last executing test programs:

3m30.05064827s ago: executing program 3 (id=233):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000100001000000001e000000000000000a68000000060a0b040000000000000000020000003c00048014000180090001006c6173740000000004000280240001800a0001807265646972000000380002800800034000000028080001400000001d0900010073797a30000000000900020073797a32"], 0x90}}, 0x2000c004)

3m29.684988016s ago: executing program 3 (id=237):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2000005c, &(0x7f0000002c00)=ANY=[], 0xfe, 0x1540, &(0x7f0000000180)="$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")
r0 = open(&(0x7f0000000180)='.\x00', 0x0, 0x51)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000680)={0x4, 0x1000, 0x2000, 0x0, 0x0, 0x0, 0x2401})

3m29.40342056s ago: executing program 3 (id=240):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x6, &(0x7f0000000140)={0x11, {{0x29, 0x0, 0x37000000, @local}}}, 0x88)

3m29.203683973s ago: executing program 3 (id=241):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f00000022c0)={0x2020}, 0x2020)

3m28.892521709s ago: executing program 3 (id=242):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)

3m28.720103101s ago: executing program 3 (id=244):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xf, &(0x7f0000000b40)=ANY=[@ANYBLOB="180000000100000000000000070000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f9ffffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x10)

3m12.999733913s ago: executing program 32 (id=244):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xf, &(0x7f0000000b40)=ANY=[@ANYBLOB="180000000100000000000000070000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f9ffffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x10)

1m47.956018523s ago: executing program 4 (id=974):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44400)

1m47.744074527s ago: executing program 4 (id=978):
r0 = semget$private(0x0, 0x2, 0x209)
semtimedop(r0, &(0x7f0000000080)=[{0x0, 0xfff9}], 0x1, 0x0)
semtimedop(r0, &(0x7f0000000040)=[{0x0, 0x4}, {0x0, 0xfffc, 0x1800}], 0x2, 0x0)

1m46.778809262s ago: executing program 4 (id=985):
signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x5]}, 0x8)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
read$eventfd(r0, &(0x7f0000000100), 0xfffffd79)

1m45.64203473s ago: executing program 4 (id=988):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x1010040, &(0x7f00000003c0)={[{@noquota}, {@debug}, {@jqfmt_vfsv0}, {@noauto_da_alloc}, {@resgid}]}, 0x3, 0x4d7, &(0x7f0000001480)="$eJzs3d9rW9cdAPDvle3YSZzZ2faQBZaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX/AYOwX61Of+lLocymU/AmlEGjfSyktoU3Shz60VZF01aSO/AtbVmJ9PnB8z/2h+/0em3uso3PRDaBjnY2I8YjoiogLETGQbs+kJdbrpXrc40d3p6oliUrl5qdJJOm2xrmSdHk8fVlfRPzpDxF/TZ6PW1pdm58sFPLL6XquvLCUK62uXZxbmJzNz+YXx0dHroxdHbs8Nrxvbb32u4/+84/Xfn/t7V/e/mDik/N/q6bVn+57th07sb7D4+pN76n9Lhq6I2J5N8FeYF1pe3ranQgAADtSfY///Yj4aUQ8+X+7swEAAABaofKb/vgyiagAAAAAh1amdg9sksmm9wL0RyaTzdbv4f1hHMsUiqXyL2aKK4vT9XtlB6MnMzNXyA+n9woPRk9SXR+p1Z+uX9qwPhoRJyPiXwNHa+vZqWJhut0ffgAAAECHOL5h/P/5QH38DwAAABwyg+1OAAAAAGg5438AAAA4/DYd/yfdB5sIAAAA0Ap/vH69WiqN519P31pdmS/eujidL81nF1amslPF5aXsbLE4W/vOvoXtzlcoFpd+FYsrd3LlfKmcK62uTSwUVxbLE7Xnek/kPScaAAAADt7Jn9x/P4mI9V8frZWqI+m+HYzVx1ubHdBKmd0dnrQqD+DgdbU7AaBt3OALnct8PLDNwP7fG9Z3+bEBAADwIhj60Z7m/80HwkvMQB46l/l/6Fzm/6Fzmf+HDte7/SF9m+14Z59zAQAAWqa/VpJMNp0L7I9MJpuNOFF7LEBPMjNXyA9HxPci4r2Bnt7q+ki7kwYAAAAAAAAAAAAAAAAAAAAAAACAl0ylkkQFAAAAONQiMh8n6YP8hwbO9W/8fOBI8sVAbRkRt1+5+d87k+Xy8kh1+2ffbi//L91+qbEFAAAAaKfGOL0xjgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/fT40d2pRjnIuA9/GxGDzeJ3R19t2ffmQEQce5JE9zOvSyKiax/ir9+LiFPN4ifVtGIwzWJj/ExEHG1z/OP7EB862f1q/zNevf56Nlx/mThbWza//rrTslcPz27W/2Ua/V+tn2vW/53Y+tR9jcrpB2/kNo1/L+J0d/P+pxE/2WP/+5c/r61ttq/yasTQNv9/qrFy5YWlXGl17eLcwuRsfja/ODo6cmXs6tjlseHczFwhn/5sGuOfP37r663af6xp/Hr/u1X7zz1/ut5mMb56cOfRD7aIf/5nzf/+p7aIX/3d/zz9P1DdP9Sor9frzzrz+rtntmr/9Cbt3+7vf36zk25w4cbfP9zhoQDAASitrs1PFgr55ZejElF/V/6i5KOispdKV8tD3Egv9F2/vL39EgAAsP+evulvdyYAAAAAAAAAAAAAAAAAAADQuVr+PWe93/1mgb72NRUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYEvfBAAA///DTM7p")
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='.\x02\x00')

1m45.182852308s ago: executing program 4 (id=994):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)

1m44.98944822s ago: executing program 4 (id=997):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4016, &(0x7f0000000180)={[{@dioread_nolock}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@noauto_da_alloc}, {@lazytime}, {@grpjquota}, {@quota}]}, 0x1, 0x43c, &(0x7f0000000280)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

1m29.587725957s ago: executing program 33 (id=997):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4016, &(0x7f0000000180)={[{@dioread_nolock}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@noauto_da_alloc}, {@lazytime}, {@grpjquota}, {@quota}]}, 0x1, 0x43c, &(0x7f0000000280)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

3.534538883s ago: executing program 2 (id=1655):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f00000000c0)='./file1\x00', 0x1010006, &(0x7f0000002580)=ANY=[@ANYBLOB='quota,discard=0x000000000000aff9,iocharset=none,errors=continue,iocharset=macceltic,discard=0x0000000000000003,nodiscard,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c00b6a72eec97267bbe6ec140600f056a5df4cb9cdfa703d644acdde56170bb41c82f6fca9e8e17d047bdfb7fc1ae185e243d541bb86d23b0c9ea978e7f15ce67f723abf2079d8a15942d384d8b956c566ef833520077da1584bb98472561279c0a1afda673c195acf5c103e4d1a2ee8755c493efa580c91fd9302c78471997213b2bf6ecbc8d8e"], 0x24, 0x61b6, &(0x7f00000075c0)="$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")
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000140)='./file1\x00')
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x258430, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

2.729306787s ago: executing program 0 (id=1658):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = mq_open(&(0x7f0000000280)='eth0\x00', 0x42, 0x0, 0x0)
ftruncate(r0, 0x1000000000000000)

2.46776608s ago: executing program 0 (id=1659):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000100)={0x2, r1})

2.46748971s ago: executing program 2 (id=1660):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000002080)=[{&(0x7f0000000380)="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", 0x4ae}], 0x1}}], 0x1, 0x240080e4)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a310000000024010000050a01020000000000000000010000000c00024000000000000000010900010073797a3100000000040004800a000700"], 0x1ac}}, 0x0)

2.218434984s ago: executing program 2 (id=1662):
setresuid(0xee01, 0xee01, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x8b598a4c6d8f8fc9, 0xffffffffffffffff, 0xffffffffffffffff)

2.047204547s ago: executing program 0 (id=1665):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40f02, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x4)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000000c0)=0x40)

