last executing test programs:

3m47.972723813s ago: executing program 32 (id=520):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000780)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000ffdbdd253b00000008000300", @ANYRES32=r2, @ANYBLOB="32003300d0980700ffffffffffff080211000001505050505050020004000ec116"], 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x44050)

3m24.917606584s ago: executing program 1 (id=760):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000010c0)={0x84, &(0x7f0000000080)=ANY=[@ANYBLOB="00000100000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000580)={0x34, &(0x7f0000000240)={0x40, 0x1, 0x49, "f6dedd105a0e588a0894e006e0290770d53779ae93aac589b97b61d2ca860bc3ab4985b6f0aa23fc8899ba4447a5c835c430f1b448ff6603b3fb75f1ee85a1448b6ec76e1fbc0a32a4"}, 0x0, 0x0, 0x0, 0x0, 0x0})

3m21.837411624s ago: executing program 1 (id=800):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
r1 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f000000a400)=[{{&(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000800)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {r1}}}], 0x38, 0x4004841}}], 0x1, 0x4000000)

3m21.64337377s ago: executing program 1 (id=805):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000003c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@nossd}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_BALANCE_CTL(r0, 0xc0c09425, 0x1)

3m20.444029418s ago: executing program 1 (id=812):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000380)=""/141, 0x8d)

3m19.43929877s ago: executing program 1 (id=818):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f00330050000000080211000001080211000000505050505050"], 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x10)

3m18.760355676s ago: executing program 1 (id=825):
r0 = syz_io_uring_setup(0xbea, &(0x7f0000000640)={0x0, 0xfebd, 0x10, 0x2, 0x4c}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x28, 0x0, @fd=r3, 0x5, 0x0, 0x0, 0x2, 0x1, {0x3}})
io_uring_enter(r0, 0x100847c0, 0x0, 0x1, 0x0, 0x0)

3m18.489864328s ago: executing program 33 (id=825):
r0 = syz_io_uring_setup(0xbea, &(0x7f0000000640)={0x0, 0xfebd, 0x10, 0x2, 0x4c}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x28, 0x0, @fd=r3, 0x5, 0x0, 0x0, 0x2, 0x1, {0x3}})
io_uring_enter(r0, 0x100847c0, 0x0, 0x1, 0x0, 0x0)

3m4.059903745s ago: executing program 5 (id=982):
r0 = io_uring_setup(0x479, &(0x7f0000000ac0)={0x0, 0xfffefffe, 0x2, 0x2, 0x4800020})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(authencesn(streebog256-generic,xchacha12-generic))\x00'}, 0x58)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

3m4.026639418s ago: executing program 5 (id=983):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000200)={0x3a, 'syz0', 0x3a, 'M', 0x3a, 0x5, 0x3a, '\'', 0x3a, '^', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x300, 0xba)

3m3.9995147s ago: executing program 5 (id=984):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800002, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@errors_remount}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x22}, 0x84, 0x464, &(0x7f0000000ac0)="$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")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x8004587d, 0x0)

3m3.221655453s ago: executing program 5 (id=992):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000000)={[{@inlinecrypt}, {@usrquota}, {@test_dummy_encryption_v1}, {@data_err_ignore}]}, 0x2, 0xbd1, &(0x7f0000001340)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1304825, 0x0)
quotactl$Q_GETINFO(0xffffffff80000500, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000440))

3m2.873348572s ago: executing program 5 (id=993):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x28, r0, 0x121, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008800}, 0x0)

3m2.03506903s ago: executing program 5 (id=1010):
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r1, 0x0, 0xbb)

3m1.79100984s ago: executing program 34 (id=1010):
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r1, 0x0, 0xbb)

2m9.303357621s ago: executing program 2 (id=1650):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
io_setup(0xfff, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000900)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x5, r0, 0x0, 0x0, 0x7}])

2m9.113705727s ago: executing program 2 (id=1655):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r2 = dup3(r0, r1, 0x80000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r2)

2m9.020209394s ago: executing program 2 (id=1657):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
pread64(r0, &(0x7f0000001300)=""/4118, 0x1016, 0x0)

2m8.908807164s ago: executing program 2 (id=1660):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000380)=""/141, 0x8d)

2m8.745071557s ago: executing program 2 (id=1663):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @dev, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x58c}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

2m8.276315545s ago: executing program 2 (id=1673):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@newtaction={0x6c, 0x30, 0x18d, 0x1000, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x9, 0xfc000000, 0x7, 0x4, 0xfffffffd}, @multicast1, @empty, 0xffffffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m8.09677927s ago: executing program 35 (id=1673):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@newtaction={0x6c, 0x30, 0x18d, 0x1000, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x9, 0xfc000000, 0x7, 0x4, 0xfffffffd}, @multicast1, @empty, 0xffffffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m36.452377692s ago: executing program 4 (id=2076):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_TRY_FMT(r1, 0xc0d05640, &(0x7f0000000100)={0x5, @sdr={0x48524742, 0xad6}})

1m36.357222929s ago: executing program 4 (id=2079):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x8d, &(0x7f0000000040), &(0x7f0000000000)=0x4)

1m36.240217089s ago: executing program 4 (id=2081):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x88, &(0x7f0000000640)={[{@nogrpid}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@norecovery}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
creat(&(0x7f0000000280)='./file2\x00', 0x40)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040), &(0x7f0000000140)=ANY=[], 0x25, 0x2)

1m35.791226336s ago: executing program 4 (id=2085):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000640)=ANY=[@ANYBLOB='iocharset=iso8859-15,umask=00000000000000000000003,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303235332c646973636172642c666d61736b3d30303030303030303030303030300000000030303031302c757466382c696f636861727365743d6d6163696e7569742c4ea0a5899b233b5a616c6c6f775f7574696d653d30303030303030303030303030303030303134373037302c00"], 0x1, 0x1528, &(0x7f00000037c0)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzfzP/1D/kd0NAQIECFSqMwRiMxVjMhbkwN+bGPJgHIxjBOIzDfJgP82N+LIgFMR7jsQgWQYMGCQmLYlGMYhSLY3EsgSWwFJZChw4TMAHL4k1YDstheSyPFbACVsRKWAmrYBWsilWxGlbD6lgda2ANrIW18C68C/tgXayL9bAe1sf6l25PYSNshI2xMTbBJtgUm2IzbIYtsAW2wlbYGltjG2yD7bAdtsf22AE7YCImYkfsiJ2wE3bGztgFu2BX7IrdsDt2z3w+B+AL+AL2xhqiD/bFvtgPk3MMwJfwJXwZB+Er+Aq+isk4BIfia/gavo7D8SSOwJE4CkdhVfEWjsGxSGI8pmAKTsSJOAknYVah7+JUTMVpOB2n4wyciTPxfZyNH+AHOBfn4nxMwzRcgAsxHdNxEZ7CDFyMS3ApLsPluAxX4ipciWtwLa7B9bgeN+JG3IybcStuxe24HT9BBYCf4m7cjcm4F/fiPtyH+3E/HsADmImZeBAP4iE8hIfxMB7BI3gUj+FxPIYn8ASexFN4Gk/jWTyL5/DZ+K8bf1JydTKILEooESNiRKyIFblELpFb5BZ5RB4RERERJ+JEPpFP5Bf5RUFRUMSLeFFEFBFGGEEijAEAERVRUVwUFyVECVFKlBJOOJEgEkRZUVaUE+VEeXGLqCBuFRVFJdHWVRFVRFXRzlUTd4jqorqoIWqKWqK2qC3qiDqirqgr6ol6or6oLxqI+0VD0QcH4IMiqzNNxBBsKoZiM9FcyIufYK3FcGwj2op24nExEkdgB9HaJYqnREcxBjuJv4mx+IzoIsZjV/Gc6Ca6ix7iedFTtHG9RG8xGfuIvmIq9hP9xQDxkpiBNcX7ODtnLfGqSBZDxFDxmpiPr4vh4g0xQowUo8SbYrR4S4wRY8U4MV6kiAlionhbTBLviMniXTFFTBWpYpqYLt4TM8RMMUu8L2aLD8QcMVfME/NFmvhQLBALRbr4SCwSH4sMsVgsEUvFMrFcrBArxSqxWqwRa8U6sV5sEBvFJrFZbBFbxTaxXewQn4id4lOxS+wWe8RnYq/4XOwTX4j94ktxQHwlMsXX4qD4RhwS34rD4jtxRHwvjopj4rj4QZwQP4qT4pQ4Lc6Is+IncU78LM4LL0CiFFJKJQMZI3PIWJlT5pJXydwyuPjsXiPj5LUyn7xO5pcFZEFZSMbLwrKI1NJIK0mGsqgsJqPyellc3iBLyJKylCwtnSwjE+SNsqy8SZaTN8vy8hZZQd4qK8pKsrKsIm+TVeXtEiIX9lFD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6iy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeW/zH/7d/IH/7L3jXKT3Cy3yK1ym9wud8hP5E65U+6Su+QeuUfulXvlPrlP7pf75QF5QGbKTHlQHpSH5CF5WB6WR+QReVQek2fkD/KE/FGelKfkKXlGnpVn5bmLzwEoVEJJpVSgYlQOFatyqlzqKpVbXa3yqLwqoq5RcepalU9dp/KrAqqgKqTiVWFVRGlllFWkQlVUFVNRdT1efMGoUqq0cqqMSlA3/jv5qri6QZVQJX+Vf6m+pH9SXyvVSrVWrVUb1Ua1U+1Ue9VedVAdVKJKVB1VR9VJdVKdVWfVRXVRXVVX1U11Uz1UD9VT9VS9VC+VpJJUX/Wi6qf6qwHqJTVQvawGqUFqsBqsklWyGqqGqmFqmBquhqsRaoQapUap0Wq0GqPGqHFqnEpRKWqimqgmqUlqspqspqgpKlWlqulqupqhZqhZapaarWarOWqOmqfmqTSVphaoBSpdpatFapHKUIvVYrVULVXL1XK1Uq1Uq9VqtVatVevVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nnfYFIhCBClQQE8QEsUFskCvIFeQOcgd5gjxBJIgEcUFckC+4LsgfFAgKBoWC+KBwUCTQgQlsIC42PRpcHxQPbghKBCWDUkHpwAVlgoTgxqBscFNQLrg5KB/cElQIbg0qBpWCykGV4LaganB7UC24I6ge3BnUCGoGtYLawV1BneDuoG5wT1AvuDeoH9wXNAjuDxoGDwSNggeDxsFDQZPg4aBp8EjQLGgetAhaBq3+1Pm9P1ngMddL99ZJuo/uq1/U/XR/PUC/pAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erJ+V0/RU3Wqnqan6/f0DD1Tz9Lv69n6Az1Hz9Xz9Hydpj/UC/RCna4/0ov0xzpDL9ZL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0J3qn/lTv0rv1Hv2Z3qs/1/v0F3q//lIf0F/pTP21Pqi/0Yf0t/qw/k4f0d/ro/qYPq5/0Cf0j/qkPqVP6zP6rP5Jn9M/6/PaZ53cZ329G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emn8ln8pv8pqApaOJNvCliipgsZMgUNUVN1ERNcVPclDAlTClTyjjjTIJJMGVNWVPOlDPlTXlTwVQwFU1FU9lUNreZ28zt5nZzh7nD3GnuNDVNTVPb1DZ1TB1T19Q19Uw9U9/UNw1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1MM9PCtDCtTCvT2rQ2bUwb0860M+1Ne9PBdDCJJtF0NB1NJ9PJdDadTRfTxXQ1XU030830MD1MT9PT9DK9TJJJMn1NX9PP9DMDzAAz0Aw0g8wgM9gMNskm2Qw1Q80wM8wMN8PNCDPSjMo6UTVvmTFmrBlnxpsUk2ImmolmkplkJpvJZoqZYlJNqpluppsZZoaZZWaZ2Wa2mWPmmHlmnkkzaWaBWWDSTbpZZBaZDJNhlpglZplZZlaYFWaVWWXWmDVmHawzG8wGs8lsMlvMFrPNbDM7zA6z0+w0u8wus8fsMXvNXrPP7DP7zX5zwBwwmSbTHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81ZU+Di96U3sTanzWWvsrnt1TaPzWv/MS5oC9l4W9gWsdrmtwV+FRtrbQlb0paypa2zZWyCvfE3cUVbyVa2Vexttqq93Vb7TVzH3m3r2ntsPXuvrW3v+lVc395nG9iHbUNEANvcNrYtbRP7sG1qH7HNbHPbwra07e0TtoN90ibap2xH+/Rv4gV2oV1lV9s1dq3dZXfb0/aMPWS/tWftT7aX7W0H2pftIPuKHWxftcl2yG/iUfZNO9q+ZcfYsXacHf+beIqdalPtNDvdvmdn2Jm/idPsh3a2Tbdz7Fw7z87/Jc6qKd1+ZBfZj22GDWCJXWqX2eV2hV15qVaf1663G+xGu9N+arfYrXab3W53XDoRtrvtHvuZ3Ws/twftN3a//dIesIdtpv36lzjr+A7b7+wR+709ao/Z4/YHe8L+qC5lZx37D/Zne956C4QEJElRQDGUg2IpJ+Wiqyg3XU15KC9F6BqKo2spH11H+akAFaRCFE+FqQhpMmSJKKSiVIyidD1dKq8UlSZHZSiBbqSydBOVo5upPN1CFehWqkiVqDJVoduoKt1O1egOqk53Ug2qSbWoNt1Fdehuqkv3UD26l+rTfdSA7qeG9AA1ogepMT1ETehhakqPUDNqTi2oJbWiR6k1PUZtqC21o8epPT1BHehJSqSnqCM9TZ3ob9SZnqEu9Cx1peeoG3WnHvQ89aQXqBf1piTqQ33pRepH/WkAvUQD6WUaRK/QYHqVkmkIDaXXaBi9TsPpDRpBI2kUvUmj6S0aQ2NpHI2nFJpAE+ltmkTv0GR6l6bQVEqlaTSd3qMZNJNm0fs0mz6gOTSX5tF8SqMPaQEtpHT6iBbRx5RBi2kJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQJ7STPqVdtJv20Ge0lz6nffQF7acv6QB9RZn0NR2kb+gQfUuH6Tvfm76no3SMjtMPdIJ+pJN0ik7TGTpLP9E5+pnOkycIMRShDFUYhDFhjjA2zBnmCq8Kc4dXh3nCvGEkvCaMC68N84XXhfnDAmHBsFAYHxYOi4Q6NKENKQzDomGxMBpeHxYPbwhLhCXDUmHp0IVlwoTwxrBseFNYLrw5LB/eElYIbw0rhpXCh++tEt4WVg1vD6uFd4TVwzvDGmHNsFZYO7wrrBPeHdYN7wnrhfeG5cL7wgbh/WHD8IGwUfhg2Dh8KGwSPhw2DR8Jm4XNwxZhy7BV+GjYOnwsbBO2DduFj4ftwyfCDuGTYWL4VNgxfPqX9fct/Ofrk8I+Yd/wxfDF0Pt75Lzo/Gha9MPogujCaHr0o+ii6MfRjOji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxqj3tXOAQyecdMoFLsblcLEup8vlrnK53dUuj8vrIu4aF+eudfncdS6/K+AKukIu3hV2RZx2xllHLnRFXTEXdde74u4GV8KVdKVcaedcGZfgWrpWrpVr7R5zbVxb18497h53T7gn3JPuSfeU6+iedp3c31xn94zr4p51z7rnXDfX3fVwz7uebkKeC+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ15YS9z3Bw3z81zaS7NLXBZ54zpbpFb5DJchlvilrhlbplb4Va4VW6VW+PWuHVundvgNrhNbpPb4ra4bW6b2+F2uJ1up9vl816Y1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5Mi7kSmRqZHUyLTI9Mh7kRmRmZFZkfcjsyMfROZE5kbmReZH0iIfRhZEFkbSIx9FFkU+jmREFkeWRJZGlkWWR7wvvCX0RX0xH/XX++L+Bl/Cl/SlfGnvfBmf4G/0Zf1Nvpy/2Zf3t/gK/lZf0Vfylf0jvplv7lv4lr6Vf9S39o/5Nr6tb+cf9+39E76Df9In+qd8R/+07+T/5jv7Z3wX/6zv6p/z3Xx338M/73v6F3wv39sn+T6+r3/R9/P9/QD/kh/oX/aD/Ct+sH/VJ/shfqh/zQ/zr/vh/g0/wo/0o2Le9KMvXSLDeJ/iJ/iJ/m0/yb/jJ/t3/RQ/1af6aX66f8/P8DP9LP++n+0/8HP8XD/Pz/dp/kO/wC/06f4jv8h/7DP84ks3lf0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9Dv+J3+k/9bv8br/Hf+b3+s/9Pv+F3++/9Af8Vz7Tf+0P+m/8If+tP+y/80f89/6oP+aP+x/8Cf+jP+lP+dP+jD/rf/Ln/M/+PP/OGmOMMcbYHzLh8lD8es2F2/l9fidH/N3GfQHg6q2FMv9+fdYZ5br8F8b9RXz7CAA81bvrg5eWGjWSkpIubpshISg2F+DS/wRliYHL8WJoB09AIrSFsr9bf3/R/Sz9i/mjtwDk+rucWLgcX57/CwBM+p35H3181IIK4em4/8/8cwFKFLuckxMux4uh3S/3V9pCuX9Sf4HW/6L+nF+mALT5u5zccDm+XH8CPAZPQ+KvtmSMMcYYY4wxxi7oLyp3vnT9eeknPn/v+jxeXc7JAZfjf3V9zhhjjDHGGGOMsSvvme49nnw0MbFt539/UO1/lPWHB03hf2tmHvzuwHuAS48oAPgPJwTIGsi/8ig2/yX7Sr741vnHVcvO+AD+O1r5Zwyu8AcTY4wxxhhj7E93+aT/14+rK1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWDf0Vf07sSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//kfb+pw==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))

