last executing test programs:

44.413094801s ago: executing program 3 (id=418):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x15, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10005}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x10000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

44.212245017s ago: executing program 3 (id=419):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000000))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x3)
ioctl$TCXONC(r1, 0x540a, 0x2)

44.090746937s ago: executing program 3 (id=421):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e21, @empty}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x881)
r1 = dup(r0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x85, &(0x7f0000000540)={0x0, 0x88, "0200000000000000703fcd09bdf0b493d4323725cdcff2eae49f89843a5318d5ba093aa761132b512e8c4eb4eb76aa3f3069d1d5a64a2c75a2d59986feff48dc51b23de50b4c052630642b3348c700b558041310b18d364b87808f6ec3b597fae6ac116b5bc6c564f98676e592103c268225b716a73e58c8c8f8ec21e15e7a5d6743243dfde8a664"}, &(0x7f00000000c0)=0x90)

43.836482157s ago: executing program 3 (id=422):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000140)={[{@creator={'creator', 0x3d, "4759a623"}}, {@gid}, {@nodecompose}, {@nobarrier}, {@barrier}, {@uid}, {@nls={'nls', 0x3d, 'cp1251'}}]}, 0x44, 0x6ff, &(0x7f0000000240)="$eJzs3U1sHGf5APBn1uu1N5XcbZu0/f+FFKsRETSQ2F5KgoREqBDyoUKRuPS6JE5jee1GtoucCBEXKBzhhHLooQiZQ0+oB6QiDohyRkLiinKPxD3iwKKZnVnvh73ebfyRhN9Pmp13Zt6PZ57OvN6dbbQB/M9afDsmtyOJxQtvbaXbD3bqzQc79dWiHBFTEVGKKLdXkaxFJJ9FXI32Ev+X7sy7S/Yb542Hn354/v7H9fZWOV+y+qVh7Xa1hoywnS8xGxET+XpM5f36ux5vDvR3b6yuk07cacLOFYmDk9YasD1O8xHuW+BJdy9iYnKP/bWIUxExnb8PiHx2KB1zeIdurFkOAAAAnkwTB1V4/lE8iq2YOZ5wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4NmQtH8zMMmXUlGejaT4/f9Kvi9VqZxwvMN95YDjH9w8pkAAAAAAAAAA4Eh8kn9xf/ZRPIqtmCn2t5LsO//Xso3T2etz8V5sxFKsx8XYikZsxmasx3zE5ExXh5Wtxubm+vxgy19H2rLVat3LWy5ERG2g5cI+gZYO+cQBAAAAAAAA4Nn0k1iMmZMOAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuiURE+1VtpwuyrUolSNiOiIqab3tiD8V5afZn086AAAAADh61Xw9k/ynXWgl2Wf+l7PP/dPxXqzFZizHZjRjKW5kzwLan/pLf9+uNx/s1FfTZbDjb/9rrDiyHiNiIt7fZ+S5rMaZTovF+G58Py7EbFyL9ViOH0YjNmMpZqOankQ0Iolatf30olbEuXe8V3u2rvXHdrZv+9UskmrcjOUstotxvRLtxybZOaRjvto12h8qEX0jvp9mJ/lWbsQc3ej67/Wr/LlMrvX8iH0cjVp25pOdjMyluc+z8cLw3I95nfSPNB+lzjOo07ujpJv9IxU5/8E4OT/VXk2nLz/vzflhG/NRWn8mFqKUX30RL/fm/PYX77/Y2/jL//jLtVultZVbNzcuHOEpPY7ZgypMFoX+TNS7MvHK8Ksvz0QzzcT26JmY7N8xPWrLo1XJs5FNRSPOlt/JSo14resSfDduxFJcjrmYjysxF9+Ihah3rrB0OdOT13J9tTcn2b1WGpzfqkOCP/elrkq/OKDy8Urz8kJXXrtnulp2LN9z9Zcx13X1vTj86hv7r0A6/v/n5XSMn3b+4jwJejKRz81FdC8Nz8RvWunrRnNtZf1W4/aI453P1+lt+0Hv3Pzb0aPu/+t+GNLrJZ1xy9lWlpNqcb2kx17qRNubr0r+jUu7XWng2JnOsVrMxHJ8b987tZK/hxvsqX3sle5j/9ydOSv5+5viWM+7nHg3mtm7kD4HTtUAHLNTr5+qVB9W/1b9qPqz6q3qW9NvTl2Z+kIlJv9a/uPE70u/K30zeT0+ih/HzElHCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz4KNO3dXGs3m0nqnENP9ex63UNl3rOGFKB1YZ+e50TqMWsTwsZK8UDncc38aC9Xo21P8wtLj9vxJRAypU3ns4JOxr7GxC2keDqXDVqud1GxPa2KM5uWi1d51yrExHSuNpLzHHTe1exdEbaXR/Herp3k1um4Z4Bl3aXP19qWNO3e/urzaeGfpnaW1hSuXr1yuf33+a5duLjeX5tqvJx0lcBQ27tyd2GP3wC/dAgAAAAAAAAAAAE+O/P/+3/zc/5ihfECdyvrG3iOfPe5TBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ5Si2/H5HYkMT93cS7dfrBTb6ZLUd6tWY6IUkQkP4pIPou4Gu0lal3dJfuN88bDTz88f//j+m5f5aJ+aVi70WznS8xGxES+PtjUHt0M9ne9q7/tzxVe0jnDNGHnisTBSftvAAAA//9u//cB")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\xdd\x98\xb8\rQh#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15A\xb5\xbbG\xa0\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)
openat$drirender128(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

43.526392002s ago: executing program 3 (id=427):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r0])

42.900686512s ago: executing program 3 (id=432):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x1d}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)

42.373623595s ago: executing program 32 (id=432):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x1d}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)

3.690531374s ago: executing program 0 (id=684):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x10800000001fb, 0xac4481)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x3a)
bind(r0, &(0x7f0000000000)=@hci={0xa, 0x2}, 0x80)

3.060108924s ago: executing program 0 (id=693):
openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="50000000041400032bbd7000fcdbdf2508000100000000fb0800010000000000080001000200000008000100000000000800010001000000080001"], 0x50}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000007c0000007c00000003000000010000000500008b9b3e9f7767757c06040000000f0000000300000008000000560000000200000006000000090000000600000006000000fbffffff04000000"], 0x0, 0x97, 0x0, 0x1}, 0x28)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff2000/0x2000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff3000/0x1000)=nil, 0x0, 0xfffffffffffffe43}, 0x68)

2.940902254s ago: executing program 0 (id=696):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

2.383675519s ago: executing program 4 (id=702):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040))
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x90)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f00000000c0)={0xfffffff8, 0x401, 0xfffffffd, 0x7ff, 0x7, "0441920887e87fcb367800000000080100", 0x4, 0xff})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0x8)

2.131386999s ago: executing program 4 (id=705):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200008c0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0xffff, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x10b8}, 0x200008c0)

2.021441008s ago: executing program 0 (id=707):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000000)={&(0x7f0000000540)={{@host=0x10}, {@host=0x10, 0x800}, 0x400, "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"}, 0x418, 0x1})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r0, 0x7ac, &(0x7f0000000140)={0x0, 0xffffffffffffff60, 0x6})

1.979087271s ago: executing program 1 (id=715):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="001c86dd0700100000001400000060ec97000fc804f9fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

1.916686626s ago: executing program 4 (id=708):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
timer_gettime(r0, 0x0)

1.916524486s ago: executing program 0 (id=709):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000000000040de28421100000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000001c0)={0x2c, &(0x7f0000000000)={0x0, 0x0, 0x5, {0x5, 0x0, "b1a748"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGRDESC(r1, 0x90044802, 0x0)

1.711635993s ago: executing program 1 (id=710):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000900", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c000280080004000000000006000600"], 0x4c}}, 0x0)

1.504149349s ago: executing program 1 (id=713):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}})
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0), 0x2000002, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.215295592s ago: executing program 2 (id=717):
openat$sequencer(0xffffffffffffff9c, 0x0, 0xa00, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x1e3003, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000300))
ioctl$SNDCTL_SEQ_RESET(r0, 0x5100)

1.176109146s ago: executing program 4 (id=718):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000004c0)={<r1=>0xffffffffffffffff}, 0x13f, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x2, 0x0, 0x30, 0x0, @ib={0x1b, 0x7, 0xfffffffd, {}, 0x1, 0x7e1f, 0x5}, @ib={0x1b, 0xd160, 0x387d, {"382f8d5866dc8450ea081437b9de2da3"}, 0x7fffffff, 0x0, 0x742}}}, 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r1, 0x9}}, 0x10)
close(r0)

1.092705962s ago: executing program 2 (id=719):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x2}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x20000080)

1.080313204s ago: executing program 4 (id=720):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x4000, &(0x7f0000000040)=ANY=[], 0xff, 0x60c0, &(0x7f000000d800)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
sendfile(r0, r1, 0x0, 0xfffe80)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0)

1.054621806s ago: executing program 2 (id=721):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000007540), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000007640)={0x0, 0x0, &(0x7f0000007600)={&(0x7f00000002c0)={0x20, r0, 0x1, 0x70bd2a, 0x25dfdbfa, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x4)

904.743738ms ago: executing program 2 (id=722):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x100, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_DELDEST(r1, 0x6, 0x9, &(0x7f0000000080)={{0x21, @remote, 0x0, 0x3, 'sh\x00'}, {@private=0xa810101, 0x4, 0x0, 0x0, 0x100000, 0xfffffffe}}, 0x44)
getsockopt$inet_tcp_int(r1, 0x6, 0x9, 0x0, &(0x7f0000000040))

600.555492ms ago: executing program 1 (id=723):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x161283, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000800)=ANY=[@ANYBLOB="cf"])

600.361232ms ago: executing program 2 (id=724):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002200)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x4, 0x0}}, 0x10, 0x0}}], 0x1, 0x4000000)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={r2, 0x7}, &(0x7f0000000080)=0x8)

497.61384ms ago: executing program 2 (id=725):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000c2494b204c05250000010102032a09021200010000000009040000000202"], 0x0)
ioperm(0x0, 0xd, 0xffff)

349.232722ms ago: executing program 1 (id=726):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @multicast})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100014004000000060ec970200140400fb8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

100.682902ms ago: executing program 1 (id=727):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x20bc, 0x5500, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x7, 0xa, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x800, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@global=@item_012={0x0, 0x1, 0x7}, @main=@item_012={0x0, 0x0, 0xc}, @local=@item_4={0x3, 0x2, 0x1, "b3bba036"}]}}, 0x0}, 0x0)

35.796358ms ago: executing program 4 (id=728):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb77, &(0x7f0000000c40)="$eJzs3c9vFFUcAPDvzG5LKWgX40GMCTUeIDFsW0BB4gE8Gg8mkqAnXPuDNCxgaE0sIbHcTLyowZMnT2qiR6+GGPXkweiJ/8CQEFP4A2pmdnZZ6W5LYcuQ8vkks/vePJb3nSbffW86bzoBPLHGs5c0Ym9EfJ5EjBX704gYzksjEcutf3dn5cp0tiWxuvrOv0kkEXF75cp0+/9Kivdd2Us1/2T89UvEM5W1/S4sXT7XaDZnLxX1icXzH04sLF0+OH++cXb27OyFQ69OHp567cixV44M7FiXjqaf/fnmG99dO/P1Hz8ee+HTJE7E7qKt+zgGZTzGOz+TbtWIeG/QnZWkUhxPr+MEAODxk3bN4fbGWFTyUstY1OdLDQ4AAAAYiE8iYhUAAADY5hLn/wAAALDNtdcB3F65Mt3eyl2RADwqt05GRK2V/+37+1st1VjO30diKCJG7yRddwa17veuDaD/8Yj44auj+7Ittug+fKC35asR8Vyv8T/J87+W/xWPtfmfRsTkAPofv6cu/+HReZj8PzGA/uU/AAAAAAAADM71k60L+Wuv/6Wd9T/R4/pfpce1uwex8fW/9OYAugF6uHUy4vWuZ/vc6cr/Qq1S1J7K1wMMJXPzzdnJiHg6Ig7E0I6sPrVOH9/+dPzvfm3d6/+yLeu/vRawiONmdcf/PzPTWGw8zDEDLbeuRjxf7ZX/SWf8T/qs/337Pvv47fTPc/3aNs5/YKusfhOxv+f4f/eJbsn6z+ebyOcDE+1ZwVqnX/z1+379y38oTzb+j66f/7Wk+3mdC5vvY3L04Nl+bQ86/x9OTuVPFR0u9n3cWFy8NBUxnLy1dv+hzccM21E7H9r5kuX/gZd6n/+vN//Pkuz94lsijYhG8Z7VP7inzx1nfv+iXzzGfyhPlv8zmxr/N1/48t2VU/36v7/x/0g+ph8o9vj9H6zvfhO07DgBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgcZJGxO5I0nqnnKb1esSuiHg2RtPmxYXFl+cufnRhJmuLqMVQOjffnJ2MiLFWPcnqU3n5bv3QPfXDEbEnIq6N7czr9emLzZmyDx4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICOXRGxO5K0HhFpXk7Ter3V9s9Y2dEBAAAAA1MrOwAAAABgyzn/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAh7dl3/UYSEcvHd+ZbZrhoGyo1MmCrpWUHAJSmUnYAQGmqZQcAlMY5PpBs0D7St8UMAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBJsn/v9RtJRCwf35lvmeGibajUyICtlpYdAFCaStkBAKWplh0AUBrn+ECyQftI3xYzCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAnycLS5XONZnP2koKCgkKnUPY3EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANvZfwEAAP//vlL7zw==")
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x3000019, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x134)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))