1.929835769s ago: executing program 2 (id=1666):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x14, &(0x7f0000000340)=@framed={{}, [@printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.682606553s ago: executing program 2 (id=1669):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x3f, 0x40, 0x42}, 0x48)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000c80)='./bus\x00', 0x2000012, &(0x7f0000000040)=ANY=[], 0xfd, 0x6a9, &(0x7f00000000c0)="$eJzs3cFvHFcdB/DvrNeOHargtEkboSKiRCpIEYkdKwVzISCEcqhQVQ6crcRJrGySynEhqRC4gOCExKF/QEHyjRNS70HhXG69+lgJiUvEIeKyaGZnnM3uOrYTO3bo51ON35t5b9789jdvZrzbWBvgS+vSmbTvp8ilM+/cLdfX1+Y662tzh+rmTpKy3kravSLFraR4kFws24skJ+oyfeWQj5fm3/v84foXvbV2vVT9W0/bb4QRfVebyskkY3U5bHy7h1htxizHuZzklaEuE9sd64mOZdJO1yXsu+6Q1Z3svpPrFjhgmqdT0XtuDplODieZrH8PaJ60rRcX4d7Y0V0OAAAAXlKf3d7vCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODlU3//f5Gk2+12W3U9J1M03/8/0Wyr6y+1+/sdAAAAAAAAAADsgm88yqPczZFmvVukleRUtXIs/+0mX8kHuZPFLOds7mYhK1nJcmaTTPcNNHF3YWVleXZjz9LoPc9nasSe51/UKwYAAAAAAACA/0u/yaXH//8fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgiIZ6xXVcqypT6fVzuO2rCb/TDKx3/HuQDFq4/0XHwcAAAA8l8ln2Oerj/Iod3OkWe8W1Xv+16v3y5P5ILeykqWspJPFXKnfQ5fv+lvra3Od9bW5m+UyPO4P/r2jMKoR688XRh/5RNVjKlezVG05m8tVMFfSqvYsnWjiGR3XR2VMxfdr24ysXae1PNifNvsUYVfs9KOI6TK4ZCMjM3VsZTaO9jJQVB/UJIOZ2PLstAePlFbGN440m9bGJz/H9iDnh+uyfD2/39Oc79RGJlqpMnG+b/a9/vRMJN/89K8/u965deP61TtnDs5L2sLYJtsH58RcXybeeKkz0d5h/5kqE8c31i/lx/lpzuRk3s1ylvLzLGQli+nW7Qv1fC5/Tj89UxefWHt3q0gm6vPSO2fbielkflTVFnKq2vdIllLkdq5kMW9X/53PbL6TC7mQ+b4zfHzTuKvXVl31rcGrvjnTfx8Z/Olv1ZWpJH+oy6EcDNhsdu6W3r2/zOvRvrz2Zv3DjV5H+66Dmb4svdpkZ3zk4M9yb2x/ra6Ux/htXR4M03UmyguoeUo00b3Wy0S7ehYNz/M/V9fGnc6tG8vXF97fZPzVgfW36rKcVmtf326Uo0/F7irny6uZrO8kT86Osu21cvMvBttmq7ZjG3eg1mDb2PGqrSiaK/Unm16pE/XvcMMjna/a3hjZNle1nehre+L3rdxOJ1deQP4AeE7TOTwx9a+pz6Y+mfrd1PWpdyZ/eOi7h96cyPg/xr/Xnhl7q/Vm8bd8kl89fv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8uzv3Pryx0OksLo+utDZv2qKy1cgDlaL+Qp9nOtYBrEwmeWLLeLlhoPP8tU/vlSdh78KYGgxjqNL9dfLC89N8ieDoPn8sK+1sZ8CLW/X5aN9nwkGvjGX0BNjf+xKw986t3Hz/3J17H3576ebCtcVri7fGL1yYn5m/8PbcuatLncWZ3s/9jhLYC48f+vsdCQAAAAAAAAAAALBdo/4w4NQrW/3RyLb+xsO/LAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB2xaUzad9PkdmZszPl+vraXKdcmvrjnu0krVZS/DIpHiQX01sy3Tdckb88SHfEcT5emn/v84frX1Qrh5rxUpSD1uVzWK2XnEwyVpe7Nd7l5x6v+E/zCsuEnW4SB/vtfwEAAP//NCv3Iw==")
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r0}, 0x38)

1.583383445s ago: executing program 5 (id=1670):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000080)=0x80000001, 0x4)
bind$inet(r0, &(0x7f0000000600)={0x2, 0x0, @local}, 0x10)

1.390904658s ago: executing program 5 (id=1672):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
syz_emit_ethernet(0x4e, &(0x7f00000019c0)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa86dd6080a08300180000fc010000000000000000000000000000fe8000000000000000000000000000bb"], 0x0)

1.279845819s ago: executing program 0 (id=1673):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r1, 0x1, 0x0, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

1.177203151s ago: executing program 5 (id=1675):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
r0 = open(&(0x7f0000000200)='./file0\x00', 0x147842, 0x30)
preadv2(r0, &(0x7f0000000400)=[{&(0x7f0000002840)=""/4096, 0x1000}, {0x0}], 0x2, 0x0, 0x0, 0x0)

1.076784023s ago: executing program 2 (id=1676):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x87}]}, &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000009f80)="c674015814a875ec92e8793fce1d", 0x0, 0x130000b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x27)

1.029929024s ago: executing program 0 (id=1677):
pipe2(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
readv(r0, &(0x7f0000000740)=[{&(0x7f0000000480)=""/215, 0xd7}], 0x1)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000100)="19", 0x3a4e1e905c56cdb7}], 0x1)

1.017486694s ago: executing program 1 (id=1678):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000c00)={0x14, r1, 0x680822d7e3b5f37d, 0x0, 0x25dfdbfd}, 0x14}}, 0x4008000)

894.068876ms ago: executing program 1 (id=1679):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x10, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000000)={0xb, 0x10, 0xfa00, {0x0, r1}}, 0x18)

786.082987ms ago: executing program 1 (id=1680):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

701.660269ms ago: executing program 5 (id=1681):
r0 = timerfd_create(0x8, 0x80000)
timerfd_settime(r0, 0x3, &(0x7f0000000140), 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)

535.472201ms ago: executing program 5 (id=1682):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x10, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="840000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00300000000000005400128009000100766c616e000000004400028006000100000000000600050081000000280003803900010006000000090000000c00010000040000000000008dff010040000000060000000600050088a8000008000a00", @ANYRES32, @ANYBLOB="080005"], 0x84}, 0x1, 0xba01}, 0x0)

346.260945ms ago: executing program 1 (id=1683):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000340)={0x6, 'veth0_vlan\x00', {0x2}})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000380)={0x0, 'bridge_slave_0\x00', {}, 0x1ff})

232.295566ms ago: executing program 1 (id=1684):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000000)=0xf, 0x4)

187.463407ms ago: executing program 5 (id=1685):
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000680)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x100cc9a, &(0x7f0000000080)=ANY=[@ANYRES32=0x0], 0x1, 0x2af, &(0x7f0000000240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x69000}], 0x1)

86.456699ms ago: executing program 1 (id=1686):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x8000dc3, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000040)=0x1)

0s ago: executing program 0 (id=1687):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x1c, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000510850000001700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

kernel console output (not intermixed with test programs):