1m35.49455479s ago: executing program 4 (id=2087):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
ioctl$SNDCTL_TMR_START(r0, 0x5402)
ioctl$SNDCTL_SEQ_RESET(r0, 0x5100)
ioctl$SNDCTL_TMR_CONTINUE(r0, 0x5404)

1m35.032330817s ago: executing program 4 (id=2093):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0x25, &(0x7f00000000c0)='illinois\x00', 0x9)

1m34.851940472s ago: executing program 36 (id=2093):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0x25, &(0x7f00000000c0)='illinois\x00', 0x9)

45.532164996s ago: executing program 7 (id=2612):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80, &(0x7f0000000900)=ANY=[@ANYBLOB="747970653d142606372c6e6c733d63703835302c626172726965722c6769643d", @ANYRESHEX=0x0, @ANYBLOB=',force,force,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0028103ea6ac66d52cae56ca"], 0x1, 0x6e8, &(0x7f00000001c0)="$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")
mknod$loop(&(0x7f0000000ac0)='./bus\x00', 0x6000, 0x1)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

44.952011653s ago: executing program 7 (id=2620):
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$P9_RGETATTR(r1, &(0x7f00000001c0)={0xa0, 0x19, 0x1, {0x1008, {0x4, 0x1, 0x1}, 0x66b1827b4acaada2, 0xee00, 0x0, 0x8b9b, 0x800, 0xf, 0xfffffffffffffff9, 0x9, 0xf, 0xa0, 0x3eb, 0x80000001, 0x5, 0x9, 0x2, 0x9, 0x1, 0x8001}}, 0xa0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x25a5, 0x0)

44.700321813s ago: executing program 7 (id=2626):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000002c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000100)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000000c0)={{@my=0x1}, @any, 0x0, 0x0, 0x400005})

44.635940849s ago: executing program 7 (id=2629):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000640)=ANY=[@ANYBLOB='iocharset=iso8859-15,umask=00000000000000000000003,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303235332c646973636172642c666d61736b3d30303030303030303030303030300000000030303031302c757466382c696f636861727365743d6d6163696e7569742c4ea0a5899b233b5a616c6c6f775f7574696d653d30303030303030303030303030303030303134373037302c00"], 0x1, 0x1528, &(0x7f00000037c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))

44.402324307s ago: executing program 7 (id=2631):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'hsr0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000880)=ANY=[@ANYBLOB="4400000010000304040000000200000000000000", @ANYRES32=0x0, @ANYBLOB="1103020000000000140012800b0001006970766c616e0000", @ANYRES32=r2, @ANYBLOB='\b\x00', @ANYRES32=r2], 0x44}, 0x1, 0xba01}, 0x810)

43.823255365s ago: executing program 7 (id=2633):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000800)=0x16c, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000480)={@in={{0x2, 0x4e23, @loopback}}, 0x0, 0x20000000005, 0x21}, 0xd8)
sendto$inet(r0, 0x0, 0x0, 0x240087f9, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)

43.541881488s ago: executing program 37 (id=2633):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000800)=0x16c, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000480)={@in={{0x2, 0x4e23, @loopback}}, 0x0, 0x20000000005, 0x21}, 0xd8)
sendto$inet(r0, 0x0, 0x0, 0x240087f9, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)

2.56537924s ago: executing program 6 (id=3126):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0x4731408b)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})

2.375027236s ago: executing program 6 (id=3127):
ioctl$KDFONTOP_SET_DEF(0xffffffffffffffff, 0x4b72, &(0x7f0000000400)={0x2, 0x0, 0x20, 0x7, 0x184, &(0x7f0000000000)="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"})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x8990, &(0x7f0000000380)={'gre0\x00', 0x0})

2.132229666s ago: executing program 6 (id=3128):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x214, &(0x7f0000000680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x8)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x10012, r0, 0xffffd000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')

1.605048029s ago: executing program 0 (id=3135):
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

1.312282443s ago: executing program 6 (id=3137):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000840)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESDEC=0x0, @ANYBLOB=',discard,\x00', @ANYRESDEC, @ANYRESHEX, @ANYBLOB="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", @ANYRES8=0x0, @ANYRESHEX=0x0, @ANYRES16, @ANYRES64=0x0], 0x81, 0x151a, &(0x7f0000002a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x189040, 0x10a)
fcntl$setlease(r0, 0x400, 0x0)
unlink(&(0x7f0000000000)='./file1\x00')

1.169663504s ago: executing program 8 (id=3139):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)={0x28, r2, 0x1, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @random="6c2760ac8569"}]}, 0x28}, 0x1, 0x0, 0x0, 0x20}, 0x0)

1.014770857s ago: executing program 3 (id=3140):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000300)=0x2000004)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000400)=0xfffffffd)

964.909661ms ago: executing program 8 (id=3141):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
io_setup(0x9, &(0x7f0000000240)=<r1=>0x0)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x400000, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f00000000000029ffffff000000", 0x20000238}])

951.538322ms ago: executing program 9 (id=3142):
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="100a06000908010014001a80100004800c000680080001"], 0x34}, 0x1, 0x0, 0x0, 0xc0c0}, 0x14)

846.303481ms ago: executing program 0 (id=3143):
r0 = io_uring_setup(0x21e9, &(0x7f0000002400)={0x0, 0xffffffbc, 0x0, 0x2, 0x176})
r1 = eventfd2(0x0, 0x0)
read$eventfd(r1, &(0x7f0000000440), 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

846.184061ms ago: executing program 6 (id=3144):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1}}, {@init_itable_val}, {@nolazytime}, {@grpid}, {@prjquota}, {@norecovery}, {@lazytime}, {@errors_continue}, {@auto_da_alloc}, {@test_dummy_encryption}]}, 0xff, 0x468, &(0x7f0000000780)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x10)

823.197483ms ago: executing program 3 (id=3153):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETOWNER(r0, 0x400454cc, 0x0)
close(r0)

822.565433ms ago: executing program 9 (id=3145):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xb}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000001}, 0x4000800)

752.078669ms ago: executing program 8 (id=3146):
r0 = memfd_create(&(0x7f0000000100)='+\x88\xc7s\x00\x00\x942nodev\x00\x00\x8cZ_Pv\x03\xa7\xc1\b\xec\x90Q\x85\x83\xcd\x16\xdcw\'\x8a\xe5N\x8c\x17\xfd\xc5\xad\xd5y\x15\x1fx\x17\f\xbc\xd1.\x8cA\x17\x86\xb7-j!Y\x92\xd9\xc4\r8\xd0\xc9X\xa7\x11\xa3\xf0\x8a*\xbc\x87\xcd\x1fl\xfc\xf3]\xb8\xbd\x02\v<\fl\xa6]\xa5\xfb\x05\xcb\x9c\xe2\xc8\x05\xa5\xa5\xeb\xa9\xef\xe3\xf1b\x81\xec\xac\xb6\x80\xd5\xf5S\x85\x06O\x05\xb8\xa1\x15\xcc\x17\xe8s\x95\x95B\xee_\x98\x91)\xe7\xa8+\x8c\xee\x83@q\x16\xcf3\x0f\x81\xa8\xa9`i\x01m:\xcc\x1c\xed<\xcfA3n\xfd\n>\x03\xae\f \xdbH\'\x05\x82\xdbLE\x14\xcdq\x1abcf\xdb8\xe9a\xa8\x00'/201, 0x2)
fcntl$addseals(r0, 0x409, 0x12)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x13, r0, 0x4000)

741.783989ms ago: executing program 8 (id=3147):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x44801}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="500000001000010000000000ecffffff00000000", @ANYRES32=r1, @ANYBLOB="0000000000000000300012800e0001006970366772657461700000001c00028006000f000000000006000e"], 0x50}}, 0x0)

694.734543ms ago: executing program 9 (id=3148):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x3, 0x7ff, 0x7, 0x3ff, 0x1, 0x6, 0x1c31, 0x1e25]}}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040010}, 0x4000000)

649.273797ms ago: executing program 3 (id=3149):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = epoll_create(0x689)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000480))

620.913589ms ago: executing program 0 (id=3150):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000280)=ANY=[@ANYBLOB="01000000000000ddd00400"])

620.574439ms ago: executing program 8 (id=3151):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x39c3, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

620.207459ms ago: executing program 3 (id=3152):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x3)
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000240))

520.298127ms ago: executing program 0 (id=3154):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000200ff7c000040"])

430.433335ms ago: executing program 8 (id=3155):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f00000007c0)="$eJzs3b9rO2UYAPDn0jQJOiSCkwge6OD05dvv6pIiLRQzKRnUQYttQZogtFDwB8ZOri6Ori6C4OY/4eJ/ILgKbhYsnNzlrklqGpPatP74fJa+fe953nve69uWDvf03eeHxwdpHJ1/8lO0WknUutGNiyQ6UYvKZzGj+0UAAP9mF1kWv2Zjq+QlEdFaX1kAwBqt/Pv/u7WXBACs2RtvvvXadq+383qatmJ3+PlZP//LPv84vr59FO/HIA7jcbTjMiK7Mh7vZlk2qqe5Trw0HJ3188zhOz+U62//ElHkb0U7OsXUbP5eb2crHZvKH+V1PFXev5vnP4l2PDvn/nu9nSdz8qPfiJdfnKr/UbTjx/figxjEQVHEOD9qEZ9upemr2Ze/ffx2Xl6en4zO+s0ibiLbuOcvDQAAAAAAAAAAAAAAAAAAAAAA/2GPyt45zSj69+RTZf+djcv8k81IK53Z/jzj/KRa6Fp/oFEWX1X9eR6naZqVgZP8ejxXj/rD7BoAAAAAAAAAAAAAAAAAAAD+WU4//Oh4fzA4PLmTQdUNoHqt/7brdKdmXojFwc3JvWrlcMHKsVHFJBELy8g3sXTNv5dtD2736J65qeZvvl16na//eu/lYHOJmL85qE7X8X4y/xk2o5ppVYfk++mYRix5r8ZNl7KVjl9j7qX2yntvPF0MRgtiIllU2Cs/j59cOZNc30WjeKpz0zfLwVT6bExr+fOcf6f8SXLVrSO52x9CAAAAAAAAAAAAAAAAAABAYfLS75yL5wtTa1lzbWUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwL2a/P//FQajMnmJ4EacnD7wFgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPgf+CMAAP//SfdjDw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2, 0x11, r0, 0x0)
read(r0, &(0x7f0000000400)=""/4096, 0x1000)

429.880845ms ago: executing program 9 (id=3165):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000c, 0x204031, 0xffffffffffffffff, 0xffffd000)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)

424.101405ms ago: executing program 0 (id=3156):
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000140)='_', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
r2 = add_key$user(&(0x7f0000006400), &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000006900)="3e12d23d346cfdeb1716f738274bc1c03bee4423fa20837e6e86b86592e9be8351aabbd6e24f37d5095f839fa4a3507df4f7526f2440e7988da94ccd868dd8741d1e43eba0b67b516be14a8b51a75bfd611b2d7ae6a21d056c2c5116a416a76b0204dc55ea62d43c809e0ed6e56163fdab317afd5c34d614367e4425bb9a97e38b8beb84ef6d549eed", 0x89, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r2}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha3-512-generic\x00'}})

249.530459ms ago: executing program 9 (id=3157):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000001c0), 0x10)
sendfile(r1, r0, 0x0, 0xaf)

248.907789ms ago: executing program 0 (id=3158):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x14)

229.669021ms ago: executing program 3 (id=3159):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x40000010, 0x0, 0x1}]})

228.971411ms ago: executing program 6 (id=3160):
openat(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = syz_usb_connect(0x2, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000094ae94405f0520c4336a000000010902120001000000000904"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bda000/0x4000)=nil, 0xfffffffffffffea3, &(0x7f00000000c0)='\x00#\x0f\x01bK\xd1\xd8\xc8\xe3Z(\x03\xa1\x8b\x19#\x8fZ\x10Gk\x01\xd5\xc6r\x88\x97\xbb\xd9\xca=\xffa\xeb\b\xb2\x90\x1a\x03;\xae\xddc\nI\xcd\xf59>\xc4ZE\xac\xd3\x1f\xe7\xc5\xe5(\xed\xbb+\xfd\xe3\xb2\xf8\x9d\xf1\b\xff9\".Be\xf6\xb0\x0e\x86\xa3\x1c\x10\x88\xf4\xa2\xa0\x81\vN2N\xf1\xa5\x96\x94\x91\xa2S\x96@\xf1\x15\x9a{\xb9O{\x01*\xe98\xea\xcd\xcd\x04Y\x03\xf5>\x93\xb8')

127.66867ms ago: executing program 9 (id=3161):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x42, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x1})
epoll_pwait2(r1, &(0x7f00000002c0)=[{}], 0x1, &(0x7f0000000240), 0x0, 0x0)

0s ago: executing program 3 (id=3162):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@multicast, @random="5a01f3c2f136", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @local, @remote, @local, @remote}}}}, 0x0)

kernel console output (not intermixed with test programs):