0s ago: executing program 0 (id=729):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00', <r1=>0x0})
sendmsg$inet6(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0xa, 0x4e22, 0x80000, @mcast2, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000240)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r1}}}], 0x28}, 0x10)

kernel console output (not intermixed with test programs):

3447][ T5791] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.382343][ T5791] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.395621][ T5786] veth0_macvtap: entered promiscuous mode
[   89.420440][ T5786] veth1_macvtap: entered promiscuous mode
[   89.450762][ T4530] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.463931][ T4530] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.547987][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.559853][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.568021][ T5870] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   89.570576][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.599154][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.609008][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.620947][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.633949][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.647773][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.665111][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.678307][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.689175][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.699013][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.709910][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.721896][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.775789][ T5786] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.785449][ T5786] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.796645][ T5786] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.805705][ T5786] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.983036][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.014832][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.032364][ T5787] Bluetooth: hci1: command tx timeout
[   90.037829][ T5787] Bluetooth: hci0: command tx timeout
[   90.102130][ T5878] syz.0.6[5878]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   90.111445][ T5787] Bluetooth: hci2: command tx timeout
[   90.145353][ T5878] loop0: detected capacity change from 0 to 512
[   90.189498][ T5787] Bluetooth: hci3: command tx timeout
[   90.215504][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.224651][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.253783][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.282523][ T5880] syz.2.7 uses obsolete (PF_INET,SOCK_PACKET)
[   90.290690][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.300087][ T5880] syzkaller1: entered promiscuous mode
[   90.306919][ T5880] syzkaller1: entered allmulticast mode
[   90.320654][ T5878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.336544][ T5878] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.486005][ T3537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.518590][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.528153][ T3537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.853178][ T5891] netlink: 14528 bytes leftover after parsing attributes in process `syz.1.2'.
[   91.055411][ T5898] loop1: detected capacity change from 0 to 1024
[   91.071419][ T5898] =======================================================
[   91.071419][ T5898] WARNING: The mand mount option has been deprecated and
[   91.071419][ T5898]          and is ignored by this kernel. Remove the mand
[   91.071419][ T5898]          option from the mount to silence this warning.
[   91.071419][ T5898] =======================================================
[   91.122386][ T5898] EXT4-fs: inline encryption not supported
[   91.128558][ T5898] EXT4-fs: Ignoring removed i_version option
[   91.176610][ T5898] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   91.206405][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   91.222119][ T5898] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.308991][   T27] audit: type=1326 audit(1755665695.143:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f181818ebe9 code=0x7ffc0000
[   91.335279][   T27] audit: type=1326 audit(1755665695.143:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.357861][   T27] audit: type=1326 audit(1755665695.143:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.380370][   T27] audit: type=1326 audit(1755665695.143:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.406401][   T27] audit: type=1326 audit(1755665695.163:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.455797][   T27] audit: type=1326 audit(1755665695.163:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.569225][   T27] audit: type=1326 audit(1755665695.163:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.625130][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   91.674912][   T27] audit: type=1326 audit(1755665695.163:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.795715][   T27] audit: type=1326 audit(1755665695.163:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.886773][   T27] audit: type=1326 audit(1755665695.163:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f181812add9 code=0x7ffc0000
[   91.944518][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.027639][ T5905] netlink: 'syz.0.14': attribute type 1 has an invalid length.
[   92.063792][ T5905] netlink: 'syz.0.14': attribute type 2 has an invalid length.
[   92.110352][ T5787] Bluetooth: hci0: command tx timeout
[   92.116156][ T5784] Bluetooth: hci1: command tx timeout
[   92.190122][ T5787] Bluetooth: hci2: command tx timeout
[   92.197151][ T1185] cfg80211: failed to load regulatory.db
[   92.269503][ T5787] Bluetooth: hci3: command tx timeout
[   92.321991][ T5910] input: syz1 as /devices/virtual/input/input5
[   92.535546][ T5917] loop3: detected capacity change from 0 to 128
[   92.863462][ T5919] loop3: detected capacity change from 0 to 256
[   92.886137][ T5913] loop0: detected capacity change from 0 to 32768
[   92.895403][ T5919] exfat: Deprecated parameter 'namecase'
[   92.929976][ T5913] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.18 (5913)
[   92.956895][ T5919] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   93.001540][ T5913] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   93.020185][ T5913] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   93.055674][ T5913] BTRFS info (device loop0): using free space tree
[   93.289306][ T5913] BTRFS info (device loop0): enabling ssd optimizations
[   93.311274][ T5913] BTRFS info (device loop0): auto enabling async discard
[   93.359756][ T5915] loop2: detected capacity change from 0 to 40427
[   93.401990][ T5915] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   93.424267][ T5915] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   93.496360][ T5915] F2FS-fs (loop2): invalid crc value
[   93.582170][ T5915] F2FS-fs (loop2): Found nat_bits in checkpoint
[   93.781330][ T5785] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   93.827024][ T5915] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   93.845639][ T5915] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   94.294138][ T5915] syz.2.19: attempt to access beyond end of device
[   94.294138][ T5915] loop2: rw=2049, sector=45096, nr_sectors = 32 limit=40427
[   94.498665][ T5939] loop3: detected capacity change from 0 to 32768
[   94.518788][ T5939] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.23 (5939)
[   94.596166][ T5939] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   94.629467][ T5939] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[   94.664961][ T5939] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[   94.694067][ T5945] loop1: detected capacity change from 0 to 32768
[   94.702986][ T5939] BTRFS info (device loop3): use zstd compression, level 3
[   94.714340][ T5939] BTRFS info (device loop3): using free space tree
[   94.779968][ T5945] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   94.870450][ T5939] BTRFS info (device loop3): enabling ssd optimizations
[   94.899244][ T5939] BTRFS info (device loop3): auto enabling async discard
[   95.080872][ T5945] XFS (loop1): Ending clean mount
[   95.136065][ T5945] XFS (loop1): Quotacheck needed: Please wait.
[   95.235620][ T5844] kernel write not supported for file /video36 (pid: 5844 comm: kworker/0:6)
[   95.296435][ T5945] XFS (loop1): Quotacheck: Done.
[   95.543057][ T5791] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   95.707147][ T5984] loop2: detected capacity change from 0 to 512
[   95.733138][ T5786] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   95.806589][ T5984] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   95.877852][ T5984] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[   95.890795][ T5984] System zones: 0-2, 18-18, 34-34
[   95.957545][ T5984] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.007346][ T5993] loop0: detected capacity change from 0 to 16
[   96.023115][ T5984] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.060207][ T5993] MTD: Attempt to mount non-MTD device "/dev/loop0"
[   96.115729][ T5996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.32'.
[   96.165434][ T5984] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   96.240103][ T5984] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32896 with max blocks 1 with error 28
[   96.306494][ T5984] EXT4-fs (loop2): This should not happen!! Data will be lost
[   96.306494][ T5984] 
[   96.349575][ T5984] EXT4-fs (loop2): Total free blocks count 0
[   96.382354][ T5984] EXT4-fs (loop2): Free/Dirty block details
[   96.401790][ T5984] EXT4-fs (loop2): free_blocks=39626
[   96.428668][ T5984] EXT4-fs (loop2): dirty_blocks=1
[   96.462610][ T5984] EXT4-fs (loop2): Block reservation details
[   96.489180][ T5984] EXT4-fs (loop2): i_reserved_data_blocks=1
[   96.670400][ T6002] syzkaller1: entered promiscuous mode
[   96.673835][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.689301][ T6002] syzkaller1: entered allmulticast mode
[   96.864115][ T6007] netlink: 36 bytes leftover after parsing attributes in process `syz.1.38'.
[   97.000396][ T6014] loop2: detected capacity change from 0 to 128
[   97.007955][ T6014] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   97.048962][ T6014] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   97.089611][    C1] hrtimer: interrupt took 41896 ns
[   97.164149][   T12] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   97.958774][ T5843] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   98.157487][ T5843] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[   98.169264][ T5843] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.213792][ T5843] usb 3-1: config 0 descriptor??
[   98.242597][ T5843] cp210x 3-1:0.0: cp210x converter detected
[   98.343508][ T6027] loop3: detected capacity change from 0 to 32768
[   98.696303][ T5843] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[   98.867099][ T6049] pim6reg1: entered promiscuous mode
[   98.872675][ T6049] pim6reg1: entered allmulticast mode
[   98.941029][ T5843] usb 3-1: cp210x converter now attached to ttyUSB0
[   99.093042][ T6053] input: syz0 as /devices/virtual/input/input6
[   99.205797][ T6055] tipc: Started in network mode
[   99.220171][ T6055] tipc: Node identity c, cluster identity 4711
[   99.227574][ T5774] usb 3-1: USB disconnect, device number 2
[   99.230425][ T6055] tipc: Node number set to 12
[   99.251512][ T5774] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[   99.286466][ T5774] cp210x 3-1:0.0: device disconnected
[   99.405504][ T6059] syzkaller1: entered promiscuous mode
[   99.417561][ T6059] syzkaller1: entered allmulticast mode
[  100.009290][ T3060] psmouse serio2: Failed to reset mouse on : -5
[  100.665694][ T6076] loop2: detected capacity change from 0 to 32768
[  100.753470][ T6076] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  100.888901][ T6076] XFS (loop2): Ending clean mount
[  100.924779][ T6076] XFS (loop2): Quotacheck needed: Please wait.
[  100.932606][ T6084] loop3: detected capacity change from 0 to 32768
[  101.029787][ T6076] XFS (loop2): Quotacheck: Done.
[  101.076395][ T6096] loop0: detected capacity change from 0 to 4096
[  101.136729][ T6096] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.165778][ T6084] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  101.240690][ T6076] XFS (loop2): User initiated shutdown received.
[  101.247580][ T6076] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[  101.261285][ T6076] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  101.344357][ T6096] fs-verity: sha256 using implementation "sha256-avx2"
[  101.364042][ T5782] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.403460][ T6096] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.73: bg 0: block 363: padding at end of block bitmap is not set
[  101.464122][ T6096] fs-verity (loop0, inode 15): ext4_end_enable_verity() failed with err -117
[  101.626405][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.758724][ T5791] ocfs2: Unmounting device (7,3) on (node local)
[  102.378407][ T6115] ip6_tunnel: non-ECT from fe88:a43d:e1a4:0000:0000:0000:0000:7d01 with DS=0xe
[  102.634984][ T6117] bond0: entered promiscuous mode
[  102.649083][ T6117] bond_slave_0: entered promiscuous mode
[  102.662065][ T6120] loop0: detected capacity change from 0 to 2048
[  102.665265][ T6117] bond_slave_1: entered promiscuous mode
[  102.691458][ T5774] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  102.696574][ T6120] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.715140][ T5774] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  102.733182][ T5774] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  102.766227][ T5774] hid-generic 0000:0004:0000.0001: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz0
[  102.995893][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.007277][ T6124] fido_id[6124]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  103.829211][ T3060] misc userio: Buffer overflowed, userio client isn't keeping up
[  103.849939][ T5774] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  104.048156][ T5774] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  104.060839][ T5774] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  104.072770][ T5774] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  104.086919][ T5774] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  104.103935][ T5774] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  104.113517][ T5774] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.122023][ T5774] usb 1-1: Product: syz
[  104.126350][ T5774] usb 1-1: Manufacturer: syz
[  104.138031][ T5774] usb 1-1: SerialNumber: syz
[  104.158178][ T6145] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  104.424082][ T6145] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  104.527458][ T6169] netlink: 'syz.2.102': attribute type 10 has an invalid length.
[  104.573931][ T6169] team0: Port device dummy0 added
[  104.633791][ T6169] netlink: 'syz.2.102': attribute type 10 has an invalid length.
[  104.683534][ T6169] team0: Port device dummy0 removed
[  104.696505][ T6169] dummy0: entered promiscuous mode
[  104.706182][ T6169] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  104.780075][ T6163] loop3: detected capacity change from 0 to 32768
[  104.796217][ T6163] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.99 (6163)