tent=32, offset=2044, size=237
[  206.136689][ T8319] loop1: detected capacity change from 0 to 16
[  206.190299][ T5862] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  206.205434][ T8319] erofs: (device loop1): mounted with root inode @ nid 36.
[  206.266547][ T8319] syz.1.854: attempt to access beyond end of device
[  206.266547][ T8319] loop1: rw=0, sector=3489784, nr_sectors = 8 limit=16
[  206.319645][ T8323] loop0: detected capacity change from 0 to 256
[  206.350599][ T8323] exfat: Deprecated parameter 'namecase'
[  206.378209][ T8323] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  206.390349][ T5862] usb 5-1: Using ep0 maxpacket: 32
[  206.409261][ T5862] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  206.454888][ T5862] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.497664][ T5862] usb 5-1: Product: syz
[  206.531048][ T5862] usb 5-1: Manufacturer: syz
[  206.535739][ T5862] usb 5-1: SerialNumber: syz
[  206.573038][ T5862] usb 5-1: config 0 descriptor??
[  206.599717][ T5862] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  206.679436][ T8329] loop0: detected capacity change from 0 to 1024
[  206.763471][ T8329] hfsplus: walked past end of dir
[  206.968469][ T8331] loop2: detected capacity change from 0 to 8192
[  207.011220][ T5862] gspca_stk1135: reg_w 0x0 err -71
[  207.017474][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.034753][ T5862] gspca_stk1135: Sensor write failed
[  207.035658][ T8331]  loop2: p3 p4 < >
[  207.040115][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.040129][ T5862] gspca_stk1135: Sensor write failed
[  207.041193][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.069863][ T8331] loop2: p3 start 18548 is beyond EOD, truncated
[  207.105758][ T5862] gspca_stk1135: Sensor read failed
[  207.117708][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.126497][ T5862] gspca_stk1135: Sensor read failed
[  207.132711][ T5862] gspca_stk1135: Detected sensor type unknown (0x0)
[  207.152680][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.159104][ T5862] gspca_stk1135: Sensor read failed
[  207.180907][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.187317][ T5862] gspca_stk1135: Sensor read failed
[  207.203802][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.243416][ T5862] gspca_stk1135: Sensor write failed
[  207.248812][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  207.290540][ T5862] gspca_stk1135: Sensor write failed
[  207.296002][ T5862] stk1135: probe of 5-1:0.0 failed with error -71
[  207.327174][ T5862] usb 5-1: USB disconnect, device number 3
[  207.483383][ T8347] loop1: detected capacity change from 0 to 128
[  207.486510][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  207.542733][ T8349] overlayfs: missing 'lowerdir'
[  207.690831][ T8352] loop4: detected capacity change from 0 to 4096
[  207.737481][ T8353] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  208.556348][ T8372] loop1: detected capacity change from 0 to 256
[  208.567754][ T8372] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  208.649016][ T8372] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  208.694685][ T8372] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  209.126797][ T8388] loop2: detected capacity change from 0 to 1024
[  209.162020][ T8388] EXT4-fs: Ignoring removed orlov option
[  209.190382][ T8388] EXT4-fs: Ignoring removed nomblk_io_submit option
[  209.233807][ T8388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.468276][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.472239][ T8401] netlink: 156 bytes leftover after parsing attributes in process `syz.1.892'.
[  209.511081][ T8401] netlink: 16 bytes leftover after parsing attributes in process `syz.1.892'.
[  209.627399][ T8403] netlink: 830 bytes leftover after parsing attributes in process `syz.2.893'.
[  209.664080][ T8403] bond_slave_0: entered promiscuous mode
[  209.670527][ T8403] bond_slave_1: entered promiscuous mode
[  209.788084][ T8405] loop0: detected capacity change from 0 to 1764
[  209.989062][ T8411] netlink: 12 bytes leftover after parsing attributes in process `syz.1.897'.
[  210.070155][ T8392] loop4: detected capacity change from 0 to 32768
[  210.090693][ T8392] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.889 (8392)
[  210.171667][ T8392] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  210.214826][ T8392] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  210.250878][ T8392] BTRFS info (device loop4): enabling auto defrag
[  210.287007][ T8392] BTRFS info (device loop4): use no compression
[  210.317409][ T8392] BTRFS info (device loop4): force clearing of disk cache
[  210.349990][ T8392] BTRFS info (device loop4): turning on async discard
[  210.376243][ T8392] BTRFS info (device loop4): max_inline at 5
[  210.421443][ T8392] BTRFS info (device loop4): force zlib compression, level 3
[  210.429115][ T8392] BTRFS info (device loop4): using free space tree
[  210.432355][ T8416] loop1: detected capacity change from 0 to 4096
[  210.546925][ T8431] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  210.793534][ T8392] BTRFS info (device loop4): enabling ssd optimizations
[  210.881138][ T8392] BTRFS info (device loop4): rebuilding free space tree
[  211.203113][ T6662] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  211.926952][ T8467] loop4: detected capacity change from 0 to 128
[  211.995330][ T8467] FAT-fs (loop4): Directory bread(block 128) failed
[  212.006036][ T8467] FAT-fs (loop4): Directory bread(block 129) failed
[  212.015072][ T8467] FAT-fs (loop4): Directory bread(block 130) failed
[  212.029592][ T8467] FAT-fs (loop4): Directory bread(block 131) failed
[  212.037483][ T8467] FAT-fs (loop4): Directory bread(block 132) failed
[  212.066704][ T5779] Bluetooth: hci2: command 0x0406 tx timeout
[  212.070442][ T5781] Bluetooth: hci0: command 0x0406 tx timeout
[  212.072930][ T5086] Bluetooth: hci1: command 0x0406 tx timeout
[  212.097547][ T8470] loop0: detected capacity change from 0 to 4096
[  212.100103][ T8467] FAT-fs (loop4): Directory bread(block 133) failed
[  212.120984][ T5862] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  212.127843][ T8467] FAT-fs (loop4): Directory bread(block 134) failed
[  212.170112][ T8467] FAT-fs (loop4): Directory bread(block 135) failed
[  212.178061][ T8467] FAT-fs (loop4): Directory bread(block 136) failed
[  212.186474][ T8467] FAT-fs (loop4): Directory bread(block 137) failed
[  212.216886][ T8471] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  212.325964][ T5862] usb 3-1: Using ep0 maxpacket: 32
[  212.350897][ T5862] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  212.370303][ T5862] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.390934][ T5862] usb 3-1: Product: syz
[  212.399729][ T5862] usb 3-1: Manufacturer: syz
[  212.415954][ T5862] usb 3-1: SerialNumber: syz
[  212.450073][ T5862] usb 3-1: config 0 descriptor??
[  212.480828][ T5862] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  212.892762][ T5862] gspca_stk1135: reg_w 0x0 err -71
[  212.901970][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  212.908360][ T5862] gspca_stk1135: Sensor write failed
[  212.929298][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  212.948838][ T5862] gspca_stk1135: Sensor write failed
[  212.960275][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  212.975250][ T5862] gspca_stk1135: Sensor read failed
[  212.990283][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  213.014861][ T5862] gspca_stk1135: Sensor read failed
[  213.036931][ T5862] gspca_stk1135: Detected sensor type unknown (0x0)
[  213.060429][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  213.089593][ T5862] gspca_stk1135: Sensor read failed
[  213.096977][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  213.107769][ T5862] gspca_stk1135: Sensor read failed
[  213.115691][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  213.133267][ T5862] gspca_stk1135: Sensor write failed
[  213.139092][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  213.145522][ T8487] overlayfs: missing 'lowerdir'
[  213.171548][ T5862] gspca_stk1135: Sensor write failed
[  213.177113][ T5862] stk1135: probe of 3-1:0.0 failed with error -71
[  213.202960][ T5862] usb 3-1: USB disconnect, device number 12
[  213.271987][ T8489] loop0: detected capacity change from 0 to 512
[  213.279404][ T8489] EXT4-fs: Ignoring removed bh option
[  213.322587][ T8489] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  213.368183][ T8489] EXT4-fs (loop0): 1 truncate cleaned up
[  213.397197][ T8489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.487186][ T8489] overlayfs: upper fs needs to support d_type.
[  213.690391][ T5772] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0)
[  213.690971][ T5772] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1)
[  213.694444][ T5772] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2)
[  213.743897][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.111963][ T8516] loop4: detected capacity change from 0 to 16
[  214.152821][ T8516] erofs: (device loop4): mounted with root inode @ nid 36.
[  214.195069][ T8516] syz.4.936: attempt to access beyond end of device
[  214.195069][ T8516] loop4: rw=0, sector=3489784, nr_sectors = 8 limit=16
[  214.426164][ T8527] loop4: detected capacity change from 0 to 1024
[  214.444891][ T8527] EXT4-fs: inline encryption not supported
[  214.493251][ T8527] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  214.577485][ T8527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.862342][ T6662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.887227][ T8542] ptrace attach of "./syz-executor exec"[5770] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  215.178610][ T8553] loop2: detected capacity change from 0 to 1024