vice veth0_vlan entered promiscuous mode
[  269.058771][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  269.080622][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  269.094927][T11637] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  269.124958][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  269.149315][T11637] BTRFS info (device loop6): using free space tree
[  269.157333][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  269.176768][T11637] BTRFS info (device loop6): has skinny extents
[  269.203539][T11414] device veth1_vlan entered promiscuous mode
[  269.252237][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  269.282176][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  269.347104][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  269.402352][T11637] BTRFS info (device loop6): enabling ssd optimizations
[  269.417399][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  269.438021][ T1106] Bluetooth: hci2: command 0x0419 tx timeout
[  269.460949][T11665] loop8: detected capacity change from 0 to 40427
[  269.473759][T11414] device veth0_macvtap entered promiscuous mode
[  269.524319][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  269.562458][T11414] device veth1_macvtap entered promiscuous mode
[  269.620914][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.640281][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.667951][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.695697][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.705349][T11710] loop0: detected capacity change from 0 to 512
[  269.727903][T11665] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  269.768054][T11665] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  269.776725][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.793620][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.803758][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  269.814665][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.826335][T11414] batman_adv: batadv0: Interface activated: batadv_slave_0
[  269.838622][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  269.861931][T11665] F2FS-fs (loop8): Found nat_bits in checkpoint
[  269.914920][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  269.928064][T11710] EXT4-fs (loop0): mounted filesystem without journal. Opts: sb=0x0000000000000001,quota,,errors=continue. Quota mode: writeback.
[  269.999716][T11665] F2FS-fs (loop8): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  270.039196][T11710] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.044076][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.110309][ T6757] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 10 /dev/loop6 scanned by udevd (6757)
[  270.130996][T11710] EXT4-fs error (device loop0): ext4_get_first_dir_block:3597: inode #12: comm syz.0.2273: Attempting to read directory block (0) that is past i_size (3)
[  270.148405][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.168893][T11665] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  270.180131][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.189541][T11665] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  270.216853][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.271854][T11414] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.293716][T11414] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.324628][T11414] batman_adv: batadv0: Interface activated: batadv_slave_1
[  270.337842][ T1195] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  270.354017][ T1195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  270.380100][ T1195] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  270.414474][ T1195] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  270.466492][T11414] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  270.562898][T11414] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  270.595781][T11414] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  270.616330][T11414] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  270.686772][T11738] loop9: detected capacity change from 0 to 1024
[  270.823397][T11738] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  270.904710][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  270.949448][T11738] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.973582][T11738] EXT4-fs (loop9): Unrecognized mount option "�
" or missing value
[  271.024207][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  271.046485][ T4264] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  271.052942][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  271.102963][ T4264] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  271.143028][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  271.255435][ T4789] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  271.295302][T11757] loop6: detected capacity change from 0 to 128
[  271.393319][T11757] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  271.413276][T11757] ext4 filesystem being mounted at /252/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  271.862726][T11786] loop7: detected capacity change from 0 to 16
[  271.897146][ T4789] usb 9-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  271.911484][ T4789] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.920070][T11786] erofs: (device loop7): mounted with root inode @ nid 36.
[  271.972073][ T4789] usb 9-1: Product: syz
[  271.989021][ T4789] usb 9-1: Manufacturer: syz
[  272.005745][ T4789] usb 9-1: SerialNumber: syz
[  272.026568][ T4789] usb 9-1: config 0 descriptor??
[  272.096358][T11799] loop7: detected capacity change from 0 to 64
[  272.335468][ T4789] usb 9-1: ignoring: probably an ADSL modem
[  272.532601][T11823] loop7: detected capacity change from 0 to 512
[  272.574847][T11826] netlink: 'syz.6.2320': attribute type 21 has an invalid length.
[  272.587827][T11826] netlink: 'syz.6.2320': attribute type 20 has an invalid length.
[  272.595697][T11826] IPv6: NLM_F_CREATE should be specified when creating new route
[  272.659463][T11831] loop0: detected capacity change from 0 to 1024
[  272.739177][T11823] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  272.752557][T11823] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.792558][T11831] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  272.804200][ T4789] cxacru 9-1:0.0: usbatm_usb_probe: bind failed: -19!
[  272.946446][T11848] loop9: detected capacity change from 0 to 64
[  273.043290][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  273.043304][   T26] audit: type=1800 audit(1754097901.547:54): pid=11848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2312" name="file1" dev="loop9" ino=5 res=0 errno=0
[  273.082221][ T4789] usb 9-1: USB disconnect, device number 8
[  273.175221][T11856] sch_tbf: burst 124 is lower than device lo mtu (65550) !
[  273.286935][ T4246] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  273.523404][T11861] loop9: detected capacity change from 0 to 32768
[  273.573512][T11853] loop0: detected capacity change from 0 to 32768
[  273.651575][T11870] delete_channel: no stack
[  273.673081][T11861] XFS (loop9): Mounting V5 Filesystem
[  273.689220][   T26] audit: type=1800 audit(1754097902.146:55): pid=11853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2315" name="file1" dev="loop0" ino=4 res=0 errno=0
[  273.711101][T11874] loop8: detected capacity change from 0 to 128
[  273.758060][ T4246] usb 7-1: Using ep0 maxpacket: 16
[  273.815611][T11861] XFS (loop9): Ending clean mount
[  273.823294][ T4299] XFS (loop9): Metadata CRC error detected at xfs_inobt_read_verify+0x3a/0xd0, xfs_finobt block 0x20 
[  273.835193][ T4299] XFS (loop9): Unmount and run xfs_repair
[  273.840929][ T4299] XFS (loop9): First 128 bytes of corrupted metadata buffer:
[  273.848856][ T4299] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  273.857875][ T4299] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  273.866899][ T4299] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  273.878641][ T4299] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  273.887914][ T4246] usb 7-1: config 0 interface 0 has no altsetting 0
[  273.894617][ T4299] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  273.903919][ T4246] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  273.913122][ T4299] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  273.938710][ T4246] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.954175][ T4299] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.964195][ T4246] usb 7-1: config 0 descriptor??
[  273.975785][T11881] netlink: 'syz.7.2326': attribute type 12 has an invalid length.
[  273.997136][ T4299] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.023074][T11861] XFS (loop9): metadata I/O error in "xfs_btree_read_buf_block+0x1d3/0x2c0" at daddr 0x20 len 8 error 74
[  274.034566][T11861] XFS (loop9): Failed to initialize disk quotas.
[  274.099703][T11007] XFS (loop9): Unmounting Filesystem
[  274.427333][T11889] loop0: detected capacity change from 0 to 512
[  274.532429][T11889] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000080000,quota,,errors=continue. Quota mode: writeback.
[  274.571482][ T4246] hid (null): unknown global tag 0xd
[  274.577292][ T4246] hid (null): unknown global tag 0xd
[  274.601023][ T4246] hid (null): usage index exceeded
[  274.610497][T11889] ext4 filesystem being mounted at /440/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  274.853336][ T1106] usb 7-1: USB disconnect, device number 15
[  275.092807][T11900] device sit0 entered promiscuous mode
[  275.118516][T11900] netlink: 'syz.9.2330': attribute type 1 has an invalid length.
[  275.143721][T11900] netlink: 1 bytes leftover after parsing attributes in process `syz.9.2330'.
[  275.388181][T11904] loop9: detected capacity change from 0 to 256
[  275.402962][T11904] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  275.450109][T11904] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d)
[  275.604186][T11908] loop8: detected capacity change from 0 to 512
[  275.717745][T11887] loop7: detected capacity change from 0 to 262144
[  275.741369][T11912] device sit0 entered promiscuous mode
[  275.743213][T11913] loop6: detected capacity change from 0 to 128
[  275.758332][T11912] netlink: 'syz.0.2344': attribute type 1 has an invalid length.
[  275.803999][T11912] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2344'.
[  275.813265][T11887] F2FS-fs (loop7): invalid crc value
[  275.836033][T11887] F2FS-fs (loop7): Found nat_bits in checkpoint
[  275.855997][T11908] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.2333: invalid indirect mapped block 4294967295 (level 1)
[  275.881773][T11887] F2FS-fs (loop7): Start checkpoint disabled!
[  275.972863][T11908] EXT4-fs (loop8): Remounting filesystem read-only
[  275.979452][T11908] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.2333: invalid indirect mapped block 4294967295 (level 1)
[  275.999136][T11887] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  276.009499][T11908] EXT4-fs (loop8): Remounting filesystem read-only
[  276.027651][T11908] EXT4-fs (loop8): 2 truncates cleaned up
[  276.033432][T11908] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpjquota=,errors=remount-ro,user_xattr,auto_da_alloc=0x000000007fffffff,. Quota mode: writeback.
[  276.772151][T11948] loop0: detected capacity change from 0 to 8192
[  276.873852][T11948] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  276.903586][T11948] REISERFS (device loop0): using ordered data mode
[  276.910130][T11948] reiserfs: using flush barriers
[  276.970787][T11948] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  277.029418][T11948] REISERFS (device loop0): checking transaction log (loop0)
[  277.086809][T11969] loop8: detected capacity change from 0 to 512
[  277.210209][T11969] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  277.291493][T11969] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  277.328912][T11969] EXT4-fs (loop8): 1 truncate cleaned up
[  277.342606][T11969] EXT4-fs (loop8): mounted filesystem without journal. Opts: noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x000000000000002e,lazytime,quota,quota,,errors=continue. Quota mode: writeback.
[  277.492391][T11948] REISERFS (device loop0): Using tea hash to sort names
[  277.517952][T11969] EXT4-fs (loop8): re-mounted. Opts: (null). Quota mode: writeback.
[  277.518141][T11948] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  277.693907][T11981] loop9: detected capacity change from 0 to 4096
[  277.696293][T11954] loop6: detected capacity change from 0 to 32768
[  277.748014][T11981] ntfs: (device loop9): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  277.817550][T11981] ntfs: (device loop9): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  277.837099][T11981] ntfs: (device loop9): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  277.906242][T11985] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2362'.
[  277.941053][T11981] ntfs: (device loop9): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  277.985345][T11981] ntfs: volume version 3.1.
[  278.157835][T11991] ntfs: (device loop9): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry.
[  278.341036][ T1195] ntfs: (device loop9): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry.
[  278.366892][T11995] loop0: detected capacity change from 0 to 1024
[  278.396334][T11993] loop6: detected capacity change from 0 to 4096
[  278.413633][T11007] ntfs: (device loop9): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  278.469924][T11993] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  278.541465][T11993] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  278.607867][T11993] ntfs: (device loop6): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  278.625560][T11993] ntfs: (device loop6): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  278.652120][T11993] ntfs: (device loop6): check_mft_mirror(): Failed to read $MFTMirr.
[  278.663475][T11993] ntfs: (device loop6): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  278.681982][T11993] ntfs: (device loop6): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  278.693960][T11993] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  278.707459][T11993] ntfs: (device loop6): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  278.721551][T11993] ntfs: volume version 3.1.
[  278.891231][ T4789] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  279.026404][T11999] loop7: detected capacity change from 0 to 32768
[  279.283516][T12018] loop8: detected capacity change from 0 to 32768
[  279.348357][ T4789] usb 10-1: Using ep0 maxpacket: 32
[  279.383255][T11999] XFS (loop7): Mounting V5 Filesystem
[  279.648785][ T4789] usb 10-1: config 1 interface 0 altsetting 128 bulk endpoint 0x82 has invalid maxpacket 8
[  279.661008][T11999] XFS (loop7): Ending clean mount
[  279.668381][ T4789] usb 10-1: config 1 interface 0 has no altsetting 0
[  279.716740][T11999] XFS (loop7): Quotacheck needed: Please wait.
[  279.794764][T12045] loop6: detected capacity change from 0 to 1024
[  279.816485][T11999] XFS (loop7): Quotacheck: Done.
[  279.852910][ T4789] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  279.875366][ T4789] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.889485][T12045] EXT4-fs (loop6): mounted filesystem without journal. Opts: noinit_itable,dax=inode,nolazytime,discard,sb=0x0000000000000001,lazytime,noload,bsddf,journal_dev=0x0000000000000005,,errors=continue. Quota mode: none.
[  279.910276][    C1] vkms_vblank_simulate: vblank timer overrun
[  279.930170][ T4789] usb 10-1: Product: syz
[  279.978927][ T4789] usb 10-1: Manufacturer: syz
[  279.983680][ T4789] usb 10-1: SerialNumber: syz
[  280.027386][T11414] XFS (loop7): Unmounting Filesystem
[  280.068936][T12001] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  280.445062][ T4789] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 128 proto 1 vid 0x0525 pid 0xA4A8
[  280.451345][T12079] loop6: detected capacity change from 0 to 2048
[  280.490610][ T4789] usb 10-1: USB disconnect, device number 3
[  280.551284][T12079] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  280.556796][ T4789] usblp0: removed
[  281.124131][T12104] loop7: detected capacity change from 0 to 64
[  281.307736][T11414] hfs: node 4:3 still has 1 user(s)!
[  281.474193][T12108] loop6: detected capacity change from 0 to 4096
[  281.498123][T12081] loop8: detected capacity change from 0 to 32768
[  281.561094][T12083] loop0: detected capacity change from 0 to 40427
[  281.641427][T12108] ntfs: volume version 3.1.
[  281.667890][T12081] XFS (loop8): Mounting V5 Filesystem
[  281.690704][T12132] input: syz0 as /devices/virtual/input/input24
[  281.787051][T12083] F2FS-fs (loop0): Found nat_bits in checkpoint
[  281.909667][T12081] XFS (loop8): Ending clean mount
[  281.952602][T12081] XFS (loop8): Quotacheck needed: Please wait.
[  282.050831][T12083] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  282.151358][T12081] XFS (loop8): Quotacheck: Done.
[  282.232572][ T4191] attempt to access beyond end of device
[  282.232572][ T4191] loop0: rw=2049, want=45104, limit=40427
[  282.245469][   T21] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  282.361220][ T9681] XFS (loop8): Unmounting Filesystem
[  282.512575][   T21] usb 7-1: Using ep0 maxpacket: 16
[  282.667440][   T21] usb 7-1: config 0 has an invalid interface number: 225 but max is 0
[  282.683250][   T21] usb 7-1: config 0 has no interface number 0
[  282.700586][   T21] usb 7-1: config 0 interface 225 has no altsetting 0
[  282.918916][   T21] usb 7-1: New USB device found, idVendor=0b95, idProduct=1720, bcdDevice=23.b4
[  282.939247][   T21] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.986712][   T21] usb 7-1: Product: syz
[  282.991241][   T21] usb 7-1: Manufacturer: syz
[  283.015020][   T21] usb 7-1: SerialNumber: syz
[  283.040379][   T21] usb 7-1: config 0 descriptor??
[  283.213777][T12198] loop8: detected capacity change from 0 to 8
[  283.285464][T12198] SQUASHFS error: Unknown inode type 1078 in squashfs_iget!
[  283.440478][T12198] blk_update_request: I/O error, dev loop8, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  283.462865][T12198] EXT4-fs (loop8): unable to read superblock
[  283.795654][   T21] asix 7-1:0.225 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  283.812161][   T21] asix: probe of 7-1:0.225 failed with error -71
[  283.839648][   T21] usb 7-1: USB disconnect, device number 16
[  283.931687][T12241] netlink: 452 bytes leftover after parsing attributes in process `syz.9.2435'.
[  284.021633][T12248] loop9: detected capacity change from 0 to 512
[  284.213232][T12248] EXT4-fs (loop9): mounted filesystem without journal. Opts: nodioread_nolock,i_version,,errors=continue. Quota mode: writeback.
[  284.232754][T12248] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.083510][T12294] loop9: detected capacity change from 0 to 65536
[  285.153878][T12294] XFS (loop9): Mounting V5 Filesystem
[  285.166304][T12294] XFS (loop9): Internal error head_block >= tail_block || head_cycle != tail_cycle + 1 at line 1656 of file fs/xfs/xfs_log_recover.c.  Caller xlog_clear_stale_blocks+0x2d6/0x420
[  285.184005][T12294] CPU: 1 PID: 12294 Comm: syz.9.2451 Not tainted 5.15.189-syzkaller #0
[  285.192261][T12294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  285.202339][T12294] Call Trace:
[  285.205627][T12294]  <TASK>
[  285.208554][T12294]  dump_stack_lvl+0x168/0x230
[  285.213239][T12294]  ? xfs_info+0x280/0x280
[  285.217605][T12294]  ? show_regs_print_info+0x20/0x20
[  285.222815][T12294]  ? xfs_rw_bdev+0x476/0x4f0
[  285.227424][T12294]  xfs_corruption_error+0x117/0x170
[  285.232631][T12294]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  285.238276][T12294]  xlog_clear_stale_blocks+0x36f/0x420
[  285.243747][T12294]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  285.249399][T12294]  xlog_find_tail+0x79e/0x9f0
[  285.254098][T12294]  xlog_recover+0x48/0x420
[  285.258527][T12294]  xfs_log_mount+0x393/0x6b0
[  285.263129][T12294]  xfs_mountfs+0xb27/0x1b10
[  285.267647][T12294]  ? xfs_default_resblks+0x70/0x70
[  285.272763][T12294]  ? rcu_is_watching+0x11/0xa0
[  285.277529][T12294]  ? trace_xfs_inode_timestamp_range+0x84/0x1d0
[  285.283782][T12294]  xfs_fs_fill_super+0x11a4/0x13f0
[  285.288914][T12294]  get_tree_bdev+0x3f1/0x610