[  104.848827][ T6163] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  104.874461][ T6163] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  104.906731][ T6163] BTRFS info (device loop3): using free space tree
[  104.917619][ T3060] input: PS/2 Generic Mouse as /devices/serio2/input/input7
[  105.039566][ T6163] BTRFS info (device loop3): enabling ssd optimizations
[  105.047330][ T6145] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  105.057313][ T6163] BTRFS info (device loop3): auto enabling async discard
[  105.148383][ T5791] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  105.169289][ T3060] psmouse serio2: Failed to enable mouse on 
[  105.186932][ T6190] netlink: 'syz.2.104': attribute type 3 has an invalid length.
[  105.194747][ T6190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.104'.
[  105.273555][ T5774] cdc_ncm 1-1:1.0: bind() failure
[  105.329408][ T5774] cdc_ncm: probe of 1-1:1.1 failed with error -71
[  105.357936][ T5774] cdc_mbim: probe of 1-1:1.1 failed with error -71
[  105.383179][ T5774] usbtest: probe of 1-1:1.1 failed with error -71
[  105.467956][ T5774] usb 1-1: USB disconnect, device number 2
[  106.442461][ T6219] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.116'.
[  106.469251][ T6219] netlink: 6324 bytes leftover after parsing attributes in process `syz.1.116'.
[  106.485680][ T6219] netlink: 2 bytes leftover after parsing attributes in process `syz.1.116'.
[  106.494897][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  106.579806][   T27] kauditd_printk_skb: 89 callbacks suppressed
[  106.579821][   T27] audit: type=1326 audit(1755665710.423:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  106.669238][   T27] audit: type=1326 audit(1755665710.423:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  106.719191][   T27] audit: type=1326 audit(1755665710.423:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  106.774000][   T27] audit: type=1326 audit(1755665710.453:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  106.841592][   T27] audit: type=1326 audit(1755665710.453:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  106.880238][   T27] audit: type=1326 audit(1755665710.453:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  106.903071][   T27] audit: type=1326 audit(1755665710.453:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  106.969157][   T27] audit: type=1326 audit(1755665710.453:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  107.044258][   T27] audit: type=1326 audit(1755665710.453:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  107.125578][   T27] audit: type=1326 audit(1755665710.453:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6208 comm="syz.0.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  107.212557][ T6232] vlan2: entered allmulticast mode
[  107.234070][ T6232] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  107.832977][ T6237] loop2: detected capacity change from 0 to 32768
[  107.868071][ T6237] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  107.916483][ T6254] netlink: 12 bytes leftover after parsing attributes in process `syz.1.127'.
[  108.018203][ T6237] XFS (loop2): Ending clean mount
[  108.045426][ T6237] XFS (loop2): Quotacheck needed: Please wait.
[  108.104936][ T6237] XFS (loop2): Quotacheck: Done.
[  108.226214][ T5782] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  108.407004][ T6262] loop2: detected capacity change from 0 to 2048
[  108.458521][ T6262] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  108.470622][ T6264] loop0: detected capacity change from 0 to 512
[  108.505285][ T6264] EXT4-fs: Ignoring removed nobh option
[  108.581804][ T6264] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.132: iget: bad i_size value: 38620345925642
[  108.613760][ T6264] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.132: couldn't read orphan inode 15 (err -117)
[  108.692522][ T6264] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.036546][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.045439][ T6276] loop2: detected capacity change from 0 to 2048
[  109.112203][ T6279] loop1: detected capacity change from 0 to 512
[  109.136859][ T6279] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  109.163408][ T6276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.194590][ T6279] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  109.311486][ T6279] EXT4-fs (loop1): 1 truncate cleaned up
[  109.341417][ T6279] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.467635][ T6279] syz.1.138 (pid 6279) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  109.557750][   T12] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  109.600212][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.619381][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 17 with error 28
[  109.646429][   T12] EXT4-fs (loop2): This should not happen!! Data will be lost
[  109.646429][   T12] 
[  109.667023][   T12] EXT4-fs (loop2): Total free blocks count 0
[  109.677385][   T12] EXT4-fs (loop2): Free/Dirty block details
[  109.727173][   T12] EXT4-fs (loop2): free_blocks=2415919504
[  109.739817][   T12] EXT4-fs (loop2): dirty_blocks=32
[  109.753325][   T12] EXT4-fs (loop2): Block reservation details
[  109.763475][   T12] EXT4-fs (loop2): i_reserved_data_blocks=2
[  109.788654][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.987723][ T6296] loop3: detected capacity change from 0 to 1024
[  110.205479][ T6303] MTD: Couldn't look up './file0': -15
[  110.212070][ T6303] ./file0: Can't lookup blockdev
[  110.227536][ T4530] hfsplus: b-tree write err: -5, ino 4
[  110.609180][   T28] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  110.795130][   T28] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.805202][   T28] usb 4-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[  110.814832][   T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.825644][   T28] usb 4-1: config 0 descriptor??
[  110.970099][ T3060] kernel read not supported for file /rfkill (pid: 3060 comm: kworker/1:2)
[  111.292274][   T28] dragonrise 0003:0079:0006.0002: unknown main item tag 0x0
[  111.309953][   T28] dragonrise 0003:0079:0006.0002: item fetching failed at offset 2/5
[  111.340801][   T28] dragonrise 0003:0079:0006.0002: parse failed
[  111.357575][   T28] dragonrise: probe of 0003:0079:0006.0002 failed with error -22
[  111.539344][   T28] usb 4-1: USB disconnect, device number 2
[  111.931692][ T6333] loop2: detected capacity change from 0 to 2048
[  111.996544][ T6333] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  112.109785][ T5994] udevd[5994]: incorrect nilfs2 checksum on /dev/loop2
[  112.187817][ T6341] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  113.279658][ T6336] loop0: detected capacity change from 0 to 32768
[  113.344811][ T6336] 
[  113.344811][ T6336]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.344811][ T6336] 
[  113.380881][ T6336] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 0
[  113.380881][ T6336] 
[  113.396846][ T6336] JFS: Invalid stbl[1] = -128 for inode 2, block = 0
[  113.460344][   T34] 
[  113.460344][   T34]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.460344][   T34] 
[  113.494694][   T34] 
[  113.494694][   T34]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.494694][   T34] 
[  113.518234][  T111] 
[  113.518234][  T111]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.518234][  T111] 
[  113.554593][ T5785] 
[  113.554593][ T5785]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.554593][ T5785] 
[  113.574059][ T5785] 
[  113.574059][ T5785]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.574059][ T5785] 
[  114.065083][ T6375] loop0: detected capacity change from 0 to 512
[  114.103401][ T6375] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  114.159808][ T6375] EXT4-fs (loop0): orphan cleanup on readonly fs
[  114.199719][ T6375] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.160: bg 0: block 248: padding at end of block bitmap is not set
[  114.288037][ T6375] __quota_error: 161 callbacks suppressed
[  114.288056][ T6375] Quota error (device loop0): write_blk: dquota write failed
[  114.332727][ T6375] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  114.361697][ T6375] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.160: Failed to acquire dquot type 1
[  114.409535][ T6375] EXT4-fs (loop0): 1 truncate cleaned up
[  114.432751][ T6375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  114.564351][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.288759][ T6420] Driver unsupported XDP return value 0 on prog  (id 23) dev N/A, expect packet loss!
[  115.929477][   T28] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  116.001506][ T6440] loop0: detected capacity change from 0 to 2048
[  116.032494][ T6440] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  116.075072][ T6444] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  116.139477][   T28] usb 3-1: Using ep0 maxpacket: 16
[  116.153443][   T28] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.177327][   T28] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.194224][   T28] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  116.209982][   T28] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  116.227503][   T28] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.262242][   T28] usb 3-1: config 0 descriptor??
[  116.327584][ T6440] syz.0.175 (6440) used greatest stack depth: 19440 bytes left
[  116.501422][ T6453] loop0: detected capacity change from 0 to 2048
[  116.522242][ T6449] loop3: detected capacity change from 0 to 4096
[  116.543197][ T6453] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  116.543937][ T6449] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  116.734089][   T28] HID 045e:07da: Invalid code 65791 type 1
[  116.783654][   T28] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0003/input/input8
[  116.911083][   T28] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  116.993868][   T28] usb 3-1: USB disconnect, device number 3
[  117.251771][ T6460] fido_id[6460]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  117.553510][ T6476] loop1: detected capacity change from 0 to 128
[  117.606562][ T6476] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.732296][ T6480] mmap: syz.0.183 (6480) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  117.753888][ T6476] ext4 filesystem being mounted at /45/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  118.022789][ T5786] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.223011][ T6495] loop2: detected capacity change from 0 to 128
[  118.341283][ T6495] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.356941][ T6495] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.619744][ T5782] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.170596][ T6514] loop1: detected capacity change from 0 to 4096
[  119.289184][   T28] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  119.379358][ T6514] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  119.503146][   T28] usb 1-1: Using ep0 maxpacket: 32
[  119.524786][   T28] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  119.548243][   T28] usb 1-1: config 0 has no interface number 0
[  119.583049][   T28] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  119.610542][   T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.628833][   T28] usb 1-1: Product: syz
[  119.638973][   T28] usb 1-1: Manufacturer: syz
[  119.649133][   T28] usb 1-1: SerialNumber: syz
[  119.660994][   T28] usb 1-1: config 0 descriptor??
[  119.679996][   T28] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  119.706660][ T5786] ntfs3: loop1: ino=9, ntfs_sync_fs failed, -22.
[  119.909757][   T28] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  119.969895][   T28] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  120.137682][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 97
[  120.348211][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  120.361367][   T28] usb 1-1: USB disconnect, device number 3
[  120.390782][   T28] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  120.410078][   T28] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  120.441559][ T6520] loop3: detected capacity change from 0 to 32768
[  120.454864][   T28] quatech2 1-1:0.51: device disconnected
[  120.536471][ T6520] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.593598][ T6527] loop1: detected capacity change from 0 to 32768
[  120.614520][ T6527] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop1 scanned by syz.1.197 (6527)
[  120.692046][ T6527] BTRFS info (device loop1): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  120.703171][ T6527] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  120.714358][ T6527] BTRFS info (device loop1): enabling ssd optimizations
[  120.725234][ T6527] BTRFS info (device loop1): not using ssd optimizations
[  120.732536][ T6527] BTRFS info (device loop1): turning off barriers
[  120.743309][ T6527] BTRFS info (device loop1): use no compression
[  120.749917][ T6527] BTRFS info (device loop1): using free space tree
[  120.828899][ T6520] XFS (loop3): Ending clean mount
[  121.012714][ T5791] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  121.231748][    T8] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  121.262740][ T5786] BTRFS info (device loop1): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  121.436697][    T8] usb 1-1: config 0 has no interfaces?
[  121.449375][    T8] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  121.480426][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.515609][    T8] usb 1-1: config 0 descriptor??
[  121.781364][ T5854] usb 1-1: USB disconnect, device number 4
[  121.889338][ T6567] program syz.1.204 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  122.170779][ T6561] loop2: detected capacity change from 0 to 32768
[  122.208869][ T6561] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  122.224687][ T6561] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.296121][ T6561] XFS (loop2): Ending clean mount
[  122.319188][ T6561] XFS (loop2): Quotacheck needed: Please wait.
[  122.414871][ T6561] XFS (loop2): Quotacheck: Done.
[  122.550130][ T6579] loop0: detected capacity change from 0 to 1024
[  122.577258][ T5782] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.675721][ T6563] loop3: detected capacity change from 0 to 40427
[  122.705120][ T6563] F2FS-fs (loop3): Small segment_count (9 < 1 * 24)
[  122.725790][ T6563] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  122.825975][ T6563] F2FS-fs (loop3): Found nat_bits in checkpoint
[  122.974410][ T6563] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  122.989173][ T6563] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  123.085473][   T11] hfsplus: b-tree write err: -5, ino 4
[  123.271296][ T5791] syz-executor: attempt to access beyond end of device
[  123.271296][ T5791] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  123.321461][ T5791] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  123.659203][ T5854] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  123.859150][ T5854] usb 1-1: Using ep0 maxpacket: 16
[  123.866801][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.897083][ T5854] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  123.943204][ T5854] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  123.963310][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.990389][ T5854] usb 1-1: config 0 descriptor??
[  124.080355][ T6609] hugetlbfs: Bad value '0x00000000ffffffff' for mount option 'uid'
[  124.080355][ T6609] 
[  124.445042][ T5854] HID 045e:07da: Invalid code 65791 type 1