[  215.339157][ T8553] EXT4-fs: inline encryption not supported
[  215.353117][ T8553] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  215.439891][ T8553] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.541143][ T8565] netlink: 60 bytes leftover after parsing attributes in process `syz.0.966'.
[  215.550774][ T8565] netlink: 'syz.0.966': attribute type 5 has an invalid length.
[  215.698454][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.749638][ T8572] loop0: detected capacity change from 0 to 256
[  215.769791][ T8574] loop4: detected capacity change from 0 to 512
[  215.779285][ T8570] loop1: detected capacity change from 0 to 512
[  215.783140][ T8574] EXT4-fs: Ignoring removed bh option
[  215.827545][ T8570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.857222][ T8574] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  215.871692][ T8570] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.902065][ T8572] FAT-fs (loop0): Directory bread(block 64) failed
[  215.908678][ T8572] FAT-fs (loop0): Directory bread(block 65) failed
[  215.927877][   T28] audit: type=1800 audit(1751029718.219:41): pid=8570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.968" name="file1" dev="loop1" ino=15 res=0 errno=0
[  215.970536][ T8572] FAT-fs (loop0): Directory bread(block 66) failed
[  215.977159][ T8572] FAT-fs (loop0): Directory bread(block 67) failed
[  216.022012][ T8572] FAT-fs (loop0): Directory bread(block 68) failed
[  216.028648][ T8572] FAT-fs (loop0): Directory bread(block 69) failed
[  216.035517][ T8572] FAT-fs (loop0): Directory bread(block 70) failed
[  216.045710][ T8572] FAT-fs (loop0): Directory bread(block 71) failed
[  216.054663][ T8572] FAT-fs (loop0): Directory bread(block 72) failed
[  216.059281][ T8574] EXT4-fs (loop4): 1 truncate cleaned up
[  216.061452][ T8572] FAT-fs (loop0): Directory bread(block 73) failed
[  216.085444][ T8574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.118687][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.225464][ T8574] overlayfs: upper fs needs to support d_type.
[  216.279570][ T8581] ptrace attach of "./syz-executor exec"[5769] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  216.418682][   T28] audit: type=1326 audit(1751029718.709:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.544095][   T28] audit: type=1326 audit(1751029718.829:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.591131][ T6662] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0)
[  216.609334][   T28] audit: type=1326 audit(1751029718.829:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=444 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.649288][ T6662] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1)
[  216.680596][   T28] audit: type=1326 audit(1751029718.829:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.703469][ T6662] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2)
[  216.718110][   T28] audit: type=1326 audit(1751029718.829:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.800471][   T28] audit: type=1326 audit(1751029718.829:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=446 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.824859][ T6662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.902866][   T28] audit: type=1326 audit(1751029718.829:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.960528][   T28] audit: type=1326 audit(1751029718.829:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8584 comm="syz.1.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb638e929 code=0x7ffc0000
[  216.997335][ T8596] netlink: 20 bytes leftover after parsing attributes in process `syz.4.963'.
[  217.755591][ T8623] loop0: detected capacity change from 0 to 4096
[  217.799620][ T8624] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  217.893731][ T8623] NILFS error (device loop0): nilfs_dotdot: directory #12 missing '.'
[  217.913281][ T8623] Remounting filesystem read-only
[  217.940398][ T5810] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  217.963082][ T5772] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[  217.977306][ T5772] NILFS (loop0): discard dirty page: offset=0, ino=18
[  217.985845][ T5772] NILFS (loop0): discard dirty block: blocknr=0, size=4096
[  217.997287][ T5772] NILFS (loop0): discard dirty page: offset=0, ino=2
[  218.006661][ T5772] NILFS (loop0): discard dirty block: blocknr=14, size=4096
[  218.023543][ T5772] NILFS (loop0): discard dirty page: offset=0, ino=6
[  218.033463][ T5772] NILFS (loop0): discard dirty block: blocknr=23, size=4096
[  218.043599][ T5772] NILFS (loop0): discard dirty page: offset=4096, ino=6
[  218.053288][ T5772] NILFS (loop0): discard dirty block: blocknr=24, size=4096
[  218.063467][ T5772] NILFS (loop0): discard dirty page: offset=8192, ino=6
[  218.073350][ T5772] NILFS (loop0): discard dirty block: blocknr=25, size=4096
[  218.083155][ T5772] NILFS (loop0): discard dirty page: offset=0, ino=3
[  218.089909][ T5772] NILFS (loop0): discard dirty block: blocknr=28, size=4096
[  218.097872][ T5772] NILFS (loop0): discard dirty page: offset=4096, ino=3
[  218.105369][ T5772] NILFS (loop0): discard dirty block: blocknr=29, size=4096
[  218.114366][ T5772] NILFS (loop0): discard dirty page: offset=270336, ino=3
[  218.117580][ T8620] loop1: detected capacity change from 0 to 32768
[  218.123214][ T5772] NILFS (loop0): discard dirty block: blocknr=0, size=4096
[  218.147197][ T5810] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  218.158483][ T5810] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  218.168659][ T5810] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  218.182490][ T5810] usb 3-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00
[  218.192006][ T5810] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.204090][ T5810] usb 3-1: config 0 descriptor??
[  218.217583][ T8620] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  218.405409][ T8620] XFS (loop1): Ending clean mount
[  218.465561][ T8620] XFS (loop1): Quotacheck needed: Please wait.
[  218.485061][ T8634] loop0: detected capacity change from 0 to 512
[  218.521799][ T8634] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  218.533774][ T8634] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  218.573788][ T8634] EXT4-fs (loop0): 1 truncate cleaned up
[  218.587551][ T8620] XFS (loop1): Quotacheck: Done.
[  218.603288][ T8634] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.646124][ T5810] wacom 0003:056A:0027.0015: ignoring exceeding usage max
[  218.708610][   T28] audit: type=1800 audit(1751029720.999:50): pid=8634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.986" name="bus" dev="loop0" ino=18 res=0 errno=0
[  218.745718][ T5810] wacom 0003:056A:0027.0015: Unknown device_type for 'HID 056a:0027'. Assuming pen.
[  218.758324][ T5770] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  218.798413][ T5810] wacom 0003:056A:0027.0015: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.2-1/input0
[  218.889951][ T5810] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0027.0015/input/input19
[  219.066013][ T5810] usb 3-1: USB disconnect, device number 13
[  219.147297][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.527723][ T8641] loop4: detected capacity change from 0 to 512
[  219.565663][ T8644] tipc: Started in network mode
[  219.570688][ T8644] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[  219.578549][ T8644] tipc: Enabled bearer <eth:macvlan1>, priority 10
[  219.582543][ T8641] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  219.663589][ T8641] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  219.687183][ T8641] System zones: 0-2, 18-18, 34-34
[  219.728249][ T8641] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.770601][ T8641] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.880429][ T5862] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  219.914870][ T6662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.923224][ T8656] netlink: 4 bytes leftover after parsing attributes in process `syz.2.992'.
[  220.081256][ T5862] usb 1-1: Using ep0 maxpacket: 8
[  220.098961][ T5862] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  220.110443][ T5862] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  220.138733][ T8658] loop1: detected capacity change from 0 to 4096
[  220.145686][ T5862] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  220.155715][ T5862] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  220.176051][ T5862] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  220.215425][ T5862] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  220.231092][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.266527][ T8663] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  220.344331][ T8658] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.'
[  220.359884][ T8658] Remounting filesystem read-only
[  220.419629][ T5770] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  220.463896][ T5770] NILFS (loop1): discard dirty page: offset=0, ino=18
[  220.484093][ T5770] NILFS (loop1): discard dirty block: blocknr=0, size=4096
[  220.494002][ T5862] usb 1-1: GET_CAPABILITIES returned 0
[  220.499560][ T5862] usbtmc 1-1:16.0: can't read capabilities
[  220.509133][ T5770] NILFS (loop1): discard dirty page: offset=0, ino=2
[  220.533225][ T5770] NILFS (loop1): discard dirty block: blocknr=14, size=4096
[  220.571366][ T5810] tipc: Node number set to 10463914
[  220.574283][ T5770] NILFS (loop1): discard dirty page: offset=0, ino=6