[  285.293511][T12294]  ? xfs_fs_warn_deprecated+0x190/0x190
[  285.299075][T12294]  vfs_get_tree+0x88/0x270
[  285.303497][T12294]  do_new_mount+0x24a/0xa40
[  285.308013][T12294]  __se_sys_mount+0x2d6/0x3c0
[  285.312709][T12294]  ? __x64_sys_mount+0xc0/0xc0
[  285.317484][T12294]  ? lockdep_hardirqs_on+0x94/0x140
[  285.322708][T12294]  ? __x64_sys_mount+0x1c/0xc0
[  285.327484][T12294]  do_syscall_64+0x4c/0xa0
[  285.331909][T12294]  ? clear_bhb_loop+0x30/0x80
[  285.336591][T12294]  ? clear_bhb_loop+0x30/0x80
[  285.341278][T12294]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  285.347192][T12294] RIP: 0033:0x7f47b99f430a
[  285.351611][T12294] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.371223][T12294] RSP: 002b:00007f47b7859e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  285.379648][T12294] RAX: ffffffffffffffda RBX: 00007f47b7859ef0 RCX: 00007f47b99f430a
[  285.387633][T12294] RDX: 0000200000000800 RSI: 00002000000000c0 RDI: 00007f47b7859eb0
[  285.395622][T12294] RBP: 0000200000000800 R08: 00007f47b7859ef0 R09: 0000000000000000
[  285.403604][T12294] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000000c0
[  285.411582][T12294] R13: 00007f47b7859eb0 R14: 000000000000b959 R15: 0000200000000080
[  285.419578][T12294]  </TASK>
[  285.423606][T12294] XFS (loop9): Corruption detected. Unmount and run xfs_repair
[  285.432173][T12294] XFS (loop9): failed to locate log tail
[  285.437836][T12294] XFS (loop9): log mount/recovery failed: error -117
[  285.488842][T12294] XFS (loop9): log mount failed
[  285.743022][T12280] loop7: detected capacity change from 0 to 32768
[  285.779870][T12287] loop6: detected capacity change from 0 to 32768
[  285.831973][T12280] XFS: attr2 mount option is deprecated.
[  285.846305][T12330] loop8: detected capacity change from 0 to 1024
[  285.902313][T12287] XFS: noikeep mount option is deprecated.
[  285.972742][T12330] hfsplus: bad catalog entry type
[  286.018949][T12287] XFS (loop6): Mounting V5 Filesystem
[  286.043574][T12280] XFS (loop7): Mounting V5 Filesystem
[  286.068353][    T9] hfsplus: b-tree write err: -5, ino 4
[  286.235213][   T21] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  286.248853][T12287] XFS (loop6): Ending clean mount
[  286.277350][T12280] XFS (loop7): Ending clean mount
[  286.284145][T12287] XFS (loop6): Quotacheck needed: Please wait.
[  286.309337][T12280] XFS (loop7): Quotacheck needed: Please wait.
[  286.374964][T12280] XFS (loop7): Quotacheck: Done.
[  286.459537][T12287] XFS (loop6): Quotacheck: Done.
[  286.563462][ T6915] XFS (loop6): Unmounting Filesystem
[  286.585418][T11414] XFS (loop7): Unmounting Filesystem
[  286.677845][   T21] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  286.710357][   T21] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  286.719101][T12373] loop8: detected capacity change from 0 to 1024
[  286.720969][   T21] usb 10-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  286.743156][   T21] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.773720][   T21] usb 10-1: config 0 descriptor??
[  287.169595][T12378] loop8: detected capacity change from 0 to 40427
[  287.193989][T12378] F2FS-fs (loop8): invalid crc value
[  287.202382][T12378] F2FS-fs (loop8): Found nat_bits in checkpoint
[  287.243400][T12378] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  287.274573][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.293316][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.312099][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.324127][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.331226][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.341236][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.348653][   T21] samsung 0003:0419:0001.0013: unknown main item tag 0x0
[  287.361197][   T21] samsung 0003:0419:0001.0013: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.9-1/input0
[  287.493310][   T21] usb 10-1: USB disconnect, device number 4
[  287.630933][T12393] loop0: detected capacity change from 0 to 1024
[  287.669133][T12396] ptrace attach of "./syz-executor exec"[9681] was attempted by ""[12396]
[  287.733190][T12398] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2477'.
[  287.794216][ T6075] hfsplus: b-tree write err: -5, ino 4
[  287.899952][T12400] loop8: detected capacity change from 0 to 4096
[  287.937764][T12400] ntfs3: loop8: Different NTFS' sector size (2048) and media sector size (512)
[  288.305864][T12415] netlink: 'syz.9.2484': attribute type 1 has an invalid length.
[  289.001020][T12409] loop7: detected capacity change from 0 to 32768
[  289.064399][T12446] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2497'.
[  289.123365][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  289.123379][   T26] audit: type=1326 audit(1754097916.579:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.9.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47b99f2b69 code=0x7ffc0000
[  289.251954][   T26] audit: type=1326 audit(1754097916.579:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.9.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f47b99f2b69 code=0x7ffc0000
[  289.254295][T12454] loop0: detected capacity change from 0 to 512
[  289.274435][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.347539][   T26] audit: type=1326 audit(1754097916.579:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.9.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47b99f2b69 code=0x7ffc0000
[  289.371876][   T26] audit: type=1326 audit(1754097916.701:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.9.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47b99f2b69 code=0x7ffc0000
[  289.390195][T12454] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  289.540254][T12454] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=.,nolazytime,,errors=continue. Quota mode: writeback.
[  289.611315][T12454] ext4 filesystem being mounted at /466/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.630008][T12471] loop9: detected capacity change from 0 to 512
[  289.712973][T12454] EXT4-fs error (device loop0): ext4_generic_delete_entry:2729: inode #12: block 31: comm syz.0.2511: bad entry in directory: rec_len is too small for name_len - offset=24, inode=13, rec_len=16, size=1024 fake=0
[  289.763951][T12471] EXT4-fs (loop9): Ignoring removed nobh option
[  289.789901][T12471] EXT4-fs error (device loop9): ext4_orphan_get:1401: inode #15: comm syz.9.2507: iget: bad i_size value: 38620345925642
[  289.814938][T12454] EXT4-fs error (device loop0) in ext4_delete_entry:2800: Corrupt filesystem
[  289.947518][T12471] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.2507: couldn't read orphan inode 15 (err -117)
[  289.974741][T12492] Failed to get privilege flags for destination (handle=0x2:0x2)
[  290.044426][T12471] EXT4-fs (loop9): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  290.210708][T12501] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.2507: bg 0: block 5: invalid block bitmap
[  290.280117][T12503] program syz.7.2523 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  290.300933][T12501] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 544 with error 28
[  290.370237][T12501] EXT4-fs (loop9): This should not happen!! Data will be lost
[  290.370237][T12501] 
[  290.410662][T12501] EXT4-fs (loop9): Total free blocks count 0
[  290.456379][T12501] EXT4-fs (loop9): Free/Dirty block details
[  290.462317][T12501] EXT4-fs (loop9): free_blocks=0
[  290.514677][T12501] EXT4-fs (loop9): dirty_blocks=548
[  290.543777][T12501] EXT4-fs (loop9): Block reservation details
[  290.549800][T12501] EXT4-fs (loop9): i_reserved_data_blocks=548
[  290.680808][ T5589] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 544 with max blocks 4 with error 28
[  290.705292][ T5589] EXT4-fs (loop9): This should not happen!! Data will be lost
[  290.705292][ T5589] 
[  290.760904][T12494] loop8: detected capacity change from 0 to 32768
[  290.788664][T12521] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.2533'.
[  290.885870][T12498] loop6: detected capacity change from 0 to 32768
[  290.908741][T12532] loop9: detected capacity change from 0 to 256
[  291.019321][T12494] XFS (loop8): Mounting V5 Filesystem
[  291.098546][T12532] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  291.287858][T12498] XFS (loop6): Mounting V5 Filesystem
[  291.300373][   T26] audit: type=1800 audit(1754097918.590:61): pid=12532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2531" name="bus" dev="loop9" ino=1048734 res=0 errno=0
[  291.322946][T12494] XFS (loop8): Ending clean mount
[  291.484422][T12494] XFS (loop8): Quotacheck needed: Please wait.
[  291.725880][T12535] loop7: detected capacity change from 0 to 131072
[  291.761658][T12494] XFS (loop8): Quotacheck: Done.
[  291.769043][T12498] XFS (loop6): Ending clean mount
[  291.800826][T12535] F2FS-fs (loop7): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  291.809497][T12535] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[  291.819871][T12535] F2FS-fs (loop7): invalid crc value
[  291.832468][T12498] XFS (loop6): Quotacheck needed: Please wait.
[  291.845301][T12535] F2FS-fs (loop7): Found nat_bits in checkpoint
[  291.848661][   T26] audit: type=1800 audit(1754097919.123:62): pid=12494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2518" name="file2" dev="loop8" ino=4423 res=0 errno=0
[  291.884579][T12535] F2FS-fs (loop7): recover fsync data on readonly fs
[  291.891918][T12535] F2FS-fs (loop7): Try to recover 2th superblock, ret: -30
[  291.899775][T12535] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  291.923104][T12535] fs-verity (loop7, inode 7): Error -61 getting verity descriptor size
[  292.017900][T12498] XFS (loop6): Quotacheck: Done.
[  292.026926][T12555] XFS (loop8): Metadata CRC error detected at xfs_refcountbt_read_verify+0x3a/0xd0, xfs_refcountbt block 0x28 
[  292.042177][T12555] XFS (loop8): Unmount and run xfs_repair
[  292.047944][T12555] XFS (loop8): First 128 bytes of corrupted metadata buffer:
[  292.055739][T12555] 00000000: 52 ff ff ff 7f 00 00 00 ff ff ff ff ff ff ff ff  R...............
[  292.064649][T12555] 00000010: 00 00 00 00 00 00 00 28 00 00 00 00 00 00 00 00  .......(........
[  292.089761][T12555] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  292.140707][T12555] 00000030: 00 00 00 00 bd e7 de 5d 00 00 00 00 00 00 00 00  .......]........
[  292.178845][   T26] audit: type=1326 audit(1754097919.441:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12558 comm="syz.9.2541" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f47b99f2b69 code=0x0
[  292.217566][T12555] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  292.248152][T12555] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  292.260283][ T6915] XFS (loop6): Unmounting Filesystem
[  292.278849][T12555] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  292.299511][T12555] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  292.327606][T12555] XFS (loop8): metadata I/O error in "xfs_btree_read_buf_block+0x1d3/0x2c0" at daddr 0x28 len 8 error 74
[  292.408984][T12555] XFS (loop8): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1556/0x1b60 (fs/xfs/libxfs/xfs_defer.c:504).  Shutting down filesystem.
[  292.472003][T12555] XFS (loop8): Please unmount the filesystem and rectify the problem(s)
[  292.481588][T12539] loop0: detected capacity change from 0 to 32768
[  292.535873][ T9681] XFS (loop8): Unmounting Filesystem
[  292.649611][T12539] XFS (loop0): Mounting V5 Filesystem
[  292.966074][ T1106] XFS (loop0): Metadata CRC error detected at xfs_agf_read_verify+0x18d/0x250, xfs_agf block 0x1 
[  293.005697][ T1106] XFS (loop0): Unmount and run xfs_repair
[  293.007856][T12579] loop7: detected capacity change from 0 to 1024
[  293.028503][ T1106] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  293.041069][ T1106] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 20 00  XAGF.......... .
[  293.086733][T12579] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  293.149250][ T1106] 00000010: 00 00 00 03 00 00 00 02 00 00 00 05 00 00 00 01  ................
[  293.176204][ T1106] 00000020: 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00 06  ................
[  293.180643][T12579] EXT4-fs (loop7): shut down requested (1)
[  293.198636][ T1106] 00000030: 00 00 00 06 00 00 0d cb 00 00 0d b8 00 00 00 00  ................
[  293.236727][ T1106] 00000040: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[  293.250877][ T1106] 00000050: 00 00 00 01 00 00 00 01 00 00 00 06 00 00 00 01  ................
[  293.278399][ T1106] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  293.280188][T12593] loop6: detected capacity change from 0 to 1024
[  293.287423][ T1106] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  293.303664][T12539] XFS (loop0): metadata I/O error in "xfs_read_agf+0x23c/0x500" at daddr 0x1 len 1 error 74
[  293.342509][T12539] XFS (loop0): Error -117 reserving per-AG metadata reserve pool.
[  293.365415][T12539] XFS (loop0): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x1bf/0x1f0 (fs/xfs/xfs_fsops.c:573).  Shutting down filesystem.
[  293.411088][T12539] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  293.441259][T12539] XFS (loop0): Ending clean mount
[  293.451848][T12593] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  293.463015][T12539] XFS (loop0): Failed to initialize disk quotas.
[  293.469511][T12593] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  293.549034][ T4191] XFS (loop0): Unmounting Filesystem
[  293.756495][ T4253] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  293.911813][T12595] loop9: detected capacity change from 0 to 32768
[  294.002848][T12595] 
[  294.002848][T12595]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  294.002848][T12595] 
[  294.026126][T12617] block nbd6: NBD_DISCONNECT
[  294.087002][T12617] block nbd6: Send disconnect failed -22
[  294.087495][T12595] read_mapping_page failed!
[  294.113889][T12595] ERROR: (device loop9): txCommit: 
[  294.113889][T12595] 
[  294.124983][T12613] block nbd6: Disconnected due to user request.
[  294.132015][T12613] block nbd6: shutting down sockets
[  294.153036][ T5589] ERROR: (device loop9): diWrite: ixpxd invalid
[  294.153036][ T5589] 
[  294.167735][ T5589] ERROR: (device loop9): txCommit: 
[  294.167735][ T5589] 
[  294.172714][ T4253] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.175174][ T5589] jfs_write_inode: jfs_commit_inode failed!
[  294.196731][T12595] ERROR: (device loop9): diWrite: ixpxd invalid
[  294.196731][T12595] 
[  294.205919][ T4253] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.226757][ T4253] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  294.248331][ T4253] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.256757][T12595] ERROR: (device loop9): txCommit: 
[  294.256757][T12595] 
[  294.273232][ T4253] usb 9-1: config 0 descriptor??
[  294.297658][T12620] 
[  294.297658][T12620]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  294.297658][T12620] 
[  294.331592][T12620] 
[  294.331592][T12620]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  294.331592][T12620] 
[  294.403395][T11007] 
[  294.403395][T11007]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  294.403395][T11007] 
[  294.444477][T11007] 
[  294.444477][T11007]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  294.444477][T11007] 
[  294.750998][T12644] netlink: 'syz.7.2568': attribute type 2 has an invalid length.
[  294.801470][T12648] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  294.830465][ T4253] pyra 0003:1E7D:2CF6.0014: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.8-1/input0
[  295.149055][ T1335] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  295.284780][ T4253] pyra 0003:1E7D:2CF6.0014: couldn't init struct pyra_device
[  295.295547][ T4253] pyra 0003:1E7D:2CF6.0014: couldn't install mouse
[  295.323232][ T4253] pyra: probe of 0003:1E7D:2CF6.0014 failed with error -71
[  295.336994][T12656] loop0: detected capacity change from 0 to 32768
[  295.348202][ T4253] usb 9-1: USB disconnect, device number 9
[  295.391293][T12656] XFS (loop0): Mounting V5 Filesystem
[  295.416243][ T1335] usb 10-1: Using ep0 maxpacket: 32
[  295.426087][T12684] fido_id[12684]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  295.555856][ T1335] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  295.558935][T12656] XFS (loop0): Ending clean mount
[  295.574936][ T1335] usb 10-1: config 0 has no interface number 0
[  295.581588][ T1335] usb 10-1: config 0 interface 12 has no altsetting 0
[  295.630070][ T4299] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  295.639224][T12656] XFS (loop0): Quotacheck needed: Please wait.
[  295.721951][T12656] XFS (loop0): Quotacheck: Done.
[  295.750937][ T4191] XFS (loop0): Unmounting Filesystem
[  295.794270][ T1335] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  295.811791][ T1335] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.820078][ T1335] usb 10-1: Product: syz
[  295.824402][ T1335] usb 10-1: Manufacturer: syz
[  295.829084][ T1335] usb 10-1: SerialNumber: syz
[  295.837769][ T1335] usb 10-1: config 0 descriptor??
[  295.906677][ T4299] usb 7-1: Using ep0 maxpacket: 32
[  295.995805][T12707] loop7: detected capacity change from 0 to 256
[  296.036481][ T4299] usb 7-1: config 0 has an invalid interface number: 51 but max is 0
[  296.064589][ T4299] usb 7-1: config 0 has no interface number 0
[  296.066835][T12707] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  296.194037][T12713] loop0: detected capacity change from 0 to 128
[  296.204907][T12711] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2607'.
[  296.250265][ T4299] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  296.259334][ T4299] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.288800][ T4299] usb 7-1: Product: syz
[  296.298673][ T4299] usb 7-1: Manufacturer: syz
[  296.303310][ T4299] usb 7-1: SerialNumber: syz
[  296.317816][T12713] EXT4-fs (loop0): Ignoring removed nobh option
[  296.339200][T12713] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobh,abort,,errors=continue. Quota mode: none.
[  296.373844][T12713] ext4 filesystem being mounted at /483/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  296.412623][ T4299] usb 7-1: config 0 descriptor??
[  296.459547][ T4299] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  296.495381][T12713] fscrypt (loop0, inode 12): Reserved bits set in encryption policy
[  296.651487][T12727] loop7: detected capacity change from 0 to 32768
[  296.679304][ T4299] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  296.706946][ T4299] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  296.745575][T12736] loop8: detected capacity change from 0 to 512
[  296.802903][T12736] EXT4-fs (loop8): Test dummy encryption mode enabled
[  296.825987][T12736] EXT4-fs (loop8): Ignoring removed mblk_io_submit option
[  296.838246][ T1335] f81534 10-1:0.12: f81534_set_register: reg: 1003 data: 78 failed: -71
[  296.847681][T12736] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  296.857149][ T1335] f81534 10-1:0.12: f81534_find_config_idx: read failed: -71
[  296.887492][ T1335] f81534 10-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  296.919189][T12736] EXT4-fs (loop8): 1 truncate cleaned up
[  296.978384][ T1335] f81534: probe of 10-1:0.12 failed with error -71
[  296.985534][T12736] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption=v1,bsdgroups,debug_want_extra_isize=0x000000000000006a,max_batch_time=0x0000000000000131,mblk_io_submit,quota,,errors=continue. Quota mode: writeback.
[  297.074752][ T1335] usb 10-1: USB disconnect, device number 5
[  297.111417][ T4299] usb 7-1: USB disconnect, device number 17
[  297.126961][    C0] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -108
[  297.144406][T12734] loop0: detected capacity change from 0 to 32768
[  297.162666][ T4299] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  297.224120][ T4299] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  297.277509][ T4299] quatech2 7-1:0.51: device disconnected
[  297.316026][T12734] XFS (loop0): Mounting V5 Filesystem
[  297.449282][T12753] loop8: detected capacity change from 0 to 256
[  297.470818][T12734] XFS (loop0): Ending clean mount
[  297.483192][T12734] XFS (loop0): Quotacheck needed: Please wait.
[  297.523280][T12734] XFS (loop0): Quotacheck: Done.