[  124.467986][ T5854] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0004/input/input9
[  124.527965][ T5854] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  124.550399][ T3060] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  124.749598][ T3060] usb 2-1: Using ep0 maxpacket: 32
[  124.757253][ T3060] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.803757][ T3060] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.828937][ T3060] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  124.855009][ T3060] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.866199][ T3060] usb 2-1: config 0 descriptor??
[  124.995493][ T5843] usb 1-1: USB disconnect, device number 5
[  125.270416][ T5854] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  125.308450][ T3060] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  125.485025][ T5854] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  125.494301][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.505036][ T5854] usb 3-1: config 0 descriptor??
[  125.612396][ T5774] usb 2-1: USB disconnect, device number 2
[  125.730428][ T5854] [drm] vendor descriptor length:6 data:06 5f 00 00 00 00 00 00 00 00 00
[  125.738977][ T5854] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  125.955236][ T5854] [drm] Initialized udl 0.0.1 20120220 for 3-1:0.0 on minor 2
[  125.962958][ T5854] [drm] Initialized udl on minor 2
[  125.970215][ T3060] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  126.161838][ T3060] usb 1-1: Using ep0 maxpacket: 32
[  126.178967][ T3060] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  126.202120][ T3060] usb 1-1: config 0 interface 0 has no altsetting 0
[  126.208932][ T3060] usb 1-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  126.218902][ T3060] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.235672][ T3060] usb 1-1: config 0 descriptor??
[  126.334618][ T5854] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 1 failed err ffffffb9
[  126.350077][ T5854] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[  126.362592][ T5841] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  126.374941][ T5854] usb 3-1: USB disconnect, device number 4
[  126.382920][ T5841] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[  126.493169][ T5774] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  126.680247][ T5774] usb 2-1: Using ep0 maxpacket: 32
[  126.696117][ T5774] usb 2-1: config 0 has an invalid interface number: 126 but max is 0
[  126.704481][ T5774] usb 2-1: config 0 has no interface number 0
[  126.710798][ T5774] usb 2-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  126.721082][ T5774] usb 2-1: config 0 interface 126 altsetting 16 endpoint 0x82 has invalid wMaxPacketSize 0
[  126.731234][ T5774] usb 2-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 0
[  126.743232][ T5774] usb 2-1: config 0 interface 126 has no altsetting 0
[  126.754557][ T5774] usb 2-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  126.764214][ T5774] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.772352][ T5774] usb 2-1: Product: syz
[  126.776559][ T5774] usb 2-1: Manufacturer: syz
[  126.781279][ T5774] usb 2-1: SerialNumber: syz
[  126.788390][ T5774] usb 2-1: config 0 descriptor??
[  126.794383][ T6630] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  127.033063][ T3060] corsair-cpro 0003:1B1C:0C10.0006: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.0-1/input0
[  127.085960][ T6635] netlink: 'syz.2.229': attribute type 10 has an invalid length.
[  127.223971][ T3060] corsair-cpro: probe of 0003:1B1C:0C10.0006 failed with error -71
[  127.253135][ T6630] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.272249][ T6630] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.295232][ T5774] ir_usb 2-1:0.126: IR Dongle converter detected
[  127.468283][    T8] usb 1-1: USB disconnect, device number 6
[  127.510999][ T5774] usb 2-1: IR Dongle converter now attached to ttyUSB0
[  127.571689][ T6638] loop2: detected capacity change from 0 to 32768
[  127.603277][ T6638] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  127.637669][ T6638] XFS (loop2): Ending clean mount
[  127.673435][ T6638] XFS (loop2): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair.
[  127.739385][ T5774] usb 2-1: USB disconnect, device number 3
[  127.755075][ T5782] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  127.764860][ T5774] ir-usb ttyUSB0: IR Dongle converter now disconnected from ttyUSB0
[  127.778176][ T5774] ir_usb 2-1:0.126: device disconnected
[  128.149447][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  128.493847][ T6654] loop1: detected capacity change from 0 to 512
[  128.543743][ T6654] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.729320][ T6654] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.818054][ T6650] loop2: detected capacity change from 0 to 32768
[  128.877123][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  129.090444][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.727401][ T6679] netlink: 'syz.2.242': attribute type 4 has an invalid length.
[  129.742909][ T6679] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.242'.
[  130.582704][   T27] audit: type=1326 audit(1755665734.423:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6709 comm="syz.2.256" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f287258ebe9 code=0x0
[  131.189367][ T5854] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  131.399502][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.439633][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.464483][ T5854] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  131.489139][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.527825][ T5854] usb 2-1: config 0 descriptor??
[  131.593810][ T6737] syzkaller1: entered promiscuous mode
[  131.599596][ T6737] syzkaller1: entered allmulticast mode
[  131.908817][ T6747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.271'.
[  131.938255][ T6749] loop8: detected capacity change from 0 to 8
[  131.952681][ T6749]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[  131.958331][ T6749] loop8: partition table partially beyond EOD, truncated
[  131.971240][ T6747] Zero length message leads to an empty skb
[  131.974979][ T5854] hid-steam 0003:28DE:1142.0007: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0
[  132.004957][ T6749] loop8: p1 size 3004527350 extends beyond EOD, truncated
[  132.105587][ T5854] hid-steam 0003:28DE:1142.0007: Steam wireless receiver connected
[  132.122732][ T5994] udevd[5994]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  132.197676][ T5854] hid-steam 0003:28DE:1142.0008: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0
[  132.252704][ T5854] usb 2-1: USB disconnect, device number 4
[  132.302339][ T5854] hid-steam 0003:28DE:1142.0007: Steam wireless receiver disconnected
[  132.431090][ T6759] fido_id[6759]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  132.618675][ T6763] loop0: detected capacity change from 0 to 4096
[  133.155672][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  133.169413][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  133.373066][ T6788] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  133.944267][ T6786] loop3: detected capacity change from 0 to 32768
[  134.319231][ T5854] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  134.540971][ T5854] usb 2-1: config 0 interface 0 has no altsetting 0
[  134.547660][ T5854] usb 2-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  134.583612][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.587664][ T6808] netlink: 116 bytes leftover after parsing attributes in process `syz.3.298'.
[  134.622890][ T5854] usb 2-1: config 0 descriptor??
[  134.672332][ T6799] loop0: detected capacity change from 0 to 40427
[  134.691070][ T6799] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  134.698143][ T6799] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  134.730364][ T6799] F2FS-fs (loop0): build fault injection attr: rate: 17008, type: 0x7ffff
[  134.749670][ T6799] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x6
[  134.807983][ T6799] F2FS-fs (loop0): invalid crc value
[  134.839083][ T6799] F2FS-fs (loop0): Found nat_bits in checkpoint
[  135.050063][ T6799] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  135.057214][ T6799] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  135.313791][ T5785] syz-executor: attempt to access beyond end of device
[  135.313791][ T5785] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  135.348529][ T5785] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  135.471778][ T6810] loop3: detected capacity change from 0 to 32768
[  135.517975][ T6810] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.667405][ T6810] XFS (loop3): Ending clean mount
[  135.691956][ T5854] video4linux radio48: keene_cmd_set failed (-71)
[  135.721668][ T5854] radio-keene 2-1:0.0: V4L2 device registered as radio48
[  135.747440][ T5854] usb 2-1: USB disconnect, device number 5
[  135.811645][ T6810] XFS (loop3): Quotacheck needed: Please wait.
[  135.902615][ T6810] XFS (loop3): Quotacheck: Done.
[  136.164804][ T5791] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.763405][ T6861] sch_tbf: burst 480 is lower than device lo mtu (65550) !
[  136.930820][ T6865] loop2: detected capacity change from 0 to 512
[  136.943114][ T6867] loop0: detected capacity change from 0 to 512
[  136.955145][ T6867] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  136.970367][ T6867] UDF-fs: Scanning with blocksize 512 failed
[  136.977796][ T6867] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  136.990723][ T6867] UDF-fs: Scanning with blocksize 1024 failed
[  137.010241][ T6867] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  137.017924][ T6865] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002]
[  137.033494][ T6867] UDF-fs: Scanning with blocksize 2048 failed
[  137.040559][ T6865] System zones: 0-2, 18-18, 34-35
[  137.059695][ T6867] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  137.059797][ T6865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.082207][ T6865] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.180595][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.198694][ T6867] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  137.602575][ T6883] netlink: 'syz.0.325': attribute type 10 has an invalid length.
[  137.910368][ T6883] team0 (unregistering): Port device team_slave_0 removed
[  137.936098][ T6883] team0 (unregistering): Port device team_slave_1 removed
[  138.056545][ T6880] loop3: detected capacity change from 0 to 32768
[  138.094583][ T6880] XFS (loop3): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  138.260815][ T6880] XFS (loop3): Ending clean mount
[  138.273056][ T6880] XFS (loop3): Quotacheck needed: Please wait.
[  138.363795][ T6880] XFS (loop3): Quotacheck: Done.
[  138.671509][ T6910] loop2: detected capacity change from 0 to 1024
[  138.707350][ T5791] XFS (loop3): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  138.716843][ T6912] input: syz1 as /devices/virtual/input/input10
[  138.764937][ T6910] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  138.850111][ T6910] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.008729][ T6910] EXT4-fs error (device loop2): ext4_free_blocks:6681: comm syz.2.334: Freeing blocks not in datazone - block = 0, count = 16
[  139.059316][ T6910] EXT4-fs (loop2): Remounting filesystem read-only
[  139.178849][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  139.582322][ T6927] netlink: 136 bytes leftover after parsing attributes in process `syz.2.340'.
[  139.609093][ T6927] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  139.820563][ T6931] loop2: detected capacity change from 0 to 256
[  140.736824][ T6949] loop3: detected capacity change from 0 to 2048
[  140.784283][ T5854] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  141.005472][ T5854] usb 2-1: config index 0 descriptor too short (expected 39, got 27)
[  141.024578][ T5854] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  141.046885][ T5854] usb 2-1: config 0 interface 0 has no altsetting 0
[  141.053955][ T5841] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  141.066823][ T5854] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  141.086337][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  141.104918][ T5854] usb 2-1: Product: syz
[  141.114398][ T5854] usb 2-1: Manufacturer: syz
[  141.129127][ T5854] usb 2-1: SerialNumber: syz
[  141.136149][ T5854] usb 2-1: config 0 descriptor??
[  141.151357][ T5854] hub 2-1:0.0: bad descriptor, ignoring hub
[  141.157485][ T5854] hub: probe of 2-1:0.0 failed with error -5
[  141.190182][ T5854] usb 2-1: selecting invalid altsetting 0
[  141.244975][ T5841] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  141.270155][ T5841] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  141.288058][ T5841] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  141.307628][ T5841] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.328308][ T5841] usb 4-1: Product: syz
[  141.332713][ T5841] usb 4-1: Manufacturer: syz
[  141.345822][ T5841] usb 4-1: SerialNumber: syz
[  141.599764][ T5841] usb 4-1: 0:2 : does not exist
[  141.615328][ T5841] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  141.678955][ T5841] usb 4-1: USB disconnect, device number 3
[  141.754446][ T6962] 9p: Unknown uid 00000000004294967295
[  141.785186][ T5994] udevd[5994]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  141.993426][ T6941] usb 2-1: reset high-speed USB device number 6 using dummy_hcd
[  142.398058][ T6971] warning: `syz.3.360' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  142.511572][   T27] audit: type=1326 audit(1755665746.353:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.584258][   T27] audit: type=1326 audit(1755665746.353:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.627172][   T27] audit: type=1326 audit(1755665746.353:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.666996][   T27] audit: type=1326 audit(1755665746.353:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.704363][   T27] audit: type=1326 audit(1755665746.353:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.726634][    C0] vkms_vblank_simulate: vblank timer overrun
[  142.734700][ T5841] usb 2-1: USB disconnect, device number 6
[  142.742315][   T27] audit: type=1326 audit(1755665746.353:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.798766][   T27] audit: type=1326 audit(1755665746.353:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.822911][ T5774] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  142.873483][   T27] audit: type=1326 audit(1755665746.353:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.895765][    C0] vkms_vblank_simulate: vblank timer overrun
[  142.907124][   T27] audit: type=1326 audit(1755665746.353:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  142.931703][   T27] audit: type=1326 audit(1755665746.383:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.0.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  143.049227][ T5774] usb 3-1: Using ep0 maxpacket: 16
[  143.056492][ T5774] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  143.072011][ T5774] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  143.087791][ T5774] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  143.100144][ T5774] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  143.113250][ T5774] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  143.118195][ T6988] loop3: detected capacity change from 0 to 4096