[  220.593662][ T5770] NILFS (loop1): discard dirty block: blocknr=23, size=4096
[  220.612760][ T5770] NILFS (loop1): discard dirty page: offset=4096, ino=6
[  220.619793][ T5770] NILFS (loop1): discard dirty block: blocknr=24, size=4096
[  220.649014][ T5770] NILFS (loop1): discard dirty page: offset=8192, ino=6
[  220.669325][ T5770] NILFS (loop1): discard dirty block: blocknr=25, size=4096
[  220.681658][ T5770] NILFS (loop1): discard dirty page: offset=0, ino=3
[  220.688420][ T5770] NILFS (loop1): discard dirty block: blocknr=28, size=4096
[  220.720902][ T5770] NILFS (loop1): discard dirty page: offset=4096, ino=3
[  220.727965][ T5770] NILFS (loop1): discard dirty block: blocknr=29, size=4096
[  220.747294][ T5770] NILFS (loop1): discard dirty page: offset=270336, ino=3
[  220.747730][ T5810] usb 1-1: USB disconnect, device number 12
[  220.757434][ T5770] NILFS (loop1): discard dirty block: blocknr=0, size=4096
[  220.978962][ T8662] loop2: detected capacity change from 0 to 32768
[  221.043968][ T8662] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.191194][ T8662] XFS (loop2): Ending clean mount
[  221.204010][ T8662] XFS (loop2): Quotacheck needed: Please wait.
[  221.265910][ T8662] XFS (loop2): Quotacheck: Done.
[  221.461376][ T5769] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.701781][ T5862] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  221.910382][ T5862] usb 2-1: Using ep0 maxpacket: 16
[  221.925054][ T5862] usb 2-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  221.945537][ T5862] usb 2-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  221.970995][ T5862] usb 2-1: Product: syz
[  221.975248][ T5862] usb 2-1: Manufacturer: syz
[  221.979877][ T5862] usb 2-1: SerialNumber: syz
[  222.012033][ T5862] usb 2-1: config 0 descriptor??
[  222.297780][ T5862] usb 2-1: USB disconnect, device number 14
[  222.579175][ T8681] loop2: detected capacity change from 0 to 40427
[  222.600455][ T8681] F2FS-fs (loop2): Wrong NAT boundary, start(2560) end(3584) blocks(83968)
[  222.612446][ T8681] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  222.634862][ T8681] F2FS-fs (loop2): Fix alignment : done, start(4096) end(16896) block(12288)
[  222.666007][ T8681] F2FS-fs (loop2): invalid crc value
[  222.706673][ T8681] F2FS-fs (loop2): Found nat_bits in checkpoint
[  222.849749][ T8681] F2FS-fs (loop2): Start checkpoint disabled!
[  222.859282][ T8681] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  222.900569][ T8681] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  223.272204][ T3461] kworker/u4:8: attempt to access beyond end of device
[  223.272204][ T3461] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  223.286518][ T3461] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  224.049387][ T8698] loop1: detected capacity change from 0 to 64
[  235.928708][ T5777] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  235.949272][ T5777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  235.959027][ T5777] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  235.968317][ T5777] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  235.978467][ T5777] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  235.986080][ T5777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  236.036978][ T8707] lo speed is unknown, defaulting to 1000
[  236.176302][ T3461] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.236665][ T8707] chnl_net:caif_netlink_parms(): no params data found
[  236.292217][ T3461] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.368218][ T3461] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.385095][ T8707] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.394942][ T8707] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.404256][ T8707] bridge_slave_0: entered allmulticast mode
[  236.411852][ T8707] bridge_slave_0: entered promiscuous mode
[  236.421281][ T8707] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.428467][ T8707] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.435842][ T8707] bridge_slave_1: entered allmulticast mode
[  236.445571][ T8707] bridge_slave_1: entered promiscuous mode
[  236.470761][ T3461] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.514158][ T8707] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  236.528294][ T8707] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  236.587422][ T8717] loop1: detected capacity change from 0 to 256
[  236.626577][ T8707] team0: Port device team_slave_0 added
[  236.644128][ T8721] loop2: detected capacity change from 0 to 256
[  236.669170][ T8717] FAT-fs (loop1): Directory bread(block 64) failed
[  236.672190][ T8707] team0: Port device team_slave_1 added
[  236.690891][ T8717] FAT-fs (loop1): Directory bread(block 65) failed
[  236.698131][ T8717] FAT-fs (loop1): Directory bread(block 66) failed
[  236.756362][ T8717] FAT-fs (loop1): Directory bread(block 67) failed
[  236.790892][ T8717] FAT-fs (loop1): Directory bread(block 68) failed
[  236.800760][ T8717] FAT-fs (loop1): Directory bread(block 69) failed
[  236.818863][ T8717] FAT-fs (loop1): Directory bread(block 70) failed
[  236.825929][ T8721] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  236.855493][ T8717] FAT-fs (loop1): Directory bread(block 71) failed
[  236.867649][ T8717] FAT-fs (loop1): Directory bread(block 72) failed
[  236.870468][ T8707] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.875153][ T8717] FAT-fs (loop1): Directory bread(block 73) failed
[  236.930060][ T8707] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.024445][ T8707] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  237.069348][ T8707] batman_adv: batadv0: Adding interface: batadv_slave_1
[  237.100253][ T8707] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.159247][ T8707] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.306390][ T8725] loop2: detected capacity change from 0 to 256
[  237.329810][ T8725] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  237.518459][ T8707] hsr_slave_0: entered promiscuous mode
[  237.541706][ T8707] hsr_slave_1: entered promiscuous mode
[  237.563339][ T8707] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  237.589187][ T8707] Cannot create hsr debugfs directory
[  237.850527][ T8720] loop0: detected capacity change from 0 to 40427
[  237.892219][ T8720] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(3584) blocks(83968)
[  237.910393][ T8720] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  237.931038][ T8720] F2FS-fs (loop0): Fix alignment : done, start(4096) end(16896) block(12288)
[  237.996004][ T8720] F2FS-fs (loop0): invalid crc value
[  238.004424][ T8720] F2FS-fs (loop0): Found nat_bits in checkpoint
[  238.042149][   T50] Bluetooth: hci3: command tx timeout
[  238.133808][ T8720] F2FS-fs (loop0): Start checkpoint disabled!
[  238.182342][ T8720] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  238.210336][ T8720] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  238.498972][ T8726] loop1: detected capacity change from 0 to 40427
[  238.577450][ T8726] F2FS-fs (loop1): invalid crc value
[  238.607220][ T8726] F2FS-fs (loop1): Found nat_bits in checkpoint
[  238.720601][   T58] kworker/u4:4: attempt to access beyond end of device
[  238.720601][   T58] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  238.778195][   T58] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  238.823891][ T8726] F2FS-fs (loop1): Start checkpoint disabled!
[  238.910535][ T8726] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  239.255454][ T8707] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  239.270326][ T5810] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  239.318759][ T8707] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  239.381780][ T8707] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  239.406638][ T8707] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  239.475392][ T5810] usb 3-1: Using ep0 maxpacket: 16
[  239.491720][ T5810] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  239.518598][ T5810] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  239.540663][ T5810] usb 3-1: Product: syz
[  239.552037][ T5810] usb 3-1: Manufacturer: syz
[  239.560837][ T5810] usb 3-1: SerialNumber: syz
[  239.571328][ T5810] usb 3-1: config 0 descriptor??
[  239.854241][ T5738] usb 3-1: USB disconnect, device number 14
[  240.040615][ T5810] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  240.099164][ T3461] hsr_slave_0: left promiscuous mode
[  240.116164][ T3461] hsr_slave_1: left promiscuous mode
[  240.122357][   T50] Bluetooth: hci3: command tx timeout
[  240.133676][ T3461] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  240.148785][ T3461] batman_adv: batadv0: Removing interface: batadv_slave_0
[  240.157290][ T3461] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  240.170364][ T3461] batman_adv: batadv0: Removing interface: batadv_slave_1
[  240.195443][ T3461] bridge_slave_1: left allmulticast mode
[  240.201549][ T3461] bridge_slave_1: left promiscuous mode
[  240.207422][ T3461] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.217956][ T3461] bridge_slave_0: left allmulticast mode
[  240.224130][ T3461] bridge_slave_0: left promiscuous mode
[  240.230057][ T3461] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.250446][ T5810] usb 1-1: Using ep0 maxpacket: 8
[  240.262440][ T5810] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.288096][ T5810] usb 1-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[  240.310349][ T5810] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.321637][ T3461] veth1_macvtap: left promiscuous mode
[  240.327531][ T3461] veth0_macvtap: left promiscuous mode