[  297.571985][T12753] FAT-fs (loop8): bogus number of FAT sectors
[  297.588333][ T4191] XFS (loop0): Unmounting Filesystem
[  297.597744][T12753] FAT-fs (loop8): Can't find a valid FAT filesystem
[  297.786138][T12758] loop6: detected capacity change from 0 to 256
[  297.937253][   T26] audit: type=1800 audit(1754097924.820:64): pid=12758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2614" name="file1" dev="loop6" ino=1048736 res=0 errno=0
[  297.977329][T12762] loop7: detected capacity change from 0 to 1024
[  297.987362][T12758] FAT-fs (loop6): error, clusters badly computed (0 != 128)
[  298.014602][T12758] FAT-fs (loop6): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  298.025774][T12758] FAT-fs (loop6): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  298.105080][T12762] hfsplus: bad catalog entry type
[  298.222392][T12772] netlink: 92 bytes leftover after parsing attributes in process `syz.6.2621'.
[  298.262382][ T4264] hfsplus: b-tree write err: -5, ino 4
[  298.586520][T12794] loop7: detected capacity change from 0 to 256
[  298.613402][T12794] exfat: Deprecated parameter 'namecase'
[  298.660950][T12794] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  298.697271][T12796] loop6: detected capacity change from 0 to 512
[  298.782342][T12796] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  298.840490][T12796] EXT4-fs (loop6): 1 truncate cleaned up
[  298.846252][T12796] EXT4-fs (loop6): mounted filesystem without journal. Opts: nogrpid,errors=remount-ro,debug_want_extra_isize=0x0000000000000068,norecovery,nodiscard,quota,. Quota mode: writeback.
[  298.915129][T12796] EXT4-fs error (device loop6): ext4_xattr_block_find:1866: inode #15: comm syz.6.2630: corrupted xattr block 33
[  298.979922][T12796] EXT4-fs (loop6): Remounting filesystem read-only
[  299.154116][T12800] loop6: detected capacity change from 0 to 128
[  299.180965][T12791] loop0: detected capacity change from 0 to 32768
[  299.191219][T12800] EXT4-fs warning (device loop6): ext4_fill_super:3980: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  299.206770][T12800] EXT4-fs (loop6): Encoding requested by superblock is unknown
[  299.237966][T12776] loop8: detected capacity change from 0 to 40427
[  299.320998][T12776] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[  299.330166][T12776] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  299.348729][T12791] attempt to access beyond end of device
[  299.348729][T12791] loop0: rw=1, want=4680040, limit=32768
[  299.364492][T12776] F2FS-fs (loop8): invalid crc value
[  299.435863][T12791] metapage_write_end_io: I/O error
[  299.438247][T12776] F2FS-fs (loop8): Found nat_bits in checkpoint
[  299.483604][T12791] ERROR: (device loop0): diWrite: ixpxd invalid
[  299.483604][T12791] 
[  299.565709][T12791] ERROR: (device loop0): remounting filesystem as read-only
[  299.573055][T12791] ERROR: (device loop0): txCommit: 
[  299.573055][T12791] 
[  299.590611][T12776] F2FS-fs (loop8): Start checkpoint disabled!
[  299.607831][  T276] blkno = 8ed2c, nblocks = 1
[  299.612626][  T276] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  299.612626][  T276] 
[  299.628726][T12791] blkno = 8ed2c, nblocks = 1
[  299.634319][T12776] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  299.647599][T12791] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  299.647599][T12791] 
[  299.649646][T12776] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  299.674987][T12809] loop6: detected capacity change from 0 to 512
[  299.709382][T12791] ERROR: (device loop0): dtSearch: DT_GETPAGE: dtree page corrupt
[  299.709382][T12791] 
[  299.735138][T12791] jfs_mkdir: dtSearch returned -5
[  299.757319][T12791] ERROR: (device loop0): dtSearch: DT_GETPAGE: dtree page corrupt
[  299.757319][T12791] 
[  299.786690][T12791] jfs_lookup: dtSearch returned -5
[  299.854653][T12809] EXT4-fs (loop6): mounted filesystem without journal. Opts: errors=remount-ro,grpquota,. Quota mode: writeback.
[  299.876696][T12809] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  299.924156][    T9] attempt to access beyond end of device
[  299.924156][    T9] loop8: rw=1, want=45104, limit=40427
[  299.942976][ T6075] attempt to access beyond end of device
[  299.942976][ T6075] loop8: rw=2049, want=40976, limit=40427
[  299.955534][ T4191] attempt to access beyond end of device
[  299.955534][ T4191] loop0: rw=1, want=4680040, limit=32768
[  300.019261][ T4191] metapage_write_end_io: I/O error
[  300.062141][ T4191] JFS: metapage_get_blocks failed
[  300.085616][T12809] EXT4-fs error (device loop6): ext4_empty_dir:3139: inode #12: comm syz.6.2636: Directory hole found for htree leaf block 0
[  300.103823][ T4191] JFS: metapage_get_blocks failed
[  300.108903][ T4191] JFS: metapage_get_blocks failed
[  300.120235][ T4191] JFS: metapage_get_blocks failed
[  300.146526][T12809] EXT4-fs (loop6): Remounting filesystem read-only
[  300.178860][T12815] chnl_net:caif_netlink_parms(): no params data found
[  300.532854][T12815] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.584859][T12815] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.594309][T12815] device bridge_slave_0 entered promiscuous mode
[  300.602761][T12815] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.610342][T12815] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.619142][T12815] device bridge_slave_1 entered promiscuous mode
[  300.638957][T12833] syzkaller1: tun_chr_ioctl cmd 1074025694
[  300.705852][T12815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.719248][T12815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  300.830030][T12815] team0: Port device team_slave_0 added
[  300.847173][ T4253] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  300.880668][T12815] team0: Port device team_slave_1 added
[  300.981497][T12815] batman_adv: batadv0: Adding interface: batadv_slave_0
[  300.989391][T12815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.015757][T12815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.044317][T12815] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.075624][T12815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.111970][T12815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.131607][ T4253] usb 7-1: Using ep0 maxpacket: 32
[  301.198042][T12815] device hsr_slave_0 entered promiscuous mode
[  301.216097][T12815] device hsr_slave_1 entered promiscuous mode
[  301.264076][ T4253] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  301.272941][ T4253] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  301.284489][ T4253] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  301.301791][ T4299] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  301.311728][ T4253] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  301.334615][ T4253] usb 7-1: config 0 interface 0 has no altsetting 0
[  301.458566][T12873] loop0: detected capacity change from 0 to 1024
[  301.478410][T12874] loop8: detected capacity change from 0 to 2048
[  301.510034][ T4253] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  301.526535][ T4253] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=6
[  301.545023][T12874] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  301.555870][ T4253] usb 7-1: Product: syz
[  301.564479][ T4299] usb 10-1: Using ep0 maxpacket: 32
[  301.574428][ T4253] usb 7-1: Manufacturer: syz
[  301.579047][ T4253] usb 7-1: SerialNumber: syz
[  301.628970][ T4253] usb 7-1: config 0 descriptor??
[  301.645839][T12873] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  301.688011][T12873] ext4 filesystem being mounted at /493/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.703579][ T4253] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  301.770807][ T4253] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  301.865157][ T4299] usb 10-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=67.fe
[  301.888935][ T4299] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.930596][ T4299] usb 10-1: Product: syz
[  301.953294][ T4299] usb 10-1: Manufacturer: syz
[  301.968241][ T4299] usb 10-1: SerialNumber: syz
[  301.983799][ T4253] usb 7-1: USB disconnect, device number 18
[  302.001255][ T4299] usb 10-1: config 0 descriptor??
[  302.007642][ T4253] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  302.194485][ T1106] Bluetooth: hci2: command 0x0409 tx timeout
[  302.292119][T12815] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  302.301181][ T4299] snd-usb-6fire 10-1:0.0: unknown device firmware state received from device:
[  302.310057][ T4299] eb 9a 47 80 9b f8 7a f0 
[  302.316488][T12815] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  302.323410][ T4299] snd-usb-6fire: probe of 10-1:0.0 failed with error -5
[  302.335136][T12815] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  302.347764][T12815] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  302.365273][ T1335] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  302.459740][T12815] 8021q: adding VLAN 0 to HW filter on device bond0
[  302.479969][T12815] 8021q: adding VLAN 0 to HW filter on device team0
[  302.487388][ T6075] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  302.504223][ T6075] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  302.517992][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  302.534413][ T5732] usb 10-1: USB disconnect, device number 6
[  302.542794][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  302.553753][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.560875][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  302.580917][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  302.590452][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  302.599563][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  302.611723][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.618832][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.636068][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  302.664380][ T1335] usb 9-1: Using ep0 maxpacket: 16
[  302.666070][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  302.678812][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  302.690846][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  302.700300][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  302.710091][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  302.719010][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  302.727985][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  302.755187][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  302.764055][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  302.774497][T12815] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  302.792855][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  302.800301][ T1335] usb 9-1: config 0 has an invalid interface number: 41 but max is 0
[  302.813629][ T1335] usb 9-1: config 0 has no interface number 0
[  302.830600][ T1335] usb 9-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  302.842673][ T1335] usb 9-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  302.859171][ T1335] usb 9-1: config 0 interface 41 has no altsetting 0
[  302.939295][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  302.949976][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  302.963020][T12815] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.993017][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  303.003989][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  303.034885][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  303.054101][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  303.071980][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  303.074450][ T1335] usb 9-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  303.092042][ T1335] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.093079][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  303.100146][ T1335] usb 9-1: Product: syz
[  303.112039][ T1335] usb 9-1: Manufacturer: syz
[  303.125266][T12815] device veth0_vlan entered promiscuous mode
[  303.129599][ T1335] usb 9-1: SerialNumber: syz
[  303.155039][T12945] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2666'.
[  303.170085][ T1335] usb 9-1: config 0 descriptor??
[  303.177420][T12815] device veth1_vlan entered promiscuous mode
[  303.196997][T12945] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2666'.
[  303.220781][T12897] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  303.227929][T12897] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  303.289457][T12815] device veth0_macvtap entered promiscuous mode
[  303.366362][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  303.389299][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  303.419375][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  303.466928][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  303.481454][T12955] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2668'.
[  303.506659][T12815] device veth1_macvtap entered promiscuous mode
[  303.516276][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  303.519325][T12897] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  303.532016][ T5589] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  303.557709][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.570102][T12897] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  303.642856][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.664868][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.686505][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.708103][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.730113][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.749827][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.764714][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.796375][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.811716][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.838243][T12815] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.860219][ T1335] CoreChips 9-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[  303.874381][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  303.909571][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  303.926430][ T1335] CoreChips: probe of 9-1:0.41 failed with error -71
[  303.981234][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.990420][ T1335] usb 9-1: USB disconnect, device number 10
[  304.018189][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.030602][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.037255][T12961] loop0: detected capacity change from 0 to 32768
[  304.046230][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.070951][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.102869][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.125603][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.149550][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.166025][T12815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.176725][T12815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.196510][T12815] batman_adv: batadv0: Interface activated: batadv_slave_1
[  304.218842][T12815] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.228010][T12815] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.238308][T12815] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  304.270815][T12815] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.306145][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  304.333362][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  304.367894][T12961] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  304.419037][ T5732] Bluetooth: hci2: command 0x041b tx timeout
[  304.534818][ T4264] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.585983][ T4264] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.617017][ T6075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.663575][ T6075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  304.668444][ T4191] ocfs2: Unmounting device (7,0) on (node local)
[  304.680392][T11450] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  304.696253][ T1195] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  304.909690][T13013] tap0: tun_chr_ioctl cmd 35108
[  305.091288][ T1335] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  305.358942][ T1335] usb 9-1: Using ep0 maxpacket: 32
[  305.393998][T13038] loop0: detected capacity change from 0 to 512
[  305.489103][T13038] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=684ec018, mo2=0002]
[  305.497202][T13038] System zones: 0-2, 18-18, 34-34
[  305.519063][ T1335] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  305.520363][T13038] EXT4-fs (loop0): orphan cleanup on readonly fs
[  305.549835][T13034] loop6: detected capacity change from 0 to 8192
[  305.572335][T13038] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.2690: bad orphan inode 13
[  305.604628][ T1335] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  305.625993][T13034] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  305.635753][T13038] ext4_test_bit(bit=12, block=18) = 1
[  305.635815][ T1335] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  305.642016][T13038] is_bad_inode(inode)=0
[  305.652826][T13034] REISERFS (device loop6): using ordered data mode
[  305.664194][T13034] reiserfs: using flush barriers
[  305.669432][ T1335] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  305.683893][ T1335] usb 9-1: config 0 interface 0 has no altsetting 0
[  305.689882][T13034] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  305.698127][T13038] NEXT_ORPHAN(inode)=2130706432
[  305.713036][T13038] max_ino=32
[  305.716240][T13038] i_nlink=1
[  305.719490][T13038] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,discard,usrquota,noinit_itable,data_err=ignore,,errors=continue. Quota mode: writeback.
[  305.742978][T13038] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  305.758436][T13038] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=684ec018, mo2=0002]
[  305.772497][T13034] REISERFS (device loop6): checking transaction log (loop6)
[  305.788063][T13034] REISERFS (device loop6): Using r5 hash to sort names
[  305.807103][T13038] EXT4-fs (loop0): re-mounted. Opts: (null). Quota mode: writeback.
[  305.882374][ T1335] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  305.891534][ T1335] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  305.899956][T13019] loop3: detected capacity change from 0 to 32768
[  305.929729][ T1335] usb 9-1: Product: syz
[  305.936009][ T1335] usb 9-1: Manufacturer: syz
[  305.940723][ T1335] usb 9-1: SerialNumber: syz
[  305.952458][ T1335] usb 9-1: config 0 descriptor??
[  306.014545][ T1335] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  306.080604][ T1335] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  306.287031][ T4798] usb 9-1: USB disconnect, device number 11
[  306.299600][ T1335] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  306.308235][ T4798] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  306.363727][T13061] loop3: detected capacity change from 0 to 16
[  306.641694][ T4299] Bluetooth: hci2: command 0x040f tx timeout
[  306.744721][T13061] erofs: (device loop3): mounted with root inode @ nid 36.
[  306.752622][ T1335] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.774365][ T1335] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.804299][ T1335] usb 10-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice= 0.00
[  306.830278][ T1335] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.858652][ T1335] usb 10-1: config 0 descriptor??
[  307.210231][T13093] loop8: detected capacity change from 0 to 1024
[  307.294835][T13093] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  307.306468][T13093] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.326783][T13093] EXT4-fs (loop8): Unrecognized mount option "�
" or missing value
[  307.378405][ T1335] apple 0003:05AC:0262.0015: bogus close delimiter
[  307.386249][ T1335] apple 0003:05AC:0262.0015: item 0 1 2 10 parsing failed
[  307.394555][ T1335] apple 0003:05AC:0262.0015: parse failed
[  307.400934][ T1335] apple: probe of 0003:05AC:0262.0015 failed with error -22
[  307.597103][ T4798] usb 10-1: USB disconnect, device number 7
[  307.684430][T13119] loop6: detected capacity change from 0 to 512