[  143.135430][ T5774] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  143.149697][ T5843] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  143.155995][ T5774] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  143.176741][ T5774] usb 3-1: Manufacturer: syz
[  143.189670][ T5774] usb 3-1: config 0 descriptor??
[  143.197298][ T6988] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.230859][ T6988] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  143.293789][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.349187][ T5843] usb 1-1: Using ep0 maxpacket: 8
[  143.358709][ T5843] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  143.377299][ T5843] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.419957][ T5843] pvrusb2: Hardware description: Terratec Grabster AV400
[  143.427062][ T5843] pvrusb2: **********
[  143.444189][ T5843] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  143.483905][ T5843] pvrusb2: Important functionality might not be entirely working.
[  143.512419][ T5843] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  143.554495][ T5843] pvrusb2: **********
[  143.609362][ T5774] rc_core: IR keymap rc-hauppauge not found
[  143.615413][ T5774] Registered IR keymap rc-empty
[  143.628234][ T2316] pvrusb2: Invalid write control endpoint
[  143.639867][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  143.690702][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  143.740996][ T2316] pvrusb2: Invalid write control endpoint
[  143.752500][ T5774] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  143.782256][ T2316] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  143.801457][ T5774] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input11
[  143.814954][ T2316] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  143.833285][ T2316] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  143.863780][ T2316] pvrusb2: Device being rendered inoperable
[  143.873835][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  143.893250][ T6984] pvrusb2: Attempted to execute control transfer when device not ok
[  143.909969][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  143.929929][ T2316] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  143.938876][ T2316] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  143.961328][    T8] usb 1-1: USB disconnect, device number 7
[  143.973366][ T2316] pvrusb2: Attached sub-driver cx25840
[  143.979488][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  143.997307][ T2316] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  144.007734][ T2316] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  144.033026][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.093002][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.129260][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.184068][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.229284][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.263194][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.319249][ T5774] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  144.369155][ T5774] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  144.378260][ T5774] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  144.436620][ T5774] usb 3-1: USB disconnect, device number 5
[  144.644801][ T7003] loop3: detected capacity change from 0 to 32768
[  144.665940][ T7003] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.373 (7003)
[  144.674275][ T7005] loop0: detected capacity change from 0 to 128
[  144.707819][ T7003] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  144.735153][ T7003] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  144.748488][ T7003] BTRFS info (device loop3): enabling auto defrag
[  144.775756][ T7003] BTRFS info (device loop3): max_inline at 0
[  144.800555][ T7003] BTRFS info (device loop3): force clearing of disk cache
[  144.810227][ T7003] BTRFS info (device loop3): turning on sync discard
[  144.817003][ T7003] BTRFS info (device loop3): using free space tree
[  145.007873][ T7003] BTRFS info (device loop3): enabling ssd optimizations
[  145.016538][ T7003] BTRFS info (device loop3): rebuilding free space tree
[  145.150040][ T3060] af_packet: tpacket_rcv: packet too big, clamped from 94 to 4294967286. macoff=82
[  145.414724][ T7036] loop0: detected capacity change from 0 to 512
[  145.442077][ T7036] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  145.465257][ T5791] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  145.484304][ T7036] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.562532][ T7036] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.381: invalid indirect mapped block 4294967295 (level 1)
[  145.614686][ T7036] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.381: invalid indirect mapped block 4294967295 (level 1)
[  145.635559][ T7036] EXT4-fs (loop0): 2 truncates cleaned up
[  145.643402][ T7036] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.823273][ T7035] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.381: bg 0: block 5: invalid block bitmap
[  146.022910][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.349030][    C1] sched: RT throttling activated
[  147.287150][ T7061] capability: warning: `syz.3.391' uses deprecated v2 capabilities in a way that may be insecure
[  147.877725][ T7078] loop2: detected capacity change from 0 to 16
[  147.947351][ T7078] erofs: (device loop2): mounted with root inode @ nid 36.
[  147.987042][ T7058] loop0: detected capacity change from 0 to 32768
[  148.056975][ T7058] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  148.086621][ T7058] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  148.105939][ T7078] erofs: (device loop2): z_erofs_readahead: readahead error at folio 340 @ nid 36
[  148.141693][ T7078] syz.2.401: attempt to access beyond end of device
[  148.141693][ T7078] loop2: rw=524288, sector=22873858832, nr_sectors = 16 limit=16
[  148.157072][ T7078] syz.2.401: attempt to access beyond end of device
[  148.157072][ T7078] loop2: rw=524288, sector=22873858840, nr_sectors = 16 limit=16
[  148.173195][ T7078] syz.2.401: attempt to access beyond end of device
[  148.173195][ T7078] loop2: rw=524288, sector=14519143264, nr_sectors = 16 limit=16
[  148.187928][ T7078] syz.2.401: attempt to access beyond end of device
[  148.187928][ T7078] loop2: rw=524288, sector=14519143272, nr_sectors = 16 limit=16
[  148.210221][ T7078] syz.2.401: attempt to access beyond end of device
[  148.210221][ T7078] loop2: rw=524288, sector=63675288, nr_sectors = 16 limit=16
[  148.224567][ T7078] syz.2.401: attempt to access beyond end of device
[  148.224567][ T7078] loop2: rw=524288, sector=63675296, nr_sectors = 16 limit=16
[  148.245312][ T7078] syz.2.401: attempt to access beyond end of device
[  148.245312][ T7078] loop2: rw=524288, sector=16240345096, nr_sectors = 16 limit=16
[  148.271351][ T7078] syz.2.401: attempt to access beyond end of device
[  148.271351][ T7078] loop2: rw=524288, sector=16240345104, nr_sectors = 16 limit=16
[  148.288859][ T7078] syz.2.401: attempt to access beyond end of device
[  148.288859][ T7078] loop2: rw=524288, sector=16438238104, nr_sectors = 16 limit=16
[  148.305498][ T7078] syz.2.401: attempt to access beyond end of device
[  148.305498][ T7078] loop2: rw=524288, sector=16438238112, nr_sectors = 16 limit=16
[  148.433916][ T5785] ocfs2: Unmounting device (7,0) on (node local)
[  148.498099][ T7091] loop3: detected capacity change from 0 to 1024
[  148.564929][ T7091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  148.589322][ T7091] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.648935][ T7091] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 3: comm syz.3.405: lblock 3 mapped to illegal pblock 3 (length 3)
[  148.693121][ T7091] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  148.727815][ T7091] EXT4-fs (loop3): This should not happen!! Data will be lost
[  148.727815][ T7091] 
[  148.770122][ T7096] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 8: comm syz.3.405: lblock 8 mapped to illegal pblock 8 (length 8)
[  148.815175][ T7096] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  148.852883][ T7096] EXT4-fs (loop3): This should not happen!! Data will be lost
[  148.852883][ T7096] 
[  149.022834][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  149.177586][ T7104] loop2: detected capacity change from 0 to 1024
[  149.213133][ T7104] EXT4-fs: Ignoring removed orlov option
[  149.254387][ T7104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.457004][ T7116] 9pnet: p9_errstr2errno: server reported unknown error �@cƒF	S+¼ÿÿÿÿÿÿÿÿ
[  149.566981][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.479464][ T7137] loop3: detected capacity change from 0 to 1024
[  150.562755][ T7125] loop2: detected capacity change from 0 to 40427
[  150.613757][ T7125] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  150.629640][ T7125] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  150.665375][ T5791] hfsplus: bad catalog entry type
[  150.673967][ T7125] F2FS-fs (loop2): Found nat_bits in checkpoint
[  150.836962][ T7125] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  150.869473][ T7125] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  151.058525][ T5782] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  151.152781][ T4437] hfsplus: b-tree write err: -5, ino 4
[  151.306182][ T7155] loop0: detected capacity change from 0 to 4096
[  151.329666][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.469669][ T5843] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  151.544085][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.721150][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.743195][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.750125][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.789300][ T5843] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  151.828962][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.860316][ T5843] usb 2-1: config 0 descriptor??
[  151.949314][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  151.949329][   T27] audit: type=1326 audit(1755665755.773:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  151.994733][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.086343][   T27] audit: type=1326 audit(1755665755.773:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.094965][ T5843] usbhid 2-1:0.0: can't add hid device: -71
[  152.128795][ T5843] usbhid: probe of 2-1:0.0 failed with error -71
[  152.144007][ T5843] usb 2-1: USB disconnect, device number 7
[  152.154368][   T27] audit: type=1326 audit(1755665755.783:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.203746][   T27] audit: type=1326 audit(1755665755.783:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.238765][   T27] audit: type=1326 audit(1755665755.783:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.261169][   T27] audit: type=1326 audit(1755665755.783:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.284805][   T27] audit: type=1326 audit(1755665755.783:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a0f8ebe9 code=0x7ffc0000
[  152.312064][   T12] tipc: Left network mode
[  152.321819][   T27] audit: type=1326 audit(1755665755.783:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f52a0f85ba7 code=0x7ffc0000
[  152.343306][   T27] audit: type=1326 audit(1755665755.783:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f52a0f2add9 code=0x7ffc0000
[  152.381330][ T3060] psmouse serio3: Failed to reset mouse on : -5
[  152.431107][   T27] audit: type=1326 audit(1755665755.823:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7157 comm="syz.0.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f52a0f85ba7 code=0x7ffc0000
[  152.543598][ T5784] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  152.563660][ T5784] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  152.574854][ T5784] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  152.583424][ T5784] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  152.591660][ T5784] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  152.599448][ T5784] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  152.620653][ T5787] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  152.628158][ T5787] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  152.635752][ T5787] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  152.646408][ T5787] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  152.654731][ T5787] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  152.664481][ T5787] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  153.211830][ T7163] chnl_net:caif_netlink_parms(): no params data found
[  153.423519][ T7163] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.431030][ T7163] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.438266][ T7163] bridge_slave_0: entered allmulticast mode
[  153.447972][ T7163] bridge_slave_0: entered promiscuous mode
[  153.512773][ T7166] loop0: detected capacity change from 0 to 65536
[  153.520099][ T7163] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.527330][ T7163] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.530623][ T7166] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  153.534749][ T7163] bridge_slave_1: entered allmulticast mode
[  153.550604][ T7163] bridge_slave_1: entered promiscuous mode
[  153.576117][ T7166] XFS (loop0): Ending clean mount
[  153.633789][ T7163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.647233][ T7163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.736862][ T5785] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  153.761835][ T7163] team0: Port device team_slave_0 added
[  153.783331][   T12] hsr_slave_0: left promiscuous mode
[  153.790626][   T12] hsr_slave_1: left promiscuous mode
[  153.796806][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.804412][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.814341][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.821916][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.830209][   T12] bridge_slave_1: left allmulticast mode
[  153.835906][   T12] bridge_slave_1: left promiscuous mode
[  153.843758][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.871595][   T12] bridge_slave_0: left allmulticast mode
[  153.877312][   T12] bridge_slave_0: left promiscuous mode
[  153.909555][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.024594][   T12] veth1_macvtap: left promiscuous mode
[  154.041037][   T12] veth0_macvtap: left promiscuous mode
[  154.046766][   T12] veth1_vlan: left promiscuous mode
[  154.079959][   T12] veth0_vlan: left promiscuous mode
[  154.762422][ T5784] Bluetooth: hci3: command tx timeout
[  154.918332][   T12] team0 (unregistering): Port device team_slave_1 removed
[  154.966423][   T12] team0 (unregistering): Port device team_slave_0 removed
[  155.020504][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  155.067591][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  155.570588][   T12] bond0 (unregistering): Released all slaves
[  155.640945][ T7163] team0: Port device team_slave_1 added
[  155.695106][ T7163] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.707788][ T7163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.736649][ T7163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.750223][ T7163] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.757200][ T7163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.784532][ T7163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.871844][ T7163] hsr_slave_0: entered promiscuous mode
[  155.878409][ T7163] hsr_slave_1: entered promiscuous mode