[  240.335831][ T5810] usb 1-1: config 0 descriptor??
[  240.346566][ T3461] veth1_vlan: left promiscuous mode
[  240.356727][ T3461] veth0_vlan: left promiscuous mode
[  240.571894][ T8780] loop2: detected capacity change from 0 to 256
[  240.660546][ T8780] FAT-fs (loop2): Directory bread(block 64) failed
[  240.685784][ T8780] FAT-fs (loop2): Directory bread(block 65) failed
[  240.724942][ T8780] FAT-fs (loop2): Directory bread(block 66) failed
[  240.753500][ T8780] FAT-fs (loop2): Directory bread(block 67) failed
[  240.770433][ T8780] FAT-fs (loop2): Directory bread(block 68) failed
[  240.777121][ T8780] FAT-fs (loop2): Directory bread(block 69) failed
[  240.804091][ T5810] lenovo 0003:17EF:6062.0016: item fetching failed at offset 4/5
[  240.826844][ T8780] FAT-fs (loop2): Directory bread(block 70) failed
[  240.846285][ T5810] lenovo 0003:17EF:6062.0016: hid_parse failed
[  240.861410][ T8780] FAT-fs (loop2): Directory bread(block 71) failed
[  240.868130][ T8780] FAT-fs (loop2): Directory bread(block 72) failed
[  240.889236][ T8784] loop1: detected capacity change from 0 to 512
[  240.894596][ T5810] lenovo: probe of 0003:17EF:6062.0016 failed with error -22
[  240.916248][ T8780] FAT-fs (loop2): Directory bread(block 73) failed
[  241.010109][ T8784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.051163][ T8784] ext4 filesystem being mounted at /267/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  241.108114][ T5831] usb 1-1: USB disconnect, device number 13
[  241.147530][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.606511][ T5810] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  241.813290][ T5810] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  241.832049][ T5810] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  241.846594][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.872088][ T5810] usb 2-1: config 0 descriptor??
[  241.885045][ T3461] team0 (unregistering): Port device team_slave_1 removed
[  241.888283][ T5810] pwc: Askey VC010 type 2 USB webcam detected.
[  241.963800][ T3461] team0 (unregistering): Port device team_slave_0 removed
[  242.054838][ T3461] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  242.149802][ T3461] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  242.201465][   T50] Bluetooth: hci3: command tx timeout
[  242.519433][ T5810] pwc: recv_control_msg error -71 req 02 val 2700
[  242.534507][ T5810] pwc: recv_control_msg error -71 req 02 val 2c00
[  242.542607][ T5810] pwc: recv_control_msg error -71 req 04 val 1000
[  242.549730][ T5810] pwc: recv_control_msg error -71 req 04 val 1300
[  242.557900][ T5810] pwc: recv_control_msg error -71 req 04 val 1400
[  242.569679][ T5810] pwc: recv_control_msg error -71 req 02 val 2000
[  242.580552][ T5810] pwc: recv_control_msg error -71 req 02 val 2100
[  242.587776][ T5810] pwc: recv_control_msg error -71 req 04 val 1500
[  242.597109][ T5810] pwc: recv_control_msg error -71 req 02 val 2500
[  242.605963][ T5810] pwc: recv_control_msg error -71 req 02 val 2400
[  242.613301][ T5810] pwc: recv_control_msg error -71 req 02 val 2600
[  242.621511][ T5810] pwc: recv_control_msg error -71 req 02 val 2900
[  242.628435][ T5810] pwc: recv_control_msg error -71 req 02 val 2800
[  242.636131][ T5810] pwc: recv_control_msg error -71 req 04 val 1100
[  242.645738][ T5810] pwc: recv_control_msg error -71 req 04 val 1200
[  242.679041][ T5810] pwc: Registered as video103.
[  242.688539][ T5810] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input22
[  242.740569][ T5810] usb 2-1: USB disconnect, device number 15
[  243.106578][ T3461] bond0 (unregistering): Released all slaves
[  243.436520][ T8707] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.529270][ T8707] 8021q: adding VLAN 0 to HW filter on device team0
[  243.563799][ T3518] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.563907][ T3518] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.567820][ T3518] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.567932][ T3518] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.283390][   T50] Bluetooth: hci3: command tx timeout
[  244.328115][ T8707] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.531297][ T5738] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  244.688777][ T8825] loop1: detected capacity change from 0 to 32768
[  244.726925][ T8825] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.1037 (8825)
[  244.750694][ T5738] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  244.773609][ T5738] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  244.799576][ T8825] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  244.812907][ T5738] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.835030][ T8825] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  244.845860][ T5738] usb 1-1: config 0 descriptor??
[  244.860992][ T8825] BTRFS info (device loop1): enabling auto defrag
[  244.867513][ T8825] BTRFS info (device loop1): doing ref verification
[  244.883273][ T5738] pwc: Askey VC010 type 2 USB webcam detected.
[  244.896885][ T8825] BTRFS info (device loop1): use no compression
[  244.910548][ T8825] BTRFS info (device loop1): force clearing of disk cache
[  244.917761][ T8825] BTRFS info (device loop1): setting nodatacow, compression disabled
[  244.946108][ T8825] BTRFS info (device loop1): disabling free space tree
[  245.036897][ T8707] veth0_vlan: entered promiscuous mode
[  245.055633][ T8707] veth1_vlan: entered promiscuous mode
[  245.127344][ T8825] BTRFS info (device loop1): enabling ssd optimizations
[  245.154682][ T8825] BTRFS info (device loop1): auto enabling async discard
[  245.172040][ T8707] veth0_macvtap: entered promiscuous mode
[  245.196949][ T8825] BTRFS info (device loop1): rebuilding free space tree
[  245.246346][ T8825] BTRFS info (device loop1): disabling free space tree
[  245.259791][ T8825] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  245.273538][ T8707] veth1_macvtap: entered promiscuous mode
[  245.288436][ T8825] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  245.329888][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.356362][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.368755][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.379615][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.394209][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.405228][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.442544][ T8707] batman_adv: batadv0: Interface activated: batadv_slave_0
[  245.474470][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.492909][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.500331][ T5738] pwc: recv_control_msg error -71 req 02 val 2700
[  245.503143][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.524901][ T5738] pwc: recv_control_msg error -71 req 02 val 2c00
[  245.528460][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.538895][ T5738] pwc: recv_control_msg error -71 req 04 val 1000
[  245.549316][ T5738] pwc: recv_control_msg error -71 req 04 val 1300
[  245.570668][ T5738] pwc: recv_control_msg error -71 req 04 val 1400
[  245.577555][ T8707] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.580308][ T5738] pwc: recv_control_msg error -71 req 02 val 2000
[  245.610656][ T5738] pwc: recv_control_msg error -71 req 02 val 2100
[  245.619087][ T8707] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.628369][ T5738] pwc: recv_control_msg error -71 req 04 val 1500
[  245.641461][ T5738] pwc: recv_control_msg error -71 req 02 val 2500
[  245.652227][ T8707] batman_adv: batadv0: Interface activated: batadv_slave_1
[  245.657586][ T5738] pwc: recv_control_msg error -71 req 02 val 2400
[  245.690991][ T8707] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.699364][ T5738] pwc: recv_control_msg error -71 req 02 val 2600
[  245.699748][ T8707] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.717884][ T5738] pwc: recv_control_msg error -71 req 02 val 2900
[  245.724006][ T8825] BTRFS warning (device loop1): failed to trim 1 device(s), last error -512
[  245.730335][ T5738] pwc: recv_control_msg error -71 req 02 val 2800
[  245.750636][ T5738] pwc: recv_control_msg error -71 req 04 val 1100
[  245.760055][ T5738] pwc: recv_control_msg error -71 req 04 val 1200
[  245.770926][ T8707] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.779702][ T8707] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.790760][ T5738] pwc: Registered as video103.
[  245.834720][ T5738] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input23
[  245.858617][ T5770] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  245.890969][ T5738] usb 1-1: USB disconnect, device number 14
[  246.271197][ T1079] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.311885][ T1079] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.482680][ T1079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.509580][ T1079] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.828578][ T8887] netlink: 'syz.2.1046': attribute type 4 has an invalid length.
[  246.877134][ T8887] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1046'.
[  247.981226][ T8884] loop1: detected capacity change from 0 to 40427
[  248.024149][ T8892] loop5: detected capacity change from 0 to 32768
[  248.046941][ T8884] F2FS-fs (loop1): invalid crc value
[  248.118533][ T8884] F2FS-fs (loop1): Found nat_bits in checkpoint
[  248.119037][ T8892] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  248.202243][ T8884] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  248.309108][ T8901] loop0: detected capacity change from 0 to 32768
[  248.364295][ T8901] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1049 (8901)