[  307.738816][T13119] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  307.806813][T13119] ext4 filesystem being mounted at /342/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  308.386100][T13157] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2715'.
[  308.712685][T13149] loop9: detected capacity change from 0 to 32768
[  308.865965][ T5732] Bluetooth: hci2: command 0x0419 tx timeout
[  308.948263][T13184] loop6: detected capacity change from 0 to 64
[  309.068233][   T26] audit: type=1326 audit(1754097935.231:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13140 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ec714b69 code=0x7fc00000
[  309.338681][T13200] loop6: detected capacity change from 0 to 2048
[  309.432305][T13209] kvm [13207]: vcpu1, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x4000007c
[  309.506873][T13217] loop8: detected capacity change from 0 to 64
[  309.559548][T13219] netlink: 'syz.6.2736': attribute type 12 has an invalid length.
[  309.673380][T13229] loop3: detected capacity change from 0 to 256
[  309.826459][T13229] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  309.885154][T13229] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d)
[  309.942675][T13249] loop6: detected capacity change from 0 to 1024
[  310.001623][T13252] hugetlbfs: Bad value 'g' for mount option 'nr_inodes'
[  310.001623][T13252] 
[  310.049524][T13255] loop9: detected capacity change from 0 to 256
[  310.140552][T13249] EXT4-fs error (device loop6): ext4_map_blocks:739: inode #3: block 1: comm syz.6.2745: lblock 1 mapped to illegal pblock 1 (length 1)
[  310.213055][T13249] Quota error (device loop6): write_blk: dquota write failed
[  310.236126][T13249] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  310.271962][   T26] audit: type=1800 audit(1754097936.363:66): pid=13255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2748" name="file1" dev="loop9" ino=1048747 res=0 errno=0
[  310.300787][T13255] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  310.303516][T13249] EXT4-fs error (device loop6): ext4_acquire_dquot:6207: comm syz.6.2745: Failed to acquire dquot type 0
[  310.313114][T13255] FAT-fs (loop9): Filesystem has been set read-only
[  310.368505][T13255] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  310.384754][T13255] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  310.412137][T13255] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  310.456713][T13255] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  310.457229][T13249] EXT4-fs error (device loop6): ext4_free_blocks:6223: comm syz.6.2745: Freeing blocks not in datazone - block = 0, count = 4096
[  310.478535][T13274] loop0: detected capacity change from 0 to 1024
[  310.494445][T13276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2755'.
[  310.583398][T13249] EXT4-fs error (device loop6): ext4_read_inode_bitmap:140: comm syz.6.2745: Invalid inode bitmap blk 0 in block_group 0
[  310.597277][ T6075] EXT4-fs error (device loop6): ext4_map_blocks:629: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  310.623067][ T6075] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  310.665287][T13274] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  310.683713][T13274] ext4 filesystem being mounted at /509/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.746622][T13249] EXT4-fs error (device loop6) in ext4_free_inode:362: Corrupt filesystem
[  310.781581][ T6075] EXT4-fs error (device loop6): ext4_release_dquot:6243: comm kworker/u4:8: Failed to release dquot type 0
[  310.802626][T13249] EXT4-fs (loop6): 1 orphan inode deleted
[  310.828552][T13274] EXT4-fs error (device loop0): ext4_map_blocks:739: inode #15: block 3: comm syz.0.2754: lblock 3 mapped to illegal pblock 3 (length 3)
[  310.831604][T13249] EXT4-fs (loop6): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  310.917043][T13274] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  311.027582][T13274] EXT4-fs (loop0): This should not happen!! Data will be lost
[  311.027582][T13274] 
[  311.118212][T13288] EXT4-fs error (device loop0): ext4_map_blocks:739: inode #15: comm syz.0.2754: lblock 0 mapped to illegal pblock 0 (length 3)
[  311.218282][T13288] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  311.291524][T13288] EXT4-fs (loop0): This should not happen!! Data will be lost
[  311.291524][T13288] 
[  311.408460][T13308] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2764'.
[  311.428877][T11450] EXT4-fs error (device loop0): ext4_map_blocks:739: inode #15: block 8: comm kworker/u4:9: lblock 8 mapped to illegal pblock 8 (length 8)
[  311.515635][T11450] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  311.557280][T11450] EXT4-fs (loop0): This should not happen!! Data will be lost
[  311.557280][T11450] 
[  311.728836][T13321] loop0: detected capacity change from 0 to 2048
[  311.736727][T13325] loop8: detected capacity change from 0 to 128
[  311.785697][T13330] loop6: detected capacity change from 0 to 64
[  311.854050][T13321] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  312.061578][ T5732] usb 4-1: new low-speed USB device number 4 using dummy_hcd
[  312.126304][T13342] loop8: detected capacity change from 0 to 1024
[  312.221337][T13342] EXT4-fs (loop8): Ignoring removed oldalloc option
[  312.254981][T13342] EXT4-fs (loop8): Ignoring removed orlov option
[  312.274517][T13340] loop9: detected capacity change from 0 to 8192
[  312.300510][T13342] EXT4-fs (loop8): mounted filesystem without journal. Opts: stripe=0x0000000000000002,journal_dev=0x0000000000001045,oldalloc,noquota,nodiscard,barrier=0x0000000000000002,delalloc,errors=continue,orlov,user_xattr,quota,mb_optimize_scan=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  312.437067][T13340] REISERFS (device loop9): found reiserfs format "3.6" with non-standard journal
[  312.457279][ T5732] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  312.476215][ T5732] usb 4-1: config 0 has no interface number 0
[  312.482895][ T5732] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  312.488794][T13340] REISERFS (device loop9): using ordered data mode
[  312.500867][ T5732] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  312.514373][ T5732] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  312.535768][ T5732] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.554847][ T5732] usb 4-1: config 0 descriptor??
[  312.570046][T13340] reiserfs: using flush barriers
[  312.576740][T13340] REISERFS (device loop9): journal params: device loop9, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  312.610274][ T5732] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  312.628839][T13340] REISERFS (device loop9): checking transaction log (loop9)
[  312.681691][ T4798] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  312.821630][T13369] loop8: detected capacity change from 0 to 4096
[  312.864405][T13328] iowarrior 4-1:0.1: Error -90 while submitting URB
[  312.870261][T13369] ntfs: (device loop8): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  312.874416][T13340] REISERFS (device loop9): Using tea hash to sort names
[  312.904284][ T5732] usb 4-1: USB disconnect, device number 4
[  312.905133][T13369] ntfs: (device loop8): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  312.936848][T13340] REISERFS (device loop9): Created .reiserfs_priv - reserved for xattr storage.
[  312.959507][ T4798] usb 7-1: Using ep0 maxpacket: 32
[  312.970825][T13369] ntfs: (device loop8): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  313.008181][T13369] ntfs: (device loop8): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  313.036639][T13369] ntfs: (device loop8): check_mft_mirror(): Failed to read $MFTMirr.
[  313.054447][T13369] ntfs: volume version 3.1.
[  313.109318][ T4798] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.135255][ T4798] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  313.332475][ T4798] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  313.362674][ T4798] usb 7-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  313.392543][ T4798] usb 7-1: Product: syz
[  313.396787][ T4798] usb 7-1: Manufacturer: syz
[  313.455485][ T4798] hub 7-1:4.0: USB hub found
[  313.489001][T13392] program syz.9.2786 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  313.573955][T13400] loop9: detected capacity change from 0 to 512
[  313.681627][T13400] EXT4-fs (loop9): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000001000,resuid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  313.751763][T13400] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.772274][ T4798] hub 7-1:4.0: config failed, hub has too many ports! (err -19)
[  313.895452][T13400] EXT4-fs (loop9): re-mounted. Opts: (null). Quota mode: writeback.
[  313.998347][T13421] loop8: detected capacity change from 0 to 1024
[  314.103863][ T4798] usb 7-1: USB disconnect, device number 19
[  314.139776][T13421] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  314.183738][T13421] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  314.203984][T13415] loop3: detected capacity change from 0 to 32768
[  314.236987][T13421] EXT4-fs error (device loop8): ext4_map_blocks:739: inode #15: block 1: comm syz.8.2804: lblock 1 mapped to illegal pblock 1 (length 1)
[  314.247120][T13432] loop9: detected capacity change from 0 to 256
[  314.347643][T13432] FAT-fs (loop9): Directory bread(block 64) failed
[  314.369152][T13432] FAT-fs (loop9): Directory bread(block 65) failed
[  314.419891][T13432] FAT-fs (loop9): Directory bread(block 66) failed
[  314.441249][T13421] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 117
[  314.455617][T13432] FAT-fs (loop9): Directory bread(block 67) failed
[  314.468440][T13432] FAT-fs (loop9): Directory bread(block 68) failed
[  314.475007][T13432] FAT-fs (loop9): Directory bread(block 69) failed
[  314.482422][T13421] EXT4-fs (loop8): This should not happen!! Data will be lost
[  314.482422][T13421] 
[  314.499351][T13432] FAT-fs (loop9): Directory bread(block 70) failed
[  314.505904][T13432] FAT-fs (loop9): Directory bread(block 71) failed
[  314.530643][T13436] EXT4-fs error (device loop8): ext4_map_blocks:629: inode #15: block 1: comm syz.8.2804: lblock 1 mapped to illegal pblock 1 (length 1)
[  314.552735][T13432] FAT-fs (loop9): Directory bread(block 72) failed
[  314.567887][T13432] FAT-fs (loop9): Directory bread(block 73) failed
[  314.680905][T13443] loop3: detected capacity change from 0 to 4096
[  314.822975][T13443] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  315.125320][T13464] loop9: detected capacity change from 0 to 128
[  315.224437][T13464] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  315.297203][T13464] ext4 filesystem being mounted at /132/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  315.689113][T13466] loop6: detected capacity change from 0 to 32768
[  316.223437][T13506] input: syz0 as /devices/virtual/input/input25
[  316.236452][T13475] loop3: detected capacity change from 0 to 32768
[  316.547648][T13527] loop9: detected capacity change from 0 to 1024
[  316.663616][T13527] EXT4-fs (loop9): Ignoring removed orlov option
[  316.698601][T13527] EXT4-fs (loop9): mounted filesystem without journal. Opts: orlov,min_batch_time=0x0000000000000004,,errors=continue. Quota mode: writeback.
[  316.914135][T13527] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2755: inode #2: comm syz.9.2825: corrupted in-inode xattr
[  316.980512][T13544] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2829'.
[  317.044521][T13544] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2829'.
[  317.201695][T13554] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2832'.
[  317.538874][T13529] loop8: detected capacity change from 0 to 32768
[  317.707287][T13529] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  317.815193][ T9681] ocfs2: Unmounting device (7,8) on (node local)
[  318.001503][T13604] loop3: detected capacity change from 0 to 512
[  318.039380][   T21] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  318.091787][T13604] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  318.100683][T13604] EXT4-fs (loop3): orphan cleanup on readonly fs
[  318.123884][T13604] __quota_error: 15 callbacks suppressed
[  318.123901][T13604] Quota error (device loop3): v2_read_file_info: Free block number too big (0 >= 0).
[  318.229551][T13604] EXT4-fs warning (device loop3): ext4_enable_quotas:6459: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  318.244435][T13604] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  318.262962][T13604] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.2848: bg 0: block 40: padding at end of block bitmap is not set
[  318.302660][T13604] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  318.315425][   T21] usb 7-1: Using ep0 maxpacket: 32
[  318.323272][T13617] loop8: detected capacity change from 0 to 4096
[  318.330327][T13604] EXT4-fs (loop3): 1 truncate cleaned up
[  318.336166][T13604] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_dev=0x000000000000063d,,errors=continue. Quota mode: writeback.
[  318.352656][T13617] ntfs: (device loop8): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  318.373228][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.418514][T13617] ntfs: (device loop8): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  318.486746][   T21] usb 7-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  318.492771][T13617] ntfs: (device loop8): read_ntfs_boot_sector(): Hot-fix: Recovery of primary boot sector failed: Read-only mount.
[  318.508514][   T21] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.564239][T13617] ntfs: (device loop8): read_ntfs_boot_sector(): Using backup boot sector.
[  318.565102][   T21] usb 7-1: config 0 descriptor??
[  318.616577][T13617] ntfs: (device loop8): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  318.636495][T13617] ntfs: (device loop8): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  318.705350][T13617] ntfs: (device loop8): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  318.732506][T13617] ntfs: (device loop8): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  318.774530][T13617] ntfs: (device loop8): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  318.799893][T13617] ntfs: volume version 3.1.
[  318.892918][   T21] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  318.904286][   T21] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  318.967812][   T21] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  318.974997][   T21] usb 7-1: media controller created
[  319.009722][   T21] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  319.097356][T13622] loop9: detected capacity change from 0 to 32768
[  319.164433][   T21] az6027: usb out operation failed. (-71)
[  319.192293][   T21] az6027: usb out operation failed. (-71)
[  319.198051][   T21] stb0899_attach: Driver disabled by Kconfig
[  319.213426][   T21] az6027: no front-end attached
[  319.213426][   T21] 
[  319.234898][   T21] az6027: usb out operation failed. (-71)
[  319.240679][   T21] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  319.257310][   T21] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb7/7-1/input/input26
[  319.321311][   T21] dvb-usb: schedule remote query interval to 400 msecs.
[  319.328290][   T21] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  319.389801][   T21] usb 7-1: USB disconnect, device number 20
[  319.487442][   T21] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  319.695165][T13631] loop3: detected capacity change from 0 to 32768
[  319.961791][ T4299] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  319.982460][T13631] XFS (loop3): Mounting V5 Filesystem
[  320.093321][T13631] XFS (loop3): Ending clean mount
[  320.159400][T13687] loop6: detected capacity change from 0 to 32768
[  320.229213][ T4299] usb 10-1: Using ep0 maxpacket: 16
[  320.272679][T12815] XFS (loop3): Unmounting Filesystem
[  320.320545][T13687] XFS (loop6): Mounting V5 Filesystem
[  320.361908][ T4299] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  320.375359][ T4299] usb 10-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  320.384839][ T4299] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.394707][ T4299] usb 10-1: config 0 descriptor??
[  320.443381][ T4299] input: bcm5974 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/input/input27
[  320.656987][ T3546] bcm5974 10-1:0.0: could not read from device
[  320.740657][ T4299] bcm5974 10-1:0.0: could not read from device
[  320.775012][T13687] XFS (loop6): Ending clean mount
[  320.783115][T13684] loop0: detected capacity change from 0 to 32768
[  320.806448][ T3546] bcm5974 10-1:0.0: could not read from device
[  320.834677][ T4299] input: failed to attach handler mousedev to device input27, error: -5
[  320.881315][ T3546] bcm5974 10-1:0.0: could not read from device
[  320.897223][ T4299] usb 10-1: USB disconnect, device number 8
[  320.929835][T13687] XFS (loop6): Quotacheck needed: Please wait.
[  320.991814][T13684] XFS (loop0): Mounting V5 Filesystem
[  321.003214][T13728] loop8: detected capacity change from 0 to 512
[  321.088934][T13728] EXT4-fs (loop8): Ignoring removed nobh option
[  321.099823][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  321.109215][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  321.193685][T13687] XFS (loop6): Quotacheck: Done.
[  321.244573][T13728] EXT4-fs error (device loop8): ext4_orphan_get:1401: inode #15: comm syz.8.2874: iget: bad i_size value: 38620345925642
[  321.266653][T13728] EXT4-fs error (device loop8): ext4_orphan_get:1406: comm syz.8.2874: couldn't read orphan inode 15 (err -117)
[  321.313214][T13684] XFS (loop0): Ending clean mount
[  321.319702][T13728] EXT4-fs (loop8): mounted filesystem without journal. Opts: nobh,auto_da_alloc,debug_want_extra_isize=0x0000000000000014,,errors=continue. Quota mode: writeback.
[  321.362073][T13684] XFS (loop0): Quotacheck needed: Please wait.
[  321.469868][T13684] XFS (loop0): Quotacheck: Done.
[  321.515505][ T6915] XFS (loop6): Unmounting Filesystem
[  321.622270][ T5589] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm kworker/u4:7: bg 0: block 5: invalid block bitmap
[  321.659825][ T5589] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  321.676206][ T5589] EXT4-fs (loop8): This should not happen!! Data will be lost
[  321.676206][ T5589] 
[  321.688482][ T5589] EXT4-fs (loop8): Total free blocks count 0
[  321.743148][ T4191] XFS (loop0): Unmounting Filesystem
[  321.756144][ T5589] EXT4-fs (loop8): Free/Dirty block details
[  321.799065][ T5589] EXT4-fs (loop8): free_blocks=0
[  321.814230][ T5589] EXT4-fs (loop8): dirty_blocks=64
[  321.832689][ T5589] EXT4-fs (loop8): Block reservation details
[  321.871581][ T5589] EXT4-fs (loop8): i_reserved_data_blocks=64
[  322.231589][T13781] nbd: nbd3 already in use
[  322.304568][T13779] loop9: detected capacity change from 0 to 2048
[  322.579612][T13777] loop8: detected capacity change from 0 to 65536
[  322.660624][T13779] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  323.014698][T13777] XFS (loop8): Mounting V5 Filesystem
[  323.036930][T13808] loop3: detected capacity change from 0 to 1024
[  323.063598][T13777] XFS (loop8): Internal error head_block >= tail_block || head_cycle != tail_cycle + 1 at line 1656 of file fs/xfs/xfs_log_recover.c.  Caller xlog_clear_stale_blocks+0x2d6/0x420
[  323.081527][T13777] CPU: 0 PID: 13777 Comm: syz.8.2879 Not tainted 5.15.189-syzkaller #0
[  323.089898][T13777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  323.100002][T13777] Call Trace:
[  323.103293][T13777]  <TASK>
[  323.106247][T13777]  dump_stack_lvl+0x168/0x230
[  323.110936][T13777]  ? xfs_info+0x280/0x280
[  323.115278][T13777]  ? show_regs_print_info+0x20/0x20
[  323.120491][T13777]  ? xfs_rw_bdev+0x476/0x4f0
[  323.125110][T13777]  xfs_corruption_error+0x117/0x170
[  323.130338][T13777]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  323.135981][T13777]  xlog_clear_stale_blocks+0x36f/0x420
[  323.141452][T13777]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  323.147095][T13777]  xlog_find_tail+0x79e/0x9f0
[  323.151793][T13777]  xlog_recover+0x48/0x420
[  323.156222][T13777]  xfs_log_mount+0x393/0x6b0
[  323.160830][T13777]  xfs_mountfs+0xb27/0x1b10
[  323.165356][T13777]  ? xfs_default_resblks+0x70/0x70
[  323.170487][T13777]  ? rcu_is_watching+0x11/0xa0
[  323.175257][T13777]  ? trace_xfs_inode_timestamp_range+0x84/0x1d0
[  323.181497][T13777]  xfs_fs_fill_super+0x11a4/0x13f0