[  155.892543][ T7163] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  155.901997][ T7163] Cannot create hsr debugfs directory
[  156.149823][ T3060] misc userio: Buffer overflowed, userio client isn't keeping up
[  156.168498][ T7163] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  156.185127][ T7163] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  156.208853][ T7163] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  156.225804][ T7163] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  156.410790][ T7163] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.442650][ T7163] 8021q: adding VLAN 0 to HW filter on device team0
[  156.457697][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.464939][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.485167][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.492441][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.753995][ T7163] 8021q: adding VLAN 0 to HW filter on device batadv0
[  156.839911][ T5784] Bluetooth: hci3: command tx timeout
[  157.027502][ T7163] veth0_vlan: entered promiscuous mode
[  157.041933][ T7163] veth1_vlan: entered promiscuous mode
[  157.076139][ T7163] veth0_macvtap: entered promiscuous mode
[  157.087337][ T7163] veth1_macvtap: entered promiscuous mode
[  157.107833][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  157.118938][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.129345][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  157.140436][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.150427][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  157.160995][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.172776][ T7163] batman_adv: batadv0: Interface activated: batadv_slave_0
[  157.187724][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.198637][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.208791][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.219618][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.231122][ T3060] input: PS/2 Generic Mouse as /devices/serio3/input/input12
[  157.235110][ T7163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.251392][ T7163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.280663][ T7163] batman_adv: batadv0: Interface activated: batadv_slave_1
[  157.301399][ T7163] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.312607][ T7163] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  157.317337][ T7227] input: syz1 as /devices/virtual/input/input13
[  157.321441][ T7163] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.321521][ T7163] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.431231][ T4530] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.443536][ T4530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.459425][ T3060] psmouse serio3: Failed to enable mouse on 
[  157.482929][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.514083][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.652365][ T7233] syzkaller1: entered promiscuous mode
[  157.658905][ T7233] syzkaller1: entered allmulticast mode
[  157.735261][   T27] kauditd_printk_skb: 79 callbacks suppressed
[  157.735276][   T27] audit: type=1326 audit(1755665761.573:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7230 comm="syz.0.449" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f52a0f8ebe9 code=0x0
[  157.909211][ T5841] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  158.052227][ T7247] loop4: detected capacity change from 0 to 1024
[  158.091669][ T5841] usb 3-1: config index 0 descriptor too short (expected 39, got 27)
[  158.100177][ T5841] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  158.111044][ T5841] usb 3-1: config 0 interface 0 has no altsetting 0
[  158.121547][ T5841] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  158.135363][ T5841] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  158.148541][ T5841] usb 3-1: Product: syz
[  158.153056][ T5841] usb 3-1: Manufacturer: syz
[  158.157835][ T5841] usb 3-1: SerialNumber: syz
[  158.159135][ T5844] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  158.180825][ T5841] usb 3-1: config 0 descriptor??
[  158.193786][ T5841] hub 3-1:0.0: bad descriptor, ignoring hub
[  158.204182][ T5841] hub: probe of 3-1:0.0 failed with error -5
[  158.214121][ T5841] usb 3-1: selecting invalid altsetting 0
[  158.227200][ T7249] syzkaller1: entered promiscuous mode
[  158.233006][ T7249] syzkaller1: entered allmulticast mode
[  158.373800][ T5844] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.384120][ T5844] usb 2-1: config 0 has no interfaces?
[  158.390221][ T5844] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  158.399749][ T5844] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.410417][ T5844] usb 2-1: config 0 descriptor??
[  158.493659][ T7251] process 'syz.0.459' launched '/dev/fd/3' with NULL argv: empty string added
[  158.838930][ T7241] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.854037][ T7241] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.862246][ T7232] usb 3-1: reset high-speed USB device number 6 using dummy_hcd
[  158.874401][ T5774] usb 2-1: USB disconnect, device number 8
[  158.910967][ T5784] Bluetooth: hci3: command tx timeout
[  159.143040][ T7271] loop0: detected capacity change from 0 to 256
[  159.160030][ T7271] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  159.511253][ T7273] loop0: detected capacity change from 0 to 32768
[  159.519457][ T7273] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.469 (7273)
[  159.541647][ T7273] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  159.543025][ T1185] usb 3-1: USB disconnect, device number 6
[  159.553232][ T7273] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  159.566857][ T7273] BTRFS info (device loop0): enabling auto defrag
[  159.578054][ T7273] BTRFS info (device loop0): doing ref verification
[  159.595084][ T7273] BTRFS info (device loop0): max_inline at 0
[  159.601286][ T7273] BTRFS info (device loop0): force clearing of disk cache
[  159.608470][ T7273] BTRFS info (device loop0): turning on sync discard
[  159.619170][ T7273] BTRFS info (device loop0): disabling free space tree
[  159.662701][ T7273] BTRFS info (device loop0): enabling ssd optimizations
[  159.675758][ T7273] BTRFS info (device loop0): rebuilding free space tree
[  159.709798][ T7273] BTRFS info (device loop0): disabling free space tree
[  159.729930][ T7273] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  159.749293][ T7273] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  159.949844][ T5785] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  160.283325][ T7300] loop0: detected capacity change from 0 to 512
[  160.340015][ T7300] EXT4-fs (loop0): 1 truncate cleaned up
[  160.347257][ T7300] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.415880][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.563285][ T7312] loop0: detected capacity change from 0 to 512
[  160.606157][ T7312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.630880][ T7312] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.696141][ T7312] EXT4-fs (loop0): shut down requested (1)
[  160.735714][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.990429][ T5784] Bluetooth: hci3: command tx timeout
[  161.472958][ T7335] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  161.963314][ T7329] loop2: detected capacity change from 0 to 32768
[  161.997858][ T7329] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.128458][ T7338] loop4: detected capacity change from 0 to 32768
[  162.142846][ T7329] XFS (loop2): Ending clean mount
[  162.155752][ T7338] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.160706][ T7329] XFS (loop2): Quotacheck needed: Please wait.
[  162.242488][ T7329] XFS (loop2): Quotacheck: Done.
[  162.373381][ T7338] XFS (loop4): Ending clean mount
[  162.491531][ T5782] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.535429][ T7366] loop0: detected capacity change from 0 to 128
[  162.548498][ T7366] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  162.566788][ T7163] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.596907][   T27] audit: type=1800 audit(1755665766.423:375): pid=7366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.495" name="file1" dev="loop0" ino=94 res=0 errno=0
[  162.634415][ T7366] UDF-fs: error (device loop0): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  162.655419][ T7367] UDF-fs: error (device loop0): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  162.732791][ T7366] UDF-fs: error (device loop0): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  164.031141][ T7370] loop4: detected capacity change from 0 to 65536
[  164.087879][ T7370] XFS (loop4): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  164.199687][ T7370] XFS (loop4): Ending clean mount
[  164.411696][ T7163] XFS (loop4): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  165.456261][ T7397] loop0: detected capacity change from 0 to 32768
[  165.525775][ T7397] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  165.640243][ T7421] input: syz1 as /devices/virtual/input/input14
[  165.679279][ T7397] XFS (loop0): Ending clean mount
[  165.821635][ T5785] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  165.853012][ T7407] loop2: detected capacity change from 0 to 32768
[  165.866241][ T7407] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.510 (7407)
[  165.891120][ T7407] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  165.901637][ T7407] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  165.910625][ T7407] BTRFS info (device loop2): enabling auto defrag
[  165.917317][ T7407] BTRFS info (device loop2): doing ref verification
[  165.924677][ T7407] BTRFS info (device loop2): max_inline at 0
[  165.940081][ T7407] BTRFS info (device loop2): force clearing of disk cache
[  165.947272][ T7407] BTRFS info (device loop2): turning on sync discard
[  165.979400][ T7407] BTRFS info (device loop2): disabling free space tree
[  166.159161][ T7407] BTRFS info (device loop2): enabling ssd optimizations
[  166.185399][ T7407] BTRFS info (device loop2): rebuilding free space tree
[  166.253114][ T7407] BTRFS info (device loop2): disabling free space tree
[  166.272798][ T7407] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  166.295342][ T7407] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  166.510328][ T7460] netlink: 48 bytes leftover after parsing attributes in process `syz.1.524'.
[  166.618109][ T5782] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  166.919408][ T5843] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  167.037540][ T7454] loop0: detected capacity change from 0 to 32768
[  167.052916][ T7454] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.517 (7454)
[  167.082153][ T7454] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  167.102697][ T7454] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  167.119209][ T7454] BTRFS info (device loop0): enabling disk space caching
[  167.126307][ T7454] BTRFS info (device loop0): enabling auto defrag
[  167.127584][ T5843] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  167.139176][ T7454] BTRFS info (device loop0): doing ref verification
[  167.153524][ T7454] BTRFS info (device loop0): use no compression
[  167.160539][ T7454] BTRFS info (device loop0): force clearing of disk cache
[  167.168032][ T7454] BTRFS info (device loop0): disabling disk space caching
[  167.175453][ T5843] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  167.195463][ T5843] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  167.204650][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  167.217857][ T5843] usb 2-1: SerialNumber: syz
[  167.441942][ T5843] usb 2-1: 0:2 : does not exist
[  167.456987][ T7454] BTRFS info (device loop0): enabling ssd optimizations
[  167.467037][ T5843] usb 2-1: USB disconnect, device number 9
[  167.473399][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  167.481537][ T7454] BTRFS info (device loop0): auto enabling async discard
[  167.516696][ T7454] BTRFS info (device loop0): rebuilding free space tree
[  167.556651][ T7454] BTRFS info (device loop0): disabling free space tree
[  167.570452][ T7454] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  167.598193][ T7454] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  168.219903][ T7489] loop2: detected capacity change from 0 to 32768
[  168.290662][ T7489] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  168.317840][ T7489] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  168.488769][ T7489] syz.2.530 (7489) used greatest stack depth: 19248 bytes left
[  168.562368][ T5782] ocfs2: Unmounting device (7,2) on (node local)
[  168.764869][ T5785] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  168.839142][ T1185] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  168.870899][ T7503] loop2: detected capacity change from 0 to 2048
[  168.891745][ T7503] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  168.906273][ T7503] NILFS (loop2): mounting unchecked fs
[  168.974207][ T7493] loop4: detected capacity change from 0 to 32768
[  168.981290][ T7503] NILFS (loop2): recovery complete
[  169.002949][ T7504] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  169.041726][ T1185] usb 2-1: Using ep0 maxpacket: 16
[  169.056654][ T1185] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.061831][ T7493] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.088470][ T1185] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  169.115688][ T1185] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  169.138899][ T1185] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.168676][ T1185] usb 2-1: config 0 descriptor??
[  169.232050][ T7493] XFS (loop4): Ending clean mount
[  169.258088][ T7493] XFS (loop4): Quotacheck needed: Please wait.
[  169.332482][ T7493] XFS (loop4): Quotacheck: Done.
[  169.388739][ T7163] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.424485][ T5843] IPVS: starting estimator thread 0...
[  169.553601][ T7518] IPVS: using max 16 ests per chain, 38400 per kthread
[  169.651836][ T1185] HID 045e:07da: Invalid code 65791 type 1
[  169.663091][ T1185] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0009/input/input15
[  169.694435][ T1185] microsoft 0003:045E:07DA.0009: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  171.702270][ T7528] loop0: detected capacity change from 0 to 262144
[  171.732262][ T7528] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop0 scanned by syz.0.541 (7528)
[  171.757501][ T7528] BTRFS info (device loop0): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  171.768240][ T7528] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  171.777640][ T7528] BTRFS info (device loop0): using free space tree
[  171.884156][ T7528] BTRFS info (device loop0): enabling ssd optimizations
[  171.891283][ T7528] BTRFS info (device loop0): auto enabling async discard
[  171.983276][ T7546] loop2: detected capacity change from 0 to 1024
[  172.004200][ T7546] EXT4-fs: Ignoring removed nobh option
[  172.010241][ T7546] EXT4-fs: Ignoring removed bh option
[  172.016357][ T7546] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  172.067130][ T1185] usb 2-1: USB disconnect, device number 10
[  172.074924][ T7546] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.144451][ T5785] BTRFS info (device loop0): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  172.144776][ T7546] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4036: comm syz.2.542: Allocating blocks 385-513 which overlap fs metadata
[  172.224815][ T7546] EXT4-fs (loop2): pa ffff888077e17910: logic 16, phys. 129, len 24