[  248.474710][ T8901] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  248.492968][ T8892] XFS (loop5): Ending clean mount
[  248.544935][ T8901] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  248.572093][ T8892] XFS (loop5): Quotacheck needed: Please wait.
[  248.592503][ T8901] BTRFS info (device loop0): enabling auto defrag
[  248.599037][ T8901] BTRFS info (device loop0): doing ref verification
[  248.650343][ T8901] BTRFS info (device loop0): use no compression
[  248.676453][ T8901] BTRFS info (device loop0): force clearing of disk cache
[  248.720669][ T8892] XFS (loop5): Quotacheck: Done.
[  248.726516][ T8901] BTRFS info (device loop0): setting nodatacow, compression disabled
[  248.765084][ T8901] BTRFS info (device loop0): disabling free space tree
[  248.962720][ T8707] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  248.990891][ T8901] BTRFS info (device loop0): enabling ssd optimizations
[  249.022317][ T8901] BTRFS info (device loop0): auto enabling async discard
[  249.074962][ T8901] BTRFS info (device loop0): rebuilding free space tree
[  249.187143][ T8901] BTRFS info (device loop0): disabling free space tree
[  249.194321][ T8901] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  249.213982][ T8901] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  249.759858][ T8901] BTRFS warning (device loop0): failed to trim 1 device(s), last error -512
[  249.877629][ T8927] loop2: detected capacity change from 0 to 32768
[  249.918564][ T5772] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  249.939512][ T8927] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.1052 (8927)
[  250.036567][ T8927] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  250.095729][ T8927] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  250.139700][ T8927] BTRFS info (device loop2): using free space tree
[  250.361097][ T8927] BTRFS info (device loop2): enabling ssd optimizations
[  250.368170][ T8927] BTRFS info (device loop2): auto enabling async discard
[  250.667840][ T5769] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  250.842733][ T8992] sp0: Synchronizing with TNC
[  251.605473][ T9013] usb usb8: usbfs: process 9013 (syz.1.1066) did not claim interface 0 before use
[  252.549997][ T8999] loop2: detected capacity change from 0 to 40427
[  252.605467][ T8999] F2FS-fs (loop2): invalid crc value
[  252.647342][ T8999] F2FS-fs (loop2): Found nat_bits in checkpoint
[  252.684985][ T9049] usb usb8: usbfs: process 9049 (syz.5.1079) did not claim interface 0 before use
[  252.878160][ T8999] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  252.954887][   T28] audit: type=1326 audit(1751029755.249:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.026819][   T28] audit: type=1326 audit(1751029755.249:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.122476][   T28] audit: type=1326 audit(1751029755.279:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.206541][ T9062] loop1: detected capacity change from 0 to 1024
[  253.225756][   T28] audit: type=1326 audit(1751029755.279:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.320601][   T28] audit: type=1326 audit(1751029755.279:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.361101][ T9062] hfsplus: bad catalog entry type
[  253.426616][   T28] audit: type=1326 audit(252.946:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9056 comm="syz.0.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1a98e929 code=0x7ffc0000
[  253.468436][ T1124] hfsplus: b-tree write err: -5, ino 4
[  253.624203][ T9076] loop5: detected capacity change from 0 to 64
[  254.549818][ T9072] loop0: detected capacity change from 0 to 32768
[  254.614459][ T9072] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  254.948271][ T9072] XFS (loop0): Ending clean mount
[  255.197705][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  255.248421][ T9117] loop2: detected capacity change from 0 to 164
[  255.334319][ T9117] ISOFS: unable to read i-node block
[  255.339747][ T9117] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  255.408108][ T9101] loop5: detected capacity change from 0 to 32768
[  255.520111][ T9101] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 scanned by syz.5.1092 (9101)
[  255.568361][ T9101] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  255.610575][ T9101] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  255.670400][ T9101] BTRFS info (device loop5): using free space tree
[  255.860442][ T9101] BTRFS info (device loop5): enabling ssd optimizations
[  255.884544][ T9101] BTRFS info (device loop5): auto enabling async discard
[  256.048013][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  256.054706][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  256.228510][ T9152] loop1: detected capacity change from 0 to 164
[  256.344429][ T8707] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  256.730337][ T5830] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  256.821030][ T9168] loop1: detected capacity change from 0 to 1024
[  256.940271][ T5830] usb 1-1: Using ep0 maxpacket: 32
[  256.952657][ T5830] usb 1-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  256.990253][ T5830] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.028674][ T5830] usb 1-1: Product: syz
[  257.037205][ T5830] usb 1-1: Manufacturer: syz
[  257.053383][ T5830] usb 1-1: SerialNumber: syz
[  257.071494][ T5830] usb 1-1: config 0 descriptor??
[  257.093799][ T5830] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  257.348603][ T3518] hfsplus: b-tree write err: -5, ino 4
[  257.503404][ T5830] gspca_stk1135: reg_w 0x0 err -71
[  257.509648][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.527354][ T9173] overlayfs: missing 'lowerdir'
[  257.533997][ T5830] gspca_stk1135: Sensor write failed
[  257.539378][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.546968][ T5830] gspca_stk1135: Sensor write failed
[  257.561627][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.568042][ T5830] gspca_stk1135: Sensor read failed
[  257.573454][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.579887][ T5830] gspca_stk1135: Sensor read failed
[  257.605368][ T5830] gspca_stk1135: Detected sensor type unknown (0x0)
[  257.617518][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.650890][ T5830] gspca_stk1135: Sensor read failed
[  257.656234][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.710676][ T5830] gspca_stk1135: Sensor read failed
[  257.715989][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.740542][ T5830] gspca_stk1135: Sensor write failed
[  257.755712][ T5830] gspca_stk1135: serial bus timeout: status=0x00
[  257.778817][ T5830] gspca_stk1135: Sensor write failed
[  257.805235][ T5830] stk1135: probe of 1-1:0.0 failed with error -71
[  257.829230][ T5830] usb 1-1: USB disconnect, device number 15
[  258.251019][ T9195] loop2: detected capacity change from 0 to 164
[  258.274836][ T9196] loop5: detected capacity change from 0 to 256
[  258.325274][ T9196] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  258.384694][ T9196] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  258.417645][ T9196] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  258.777793][ T9208] (null): rxe_set_mtu: Set mtu to 1024
[  258.842491][ T9204] loop1: detected capacity change from 0 to 8192
[  258.902839][ T9204]  loop1: p3 p4 < >
[  258.907049][ T9204] loop1: p3 start 18548 is beyond EOD, truncated
[  259.285170][ T9208] infiniband syz0: set active
[  259.297628][ T9208] infiniband syz0: added bond_slave_1
[  259.309286][ T9159] udevd[9159]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  259.376711][ T9202] loop2: detected capacity change from 0 to 32768
[  259.442082][ T9202] JBD2: Ignoring recovery information on journal
[  259.506840][ T9208] RDS/IB: syz0: added
[  259.557400][ T9202] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  259.562196][ T9208] smc: adding ib device syz0 with port count 1
[  259.614314][ T9208] smc:    ib device syz0 port 1 has pnetid 
[  259.728820][ T9210] loop5: detected capacity change from 0 to 40427
[  259.766126][ T9210] F2FS-fs (loop5): invalid crc value
[  259.802703][ T9210] F2FS-fs (loop5): Found nat_bits in checkpoint
[  259.870998][ T5769] ocfs2: Unmounting device (7,2) on (node local)
[  260.003727][ T9210] F2FS-fs (loop5): Start checkpoint disabled!
[  260.043487][ T9210] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  260.447202][ T3518] kworker/u4:10: attempt to access beyond end of device
[  260.447202][ T3518] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  260.464918][ T3518] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  260.859177][ T9234] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1134'.
[  261.399283][ T9251] loop2: detected capacity change from 0 to 256
[  261.436507][ T9251] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  261.476107][ T9251] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  261.557655][ T9251] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  262.409334][ T9253] loop1: detected capacity change from 0 to 40427
[  262.459202][ T9253] F2FS-fs (loop1): Invalid SB checksum offset: 0
[  262.478889][ T9253] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  262.516269][ T9253] F2FS-fs (loop1): invalid crc value
[  262.707229][ T9253] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  262.719318][ T9253] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  262.815191][ T9269] loop5: detected capacity change from 0 to 32768
[  262.897659][ T9269] JBD2: Ignoring recovery information on journal
[  262.910792][ T5770] syz-executor: attempt to access beyond end of device
