsync data on readonly fs [ 97.332685][ T4789] usb 3-1: config 0 has an invalid interface number: 51 but max is 0 [ 97.334458][ T5795] F2FS-fs (loop0): Try to recover 1th superblock, ret: -30 [ 97.345287][ T4789] usb 3-1: config 0 has no interface number 0 [ 97.393743][ T5795] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 97.532600][ T4789] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 97.557531][ T4789] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.577614][ T4789] usb 3-1: Product: syz [ 97.581953][ T4789] usb 3-1: Manufacturer: syz [ 97.589203][ T4789] usb 3-1: SerialNumber: syz [ 97.607085][ T4789] usb 3-1: config 0 descriptor?? [ 97.659008][ T4789] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 97.679685][ T5822] loop5: detected capacity change from 0 to 32768 [ 97.872349][ T4789] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 97.899462][ T4789] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 98.031060][ T5831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.513'. [ 98.285927][ T4789] usb 3-1: USB disconnect, device number 4 [ 98.302486][ C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -108 [ 98.339127][ T4789] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 98.422069][ T4789] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 98.475923][ T4789] quatech2 3-1:0.51: device disconnected [ 98.772963][ T5859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: comm syz.3.525: inode #1: comm syz.3.525: iget: illegal inode # [ 98.796699][ T5859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.525: error while reading EA inode 1 err=-117 [ 98.832995][ T5859] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2807: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 98.892573][ T5863] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 98.928151][ T5859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: comm syz.3.525: inode #1: comm syz.3.525: iget: illegal inode # [ 98.993164][ T5859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.525: error while reading EA inode 1 err=-117 [ 99.078135][ T5859] EXT4-fs (loop3): 1 orphan inode deleted [ 99.108000][ T5859] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none. [ 99.207863][ T5877] input: syz1 as /devices/virtual/input/input12 [ 99.352609][ T7] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 99.416042][ T5882] set_capacity_and_notify: 4 callbacks suppressed [ 99.416056][ T5882] loop1: detected capacity change from 0 to 4096 [ 99.563594][ T5882] ntfs3: loop1: MFT: r=1b, expect seq=1 instead of 0! [ 99.622477][ T7] usb 6-1: Using ep0 maxpacket: 32 [ 99.762705][ T7] usb 6-1: config 0 has an invalid descriptor of length 194, skipping remainder of the config [ 99.962845][ T7] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 100.005310][ T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.033862][ T7] usb 6-1: Product: syz [ 100.038065][ T7] usb 6-1: Manufacturer: syz [ 100.056680][ T5897] loop0: detected capacity change from 0 to 32768 [ 100.062511][ T7] usb 6-1: SerialNumber: syz [ 100.085322][ T7] usb 6-1: config 0 descriptor?? [ 100.153665][ T7] usb 6-1: bad CDC descriptors [ 100.161051][ T7] usb 6-1: unsupported MDLM descriptors [ 100.186190][ T5897] XFS (loop0): Mounting V5 Filesystem [ 100.220924][ T5902] loop1: detected capacity change from 0 to 32768 [ 100.287960][ T5897] XFS (loop0): Ending clean mount [ 100.328160][ T5902] XFS (loop1): Mounting V5 Filesystem [ 100.382085][ T4253] usb 6-1: USB disconnect, device number 2 [ 100.462774][ T5902] XFS (loop1): Ending clean mount [ 100.550063][ T4192] XFS (loop0): Unmounting Filesystem [ 100.614763][ T4186] XFS (loop1): Unmounting Filesystem [ 101.119103][ T5961] genirq: Flags mismatch irq 4. 00000000 (pcl812) vs. 00000000 (ttyS0) [ 101.477904][ T5979] loop0: detected capacity change from 0 to 512 [ 101.514128][ T5946] loop3: detected capacity change from 0 to 32768 [ 101.530224][ T5979] EXT4-fs (loop0): Ignoring removed nobh option [ 101.564719][ T5946] [ 101.564719][ T5946] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 101.564719][ T5946] [ 101.652612][ T4853] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 101.683763][ T5946] ERROR: (device loop3): diWrite: ixpxd invalid [ 101.683763][ T5946] [ 101.684222][ T5979] fscrypt (loop0, inode 2): Error -61 getting encryption context [ 101.727576][ T5979] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61 [ 101.733433][ T5946] ERROR: (device loop3): txCommit: [ 101.733433][ T5946] [ 101.742136][ T5979] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #13: comm syz.0.564: inode has both inline data and extents flags [ 101.769058][ T5979] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.564: couldn't read orphan inode 13 (err -117) [ 101.795224][ T5979] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,nouid32,nobh,stripe=0x000000000000ffff,block_validity,grpjquota=",errors=continue. Quota mode: writeback. [ 101.795304][ T5953] loop2: detected capacity change from 0 to 40427 [ 101.830831][ T5979] fscrypt (loop0, inode 2): Error -61 getting encryption context [ 101.877699][ T4191] [ 101.877699][ T4191] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 101.877699][ T4191] [ 101.891684][ T4191] [ 101.891684][ T4191] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 101.891684][ T4191] [ 101.944610][ T5953] F2FS-fs (loop2): invalid crc value [ 101.952518][ T4853] usb 2-1: Using ep0 maxpacket: 32 [ 102.024933][ T5953] F2FS-fs (loop2): Found nat_bits in checkpoint [ 102.072626][ T4853] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 102.072656][ T4853] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 102.072688][ T4853] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 102.072707][ T4853] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.074945][ T4853] usb 2-1: config 0 descriptor?? [ 102.101907][ T6006] loop5: detected capacity change from 0 to 16 [ 102.123665][ T6006] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 102.242371][ T5953] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 102.296155][ T4187] attempt to access beyond end of device [ 102.296155][ T4187] loop2: rw=2049, want=45104, limit=40427 [ 102.499879][ T6021] loop3: detected capacity change from 0 to 512 [ 102.554337][ T4853] savu 0003:1E7D:2D5A.0008: collection stack underflow [ 102.561242][ T4853] savu 0003:1E7D:2D5A.0008: item 0 0 0 12 parsing failed [ 102.577009][ T4853] savu 0003:1E7D:2D5A.0008: parse failed [ 102.606645][ T6021] EXT4-fs warning (device loop3): ext4_multi_mount_protect:326: fsck is running on the filesystem [ 102.632546][ T4853] savu: probe of 0003:1E7D:2D5A.0008 failed with error -22 [ 102.653427][ T6021] EXT4-fs warning (device loop3): ext4_multi_mount_protect:326: MMP failure info: last update time: 1756377954, last update node: nogikhp920.muc.corp.google.com, last update device: loop12 [ 102.761120][ T4237] usb 2-1: USB disconnect, device number 8 [ 103.010248][ T6044] loop3: detected capacity change from 0 to 512 [ 103.018041][ T6041] loop0: detected capacity