[  172.234149][ T7546] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5377: group 0, free 0, pa_free 8
[  172.404329][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.413584][ T5843] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  172.599150][ T5843] usb 5-1: Using ep0 maxpacket: 32
[  172.631213][ T5843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.649095][ T5843] usb 5-1: config 0 interface 0 has no altsetting 0
[  172.657197][ T5843] usb 5-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00
[  172.676990][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.701442][ T5843] usb 5-1: config 0 descriptor??
[  173.118230][ T5843] logitech 0003:046D:C50C.000A: unexpected long global item
[  173.167248][ T5843] logitech 0003:046D:C50C.000A: parse failed
[  173.189362][ T5843] logitech: probe of 0003:046D:C50C.000A failed with error -22
[  173.243372][ T7555] loop2: detected capacity change from 0 to 32768
[  173.265657][ T7555] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.546 (7555)
[  173.322886][ T5843] usb 5-1: USB disconnect, device number 2
[  174.496902][ T7555] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  174.512005][ T7555] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  174.522097][ T7555] BTRFS info (device loop2): enabling disk space caching
[  174.533475][ T7555] BTRFS info (device loop2): enabling auto defrag
[  174.549386][ T7555] BTRFS info (device loop2): doing ref verification
[  174.569102][ T7555] BTRFS info (device loop2): use no compression
[  174.575405][ T7555] BTRFS info (device loop2): force clearing of disk cache
[  174.594143][ T7555] BTRFS info (device loop2): disabling disk space caching
[  174.619697][ T7568] loop0: detected capacity change from 0 to 256
[  174.700165][ T7555] BTRFS info (device loop2): enabling ssd optimizations
[  174.710378][ T7555] BTRFS info (device loop2): auto enabling async discard
[  174.729483][ T7555] BTRFS info (device loop2): rebuilding free space tree
[  174.777459][ T7555] BTRFS info (device loop2): disabling free space tree
[  174.796382][ T7555] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  174.820357][ T7555] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  174.879313][ T5843] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  175.089354][ T5843] usb 5-1: Using ep0 maxpacket: 32
[  175.115785][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.139152][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.169078][ T5843] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  175.189080][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.210998][ T5843] usb 5-1: config 0 descriptor??
[  175.646303][ T5843] savu 0003:1E7D:2D5A.000B: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[  175.688005][ T5782] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  175.986780][ T5774] usb 5-1: USB disconnect, device number 3
[  176.657426][ T7599] loop0: detected capacity change from 0 to 40427
[  176.683751][ T7599] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  176.703333][ T7599] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  176.720878][ T7599] F2FS-fs (loop0): build fault injection attr: rate: 17008, type: 0x7ffff
[  176.739101][ T7599] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x7
[  176.759558][ T7599] F2FS-fs (loop0): invalid crc value
[  176.790263][ T7599] F2FS-fs (loop0): Found nat_bits in checkpoint
[  176.889670][ T7599] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  176.896790][ T7599] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  176.979243][ T3060] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  176.994955][   T27] audit: type=1800 audit(1755665780.833:376): pid=7599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.560" name="file1" dev="loop0" ino=10 res=0 errno=0
[  177.043842][ T7599] bio_check_eod: 22 callbacks suppressed
[  177.043859][ T7599] syz.0.560: attempt to access beyond end of device
[  177.043859][ T7599] loop0: rw=2049, sector=53248, nr_sectors = 800 limit=40427
[  177.102986][ T7599] syz.0.560: attempt to access beyond end of device
[  177.102986][ T7599] loop0: rw=0, sector=53984, nr_sectors = 8 limit=40427
[  177.161161][ T5785] syz-executor: attempt to access beyond end of device
[  177.161161][ T5785] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  177.175658][ T3060] usb 5-1: Using ep0 maxpacket: 32
[  177.194144][ T3060] usb 5-1: too many configurations: 42, using maximum allowed: 8
[  177.209198][ T5785] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  177.229485][ T3060] usb 5-1: New USB device found, idVendor=054c, idProduct=0025, bcdDevice= 1.00
[  177.241228][ T7606] loop2: detected capacity change from 0 to 32768
[  177.250364][ T3060] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.258403][ T3060] usb 5-1: Product: syz
[  177.262918][ T3060] usb 5-1: Manufacturer: syz
[  177.267550][ T3060] usb 5-1: SerialNumber: syz
[  177.275031][ T3060] usb 5-1: config 0 descriptor??
[  177.283634][ T3060] cdc_acm 5-1:0.0: Zero length descriptor references
[  177.291272][ T3060] cdc_acm: probe of 5-1:0.0 failed with error -22
[  177.304646][ T3060] usb-storage 5-1:0.0: USB Mass Storage device detected
[  177.316103][ T7606] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  177.340455][ T3060] usb-storage 5-1:0.0: Quirks match for vid 054c pid 0025: 1
[  177.375433][ T7633] syzkaller1: entered promiscuous mode
[  177.404492][ T7633] syzkaller1: entered allmulticast mode
[  177.457834][ T7606] XFS (loop2): Ending clean mount
[  177.477912][ T7606] XFS (loop2): Quotacheck needed: Please wait.
[  177.515558][ T3060] usb 5-1: USB disconnect, device number 4
[  177.554407][ T7606] XFS (loop2): Quotacheck: Done.
[  177.685529][ T5782] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  177.996197][ T7648] netlink: 'syz.0.574': attribute type 11 has an invalid length.
[  178.259694][ T7660] sp0: Synchronizing with TNC
[  178.449286][ T1185] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  178.629247][ T1185] usb 5-1: Using ep0 maxpacket: 16
[  178.640803][ T1185] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  178.654718][ T1185] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  178.668455][ T1185] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  178.678070][ T1185] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.688821][ T1185] usb 5-1: config 0 descriptor??
[  179.123285][ T1185] HID 045e:07da: Invalid code 65791 type 1
[  179.145184][ T1185] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.000C/input/input16
[  179.173557][ T1185] microsoft 0003:045E:07DA.000C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  179.447268][ T7682] loop8: detected capacity change from 0 to 8
[  179.455371][ T7682]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[  179.460939][ T7682] loop8: partition table partially beyond EOD, truncated
[  179.468078][ T7682] loop8: p1 size 3004527350 extends beyond EOD, truncated
[  179.603992][ T7686] loop0: detected capacity change from 0 to 512
[  179.613116][ T5843] usb 5-1: USB disconnect, device number 5
[  179.658516][ T7686] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  179.672414][ T7686] ext4 filesystem being mounted at /139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  179.722291][ T7686] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #12: comm syz.0.591: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  179.746851][ T7686] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #12: comm syz.0.591: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  179.790739][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  180.149108][ T3060] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  180.211921][ T7693] loop4: detected capacity change from 0 to 1024
[  180.219131][ T7693] EXT4-fs: Ignoring removed orlov option
[  180.236367][ T7693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.256583][   T27] audit: type=1800 audit(1755665784.093:377): pid=7693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.593" name="file1" dev="loop4" ino=15 res=0 errno=0
[  180.296313][ T7163] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.341737][ T3060] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.360148][ T3060] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  180.379950][ T3060] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  180.399243][ T3060] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  180.417623][ T3060] usb 1-1: SerialNumber: syz
[  180.635865][ T3060] usb 1-1: 0:2 : does not exist
[  180.648592][ T3060] usb 1-1: USB disconnect, device number 8
[  180.707696][ T7709] loop2: detected capacity change from 0 to 8
[  180.737539][ T7709] SQUASHFS error: Failed to read block 0x4e8: -5
[  180.744975][ T7709] SQUASHFS error: Failed to read block 0x4de: -5
[  180.751604][ T5787] Bluetooth: hci4: command 0x1003 tx timeout
[  180.751646][ T5784] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  180.760786][ T7709] SQUASHFS error: Failed to read block 0x4de: -5
[  180.775689][ T7709] SQUASHFS error: Failed to read block 0x4de: -5
[  180.793358][   T27] audit: type=1800 audit(1755665784.633:378): pid=7709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.600" name="file1" dev="loop2" ino=5 res=0 errno=0
[  180.969253][ T1185] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  181.149578][ T1185] usb 5-1: Using ep0 maxpacket: 16
[  181.156819][ T1185] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  181.177739][ T1185] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  181.209128][ T1185] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  181.228171][ T1185] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  181.248068][ T1185] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  181.259080][ T1185] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  181.267127][ T1185] usb 5-1: SerialNumber: syz
[  181.305363][ T1185] hub 5-1:1.0: bad descriptor, ignoring hub
[  181.322625][ T1185] hub: probe of 5-1:1.0 failed with error -5
[  181.343303][ T1185] cdc_ether: probe of 5-1:1.0 failed with error -22
[  181.351164][ T7723] loop0: detected capacity change from 0 to 2048
[  181.374244][ T7723] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  181.396373][ T7723] NILFS (loop0): mounting unchecked fs
[  181.436155][ T7723] NILFS (loop0): recovery complete
[  181.460766][ T7727] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  181.876734][ T7741] loop2: detected capacity change from 0 to 2048
[  181.943189][ T7743] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  181.994328][ T7743] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  182.007623][ T7743] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  182.030903][ T7743] Remounting filesystem read-only
[  182.036234][ T4437] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  182.054337][ T4437] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[  182.071719][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.105049][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.115803][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.133204][ T4437] NILFS (loop2): discard dirty page: offset=0, ino=3
[  182.141453][ T4437] NILFS (loop2): discard dirty block: blocknr=42, size=1024
[  182.148859][ T4437] NILFS (loop2): discard dirty block: blocknr=43, size=1024
[  182.179904][ T4437] NILFS (loop2): discard dirty block: blocknr=44, size=1024
[  182.187719][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.209118][ T4437] NILFS (loop2): discard dirty page: offset=65536, ino=3
[  182.216526][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.254958][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.256787][ T7736] loop0: detected capacity change from 0 to 32768
[  182.279104][ T4437] NILFS (loop2): discard dirty block: blocknr=0, size=1024
[  182.286428][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.320511][ T4437] NILFS (loop2): discard dirty page: offset=196608, ino=3
[  182.324786][   T27] audit: type=1800 audit(1755665786.163:379): pid=7736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.611" name="file1" dev="loop0" ino=4 res=0 errno=0
[  182.339104][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.383027][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.397111][ T7751] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  182.408938][ T4437] NILFS (loop2): discard dirty block: blocknr=49, size=1024
[  182.447389][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.476916][ T4437] NILFS (loop2): discard dirty page: offset=0, ino=18
[  182.523333][ T4437] NILFS (loop2): discard dirty block: blocknr=0, size=1024
[  182.536256][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.569308][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.599817][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.622712][ T4437] NILFS (loop2): discard dirty page: offset=0, ino=2
[  182.649128][ T4437] NILFS (loop2): discard dirty block: blocknr=18, size=1024
[  182.662249][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.688355][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.705832][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.723550][ T4437] NILFS (loop2): discard dirty page: offset=0, ino=5
[  182.731648][ T4437] NILFS (loop2): discard dirty block: blocknr=41, size=1024
[  182.739988][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.749422][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.758397][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.767809][ T4437] NILFS (loop2): discard dirty page: offset=0, ino=4
[  182.774807][ T4437] NILFS (loop2): discard dirty block: blocknr=40, size=1024
[  182.806261][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.832494][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  182.844940][ T4437] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  183.160165][ T1185] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  183.195895][ T7741] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[  183.257395][ T5782] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  183.268499][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=6
[  183.275493][ T5782] NILFS (loop2): discard dirty block: blocknr=35, size=1024
[  183.283742][ T5782] NILFS (loop2): discard dirty block: blocknr=36, size=1024
[  183.292189][ T5782] NILFS (loop2): discard dirty block: blocknr=37, size=1024
[  183.299903][ T5782] NILFS (loop2): discard dirty block: blocknr=38, size=1024
[  183.342414][ T1185] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  183.359631][ T1185] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  183.369903][ T1185] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  183.379494][ T1185] usb 2-1: config 1 has no interface number 0
[  183.386733][ T1185] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  183.405176][ T1185] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  183.418651][ T1185] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  183.427916][ T1185] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.445971][ T1185] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  183.649911][ T5854] usb 5-1: USB disconnect, device number 6
[  183.811698][ T7785] loop0: detected capacity change from 0 to 1024
[  183.922327][ T4437] hfsplus: b-tree write err: -5, ino 3
[  184.002372][ T1185] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  184.209318][ T7795] sp0: Synchronizing with TNC
[  184.227852][ T1185] usb 2-1: USB disconnect, device number 11
[  184.253272][ T1185] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  184.448123][ T7799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.634'.
[  184.773033][ T7793] loop0: detected capacity change from 0 to 32768