[  323.186629][T13777]  get_tree_bdev+0x3f1/0x610
[  323.191217][T13777]  ? xfs_fs_warn_deprecated+0x190/0x190
[  323.196778][T13777]  vfs_get_tree+0x88/0x270
[  323.201215][T13777]  do_new_mount+0x24a/0xa40
[  323.205729][T13777]  __se_sys_mount+0x2d6/0x3c0
[  323.210419][T13777]  ? __x64_sys_mount+0xc0/0xc0
[  323.215174][T13777]  ? lockdep_hardirqs_on+0x94/0x140
[  323.220354][T13777]  ? __x64_sys_mount+0x1c/0xc0
[  323.225102][T13777]  do_syscall_64+0x4c/0xa0
[  323.229515][T13777]  ? clear_bhb_loop+0x30/0x80
[  323.234177][T13777]  ? clear_bhb_loop+0x30/0x80
[  323.238842][T13777]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  323.244725][T13777] RIP: 0033:0x7f73870ad30a
[  323.249232][T13777] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.268838][T13777] RSP: 002b:00007f7384f12e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  323.277254][T13777] RAX: ffffffffffffffda RBX: 00007f7384f12ef0 RCX: 00007f73870ad30a
[  323.285217][T13777] RDX: 0000200000000800 RSI: 00002000000000c0 RDI: 00007f7384f12eb0
[  323.293186][T13777] RBP: 0000200000000800 R08: 00007f7384f12ef0 R09: 0000000000000000
[  323.301147][T13777] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000000c0
[  323.309134][T13777] R13: 00007f7384f12eb0 R14: 000000000000b959 R15: 0000200000000080
[  323.317100][T13777]  </TASK>
[  323.320992][T13777] XFS (loop8): Corruption detected. Unmount and run xfs_repair
[  323.328570][T13777] XFS (loop8): failed to locate log tail
[  323.334643][T13777] XFS (loop8): log mount/recovery failed: error -117
[  323.387419][T13777] XFS (loop8): log mount failed
[  323.391027][T13808] hfsplus: bad catalog entry type
[  323.470819][T13823] loop9: detected capacity change from 0 to 16
[  323.510305][    T9] hfsplus: b-tree write err: -5, ino 4
[  323.550042][T13823] erofs: (device loop9): mounted with root inode @ nid 36.
[  323.580024][T13823] erofs: (device loop9): z_erofs_readahead: readahead error at page 2 @ nid 89
[  323.602033][T13823] erofs: (device loop9): z_erofs_map_blocks_iter: invalid logical cluster 0 at nid 89
[  323.612086][T13823] erofs: (device loop9): z_erofs_readahead: readahead error at page 0 @ nid 89
[  323.689528][ T4195] erofs: (device loop9): z_erofs_lz4_decompress: failed to decompress 6887 in[4096, 0] out[8187]
[  323.713215][T13823] erofs: (device loop9): z_erofs_map_blocks_iter: invalid logical cluster 0 at nid 89
[  323.737348][T13823] erofs: (device loop9): z_erofs_readpage: failed to read, err [-117]
[  323.755935][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  323.755951][   T26] audit: type=1800 audit(1754097948.972:67): pid=13823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.2902" name="file3" dev="loop9" ino=89 res=0 errno=0
[  324.332626][T13855] loop9: detected capacity change from 0 to 4096
[  324.430121][T13855] ntfs: volume version 3.1.
[  324.548217][ T4298] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  324.665217][T13871] loop6: detected capacity change from 0 to 512
[  324.763855][T13877] loop9: detected capacity change from 0 to 512
[  324.784722][T13871] EXT4-fs error (device loop6): ext4_orphan_get:1401: inode #15: comm syz.6.2923: iget: bad i_size value: 38620345925642
[  324.826527][T13871] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.2923: couldn't read orphan inode 15 (err -117)
[  324.838772][ T4298] usb 4-1: Using ep0 maxpacket: 32
[  324.846187][T13871] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  324.870411][T13877] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  324.958122][T13885] loop0: detected capacity change from 0 to 64
[  324.959689][T13877] EXT4-fs (loop9): 1 truncate cleaned up
[  324.971484][  T154] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm kworker/u4:2: bg 0: block 5: invalid block bitmap
[  324.984394][T13877] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  325.008243][ T4298] usb 4-1: config 0 has an invalid interface number: 23 but max is 0
[  325.016390][ T4298] usb 4-1: config 0 has no interface number 0
[  325.034310][  T154] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1504 with error 28
[  325.033596][T13877] EXT4-fs warning (device loop9): ext4_group_add:1696: No reserved GDT blocks, can't resize
[  325.060831][ T4298] usb 4-1: New USB device found, idVendor=052b, idProduct=1803, bcdDevice= c.62
[  325.076008][  T154] EXT4-fs (loop6): This should not happen!! Data will be lost
[  325.076008][  T154] 
[  325.088295][ T4298] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.118257][  T154] EXT4-fs (loop6): Total free blocks count 0
[  325.132077][   T26] audit: type=1800 audit(1754097950.263:68): pid=13885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2928" name="file2" dev="loop0" ino=19 res=0 errno=0
[  325.173531][ T4298] usb 4-1: config 0 descriptor??
[  325.178795][  T154] EXT4-fs (loop6): Free/Dirty block details
[  325.185048][  T154] EXT4-fs (loop6): free_blocks=0
[  325.191063][  T154] EXT4-fs (loop6): dirty_blocks=1504
[  325.200341][  T154] EXT4-fs (loop6): Block reservation details
[  325.234124][ T4298] gspca_main: sunplus-2.14.0 probing 052b:1803
[  325.247629][  T154] EXT4-fs (loop6): i_reserved_data_blocks=1504
[  325.276335][T13887] netlink: 72 bytes leftover after parsing attributes in process `syz.9.2930'.
[  325.427536][T13875] loop8: detected capacity change from 0 to 40427
[  325.478203][ T4298] gspca_sunplus: reg_r err -71
[  325.483062][ T4298] sunplus: probe of 4-1:0.23 failed with error -71
[  325.518345][ T4298] usb 4-1: USB disconnect, device number 5
[  325.530157][T13875] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  325.540832][T13875] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  325.625879][T13875] F2FS-fs (loop8): Found nat_bits in checkpoint
[  325.718104][T13875] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  325.726280][T13875] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  326.125872][T13926] sctp: [Deprecated]: syz.3.2947 (pid 13926) Use of int in max_burst socket option.
[  326.125872][T13926] Use struct sctp_assoc_value instead
[  326.538748][T13944] loop0: detected capacity change from 0 to 2048
[  326.574039][T13950] loop3: detected capacity change from 0 to 1764
[  326.598146][T13944] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  326.659457][ T6757] udevd[6757]: incorrect nilfs2 checksum on /dev/loop0
[  326.707710][T13953] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  326.820903][T13956] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 3044605952
[  326.859941][T13956] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=15)
[  326.878516][T13956] Remounting filesystem read-only
[  326.884529][T13956] NILFS (loop0): error -5 truncating bmap (ino=15)
[  326.983935][ T4191] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[  327.202031][T13973] netlink: 'syz.3.2967': attribute type 1 has an invalid length.
[  327.285760][T13948] loop8: detected capacity change from 0 to 32768
[  327.408890][T13983] loop3: detected capacity change from 0 to 16
[  327.408954][T13948] XFS (loop8): Mounting V5 Filesystem
[  327.500112][T13983] erofs: (device loop3): mounted with root inode @ nid 36.
[  327.513903][T13948] XFS (loop8): Ending clean mount
[  327.601610][ T9681] XFS (loop8): Unmounting Filesystem
[  327.656948][T13961] loop9: detected capacity change from 0 to 32768
[  327.792470][T13961] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop9 scanned by syz.9.2961 (13961)
[  327.891614][T13961] BTRFS info (device loop9): using sha256 (sha256-avx2) checksum algorithm
[  327.920471][T13961] BTRFS info (device loop9): using free space tree
[  327.939000][T13961] BTRFS info (device loop9): has skinny extents
[  328.304495][T13961] BTRFS info (device loop9): enabling ssd optimizations
[  328.391540][   T26] audit: type=1800 audit(1754097953.312:69): pid=13961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2961" name="file1" dev="loop9" ino=260 res=0 errno=0
[  328.682061][T13683] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 9 /dev/loop9 scanned by udevd (13683)
[  328.931966][T14033] loop8: detected capacity change from 0 to 32768
[  328.939107][T14030] loop3: detected capacity change from 0 to 32768
[  328.978240][T14033] XFS: noikeep mount option is deprecated.
[  329.033644][T14030] XFS (loop3): Mounting V5 Filesystem
[  329.176825][T14033] XFS (loop8): Mounting V5 Filesystem
[  329.304697][T14030] XFS (loop3): Ending clean mount
[  329.355448][T14030] XFS (loop3): Quotacheck needed: Please wait.
[  329.369228][T14033] XFS (loop8): Ending clean mount
[  329.386564][T14033] XFS (loop8): Quotacheck needed: Please wait.
[  329.480240][T14030] XFS (loop3): Quotacheck: Done.
[  329.548722][T14033] XFS (loop8): Quotacheck: Done.
[  329.707780][ T9681] XFS (loop8): Unmounting Filesystem
[  329.716144][T12815] XFS (loop3): Unmounting Filesystem
[  330.166444][T14088] loop9: detected capacity change from 0 to 4096
[  330.360599][T14101] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  330.597905][T14103] loop8: detected capacity change from 0 to 32768
[  330.605077][T14103] XFS: attr2 mount option is deprecated.
[  330.639281][T14088] NILFS (loop9): nilfs_palloc_commit_free_entry (ino=6): entry number 13 already freed
[  330.682535][T14114] loop6: detected capacity change from 0 to 256
[  330.733837][T14103] XFS (loop8): Mounting V5 Filesystem
[  330.852233][T14114] FAT-fs (loop6): bogus number of FAT sectors
[  330.859812][T14114] FAT-fs (loop6): Can't find a valid FAT filesystem
[  330.945018][T14121] loop0: detected capacity change from 0 to 32768
[  330.966638][ T4798] XFS (loop8): Metadata CRC error detected at xfs_agf_read_verify+0x18d/0x250, xfs_agf block 0x1 
[  330.993185][ T4798] XFS (loop8): Unmount and run xfs_repair
[  331.005540][T14121] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.3009 (14121)
[  331.029532][ T4798] XFS (loop8): First 128 bytes of corrupted metadata buffer:
[  331.037065][ T4798] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 10 00  XAGF............
[  331.079993][ T4798] 00000010: 00 00 00 01 00 00 00 02 00 00 00 00 00 00 00 01  ................
[  331.121771][ T4798] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  331.141924][T14121] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  331.151601][T14121] BTRFS info (device loop0): using free space tree
[  331.158301][T14121] BTRFS info (device loop0): has skinny extents
[  331.183824][ T4798] 00000030: 00 00 00 04 00 00 0b a2 00 00 0b a0 00 00 00 00  ................
[  331.201350][ T4798] 00000040: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  331.223445][ T4798] 00000050: 00 00 00 00 00 00 00 01 00 00 00 05 00 00 00 01  ................
[  331.245535][T14147] netlink: 165 bytes leftover after parsing attributes in process `syz.6.3018'.
[  331.251363][ T4798] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01  ................
[  331.269723][ T4798] 00000070: 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  331.293128][T14103] XFS (loop8): metadata I/O error in "xfs_read_agf+0x23c/0x500" at daddr 0x1 len 1 error 74
[  331.304633][T14103] XFS (loop8): Error -117 reserving per-AG metadata reserve pool.
[  331.312906][T14103] XFS (loop8): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x1bf/0x1f0 (fs/xfs/xfs_fsops.c:573).  Shutting down filesystem.
[  331.328257][T14103] XFS (loop8): Please unmount the filesystem and rectify the problem(s)
[  331.336652][T14103] XFS (loop8): Ending clean mount
[  331.342017][T14103] XFS (loop8): Failed to initialize disk quotas.
[  331.348505][T14103] XFS (loop8): Error -5 reserving per-AG metadata reserve pool.
[  331.524000][T14121] BTRFS info (device loop0): enabling ssd optimizations
[  331.557704][T14164] netlink: 'syz.3.3021': attribute type 2 has an invalid length.
[  331.590764][T14121] BTRFS error (device loop0): balance: invalid convert metadata profile single
[  331.878374][ T6757] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop0 scanned by udevd (6757)
[  332.516485][T14202] loop9: detected capacity change from 0 to 512
[  332.564743][T14206] loop6: detected capacity change from 0 to 512
[  332.619313][T14206] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  332.655055][T14202] EXT4-fs (loop9): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  332.752684][T14206] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.3040: invalid indirect mapped block 4294967295 (level 1)
[  332.768269][T14202] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.802401][T14206] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.3040: invalid indirect mapped block 4294967295 (level 1)
[  332.826140][   T26] audit: type=1800 audit(1754097957.465:70): pid=14202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3038" name="file2" dev="loop9" ino=16 res=0 errno=0
[  332.882512][T14206] EXT4-fs (loop6): 2 truncates cleaned up
[  332.908406][T14206] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,init_itable=0x0000000000000007,dioread_nolock,,errors=continue. Quota mode: writeback.
[  333.018550][T14206] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.3040: bg 0: block 5: invalid block bitmap
[  333.183761][T14216] loop8: detected capacity change from 0 to 32768
[  333.289385][T14212] loop3: detected capacity change from 0 to 40427
[  333.347848][T14216] XFS (loop8): Mounting V5 Filesystem
[  333.388759][T14238] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3050'.
[  333.460594][T14212] F2FS-fs (loop3): invalid crc value
[  333.503547][T14212] F2FS-fs (loop3): Found nat_bits in checkpoint
[  333.519988][T14216] XFS (loop8): Ending clean mount
[  333.554081][T14216] XFS (loop8): Quotacheck needed: Please wait.
[  333.633665][T14212] F2FS-fs (loop3): Start checkpoint disabled!
[  333.708579][T14212] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  333.724988][T14216] XFS (loop8): Quotacheck: Done.
[  333.805389][ T9681] XFS (loop8): Unmounting Filesystem
[  334.036205][ T4264] attempt to access beyond end of device
[  334.036205][ T4264] loop3: rw=2049, want=40984, limit=40427
[  334.177921][T14234] loop0: detected capacity change from 0 to 32768
[  334.316310][T14234] XFS (loop0): Mounting V5 Filesystem
[  334.327248][T14258] loop9: detected capacity change from 0 to 128
[  334.473096][T14258] EXT4-fs warning (device loop9): ext4_fill_super:3980: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  334.537229][T14234] XFS (loop0): Ending clean mount
[  334.542970][T14258] EXT4-fs (loop9): Encoding requested by superblock is unknown
[  334.563011][T14234] XFS (loop0): Quotacheck needed: Please wait.
[  334.645383][T14234] XFS (loop0): Quotacheck: Done.
[  334.736349][   T26] audit: type=1800 audit(1754097959.243:71): pid=14234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3049" name="file2" dev="loop0" ino=4423 res=0 errno=0
[  334.865798][T14293] loop9: detected capacity change from 0 to 2048
[  334.916674][T14293] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  334.938384][ T4246] XFS (loop0): Metadata CRC error detected at xfs_refcountbt_read_verify+0x3a/0xd0, xfs_refcountbt block 0x28 
[  334.960747][ T1324] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  334.991901][ T4246] XFS (loop0): Unmount and run xfs_repair
[  335.003013][ T4246] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  335.045602][ T4246] 00000000: 52 ff ff ff 7f 00 00 00 ff ff ff ff ff ff ff ff  R...............
[  335.071654][ T4246] 00000010: 00 00 00 00 00 00 00 28 00 00 00 00 00 00 00 00  .......(........
[  335.090628][ T4246] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  335.099582][ T4246] 00000030: 00 00 00 00 bd e7 de 5d 00 00 00 00 00 00 00 00  .......]........
[  335.150556][ T4246] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  335.177370][ T4246] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  335.189712][ T4246] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  335.202338][ T4246] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  335.221691][T14299] loop6: detected capacity change from 0 to 32768
[  335.231162][T14291] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1d3/0x2c0" at daddr 0x28 len 8 error 74
[  335.247461][T14291] XFS (loop0): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1556/0x1b60 (fs/xfs/libxfs/xfs_defer.c:504).  Shutting down filesystem.
[  335.266101][T14291] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  335.312952][T14299] XFS (loop6): Mounting V5 Filesystem
[  335.391992][ T1324] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  335.399736][ T4191] XFS (loop0): Unmounting Filesystem
[  335.402816][ T1324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  335.425844][ T1324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  335.436769][ T1324] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  335.491331][T14299] XFS (loop6): Ending clean mount
[  335.520725][T14299] XFS (loop6): Quotacheck needed: Please wait.
[  335.547490][ T1324] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  335.558453][ T1324] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  335.569040][ T1324] usb 4-1: Manufacturer: syz
[  335.577174][ T1324] usb 4-1: config 0 descriptor??
[  335.650704][T14299] XFS (loop6): Quotacheck: Done.
[  335.677141][ T1106] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  335.755206][ T6915] XFS (loop6): Unmounting Filesystem
[  335.925824][ T1324] rc_core: IR keymap rc-hauppauge not found
[  335.931765][ T1324] Registered IR keymap rc-empty
[  335.944426][ T1106] usb 10-1: Using ep0 maxpacket: 8
[  335.956547][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  335.996016][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.035573][ T1324] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  336.069534][ T1324] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input28
[  336.085837][ T1106] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  336.115365][ T1106] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  336.132244][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.139541][ T1106] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  336.150495][ T1106] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  336.162503][ T1106] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  336.172732][ T1106] usb 10-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  336.181992][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.189177][ T1106] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.199099][ T1106] usb 10-1: config 0 descriptor??
[  336.211754][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.219849][T14323] loop6: detected capacity change from 0 to 64
[  336.222792][T14309] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  336.252026][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.297381][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.329166][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.372028][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.408293][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.451697][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.463134][T14331] loop3: detected capacity change from 0 to 256
[  336.521646][ T1324] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  336.536133][ T4186] Bluetooth: hci5: Received unexpected HCI Event 00000000
[  336.546083][ T4186] Bluetooth: hci5: Received unexpected HCI Event 00000000
[  336.553243][ T4186] Bluetooth: hci5: Received unexpected HCI Event 00000000
[  336.561086][ T4186] Bluetooth: hci5: Received unexpected HCI Event 00000000
[  336.568392][ T4186] Bluetooth: hci5: Received unexpected HCI Event 00000000
[  336.578495][ T1324] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  336.588606][ T1324] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  336.597163][T14331] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  336.677170][T14342] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.3084'.
[  336.867194][ T4795] usb 10-1: USB disconnect, device number 9
[  336.926634][T14344] loop0: detected capacity change from 0 to 32768
[  336.933819][T14344] XFS: attr2 mount option is deprecated.
[  336.956197][T14346] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3088'.
[  337.070008][T14344] XFS (loop0): Mounting V5 Filesystem
[  337.090256][T14348] loop8: detected capacity change from 0 to 1764
[  337.116372][T14344] XFS (loop0): Torn write (CRC failure) detected at log block 0x40. Truncating head block from 0x50.
[  337.172510][T14344] XFS (loop0): Starting recovery (logdev: internal)