change from 0 to 1024 [ 103.082275][ T6044] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 103.139992][ T6044] EXT4-fs error (device loop3): __ext4_iget:4912: inode #11: block 1: comm syz.3.585: invalid block [ 103.153965][ T6042] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 103.164395][ T26] audit: type=1800 audit(1770829140.682:22): pid=6041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.584" name="bus" dev="loop0" ino=26 res=0 errno=0 [ 103.173998][ T6044] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.585: couldn't read orphan inode 11 (err -117) [ 103.271177][ T6041] attempt to access beyond end of device [ 103.271177][ T6041] loop0: rw=34817, want=1036, limit=1024 [ 103.308937][ T6044] EXT4-fs (loop3): mounted filesystem without journal. Opts: auto_da_alloc=0x0000000000000004,dioread_lock,max_dir_size_kb=0x0000000000002004,nomblk_io_submit,nodiscard,usrquota,nojournal_checksum,noauto_da_alloc,nojournal_checksum,,errors=continue. Quota mode: writeback. [ 103.431936][ T5206] hfsplus: b-tree write err: -5, ino 4 [ 103.457333][ T6044] EXT4-fs error (device loop3): ext4_add_entry:2486: inode #2: comm syz.3.585: Directory hole found for htree leaf block 0 [ 103.875969][ T6073] exfat: Deprecated parameter 'utf8' [ 103.881294][ T6073] exfat: Deprecated parameter 'utf8' [ 103.941128][ T6073] exfat: Deprecated parameter 'utf8' [ 104.006999][ T26] audit: type=1800 audit(1770829141.532:23): pid=6058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.590" name="file0" dev="loop2" ino=1048620 res=0 errno=0 [ 104.035185][ T6073] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 104.625597][ T6074] set_capacity_and_notify: 4 callbacks suppressed [ 104.625613][ T6074] loop5: detected capacity change from 0 to 32768 [ 104.697937][ T6104] loop0: detected capacity change from 0 to 1024 [ 104.708033][ T6103] loop2: detected capacity change from 0 to 1024 [ 104.764941][ T6100] loop1: detected capacity change from 0 to 4096 [ 104.836972][ T6103] attempt to access beyond end of device [ 104.836972][ T6103] loop2: rw=0, want=5780, limit=1024 [ 104.880242][ T6103] attempt to access beyond end of device [ 104.880242][ T6103] loop2: rw=0, want=5780, limit=1024 [ 104.953312][ T154] attempt to access beyond end of device [ 104.953312][ T154] loop5: rw=1, want=2621800, limit=32768 [ 104.992828][ T4186] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 105.004224][ T4186] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 105.041661][ T276] blkno = 5002c, nblocks = 1 [ 105.062731][ T276] ERROR: (device loop5): dbUpdatePMap: blocks are outside the map [ 105.062731][ T276] [ 105.101078][ T276] ERROR: (device loop5): remounting filesystem as read-only [ 105.134007][ T6109] loop2: detected capacity change from 0 to 128 [ 105.204007][ T6109] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 105.337900][ T6118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.614'. [ 105.416441][ T6121] loop1: detected capacity change from 0 to 256 [ 105.529140][ T6121] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 105.551890][ T6121] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 105.599002][ T6121] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 105.696259][ T6131] loop2: detected capacity change from 0 to 1024 [ 105.706414][ T4260] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 105.982766][ T4260] usb 1-1: Using ep0 maxpacket: 32 [ 106.102678][ T4260] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 106.116275][ T4260] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 106.128474][ T4260] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 106.199103][ T6129] loop3: detected capacity change from 0 to 131072 [ 106.242522][ T6129] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0) [ 106.251238][ T6129] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 106.282551][ T6129] F2FS-fs (loop3): invalid crc value [ 106.312960][ T4260] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 106.322050][ T4260] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.341073][ T6129] F2FS-fs (loop3): Found nat_bits in checkpoint [ 106.361491][ T4260] usb 1-1: Product: syz [ 106.381016][ T4260] usb 1-1: Manufacturer: syz [ 106.407767][ T6129] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 106.414918][ T6129] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 106.438796][ T4260] usb 1-1: SerialNumber: syz [ 106.471298][ T6145] loop2: detected capacity change from 0 to 128 [ 106.661964][ T6153] loop5: detected capacity change from 0 to 512 [ 106.717868][ T6153] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 106.890546][ T6153] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 106.987156][ T1111] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 106.987381][ T6153] EXT4-fs (loop5): 1 truncate cleaned up [ 107.026243][ T6153] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x000000000000002e,lazytime,quota,quota,,errors=continue. Quota mode: writeback. [ 107.052737][ T4260] usb 1-1: 0:2 : does not exist [ 107.061611][ T6158] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 107.069063][ T6158] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 107.128437][ T6153] EXT4-fs (loop5): re-mounted. Opts: (null). Quota mode: writeback. [ 107.147224][ T4260] usb 1-1: USB disconnect, device number 5 [ 107.332499][ T1111] usb 2-1: Using ep0 maxpacket: 8 [ 107.453416][ T1111] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 107.482977][ T1111] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.544855][ T1111] pvrusb2: Hardware description: Terratec Grabster AV400 [ 107.561900][ T1111] pvrusb2: ********** [ 107.578897][ T1111] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 107.596602][ T6178] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 107.609773][ T1111] pvrusb2: Important functionality might not be entirely working. [ 107.642655][ T1111] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 107.654967][ T1111] pvrusb2: ********** [ 107.676693][ T6178] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.755258][ T2423] pvrusb2: Invalid write control endpoint [ 107.948647][ T2423] pvrusb2: Invalid write control endpoint [ 107.963474][ T4858] kernel write not supported for file /cpu/0/msr (pid: 4858 comm: kworker/1:18) [ 108.012908][ T2423] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 108.068258][ T2423] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 108.092650][ T1111] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 108.137759][ T6210] device batadv_slave_0 entered promiscuous mode [ 108.152457][ T2423] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 108.173997][ T6210] batman_adv: batadv0: Adding interface: macvtap1 [ 108.179279][ T2423] pvrusb2: Device being rendered inoperable [ 108.198323][ T6210] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.201144][ T4853] usb 2-1: USB disconnect, device number 9 [ 108.235852][ T2423] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 108.245871][ T2423] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 