[  184.822876][ T7793] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  184.895309][ T7793] XFS (loop0): Ending clean mount
[  184.921818][ T7793] XFS (loop0): Quotacheck needed: Please wait.
[  185.005551][ T7793] XFS (loop0): Quotacheck: Done.
[  185.157812][ T5785] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  185.277008][ T7801] loop4: detected capacity change from 0 to 40427
[  185.312922][ T7801] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  185.321565][ T7805] loop2: detected capacity change from 0 to 32768
[  185.339341][ T7801] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  185.370469][ T7801] F2FS-fs (loop4): build fault injection attr: rate: 17008, type: 0x7ffff
[  185.389305][ T7801] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x6
[  185.411083][ T7801] F2FS-fs (loop4): invalid crc value
[  185.463513][ T7801] F2FS-fs (loop4): Found nat_bits in checkpoint
[  185.611358][ T7801] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  185.618479][ T7801] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  185.769493][ T7163] syz-executor: attempt to access beyond end of device
[  185.769493][ T7163] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  185.804534][ T7163] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  185.893726][ T7830] sp0: Synchronizing with TNC
[  185.899240][ T7827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.641'.
[  186.100707][ T7834] loop0: detected capacity change from 0 to 8
[  186.142166][ T7834] SQUASHFS error: Failed to read block 0x4e8: -5
[  186.158962][ T7834] SQUASHFS error: Failed to read block 0x4de: -5
[  186.168340][ T7834] SQUASHFS error: Failed to read block 0x4de: -5
[  186.187448][ T7833] bond0: (slave dummy0): Releasing backup interface
[  186.195338][ T7834] SQUASHFS error: Failed to read block 0x4de: -5
[  186.206627][   T27] audit: type=1800 audit(1755665790.043:380): pid=7834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.646" name="file1" dev="loop0" ino=5 res=0 errno=0
[  186.237933][ T7833] dummy0: left promiscuous mode
[  186.275965][ T7833] bridge_slave_0: left allmulticast mode
[  186.291990][ T7833] bridge_slave_0: left promiscuous mode
[  186.298006][ T7833] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.341908][ T7833] bridge_slave_1: left allmulticast mode
[  186.347625][ T7833] bridge_slave_1: left promiscuous mode
[  186.384516][ T7833] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.416452][ T7833] bond0: (slave bond_slave_0): Releasing backup interface
[  186.439656][ T7833] bond_slave_0: left promiscuous mode
[  186.476566][ T7833] bond0: (slave bond_slave_1): Releasing backup interface
[  186.496939][ T7833] bond_slave_1: left promiscuous mode
[  186.531741][ T7838] netlink: 'syz.1.647': attribute type 11 has an invalid length.
[  186.564444][ T7833] team0: Port device team_slave_0 removed
[  186.576738][ T7833] team0: Port device team_slave_1 removed
[  186.583952][ T7833] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.591629][ T7833] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.606399][ T7833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.631239][ T7833] batman_adv: batadv0: Removing interface: batadv_slave_1
[  186.829128][ T5844] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  187.049165][ T5844] usb 5-1: Using ep0 maxpacket: 32
[  187.065577][ T5844] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  187.085600][ T5844] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  187.107307][ T5844] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  187.138841][ T5844] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  187.159205][ T5844] usb 5-1: config 0 interface 0 has no altsetting 0
[  187.178876][ T5844] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  187.198385][ T5844] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  187.217981][ T5844] usb 5-1: Product: syz
[  187.222866][ T5844] usb 5-1: Manufacturer: syz
[  187.227515][ T5844] usb 5-1: SerialNumber: syz
[  187.245602][ T5844] usb 5-1: config 0 descriptor??
[  187.262709][ T5844] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  187.298279][ T5844] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  187.576662][ T7850] loop2: detected capacity change from 0 to 40427
[  187.586738][ T7850] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  187.594702][ T7850] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  187.603851][ T7850] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x7ffff
[  187.616033][ T7850] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x6
[  187.626322][ T7850] F2FS-fs (loop2): invalid crc value
[  187.642626][ T7850] F2FS-fs (loop2): Found nat_bits in checkpoint
[  187.682754][ T7850] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  187.690164][ T7850] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  187.757338][ T5782] syz-executor: attempt to access beyond end of device
[  187.757338][ T5782] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.793571][ T5782] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  188.404435][ T7870] sp0: Synchronizing with TNC
[  188.557392][ T7877] netlink: 'syz.2.658': attribute type 11 has an invalid length.
[  188.687225][ T7882] capability: warning: `syz.2.661' uses 32-bit capabilities (legacy support in use)
[  189.627204][ T5843] usb 5-1: USB disconnect, device number 7
[  189.647399][ T5843] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  189.882953][ T7899] loop0: detected capacity change from 0 to 32768
[  189.944300][ T7899] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  190.027705][ T7923] loop2: detected capacity change from 0 to 1024
[  190.084562][ T7923] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.103707][ T7899] XFS (loop0): Ending clean mount
[  190.141365][ T7899] XFS (loop0): Quotacheck needed: Please wait.
[  190.234146][ T7899] XFS (loop0): Quotacheck: Done.
[  190.306085][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.463236][ T7939] loop2: detected capacity change from 0 to 512
[  190.512280][ T5785] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  190.545368][ T7939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.569254][ T7939] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.807860][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.291697][ T7973] loop2: detected capacity change from 0 to 2048
[  191.315488][ T7975] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  191.374173][ T7975] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  191.387418][ T7975] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  191.397894][ T7975] Remounting filesystem read-only
[  191.445777][ T5782] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  191.455154][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=2
[  191.480356][ T5782] NILFS (loop2): discard dirty block: blocknr=18, size=1024
[  191.498015][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.507859][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.522936][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.536437][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=6
[  191.547068][ T5782] NILFS (loop2): discard dirty block: blocknr=35, size=1024
[  191.564597][ T5782] NILFS (loop2): discard dirty block: blocknr=36, size=1024
[  191.572015][ T5782] NILFS (loop2): discard dirty block: blocknr=37, size=1024
[  191.589383][ T5782] NILFS (loop2): discard dirty block: blocknr=38, size=1024
[  191.596741][ T5782] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  191.615525][ T5782] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[  191.623391][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.637275][ T7979] netlink: 8 bytes leftover after parsing attributes in process `syz.4.699'.
[  191.644593][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.662295][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.674156][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=5
[  191.684894][ T5782] NILFS (loop2): discard dirty block: blocknr=41, size=1024
[  191.699286][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.708184][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.734763][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.761592][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=4
[  191.768329][ T5782] NILFS (loop2): discard dirty block: blocknr=40, size=1024
[  191.783120][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.792895][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.802208][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.814658][ T5782] NILFS (loop2): discard dirty page: offset=0, ino=3
[  191.822599][ T5782] NILFS (loop2): discard dirty block: blocknr=42, size=1024
[  191.833812][ T5782] NILFS (loop2): discard dirty block: blocknr=43, size=1024
[  191.842873][ T5782] NILFS (loop2): discard dirty block: blocknr=44, size=1024
[  191.853600][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.863846][ T5782] NILFS (loop2): discard dirty page: offset=196608, ino=3
[  191.876754][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.892161][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  191.904579][ T5782] NILFS (loop2): discard dirty block: blocknr=49, size=1024
[  191.915121][ T5782] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  192.574173][ T8011] netlink: 8 bytes leftover after parsing attributes in process `syz.1.710'.
[  192.659292][ T3060] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  192.862269][ T3060] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.879350][ T3060] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.895323][ T3060] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  192.905029][ T3060] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.920832][ T3060] usb 1-1: config 0 descriptor??
[  193.374164][ T3060] hid-steam 0003:28DE:1142.000D: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.0-1/input0
[  193.459441][ T3060] hid-steam 0003:28DE:1142.000D: Steam wireless receiver connected
[  193.483886][ T3060] hid-steam 0003:28DE:1142.000E: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.0-1/input0
[  193.486672][ T8026] loop4: detected capacity change from 0 to 32768
[  193.517781][   T27] audit: type=1800 audit(1755665797.353:381): pid=8026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.720" name="file1" dev="loop4" ino=4 res=0 errno=0
[  193.622349][ T3060] usb 1-1: USB disconnect, device number 9
[  193.634431][ T3060] hid-steam 0003:28DE:1142.000D: Steam wireless receiver disconnected
[  193.889632][ T8040] syzkaller1: entered promiscuous mode
[  193.895192][ T8040] syzkaller1: entered allmulticast mode
[  193.989753][ T8026] ERROR: (device loop4): dbAdjCtl: the maximum free buddy is not the old root
[  193.989753][ T8026] 
[  194.010666][ T8026] ERROR: (device loop4): remounting filesystem as read-only
[  194.039164][ T5844] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  194.141493][ T7163] ------------[ cut here ]------------
[  194.147511][ T7163] kernel BUG at fs/jfs/inode.c:169!
[  194.152867][ T7163] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  194.158973][ T7163] CPU: 1 PID: 7163 Comm: syz-executor Not tainted 6.6.102-syzkaller #0
[  194.167241][ T7163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  194.177335][ T7163] RIP: 0010:jfs_evict_inode+0x431/0x440
[  194.182924][ T7163] Code: e3 fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 17 fe ff ff 4c 89 f7 e8 19 d5 e3 fe e9 0a fe ff ff e8 ff 8d 8c fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41
[  194.202571][ T7163] RSP: 0018:ffffc9000e4dfac0 EFLAGS: 00010293
[  194.208650][ T7163] RAX: ffffffff82f8fd21 RBX: ffff88805f4b9ff0 RCX: ffff888021c1da00
[  194.216649][ T7163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805f4b9ff0
[  194.224633][ T7163] RBP: 0000000000000001 R08: ffffffff90da363f R09: 1ffffffff21b46c7
[  194.232617][ T7163] R10: dffffc0000000000 R11: fffffbfff21b46c8 R12: dffffc0000000000
[  194.240599][ T7163] R13: dffffc0000000000 R14: ffff88805f4b9c78 R15: ffff88805f4ba1c0
[  194.248576][ T7163] FS:  000055556c9a8500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  194.257515][ T7163] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  194.264106][ T7163] CR2: 00007f9e0c5e6000 CR3: 0000000067eab000 CR4: 00000000003506e0
[  194.272111][ T7163] Call Trace:
[  194.275393][ T7163]  <TASK>
[  194.278334][ T7163]  ? evict+0x480/0x870
[  194.282416][ T7163]  ? jfs_write_inode+0x220/0x220
[  194.287364][ T7163]  evict+0x486/0x870
[  194.291274][ T7163]  ? proc_nr_inodes+0x230/0x230
[  194.296133][ T7163]  ? do_raw_spin_unlock+0x121/0x230
[  194.301341][ T7163]  ? do_raw_spin_unlock+0x121/0x230
[  194.306549][ T7163]  evict_inodes+0x5fe/0x690
[  194.311057][ T7163]  ? clear_inode+0x150/0x150
[  194.315658][ T7163]  generic_shutdown_super+0x97/0x2b0
[  194.320960][ T7163]  kill_block_super+0x44/0x90
[  194.325641][ T7163]  deactivate_locked_super+0x97/0x100
[  194.331027][ T7163]  cleanup_mnt+0x429/0x4c0
[  194.335453][ T7163]  task_work_run+0x1ce/0x250
[  194.340056][ T7163]  ? task_work_cancel+0x240/0x240
[  194.345088][ T7163]  ? exit_to_user_mode_loop+0x3b/0x110
[  194.350549][ T7163]  exit_to_user_mode_loop+0xe6/0x110
[  194.355841][ T7163]  exit_to_user_mode_prepare+0xb1/0x140
[  194.361390][ T7163]  syscall_exit_to_user_mode+0x1a/0x50
[  194.366858][ T7163]  do_syscall_64+0x61/0xb0
[  194.371292][ T7163]  ? clear_bhb_loop+0x40/0x90
[  194.375973][ T7163]  ? clear_bhb_loop+0x40/0x90
[  194.380659][ T7163]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  194.386573][ T7163] RIP: 0033:0x7f856558ff17
[  194.391008][ T7163] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  194.410658][ T7163] RSP: 002b:00007ffe4f21fee8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  194.419081][ T7163] RAX: 0000000000000000 RBX: 00007f8565611c05 RCX: 00007f856558ff17
[  194.427053][ T7163] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4f21ffa0
[  194.435026][ T7163] RBP: 00007ffe4f21ffa0 R08: 0000000000000000 R09: 0000000000000000
[  194.442993][ T7163] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe4f221030
[  194.450963][ T7163] R13: 00007f8565611c05 R14: 000000000002f5f6 R15: 00007ffe4f221070
[  194.458942][ T7163]  </TASK>
[  194.461968][ T7163] Modules linked in:
[  194.469460][ T7163] ---[ end trace 0000000000000000 ]---
[  194.476725][ T7163] RIP: 0010:jfs_evict_inode+0x431/0x440
[  194.483141][ T7163] Code: e3 fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 17 fe ff ff 4c 89 f7 e8 19 d5 e3 fe e9 0a fe ff ff e8 ff 8d 8c fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41
[  194.504168][ T5844] usb 3-1: Using ep0 maxpacket: 32
[  194.511429][ T5844] usb 3-1: too many configurations: 42, using maximum allowed: 8
[  194.519426][ T7163] RSP: 0018:ffffc9000e4dfac0 EFLAGS: 00010293
[  194.525858][ T7163] RAX: ffffffff82f8fd21 RBX: ffff88805f4b9ff0 RCX: ffff888021c1da00
[  194.536399][ T7163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805f4b9ff0
[  194.545024][ T7163] RBP: 0000000000000001 R08: ffffffff90da363f R09: 1ffffffff21b46c7
[  194.556475][ T7163] R10: dffffc0000000000 R11: fffffbfff21b46c8 R12: dffffc0000000000
[  194.565411][ T7163] R13: dffffc0000000000 R14: ffff88805f4b9c78 R15: ffff88805f4ba1c0
[  194.574188][ T7163] FS:  000055556c9a8500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  194.584415][ T7163] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  194.595476][ T7163] CR2: 0000200000000280 CR3: 0000000067eab000 CR4: 00000000003506f0
[  194.595635][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  194.604987][ T7163] Kernel panic - not syncing: Fatal exception
[  194.610102][ T7163] Kernel Offset: disabled