[  337.190365][ T1324] XFS (loop0): Metadata CRC error detected at xfs_agf_read_verify+0x18d/0x250, xfs_agf block 0x1 
[  337.201813][ T1324] XFS (loop0): Unmount and run xfs_repair
[  337.208155][ T1324] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  337.216664][ T1324] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 10 00  XAGF............
[  337.225582][ T1324] 00000010: 00 00 00 01 00 00 00 02 00 00 00 00 00 00 00 01  ................
[  337.234513][ T1324] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  337.243456][ T1324] 00000030: 00 00 00 04 00 00 0b a2 00 00 0b a0 00 00 00 00  ................
[  337.252366][ T1324] 00000040: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  337.261385][ T1324] 00000050: 00 00 00 00 00 00 00 01 00 00 00 05 00 00 00 01  ................
[  337.270323][ T1324] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01  ................
[  337.279167][ T1324] 00000070: 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  337.288228][T14344] XFS (loop0): metadata I/O error in "xfs_read_agf+0x23c/0x500" at daddr 0x1 len 1 error 74
[  337.832435][T14374] loop9: detected capacity change from 0 to 8192
[  337.891625][T14374] REISERFS (device loop9): found reiserfs format "3.5" with non-standard journal
[  337.906165][ T4793] usb 4-1: USB disconnect, device number 6
[  337.912246][T14374] REISERFS (device loop9): using ordered data mode
[  337.918763][T14374] reiserfs: using flush barriers
[  337.947641][T14374] REISERFS (device loop9): journal params: device loop9, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  338.017723][T14374] REISERFS (device loop9): checking transaction log (loop9)
[  338.104731][T14374] REISERFS (device loop9): Using r5 hash to sort names
[  338.539772][T14383] loop6: detected capacity change from 0 to 32768
[  338.641549][T14383] attempt to access beyond end of device
[  338.641549][T14383] loop6: rw=1, want=4680040, limit=32768
[  338.722611][T14383] metapage_write_end_io: I/O error
[  338.751256][T14383] ERROR: (device loop6): diWrite: ixpxd invalid
[  338.751256][T14383] 
[  338.794542][T14383] ERROR: (device loop6): remounting filesystem as read-only
[  338.826753][T14383] ERROR: (device loop6): txCommit: 
[  338.826753][T14383] 
[  338.869221][  T275] blkno = 8ed2c, nblocks = 1
[  338.878411][  T275] ERROR: (device loop6): dbUpdatePMap: blocks are outside the map
[  338.878411][  T275] 
[  338.894465][T14383] blkno = 8ed2c, nblocks = 1
[  338.922443][T14383] ERROR: (device loop6): dbUpdatePMap: blocks are outside the map
[  338.922443][T14383] 
[  338.967622][T14383] ERROR: (device loop6): dtSearch: DT_GETPAGE: dtree page corrupt
[  338.967622][T14383] 
[  339.019911][T14383] jfs_mkdir: dtSearch returned -5
[  339.068099][T14383] ERROR: (device loop6): dtSearch: DT_GETPAGE: dtree page corrupt
[  339.068099][T14383] 
[  339.108835][T14383] jfs_lookup: dtSearch returned -5
[  339.226655][ T6915] attempt to access beyond end of device
[  339.226655][ T6915] loop6: rw=1, want=4680040, limit=32768
[  339.279158][ T6915] metapage_write_end_io: I/O error
[  339.306507][ T6915] JFS: metapage_get_blocks failed
[  339.310078][T14394] loop8: detected capacity change from 0 to 131072
[  339.327744][ T6915] JFS: metapage_get_blocks failed
[  339.343777][ T6915] JFS: metapage_get_blocks failed
[  339.352201][ T6915] JFS: metapage_get_blocks failed
[  339.376079][T14394] F2FS-fs (loop8): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  339.384876][T14394] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock
[  339.395439][T14394] F2FS-fs (loop8): invalid crc value
[  339.426021][T14394] F2FS-fs (loop8): Found nat_bits in checkpoint
[  339.461282][T14394] F2FS-fs (loop8): recover fsync data on readonly fs
[  339.468549][T14394] F2FS-fs (loop8): Try to recover 2th superblock, ret: -30
[  339.475841][T14394] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  339.560840][T14394] fs-verity (loop8, inode 7): Error -61 getting verity descriptor size
[  339.619931][T14396] loop9: detected capacity change from 0 to 40427
[  339.637173][T14396] F2FS-fs (loop9): Insane cp_payload (553648128 >= 504)
[  339.645839][T14396] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  339.706494][T14396] F2FS-fs (loop9): invalid crc value
[  339.773777][T14396] F2FS-fs (loop9): Found nat_bits in checkpoint
[  339.921393][T14396] F2FS-fs (loop9): Start checkpoint disabled!
[  339.949439][T14396] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  339.963321][T14396] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  339.974901][T14416] block nbd1: server does not support multiple connections per device.
[  340.004535][T14416] block nbd1: shutting down sockets
[  340.276188][T14431] loop6: detected capacity change from 0 to 128
[  340.422503][ T5589] attempt to access beyond end of device
[  340.422503][ T5589] loop9: rw=1, want=45104, limit=40427
[  340.449630][ T5589] attempt to access beyond end of device
[  340.449630][ T5589] loop9: rw=2049, want=40976, limit=40427
[  340.549192][T14434] loop8: detected capacity change from 0 to 8192
[  340.687194][T14434] REISERFS (device loop8): found reiserfs format "3.5" with non-standard journal
[  340.744518][T14434] REISERFS (device loop8): using ordered data mode
[  340.751058][T14434] reiserfs: using flush barriers
[  340.818690][T14434] REISERFS (device loop8): journal params: device loop8, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  340.887621][T14432] loop3: detected capacity change from 0 to 32768
[  340.890676][T14434] REISERFS (device loop8): checking transaction log (loop8)
[  340.956925][T14432] JBD2: Ignoring recovery information on journal
[  340.985602][T14432] JBD2: corrupted journal superblock
[  341.017984][T14434] REISERFS (device loop8): Using r5 hash to sort names
[  341.026640][T14448] loop6: detected capacity change from 0 to 8
[  341.059141][T14432] JBD2: error -117 scanning journal
[  341.064386][T14432] (syz.3.3121,14432,1):ocfs2_journal_wipe:1154 ERROR: status = -117
[  341.082799][T14434] REISERFS (device loop8): Created .reiserfs_priv - reserved for xattr storage.
[  341.193692][T14432] (syz.3.3121,14432,0):ocfs2_check_volume:2424 ERROR: status = -117
[  341.201719][T14432] (syz.3.3121,14432,0):ocfs2_check_volume:2493 ERROR: status = -117
[  341.217877][   T26] audit: type=1800 audit(1754097965.313:72): pid=14448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3128" name="file1" dev="loop6" ino=5 res=0 errno=0
[  341.220909][T14432] (syz.3.3121,14432,0):ocfs2_mount_volume:1824 ERROR: status = -117
[  341.294175][T14448] SQUASHFS error: Failed to read block 0x6e6: -5
[  341.303492][T14432] (syz.3.3121,14432,1):ocfs2_fill_super:1177 ERROR: status = -117
[  341.353779][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.377268][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.384231][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.446038][T14458] loop9: detected capacity change from 0 to 512
[  341.456471][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.469452][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.485919][T14462] loop8: detected capacity change from 0 to 512
[  341.500138][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.510841][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.533715][T14462] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  341.536015][T14458] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  341.570040][T14462] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e11c, mo2=0002]
[  341.578114][T14462] System zones: 1-12
[  341.583137][T14462] EXT4-fs (loop8): orphan cleanup on readonly fs
[  341.594000][T14462] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.3130: bg 0: block 361: padding at end of block bitmap is not set
[  341.603898][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.612674][T14462] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  341.624968][T14462] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.3130: invalid indirect mapped block 12 (level 1)
[  341.638743][T14462] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.3130: invalid indirect mapped block 2 (level 2)
[  341.652919][T14462] EXT4-fs (loop8): 1 truncate cleaned up
[  341.658682][T14462] EXT4-fs (loop8): mounted filesystem without journal. Opts: noload,max_batch_time=0x0000000000000007,inode_readahead_blks=0x0000000000080000,max_dir_size_kb=0x0000000000000001,jqfmt=vfsv0,errors=continue. Quota mode: none.
[  341.693615][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.714964][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.723489][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.731504][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.738554][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.745986][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.754330][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.765417][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.774986][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.786725][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.787181][T14458] EXT4-fs (loop9): 1 truncate cleaned up
[  341.802275][T14448] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  341.810355][T14448] SQUASHFS error: read_indexes: reading block [6e4:0]
[  341.838741][T14458] EXT4-fs (loop9): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[  341.957860][T14472] loop6: detected capacity change from 0 to 256
[  342.032386][T14472] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  342.127714][ T4253] kernel read not supported for file /dsp1 (pid: 4253 comm: kworker/0:5)
[  342.364274][T14487] loop6: detected capacity change from 0 to 512
[  342.407069][T14487] EXT4-fs (loop6): Test dummy encryption mode enabled
[  342.438990][T14496] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3147'.
[  342.483398][T14487] EXT4-fs error (device loop6): ext4_find_inline_data_nolock:163: inode #12: comm syz.6.3144: inline data xattr refers to an external xattr inode
[  342.597857][T14487] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.3144: couldn't read orphan inode 12 (err -117)
[  342.617332][T14506] kvm [14505]: vcpu1, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x4000007c
[  342.682083][T14487] EXT4-fs (loop6): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000001,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,norecovery,lazytime,errors=continue,auto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  342.684247][T14511] tap0: tun_chr_ioctl cmd 2147767521
[  342.738469][T14514] loop8: detected capacity change from 0 to 256
[  342.795091][   T26] audit: type=1800 audit(1754097966.782:73): pid=14514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3155" name="file1" dev="loop8" ino=1048770 res=0 errno=0
[  342.819857][T14514] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  342.841665][T14514] FAT-fs (loop8): Filesystem has been set read-only
[  342.848384][T14514] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  342.925372][T14514] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  342.989083][T14514] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  343.012273][T14523] ------------[ cut here ]------------
[  343.014136][T14514] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  343.072363][T14523] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[  343.100789][T14523] WARNING: CPU: 0 PID: 14523 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  343.193322][T14523] Modules linked in:
[  343.200541][T14523] CPU: 1 PID: 14523 Comm: syz.0.3158 Not tainted 5.15.189-syzkaller #0
[  343.209464][T14523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  343.221564][T14523] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  343.228668][T14523] Code: 88 8e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 80 64 18 8b 4c 89 e6 89 ea e8 95 c8 6f 00 <0f> 0b e9 07 fd ff ff e8 b9 24 4a f8 0f 0b e9 b1 fe ff ff e8 ad 24
[  343.252482][T14523] RSP: 0018:ffffc9000342f3a0 EFLAGS: 00010246
[  343.279216][T14523] RAX: 190f711a063c2c00 RBX: 0000000002000000 RCX: 0000000000080000
[  343.289748][T14523] RDX: ffffc90004104000 RSI: 0000000000004cc3 RDI: 0000000000004cc4
[  343.315354][T14523] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067a8
[  343.323834][T14523] R10: ffffed10172067a8 R11: 1ffff110172067a7 R12: ffff8880203cc000
[  343.332122][T14523] R13: ffff8880203cd290 R14: ffff88807ede0da0 R15: ffff8880203ce298
[  343.340101][T14523] FS:  00007f56dc2d66c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  343.349822][T14523] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  343.356555][T14523] CR2: 00007ff3ea55af98 CR3: 000000002a3a4000 CR4: 00000000003506e0
[  343.364606][T14523] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  343.372600][T14523] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  343.380651][T14523] Call Trace:
[  343.383936][T14523]  <TASK>
[  343.386944][T14523]  ieee80211_set_mcast_rate+0x3b/0x50
[  343.392337][T14523]  ? ieee80211_leave_ibss+0x20/0x20
[  343.398792][T14523]  nl80211_set_mcast_rate+0x338/0x510
[  343.404293][T14523]  ? nl80211_nan_change_config+0x6a0/0x6a0
[  343.411138][T14523]  genl_rcv_msg+0xbc6/0xf40
[  343.415738][T14523]  ? genl_bind+0x370/0x370
[  343.420623][T14523]  ? verify_lock_unused+0x140/0x140
[  343.425849][T14523]  ? __dev_queue_xmit+0x1bc5/0x2ed0
[  343.431322][T14523]  ? dev_queue_xmit+0x20/0x20
[  343.436020][T14523]  ? nl80211_nan_change_config+0x6a0/0x6a0
[  343.438535][ T1106] usb 7-1: new full-speed USB device number 21 using dummy_hcd
[  343.441918][T14523]  netlink_rcv_skb+0x1e0/0x430
[  343.455781][T14523]  ? genl_bind+0x370/0x370
[  343.460341][T14523]  ? netlink_ack+0xb60/0xb60
[  343.464947][T14523]  ? __lock_acquire+0x7c60/0x7c60
[  343.469981][T14523]  ? preempt_count_add+0x8d/0x190
[  343.478572][T14523]  ? down_read+0x1aa/0x2e0
[  343.483125][T14523]  genl_rcv+0x24/0x40
[  343.487132][T14523]  netlink_unicast+0x774/0x920
[  343.495498][T14523]  netlink_sendmsg+0x8ab/0xbc0
[  343.500272][T14523]  ? netlink_getsockopt+0x560/0x560
[  343.505550][T14523]  ? aa_sock_msg_perm+0x94/0x150
[  343.510489][T14523]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  343.520344][T14523]  ? security_socket_sendmsg+0x7c/0xa0
[  343.526979][T14523]  ? netlink_getsockopt+0x560/0x560
[  343.532174][T14523]  ____sys_sendmsg+0x5a2/0x8c0
[  343.537414][T14523]  ? memset+0x1e/0x40
[  343.541415][T14523]  ? __sys_sendmsg_sock+0x30/0x30
[  343.546486][T14523]  ? import_iovec+0x6f/0xa0
[  343.550977][T14523]  ___sys_sendmsg+0x1f0/0x260
[  343.555649][T14523]  ? __sys_sendmsg+0x250/0x250
[  343.561444][T14523]  ? __fdget+0x18b/0x210
[  343.566179][T14523]  __se_sys_sendmsg+0x190/0x250
[  343.571117][T14523]  ? __x64_sys_sendmsg+0x80/0x80
[  343.576057][T14523]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  343.582189][T14523]  ? lockdep_hardirqs_on+0x94/0x140
[  343.587399][T14523]  do_syscall_64+0x4c/0xa0
[  343.593697][T14523]  ? clear_bhb_loop+0x30/0x80
[  343.598380][T14523]  ? clear_bhb_loop+0x30/0x80
[  343.606613][T14523]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  343.612585][T14523] RIP: 0033:0x7f56de46eb69
[  343.617002][T14523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.641186][T14523] RSP: 002b:00007f56dc2d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.650744][T14523] RAX: ffffffffffffffda RBX: 00007f56de695fa0 RCX: 00007f56de46eb69
[  343.658900][T14523] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000003
[  343.666900][T14523] RBP: 00007f56de4f1df1 R08: 0000000000000000 R09: 0000000000000000
[  343.676129][T14523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.684120][T14523] R13: 0000000000000000 R14: 00007f56de695fa0 R15: 00007fff09f68fd8
[  343.692410][T14523]  </TASK>
[  343.695541][T14523] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  343.702879][T14523] CPU: 1 PID: 14523 Comm: syz.0.3158 Not tainted 5.15.189-syzkaller #0
[  343.711108][T14523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  343.721172][T14523] Call Trace:
[  343.724438][T14523]  <TASK>
[  343.727355][T14523]  dump_stack_lvl+0x168/0x230
[  343.732026][T14523]  ? show_regs_print_info+0x20/0x20
[  343.737296][T14523]  ? load_image+0x3b0/0x3b0
[  343.741929][T14523]  panic+0x2c9/0x7f0
[  343.745819][T14523]  ? bpf_jit_dump+0xd0/0xd0
[  343.750313][T14523]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  343.756727][T14523]  __warn+0x248/0x2b0
[  343.760707][T14523]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  343.767129][T14523]  report_bug+0x1b7/0x2e0
[  343.771486][T14523]  handle_bug+0x3a/0x70
[  343.775624][T14523]  exc_invalid_op+0x16/0x40
[  343.780109][T14523]  asm_exc_invalid_op+0x16/0x20
[  343.784941][T14523] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  343.791949][T14523] Code: 88 8e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 80 64 18 8b 4c 89 e6 89 ea e8 95 c8 6f 00 <0f> 0b e9 07 fd ff ff e8 b9 24 4a f8 0f 0b e9 b1 fe ff ff e8 ad 24
[  343.811625][T14523] RSP: 0018:ffffc9000342f3a0 EFLAGS: 00010246
[  343.817682][T14523] RAX: 190f711a063c2c00 RBX: 0000000002000000 RCX: 0000000000080000
[  343.825657][T14523] RDX: ffffc90004104000 RSI: 0000000000004cc3 RDI: 0000000000004cc4
[  343.833614][T14523] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067a8
[  343.841570][T14523] R10: ffffed10172067a8 R11: 1ffff110172067a7 R12: ffff8880203cc000
[  343.849624][T14523] R13: ffff8880203cd290 R14: ffff88807ede0da0 R15: ffff8880203ce298
[  343.857595][T14523]  ieee80211_set_mcast_rate+0x3b/0x50
[  343.862954][T14523]  ? ieee80211_leave_ibss+0x20/0x20
[  343.868144][T14523]  nl80211_set_mcast_rate+0x338/0x510
[  343.873523][T14523]  ? nl80211_nan_change_config+0x6a0/0x6a0
[  343.879320][T14523]  genl_rcv_msg+0xbc6/0xf40
[  343.883807][T14523]  ? genl_bind+0x370/0x370
[  343.888209][T14523]  ? verify_lock_unused+0x140/0x140
[  343.893399][T14523]  ? __dev_queue_xmit+0x1bc5/0x2ed0
[  343.898605][T14523]  ? dev_queue_xmit+0x20/0x20
[  343.903267][T14523]  ? nl80211_nan_change_config+0x6a0/0x6a0
[  343.909152][T14523]  netlink_rcv_skb+0x1e0/0x430
[  343.913897][T14523]  ? genl_bind+0x370/0x370
[  343.918301][T14523]  ? netlink_ack+0xb60/0xb60
[  343.922897][T14523]  ? __lock_acquire+0x7c60/0x7c60
[  343.927931][T14523]  ? preempt_count_add+0x8d/0x190
[  343.932965][T14523]  ? down_read+0x1aa/0x2e0
[  343.937399][T14523]  genl_rcv+0x24/0x40
[  343.941363][T14523]  netlink_unicast+0x774/0x920
[  343.946120][T14523]  netlink_sendmsg+0x8ab/0xbc0
[  343.950873][T14523]  ? netlink_getsockopt+0x560/0x560
[  343.956075][T14523]  ? aa_sock_msg_perm+0x94/0x150
[  343.961035][T14523]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  343.966301][T14523]  ? security_socket_sendmsg+0x7c/0xa0
[  343.971750][T14523]  ? netlink_getsockopt+0x560/0x560
[  343.976938][T14523]  ____sys_sendmsg+0x5a2/0x8c0
[  343.981713][T14523]  ? memset+0x1e/0x40
[  343.985683][T14523]  ? __sys_sendmsg_sock+0x30/0x30
[  343.990691][T14523]  ? import_iovec+0x6f/0xa0
[  343.995185][T14523]  ___sys_sendmsg+0x1f0/0x260
[  343.999844][T14523]  ? __sys_sendmsg+0x250/0x250
[  344.004600][T14523]  ? __fdget+0x18b/0x210
[  344.008826][T14523]  __se_sys_sendmsg+0x190/0x250
[  344.013657][T14523]  ? __x64_sys_sendmsg+0x80/0x80
[  344.018573][T14523]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  344.024538][T14523]  ? lockdep_hardirqs_on+0x94/0x140
[  344.029726][T14523]  do_syscall_64+0x4c/0xa0
[  344.034138][T14523]  ? clear_bhb_loop+0x30/0x80
[  344.038794][T14523]  ? clear_bhb_loop+0x30/0x80
[  344.043449][T14523]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  344.049337][T14523] RIP: 0033:0x7f56de46eb69
[  344.053794][T14523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.073383][T14523] RSP: 002b:00007f56dc2d6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.081875][T14523] RAX: ffffffffffffffda RBX: 00007f56de695fa0 RCX: 00007f56de46eb69
[  344.083413][ T1106] usb 7-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  344.089851][T14523] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000003
[  344.089870][T14523] RBP: 00007f56de4f1df1 R08: 0000000000000000 R09: 0000000000000000
[  344.089879][T14523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  344.089889][T14523] R13: 0000000000000000 R14: 00007f56de695fa0 R15: 00007fff09f68fd8
[  344.089915][T14523]  </TASK>
[  344.090131][T14523] Kernel Offset: disabled
[  344.138312][T14523] Rebooting in 86400 seconds..