108.286096][ T2423] pvrusb2: Attached sub-driver cx25840 [ 108.292157][ T2423] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 108.300064][ T6210] batman_adv: batadv0: Interface activated: macvtap1 [ 108.318894][ T2423] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 108.372472][ T1111] usb 1-1: Using ep0 maxpacket: 8 [ 108.497785][ T1111] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 108.510862][ T1111] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 108.526100][ T1111] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 108.537065][ T1111] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 108.566098][ T1111] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 108.581319][ T1111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.842729][ T1111] usb 1-1: GET_CAPABILITIES returned 0 [ 108.848234][ T1111] usbtmc 1-1:16.0: can't read capabilities [ 108.900470][ T6252] netlink: 'syz.1.653': attribute type 8 has an invalid length. [ 109.072552][ C0] usbtmc 1-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 109.084729][ T6195] usbtmc 1-1:16.0: Unable to send data, error -71 [ 109.095166][ T1111] usb 1-1: USB disconnect, device number 6 [ 109.492734][ T4858] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 109.710077][ T6310] netlink: 'syz.5.668': attribute type 2 has an invalid length. [ 109.742630][ T4858] usb 3-1: Using ep0 maxpacket: 32 [ 109.847576][ T26] audit: type=1400 audit(1770829147.372:24): apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="unconfined" name=3A202020202030206B420A53686D656D506D644D61707065643A202020202020202030206B420A46696C65506D644D61707065643A20202020202020202030206B420A5368617265645F48756765746C623A202020202020202030206B420A507269766174655F48756765746C623A2020202020202030206B420A537761703A20202020202020202020202020202020202030206B420A53 pid=6317 comm="syz.0.673" [ 109.862676][ T4858] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 109.965240][ T4858] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 109.985520][ T4858] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00 [ 110.012546][ T4858] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.040335][ T4858] usb 3-1: config 0 descriptor?? [ 110.072758][ T1111] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 110.150547][ T6333] set_capacity_and_notify: 3 callbacks suppressed [ 110.150563][ T6333] loop0: detected capacity change from 0 to 256 [ 110.362556][ T1111] usb 2-1: Using ep0 maxpacket: 32 [ 110.417668][ T6321] loop5: detected capacity change from 0 to 40427 [ 110.471667][ T6321] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x35f7 [ 110.488592][ T6321] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1ffff [ 110.514317][ T6321] F2FS-fs (loop5): invalid crc value [ 110.523232][ T1111] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 110.542072][ T6321] F2FS-fs (loop5): Found nat_bits in checkpoint [ 110.557748][ T4858] koneplus 0003:1E7D:2D51.0009: unknown main item tag 0x0 [ 110.587547][ T4858] koneplus 0003:1E7D:2D51.0009: unknown main item tag 0x0 [ 110.612513][ T4858] koneplus 0003:1E7D:2D51.0009: unknown main item tag 0x0 [ 110.639404][ T4858] koneplus 0003:1E7D:2D51.0009: unknown main item tag 0x0 [ 110.651937][ T4858] koneplus 0003:1E7D:2D51.0009: unknown main item tag 0x0 [ 110.673192][ T6321] F2FS-fs (loop5): Start checkpoint disabled! [ 110.680137][ T4858] koneplus 0003:1E7D:2D51.0009: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.2-1/input0 [ 110.700013][ T6321] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 110.730438][ T6343] loop0: detected capacity change from 0 to 32768 [ 110.737333][ T1111] usb 2-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 110.746793][ T1111] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 110.755465][ T1111] usb 2-1: Product: syz [ 110.759755][ T1111] usb 2-1: Manufacturer: syz [ 110.764644][ T1111] usb 2-1: SerialNumber: syz [ 110.775847][ T1111] usb 2-1: config 0 descriptor?? [ 110.844431][ T1111] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 110.858337][ T6343] XFS (loop0): Mounting V5 Filesystem [ 111.016108][ T4858] usb 3-1: USB disconnect, device number 5 [ 111.041600][ T6343] XFS (loop0): Ending clean mount [ 111.059821][ T6343] XFS (loop0): Quotacheck needed: Please wait. [ 111.140160][ T6363] loop5: detected capacity change from 0 to 1024 [ 111.153506][ T6343] XFS (loop0): Quotacheck: Done. [ 111.212898][ T6363] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option [ 111.253299][ T6363] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 111.255881][ T4192] XFS (loop0): Unmounting Filesystem [ 111.331451][ T6363] EXT4-fs (loop5): mounted filesystem without journal. Opts: noauto_da_alloc,grpquota,grpjquota=,barrier,dioread_nolock,nodiscard,nomblk_io_submit,nodiscard,,errors=continue. Quota mode: writeback. [ 111.436517][ T6363] xt_hashlimit: max too large, truncated to 1048576 [ 111.448394][ T6363] VFS: Lookup of 'file0' in ext4 loop5 would have caused loop [ 111.639849][ T6377] loop5: detected capacity change from 0 to 256 [ 111.692540][ T1111] gspca_pac7302: reg_w() failed i: 78 v: 40 error -71 [ 111.702616][ T1111] gspca_pac7302: probe of 2-1:0.0 failed with error -71 [ 111.740296][ T1111] usb 2-1: USB disconnect, device number 10 [ 111.810242][ T6377] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 111.842133][ T6377] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000008) [ 111.889637][ T6377] exFAT-fs (loop5): Filesystem has been set read-only [ 111.917810][ T6377] exFAT-fs (loop5): error, failed to bmap (inode : ffff888074ba48e0 iblock : 8, err : -5) [ 111.963233][ T6377] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000008) [ 111.985787][ T6386] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000008) [ 112.042606][ T6386] exFAT-fs (loop5): error, failed to bmap (inode : ffff888074ba48e0 iblock : 8, err : -5) [ 112.064854][ T6373] loop3: detected capacity change from 0 to 32768 [ 112.074506][ T6386] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000008) [ 112.221065][ T6382] loop0: detected capacity change from 0 to 32768 [ 112.224994][ T6373] XFS (loop3): Mounting V5 Filesystem [ 112.318654][ T6382] jfs_strtoUCS: char2uni returned -22. [ 112.336246][ T6405] loop1: detected capacity change from 0 to 4096 [ 112.344938][ T6382] charset = cp932, char = 0xec [ 112.352308][ T6373] XFS (loop3): Ending clean mount [ 112.372607][ T6373] XFS (loop3): Quotacheck needed: Please wait. [ 112.422701][ T1111] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 112.470887][ T6373] XFS (loop3): Quotacheck: Done. [ 112.502667][ T6405] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 112.523628][ T26] audit: type=1800 audit(1770829150.052:25): pid=6373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.685" name="file1" dev="loop3" ino=6150 res=0 errno=0 [ 112.720731][ T4191] XFS (loop3): Unmounting Filesystem [ 112.726209][ T1111] usb 3-1: Using ep0 maxpacket: 32 [ 112.810704][ T6417] program syz.5.700 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 112.864635][ T1111] usb 3-1: config 0 has an invalid interface number: 35 but max is 0 [ 112.891042][ T1111] usb 3-1: config 0 has no interface number 0 [ 112.939925][ T6421] loop5: detected capacity change from 0 to 1024 [ 112.974441][ T6419] loop1: detected capacity change from 0 to 4096 [ 113.094375][ T1111] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 113.114236][ T1111] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 113.133994][ T6419] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 113.200234][ T1111] usb 3-1: Product: syz [ 113.222328][ T1111] usb 3-1: Manufacturer: syz [ 113.277551][ T1111] usb 3-1: SerialNumber: syz [ 113.339504][ T1111] usb 3-1: config 0 descriptor?? [ 113.361009][ T6419] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #15: comm syz.1.701: corrupted inode contents [ 113.531211][ T6419] EXT4-fs error (device loop1): ext4_dirty_inode:6058: inode #15: comm syz.1.701: mark_inode_dirty error [ 113.546825][ T6446] tipc: Started in network mode [ 113.556219][ T6446] tipc: Node identity ac14140f, cluster identity 4711 [ 113.566155][ T6446] tipc: New replicast peer: 255.255.255.255 [ 113.584006][ T6446] tipc: Enabled bearer , priority 10 [ 113.591957][ T6419] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #15: comm syz.1.701: corrupted inode contents [ 113.648472][ T6419] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #15: comm syz.1.701: mark_inode_dirty error [ 113.704804][ T6419] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #15: comm syz.1.701: corrupted inode contents [ 113.742084][ T6419] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #15: comm syz.1.701: mark_inode_dirty error [ 113.780601][ T6419] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #15: comm syz.1.701: corrupted inode contents [ 113.834910][ T6419] EXT4-fs error (device loop1): ext4_truncate:4279: inode #15: comm syz.1.701: mark_inode_dirty error [ 113.852596][ T1111] radio-si470x 3-1:0.35: DeviceID=0x9242 ChipID=0x0000 [ 113.861863][ T1111] radio-si470x 3-1:0.35: This driver is known to work with firmware version 12, [ 113.915397][ T1111] radio-si470x 3-1:0.35: but the device has firmware version 0. [ 113.956596][ T6419] EXT4-fs error (device loop1) in ext4_setattr:5626: Corrupt filesystem [ 113.971876][ T4858] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 114.041665][ T6463] netlink: 'syz.0.710': attribute type 1 has an invalid length. [ 114.067268][ T6463] nbd: error processing sock list [ 114.073600][ T1111] radio-si470x 3-1:0.35: software version 146, hardware version 66 [ 114.082703][ T1111] radio-si470x 3-1:0.35: If you have some trouble using this driver, [ 114.090789][ T1111] radio-si470x 3-1:0.35: please report to V4L ML at linux-media@vger.kernel.org [ 114.222504][ T4858] usb 6-1: Using ep0 maxpacket: 8 [ 114.242068][ T6419] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #15: comm syz.1.701: corrupted inode contents [ 114.282881][ T1111] radio-si470x 3-1:0.35: si470x_set_report: usb_control_msg returned -71 [ 114.307608][ T6448] XFS (loop3): Mounting V5 Filesystem [ 114.322453][ C0] radio-si470x 3-1:0.35: non-zero urb status (-71) [ 114.336144][ T4186] EXT4-fs warning (device loop1): ext4_evict_inode:285: couldn't mark inode dirty (err -117) [ 114.346869][ C0] radio-si470x 3-1:0.35: non-zero urb status (-71) [ 114.352657][ T4858] usb 6-1: config 0 has an invalid interface number: 31 but max is 0 [ 114.359940][ T1111] radio-si470x 3-1:0.35: si470x_set_report: usb_control_msg returned -71 [ 114.370218][ C0] radio-si470x 3-1:0.35: non-zero urb status (-71) [ 114.371972][ T4858] usb 6-1: config 0 has no interface number 0 [ 114.392550][ C0] radio-si470x 3-1:0.35: non-zero urb status (-71) [ 114.419317][ T1111] radio-si470x: probe of 3-1:0.35 failed with error -22 [ 114.462917][ T6448] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 114.482706][ T1111] radio-raremono 3-1:0.35: this is not Thanko's Raremono. [ 114.501619][ T6448] XFS (loop3): Starting recovery (logdev: internal) [ 114.540333][ T1111] usb 3-1: USB disconnect, device number 6 [ 114.553049][ T4858] usb 6-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 114.562122][ T4858] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.603314][ T4858] usb 6-1: Product: syz [ 114.607511][ T4858] usb 6-1: Manufacturer: syz [ 114.612111][ T4858] usb 6-1: SerialNumber: syz [ 114.666844][ T4858] usb 6-1: config 0 descriptor?? [ 114.682940][ T6448] XFS (loop3): Ending recovery (logdev: internal) [ 114.695612][ T4789] tipc: Node number set to 2886997007 [ 114.703673][ T6448] XFS (loop3): AG 0: Corrupt btree 5 pointer at level 1 index 0. [ 114.718408][ T6448] XFS (loop3): Failed to initialize disk quotas. [ 114.741955][ T6485] ntfs: volume version 3.1. [ 114.877458][ T26] audit: type=1800 audit(1770829152.402:26): pid=6485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.715" name="file0" dev="loop0" ino=65 res=0 errno=0 [ 114.952721][ T4858] usb 6-1: Found UVC 0.04 device syz (046d:08c3) [ 114.967394][ T4858] uvcvideo 6-1:0.31: Entity type for entity Output 6 was not initialized! [ 114.967592][ T4191] XFS (loop3): Unmounting Filesystem [ 115.010149][ T4858] usb 6-1: Failed to create links for entity 5 [ 115.029763][ T4858] usb 6-1: Failed to register entities (-22). [ 115.083617][ T4858] usb 6-1: USB disconnect, device number 3 [ 115.751427][ T6525] set_capacity_and_notify: 2 callbacks suppressed [ 115.751443][ T6525] loop3: detected capacity change from 0 to 4096 [ 115.820085][ T6504] loop1: detected capacity change from 0 to 32768 [ 115.856156][ T6525] ntfs: (device loop3): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 115.899775][ T6525] ntfs: (device loop3): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 115.930974][ T6525] ntfs: (device loop3): ntfs_read_locked_inode(): $DATA attribute is missing. [ 115.942709][ T6525] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 115.984536][ T6504] XFS (loop1): Mounting V5 Filesystem [ 116.061149][ T6525] ntfs: (device loop3): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 116.091895][ T6535] loop0: detected capacity change from 0 to 4096 [ 116.144537][ T6525] ntfs: volume version 3.1. [ 116.157302][ T6525] ntfs: (device loop3): load_and_init_quota(): Failed to find inode number for $Quota. [ 116.161052][ T6552] netlink: 27 bytes leftover after parsing attributes in process `syz.2.736'. [ 116.217302][ T6525] ntfs: (device loop3): load_system_files(): Failed to load $Quota. Will not be able to remount read-write. Run chkdsk. [ 116.253142][ T6504] XFS (loop1): Ending clean mount [ 116.274203][ T6504] XFS (loop1): Quotacheck needed: Please wait. [ 116.395502][ T6504] XFS (loop1): Quotacheck: Done. [ 116.533512][ T4186] XFS (loop1): Unmounting Filesystem [ 116.685584][ T6571] loop5: detected capacity change from 0 to 764 [ 116.887392][ T6575] loop3: detected capacity change from 0 to 128 [ 116.999295][ T6579] loop0: detected capacity change from 0 to 1024 [ 117.035975][ T6562] loop2: detected capacity change from 0 to 32768 [ 117.049305][ T6579] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 117.059261][ T6579] EXT4-fs (loop0): group descriptors corrupted! [ 117.121851][ T6575] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 117.140306][ T6562] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.742 (6562) [ 117.143619][ T6585] loop1: detected capacity change from 0 to 512 [ 117.162902][ T6575] ext4 filesystem being mounted at /113/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 117.216653][ T6585] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.750: inode has both inline data and extents flags [ 117.234667][ T6562] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 117.236369][ T6585] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.750: couldn't read orphan inode 15 (err -117) [ 117.243844][ T4858] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 117.258332][ T6585] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 117.297611][ T6562] BTRFS info (device loop2): setting nodatacow, compression disabled [ 117.312751][ T6562] BTRFS info (device loop2): setting datasum, datacow enabled [ 117.320249][ T6562] BTRFS info (device loop2): force clearing of disk cache [ 117.329393][ T6562] BTRFS info (device loop2): enabling ssd optimizations [ 117.337007][ T6562] BTRFS info (device loop2): using spread ssd allocation scheme [ 117.346900][ T6562] BTRFS info (device loop2): turning on sync discard [ 117.353673][ T6562] BTRFS info (device loop2): turning off barriers [ 117.360497][ T6562] BTRFS info (device loop2): enabling auto defrag [ 117.367011][ T6562] BTRFS info (device loop2): not using ssd optimizations [ 117.374352][ T6562] BTRFS info (device loop2): not using spread ssd allocation scheme [ 117.383164][ T6562] BTRFS info (device loop2): using free space tree [ 117.389812][ T6562] BTRFS info (device loop2): has skinny extents [ 117.559016][ T6616] netlink: 182 bytes leftover after parsing attributes in process `syz.1.757'. [ 117.570615][ T6562] BTRFS info (device loop2): clearing free space tree [ 117.633160][ T6562] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 117.665371][ T6562] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 117.712588][ T4858] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 117.733735][ T4858] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 117.746746][ T4858] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 117.759805][ T4858] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.792820][ T6577] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 117.840050][ T6562] BTRFS info (device loop2): creating free space tree [ 117.877058][ T6562] BTRFS info (device loop2): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 117.919303][ T6562] BTRFS info (device loop2): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 118.050421][ T6639] IPv6: ADDRCONF(NETDEV_CHANGE): ipvlan2: link becomes ready [ 118.077379][ T26] audit: type=1800 audit(1770829155.602:27): pid=6562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.742" name="file1" dev="loop2" ino=260 res=0 errno=0 [ 118.128662][ T4346] usb 6-1: USB disconnect, device number 4 [ 118.233042][ T6645] loop0: detected capacity change from 0 to 256 [ 118.310569][ T6645] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 118.345458][ T6643] BTRFS info (device loop2): balance: start -sconvert=raid0,soft [ 118.379136][ T6643] BTRFS info (device loop2): left=0, need=98304, flags=10 [ 118.413452][ T6643] BTRFS info (device loop2): space_info 2 has 0 free, is not full [ 118.421704][ T6643] BTRFS info (device loop2): space_info total=4194304, used=4096, pinned=0, reserved=0, may_use=0, readonly=4190208 zone_unusable=0 [ 118.435555][ T6643] BTRFS info (device loop2): global_block_rsv: size 851968 reserved 851968 [ 118.444826][ T6643] BTRFS info (device loop2): trans_block_rsv: size 0 reserved 0 [ 118.452559][ T6643] BTRFS info (device loop2): chunk_block_rsv: size 0 reserved 0 [ 118.452635][ T6643] BTRFS info (device loop2): delayed_block_rsv: size 0 reserved 0 [ 118.452653][ T6643] BTRFS info (device loop2): delayed_refs_rsv: size 262144 reserved 163840 [ 118.518565][ T6643] BTRFS info (device loop2): relocating block group 1048576 flags system [ 118.607737][ T6634] loop1: detected capacity change from 0 to 32768 [ 118.655877][ T6643] BTRFS info (device loop2): balance: ended with status: 0 [ 118.661005][ T6652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.770'. [ 118.694292][ T26] audit: type=1800 audit(1770829156.212:28): pid=6634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.762" name="file1" dev="loop1" ino=4 res=0 errno=0 [ 118.952004][ T6654] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing [ 119.191778][ T6659] netlink: 68 bytes leftover after parsing attributes in process `syz.5.776'. [ 119.208322][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.5.776'. [ 119.556527][ T4180] loop0: p1 p2 < > p3 < p5 p6 > p4 [ 119.563473][ T4180] loop0: partition table partially beyond EOD, truncated [ 119.615906][ T4180] loop0: p1 size 917504 extends beyond EOD, truncated [ 119.668263][ T4180] loop0: p2 start 4278190080 is beyond EOD, truncated [ 119.693759][ T4180] loop0: p4 size 8192 extends beyond EOD, truncated [ 119.701881][ T4180] loop0: p5 size 917504 extends beyond EOD, truncated [ 119.739829][ T4180] loop0: p6 size 8192 extends beyond EOD, truncated [ 119.818131][ T6675] loop0: p1 p2 < > p3 < p5 p6 > p4 [ 119.848090][ T6675] loop0: partition table partially beyond EOD, truncated [ 119.856955][ T6704] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 119.873763][ T6675] loop0: p1 size 917504 extends beyond EOD, truncated [ 119.900880][ T6675] loop0: p2 start 4278190080 is beyond EOD, truncated [ 119.958880][ T6675] loop0: p4 size 8192 extends beyond EOD, truncated [ 119.980292][ T6675] loop0: p5 size 917504 extends beyond EOD, truncated [ 120.002944][ T6675] loop0: p6 size 8192 extends beyond EOD, truncated [ 120.017770][ T4203] block nbd0: Receive control failed (result -32) [ 120.023820][ T263] block nbd0: Send control failed (result -32) [ 120.031113][ T263] block nbd0: Request send failed, requeueing [ 120.047720][ T263] block nbd0: Dead connection, failed to find a fallback [ 120.055707][ T263] block nbd0: shutting down sockets [ 120.061544][ T263] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.073205][ T263] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.088696][ T263] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.099557][ T263] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.117175][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.130646][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.138945][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.150428][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.158774][ T263] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.170033][ T263] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.183806][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.194786][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.209057][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.220019][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.228267][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.230732][ T6713] hfsplus: invalid file type 0174377 for inode 21 [ 120.239209][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.257676][ T6637] ldm_validate_partition_table(): Disk read failed. [ 120.278827][ T4260] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 120.307449][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.318374][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.326859][ T150] blk_update_request: I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 120.330735][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.1.800'. [ 120.337750][ T150] Buffer I/O error on dev nbd0, logical block 0, async page read [ 120.357543][ T6637] Dev nbd0: unable to read RDB block 0 [ 120.381400][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 120.387271][ T4178] udevd[4178]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory [ 120.393011][ T6637] nbd0: unable to read partition table [ 120.403721][ T5197] udevd[5197]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory [ 120.418838][ T4179] udevd[4179]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 120.447266][ T6637] ldm_validate_partition_table(): Disk read failed. [ 120.456141][ T4180] udevd[4180]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 120.468495][ T6637] Dev nbd0: unable to read RDB block 0 [ 120.477759][ T6637] nbd0: unable to read partition table [ 120.503873][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 120.525311][ T4646] udevd[4646]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 120.540312][ T4178] udevd[4178]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory [ 120.547504][ T4180] udevd[4180]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 120.560083][ T4179] udevd[4179]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory [ 120.743868][ T4260] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 120.759751][ T4260] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.780024][ T6723] ntfs: volume version 3.1. [ 120.801494][ T4260] usb 6-1: config 0 descriptor?? [ 120.853615][ T4260] cp210x 6-1:0.0: cp210x converter detected [ 120.904169][ T6723] ntfs: (device loop0): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry. [ 120.929524][ T6734] set_capacity_and_notify: 6 callbacks suppressed [ 120.929546][ T6734] loop2: detected capacity change from 0 to 2048 [ 121.019037][ T6734] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 121.073290][ T4260] usb 6-1: cp210x converter now attached to ttyUSB0 [ 121.160995][ T6746] loop0: detected capacity change from 0 to 512 [ 121.171909][ T6744] loop3: detected capacity change from 0 to 2048 [ 121.302995][ T6744] EXT4-fs (loop3): mounted filesystem without journal. Opts: min_batch_time=0x000000000000000d,mb_optimize_scan=0x0000000000000001,noblock_validity,,errors=continue. Quota mode: none. [ 121.321106][ C0] vkms_vblank_simulate: vblank timer overrun [ 121.391248][ T7] usb 6-1: USB disconnect, device number 5 [ 121.402495][ T7] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 121.417769][ T7] cp210x 6-1:0.0: device disconnected [ 121.620066][ T6768] loop3: detected capacity change from 0 to 1024 [ 121.741504][ T5206] hfsplus: b-tree write err: -5, ino 4 [ 121.913975][ T6781] (syz.1.825,6781,0):dlmfs_mkdir:413 ERROR: invalid domain name for directory. [ 122.009708][ T6789] loop3: detected capacity change from 0 to 1024 [ 122.062770][ T6791] loop1: detected capacity change from 0 to 4096 [ 122.179765][ T6796] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 122.192597][ T7] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 122.294918][ T6798] netlink: 8 bytes leftover after parsing attributes in process `syz.2.833'. [ 122.472499][ T7] usb 1-1: Using ep0 maxpacket: 16 [ 122.632865][ T7] usb 1-1: config 0 interface 0 has no altsetting 0 [ 122.643590][ T7] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 122.664847][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.697611][ T7] usb 1-1: config 0 descriptor?? [ 122.961718][ T6783] loop0: detected capacity change from 0 to 8 [ 123.177801][ T4858] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 123.198897][ T6825] loop5: detected capacity change from 0 to 8192 [ 123.245286][ T6818] loop3: detected capacity change from 0 to 32768 [ 123.285677][ T4646] loop3: p1 p3 < p5 p6 > [ 123.290049][ T4646] loop3: partition table partially beyond EOD, truncated [ 123.329633][ T7] hid (null): unknown global tag 0xc [ 123.343488][ T7] hid (null): unknown global tag 0xc [ 123.352194][ T7] hid (null): global environment stack underflow [ 123.359142][ T6818] loop3: p1 p3 < p5 p6 > [ 123.362189][ T7] hid (null): unknown global tag 0xc [ 123.371456][ T7] hid (null): global environment stack underflow [ 123.379335][ T6818] loop3: partition table partially beyond EOD, truncated [ 123.383310][ T7] hid (null): unknown global tag 0xe [ 123.392303][ T7] hid (null): unknown global tag 0xf4 [ 123.400535][ T7] hid (null): invalid report_size 1623667742 [ 123.408307][ T7] hid (null): unknown global tag 0xe [ 123.415233][ T6830] netlink: 4 bytes leftover after parsing attributes in process `syz.5.847'. [ 123.432635][ T4858] usb 2-1: Using ep0 maxpacket: 8 [ 123.540531][ T7] usb 1-1: USB disconnect, device number 7 [ 123.552734][ T4858] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 123.564097][ T26] audit: type=1326 audit(1770829161.082:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.5.849" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7ace5e6f79 code=0x0 [ 123.593177][ T4858] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 123.610584][ T4858] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 123.621033][ T4858] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 123.633856][ T4858] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0 [ 123.643835][ T4858] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 123.663132][ T4858] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.671930][ T6837] loop3: detected capacity change from 0 to 64 [ 123.683410][ T4858] usb 2-1: config 0 descriptor?? [ 123.731882][ T4189] Bluetooth: hci6: urb ffff8880251bfc00 submission failed (90) [ 123.930172][ T4260] usb 2-1: USB disconnect, device number 11 [ 123.995184][ T6841] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 124.009151][ T6841] REISERFS (device loop3): using ordered data mode [ 124.016046][ T6841] reiserfs: using flush barriers [ 124.027601][ T6841] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 124.045194][ T6841] REISERFS (device loop3): checking transaction log (loop3) [ 124.185075][ T6841] REISERFS (device loop3): Using tea hash to sort names [ 124.192259][ T6841] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 124.291328][ T6849] netlink: 12 bytes leftover after parsing attributes in process `syz.0.855'. [ 124.609419][ T6861] EXT4-fs (loop5): orphan cleanup on readonly fs [ 124.654929][ T6861] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.861: bg 0: block 248: padding at end of block bitmap is not set [ 124.711332][ T6861] Quota error (device loop5): write_blk: dquota write failed [ 124.719845][ T6861] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 124.730068][ T6861] EXT4-fs error (device loop5): ext4_acquire_dquot:6234: comm syz.5.861: Failed to acquire dquot type 1 [ 124.802286][ T1111] Bluetooth: hci5: command 0x1003 tx timeout [ 124.829012][ T6861] EXT4-fs (loop5): 1 truncate cleaned up [ 124.839045][ T4189] Bluetooth: hci5: sending frame failed (-49) [ 124.873876][ T6861] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 124.938670][ T6861] EXT4-fs (loop5): shut down requested (0) [ 125.271328][ T26] audit: type=1326 audit(1770829162.792:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.1.871" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efd4ecf0f79 code=0x0 [ 125.338183][ T6900] program syz.0.873 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 125.363278][ T6884] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 125.373154][ T6884] REISERFS (device loop3): using ordered data mode [ 125.379751][ T6884] reiserfs: using flush barriers [ 125.386183][ T6884] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 125.403918][ T6884] REISERFS (device loop3): checking transaction log (loop3) [ 125.422688][ T6884] REISERFS (device loop3): Using r5 hash to sort names [ 125.443039][ T6884] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 125.485913][ T6906] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 125.493148][ T6906] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 125.562500][ T4852] usb 6-1: new full-speed USB device number 6 using dummy_hcd [ 125.704637][ T6910] netlink: 104 bytes leftover after parsing attributes in process `syz.3.875'. [ 125.908961][ T6908] XFS (loop0): Mounting V5 Filesystem [ 125.922683][ T4852] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 125.939346][ T4852] usb 6-1: New USB device found, idVendor=8380, idProduct=1850, bcdDevice= 0.00 [ 125.948962][ T4852] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 125.963379][ T4852] usb 6-1: config 0 descriptor?? [ 125.982931][ T6896] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 126.045044][ T6908] XFS (loop0): Ending clean mount [ 126.053225][ T6908] XFS (loop0): Quotacheck needed: Please wait. [ 126.086668][ T6912] set_capacity_and_notify: 4 callbacks suppressed [ 126.086682][ T6912] loop3: detected capacity change from 0 to 40427 [ 126.109712][ T6908] XFS (loop0): Quotacheck: Done. [ 126.166012][ T6912] F2FS-fs (loop3): invalid crc value [ 126.219200][ T6912] F2FS-fs (loop3): Found nat_bits in checkpoint [ 126.242975][ T4192] XFS (loop0): Unmounting Filesystem [ 126.407554][ T6912] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 126.444212][ T4852] betop 0003:8380:1850.000B: unknown main item tag 0x3 [ 126.451120][ T4852] betop 0003:8380:1850.000B: unknown main item tag 0x3 [ 126.468835][ T4852] betop 0003:8380:1850.000B: item fetching failed at offset 3/5 [ 126.490220][ T4852] betop 0003:8380:1850.000B: parse failed [ 126.497687][ T4852] betop: probe of 0003:8380:1850.000B failed with error -22 [ 126.523696][ T4191] attempt to access beyond end of device [ 126.523696][ T4191] loop3: rw=2049, want=45104, limit=40427 [ 126.563421][ T6924] loop1: detected capacity change from 0 to 40427 [ 126.600397][ T6924] F2FS-fs (loop1): invalid crc value [ 126.673057][ T6924] F2FS-fs (loop1): Found nat_bits in checkpoint [ 126.680614][ T4858] usb 6-1: USB disconnect, device number 6 [ 126.763564][ T6924] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0 [ 126.771914][ T6924] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 126.875580][ T1111] Bluetooth: hci5: command 0x1001 tx timeout [ 126.881661][ T4189] Bluetooth: hci5: sending frame failed (-49) [ 127.163644][ T6934] loop0: detected capacity change from 0 to 32768 [ 127.230261][ T6934] JBD2: Ignoring recovery information on journal [ 127.268059][ T6934] jbd2_journal_bmap: journal block not found at offset 32 on loop0-75 [ 127.282977][ T6934] JBD2: bad block at offset 32 [ 127.308991][ T6934] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 127.398564][ T6934] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list [ 127.472206][ T6936] loop3: detected capacity change from 0 to 32768 [ 127.474762][ T6934] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 127.532865][ T6934] OCFS2: File system is now read-only. [ 127.538433][ T6934] (syz.0.879,6934,1):ocfs2_find_leaf:1941 ERROR: status = -30 [ 127.546371][ T6934] (syz.0.879,6934,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30 [ 127.555219][ T6934] (syz.0.879,6934,1):ocfs2_fiemap:782 ERROR: status = -30 [ 127.575873][ T6936] XFS (loop3): Mounting V5 Filesystem [ 127.639381][ T4192] ocfs2: Unmounting device (7,0) on (node local) [ 127.812328][ T6940] loop5: detected capacity change from 0 to 32768 [ 127.843406][ T6936] XFS (loop3): Ending clean mount [ 127.868646][ T6936] overlayfs: failed to set xattr on upper [ 127.929709][ T6936] overlayfs: ...falling back to index=off,metacopy=off. [ 128.022946][ T4191] XFS (loop3): Unmounting Filesystem [ 128.058902][ T6942] loop1: detected capacity change from 0 to 32768 [ 128.122241][ T6967] ptrace attach of "./syz-executor exec"[4192] was attempted by "./syz-executor exec"[6967] [ 128.192881][ T6942] ERROR: (device loop1): dbAllocAG: unable to allocate blocks [ 128.192881][ T6942] [ 128.237544][ T6942] ERROR: (device loop1): remounting filesystem as read-only [ 128.276202][ T6942] jfs_rename: dtInsert returned -EIO [ 128.530548][ T4189] Bluetooth: hci4: link tx timeout [ 128.554543][ T4189] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 128.860195][ T6995] syz.0.894 uses obsolete (PF_INET,SOCK_PACKET) [ 128.939406][ T7001] loop1: detected capacity change from 0 to 128 [ 128.949841][ T4260] Bluetooth: hci5: command 0x1009 tx timeout [ 129.004943][ T26] audit: type=1800 audit(1770829166.532:31): pid=7001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.896" name="file1" dev="loop1" ino=1048631 res=0 errno=0 [ 129.074860][ T26] audit: type=1800 audit(1770829166.532:32): pid=7001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.896" name="file1" dev="loop1" ino=1048631 res=0 errno=0 [ 129.109657][ T5206] FAT-fs (loop1): error, invalid FAT chain (i_pos 548, last_block 8) [ 129.118743][ T5206] FAT-fs (loop1): Filesystem has been set read-only [ 129.141987][ T5206] FAT-fs (loop1): error, corrupted file size (i_pos 548, 522) [ 129.321280][ T7014] loop1: detected capacity change from 0 to 512 [ 129.482918][ T7014] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 129.550926][ T7014] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 129.554014][ T7032] loop3: detected capacity change from 0 to 1024 [ 129.601706][ T7032] EXT4-fs (loop3): Ignoring removed oldalloc option [ 129.656332][ T7032] EXT4-fs (loop3): mounted filesystem without journal. Opts: nogrpid,oldalloc,,errors=continue. Quota mode: none. [ 129.918322][ T7054] loop3: detected capacity change from 0 to 64 [ 130.103534][ T7054] hfs: hfs: Invalid key length: 94 [ 130.119553][ T7057] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #3: block 2: comm syz.1.915: lblock 2 mapped to illegal pblock 2 (length 1) [ 130.237288][ T7057] Quota error (device loop1): write_blk: dquota write failed [ 130.242451][ T1111] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 130.274299][ T881] ------------[ cut here ]------------ [ 130.279825][ T881] kernel BUG at fs/hfs/inode.c:447! [ 130.292686][ T7057] Quota error (device loop1): find_free_dqentry: Can't write quota data block 2 [ 130.294675][ T881] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 130.307932][ T881] CPU: 0 PID: 881 Comm: kworker/u4:3 Not tainted syzkaller #0 [ 130.311838][ T7057] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 130.315385][ T881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 130.315398][ T881] Workqueue: writeback wb_workfn (flush-7:3) [ 130.315424][ T881] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 130.315443][ T881] Code: 8d ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 50 9c 8d ff e9 47 fe ff ff e8 76 90 48 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 130.315456][ T881] RSP: 0018:ffffc90003eef3c0 EFLAGS: 00010293 [ 130.315469][ T881] RAX: ffffffff823091ca RBX: ffff88805c42c918 RCX: ffff88801fca3b80 [ 130.342325][ T7057] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.915: Failed to acquire dquot type 0 [ 130.346864][ T881] RDX: 0000000000000000 RSI: ffffffff8c4e2b40 RDI: 0000000000000000 [ 130.346879][ T881] RBP: ffffc90003eef550 R08: ffff88801fca3b80 R09: 0000000000000003 [ 130.346889][ T881] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 130.346899][ T881] R13: 1ffff920007dde7c R14: 0000000000000000 R15: ffff88805c42c8d8 [ 130.346909][ T881] FS: 0000000000000000(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 [ 130.346922][ T881] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.346933][ T881] CR2: 00007f5ea3a66440 CR3: 000000005962f000 CR4: 00000000003506f0 [ 130.346947][ T881] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 130.366532][ C1] vkms_vblank_simulate: vblank timer overrun [ 130.372568][ T881] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 130.447716][ T7057] EXT4-fs error (device loop1): ext4_map_blocks:629: inode #3: block 2: comm syz.1.915: lblock 2 mapped to illegal pblock 2 (length 1) [ 130.455192][ T881] Call Trace: [ 130.455202][ T881] [ 130.455210][ T881] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 130.455234][ T881] ? __writeback_single_inode+0x471/0xda0 [ 130.455252][ T881] ? __rwlock_init+0x140/0x140 [ 130.455269][ T881] __writeback_single_inode+0x6c3/0xda0 [ 130.455284][ T881] writeback_sb_inodes+0xa4e/0x1680 [ 130.455305][ T881] ? queue_io+0x550/0x550 [ 130.455324][ T881] ? rcu_is_watching+0x11/0xa0 [ 130.455341][ T881] wb_writeback+0x45d/0xbe0 [ 130.455360][ T881] ? rcu_lock_release+0x20/0x20 [ 130.455375][ T881] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 130.455396][ T881] ? mark_lock+0x94/0x320 [ 130.455409][ T881] ? _raw_spin_unlock_irq+0x1f/0x40 [ 130.455426][ T881] wb_workfn+0x43a/0xf20 [ 130.462184][ T7057] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 130.469440][ T881] ? inode_wait_for_writeback+0x220/0x220 [ 130.469465][ T881] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 130.469485][ T881] ? trace_hardirqs_off_finish+0xca/0x1f0 [ 130.469507][ T881] ? lockdep_hardirqs_on+0x94/0x140 [ 130.469524][ T881] ? read_lock_is_recursive+0x10/0x10 [ 130.469543][ T881] process_one_work+0x85f/0x1010 [ 130.469565][ T881] ? worker_detach_from_pool+0x240/0x240 [ 130.469579][ T881] ? lockdep_hardirqs_off+0x70/0x100 [ 130.469601][ T881] ? _raw_spin_lock_irq+0xb7/0xf0 [ 130.469614][ T881] ? _raw_spin_lock_irqsave+0x100/0x100 [ 130.469630][ T881] ? wq_worker_running+0x97/0x170 [ 130.469644][ T881] worker_thread+0xaa6/0x1290 [ 130.469663][ T881] ? lockdep_hardirqs_on+0x94/0x140 [ 130.469678][ T881] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 130.469696][ T881] kthread+0x436/0x520 [ 130.469710][ T881] ? rcu_lock_release+0x20/0x20 [ 130.469724][ T881] ? kthread_blkcg+0xd0/0xd0 [ 130.469737][ T881] ret_from_fork+0x1f/0x30 [ 130.469757][ T881] [ 130.469772][ T881] Modules linked in: [ 130.593852][ T1111] usb 1-1: Using ep0 maxpacket: 16 [ 130.614134][ T7057] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.915: Failed to acquire dquot type 0 [ 130.649054][ T7] Bluetooth: hci4: command 0x0406 tx timeout [ 130.651891][ T7057] EXT4-fs error (device loop1): ext4_free_blocks:6234: comm syz.1.915: Freeing blocks not in datazone - block = 0, count = 4096 [ 130.702806][ T881] ---[ end trace 7526278b23baf481 ]--- [ 130.708545][ T7057] EXT4-fs error (device loop1): ext4_map_blocks:629: inode #3: block 2: comm syz.1.915: lblock 2 mapped to illegal pblock 2 (length 1) [ 130.723956][ T881] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 130.729660][ T7057] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 130.739899][ T881] Code: 8d ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 50 9c 8d ff e9 47 fe ff ff e8 76 90 48 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 130.759884][ T7057] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.915: Failed to acquire dquot type 0 [ 130.771409][ T881] RSP: 0018:ffffc90003eef3c0 EFLAGS: 00010293 [ 130.777618][ T7057] EXT4-fs (loop1): 1 orphan inode deleted [ 130.783661][ T7057] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 130.784092][ T1111] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 130.795057][ T881] RAX: ffffffff823091ca RBX: ffff88805c42c918 RCX: ffff88801fca3b80 [ 130.795077][ T881] RDX: 0000000000000000 RSI: ffffffff8c4e2b40 RDI: 0000000000000000 [ 130.795089][ T881] RBP: ffffc90003eef550 R08: ffff88801fca3b80 R09: 0000000000000003 [ 130.795100][ T881] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 130.795110][ T881] R13: 1ffff920007dde7c R14: 0000000000000000 R15: ffff88805c42c8d8 [ 130.815679][ T1111] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 130.845763][ T881] FS: 0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000 [ 130.846708][ T1111] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28 [ 130.857479][ T881] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.865318][ T1111] usb 1-1: config 0 interface 0 has no altsetting 0 [ 130.879625][ T881] CR2: 0000001b32623ff8 CR3: 0000000077526000 CR4: 00000000003506e0 [ 130.884807][ T1111] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 130.891502][ T881] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 130.899864][ T1111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.911829][ T881] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 130.918206][ T1111] usb 1-1: config 0 descriptor?? [ 130.932471][ T881] Kernel panic - not syncing: Fatal exception [ 130.934254][ T7079] EXT4-fs (loop1): shut down requested (1) [ 130.937970][ T881] Kernel Offset: disabled [ 130.954138][ T881] Rebooting in 86400 seconds..