[  262.910792][ T5770] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  262.967539][ T5770] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  262.998063][ T9269] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  263.237438][ T8707] ocfs2: Unmounting device (7,5) on (node local)
[  263.343874][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1151'.
[  263.856751][ T9310] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  264.077982][ T9320] loop2: detected capacity change from 0 to 512
[  264.171818][ T9320] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.303367][ T9329] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1165'.
[  264.455601][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.904173][ T9341] loop2: detected capacity change from 0 to 512
[  264.970379][ T9341] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  265.077689][ T9341] EXT4-fs (loop2): 1 truncate cleaned up
[  265.089994][ T9319] loop0: detected capacity change from 0 to 40427
[  265.135033][ T9346] loop1: detected capacity change from 0 to 512
[  265.161985][ T9341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.230811][ T9346] EXT4-fs: Ignoring removed bh option
[  265.240367][ T9319] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  265.246777][ T9319] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  265.272418][ T9346] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  265.306216][ T9319] F2FS-fs (loop0): invalid crc value
[  265.334678][ T9346] EXT4-fs (loop1): 1 truncate cleaned up
[  265.371638][ T9356] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  265.382969][ T9346] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.518695][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.539321][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.764605][ T9319] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  265.802636][ T9319] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  265.847362][ T9368] loop1: detected capacity change from 0 to 512
[  265.951988][ T9368] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1184: bad orphan inode 11862016
[  266.010079][ T9372] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1186'.
[  266.051543][ T9368] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  266.080516][ T9372] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1186'.
[  266.173019][ T5772] syz-executor: attempt to access beyond end of device
[  266.173019][ T5772] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  266.209026][ T5772] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  266.349546][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  266.444013][ T9385] loop5: detected capacity change from 0 to 1024
[  266.471582][ T9385] EXT4-fs: Ignoring removed orlov option
[  266.477376][ T9385] EXT4-fs: Ignoring removed nomblk_io_submit option
[  266.526890][ T9385] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.753737][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.884714][ T9395] loop1: detected capacity change from 0 to 2048
[  266.901568][ T9395] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  266.953531][ T9396] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  267.494297][ T9412] loop2: detected capacity change from 0 to 512
[  267.538118][ T9412] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1196: bad orphan inode 11862016
[  267.625944][ T9412] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  267.799109][ T9420] loop0: detected capacity change from 0 to 2048
[  267.850436][ T9420] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  267.858672][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  267.912314][ T9421] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  268.296225][ T9406] loop5: detected capacity change from 0 to 32768
[  268.338184][ T9418] loop1: detected capacity change from 0 to 32768
[  268.392902][ T9418] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  268.594382][ T9418] XFS (loop1): Ending clean mount
[  268.626212][ T9418] XFS (loop1): Quotacheck needed: Please wait.
[  268.744578][ T9418] XFS (loop1): Quotacheck: Done.
[  268.947841][ T9450] loop2: detected capacity change from 0 to 2048
[  269.049258][ T5770] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  269.072419][ T9455] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  269.190638][ T9457] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1205'.
[  269.223388][   T28] audit: type=1800 audit(269.176:57): pid=9450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1212" name="file1" dev="loop2" ino=15 res=0 errno=0
[  270.173429][ T9485] loop2: detected capacity change from 0 to 2048
[  270.248338][ T9485] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  270.326729][ T9484] loop5: detected capacity change from 0 to 4096
[  270.699147][ T9498] loop2: detected capacity change from 0 to 1764
[  270.789873][ T9159] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  270.841654][ T9504] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1218'.
[  271.080502][   T27] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  271.284907][   T27] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  271.319435][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.351660][   T27] usb 2-1: Product: syz
[  271.355925][   T27] usb 2-1: Manufacturer: syz
[  271.390577][   T27] usb 2-1: SerialNumber: syz
[  271.414804][   T27] r8152-cfgselector 2-1: config 0 descriptor??
[  271.638317][   T28] audit: type=1326 audit(271.586:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9526 comm="syz.2.1229" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb906d8e929 code=0x0
[  271.673483][   T27] r8152-cfgselector 2-1: Needed 1 retries to read version
[  271.700789][   T27] usbip-host 2-1: 2-1 is not in match_busid table... skip!
[  271.915893][ T5862] usb 2-1: USB disconnect, device number 16
[  272.094412][ T9510] loop0: detected capacity change from 0 to 32768
[  272.140661][ T9510] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.1232 (9510)
[  272.215179][ T9510] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  272.245321][ T9510] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  272.274772][ T9510] BTRFS info (device loop0): setting nodatasum
[  272.308506][ T9510] BTRFS info (device loop0): force zlib compression, level 3
[  272.326340][ T9510] BTRFS info (device loop0): metadata ratio 1
[  272.336699][ T9510] BTRFS info (device loop0): enabling ssd optimizations
[  272.348833][ T9510] BTRFS info (device loop0): allowing degraded mounts
[  272.359813][ T9510] BTRFS info (device loop0): using free space tree
[  272.606132][ T5772] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  273.284345][   T27] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  273.342860][ T9579] loop2: detected capacity change from 0 to 512
[  273.402459][ T9583] smc: net device lo applied user defined pnetid SYZ1
[  273.417107][ T9579] EXT4-fs (loop2): orphan cleanup on readonly fs
[  273.454077][ T9581] netlink: 'syz.0.1240': attribute type 3 has an invalid length.
[  273.481515][ T9579] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1241: bad orphan inode 13
[  273.491864][   T27] usb 2-1: Using ep0 maxpacket: 8
[  273.505117][   T27] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  273.554026][ T9579] ext4_test_bit(bit=12, block=18) = 1
[  273.559501][ T9579] is_bad_inode(inode)=0
[  273.575925][   T27] usb 2-1: New USB device found, idVendor=056a, idProduct=003f, bcdDevice= 0.00
[  273.586604][ T9587] vivid-001: disconnect
[  273.592253][ T9579] NEXT_ORPHAN(inode)=2130706432
[  273.597306][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.609064][ T9585] vivid-001: reconnect
[  273.609111][ T9579] max_ino=32
[  273.609125][ T9579] i_nlink=1
[  273.610841][ T9579] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  273.649957][   T27] usb 2-1: config 0 descriptor??
[  273.740313][ T9579] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1241: bg 0: block 248: padding at end of block bitmap is not set
[  273.829803][ T9592] loop5: detected capacity change from 0 to 256
[  273.873847][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.122945][   T27] wacom 0003:056A:003F.0017: unknown main item tag 0x0
[  274.129935][   T27] wacom 0003:056A:003F.0017: unknown main item tag 0x0
[  274.186263][   T27] wacom 0003:056A:003F.0017: unknown main item tag 0x0
[  274.216722][   T27] wacom 0003:056A:003F.0017: unknown main item tag 0x0
[  274.242875][   T27] wacom 0003:056A:003F.0017: unknown main item tag 0x0
[  274.280930][   T27] wacom 0003:056A:003F.0017: hidraw0: USB HID v0.07 Device [HID 056a:003f] on usb-dummy_hcd.1-1/input0
[  274.328113][   T27] usb 2-1: USB disconnect, device number 17
[  274.571037][ T9605] fido_id[9605]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  274.760617][ T5830] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  274.858624][ T9600] loop2: detected capacity change from 0 to 32768
[  274.879044][ T9600] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.1246 (9600)
[  274.932070][ T9600] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  274.954806][ T5830] usb 6-1: Using ep0 maxpacket: 16
[  274.962163][ T9600] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  274.990442][ T5830] usb 6-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  275.005391][ T9600] BTRFS info (device loop2): force zlib compression, level 3
[  275.014170][ T5830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  275.027493][ T9600] BTRFS info (device loop2): force clearing of disk cache
[  275.036915][ T5830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  275.047299][ T9600] BTRFS info (device loop2): setting nodatasum
[  275.060381][ T9600] BTRFS info (device loop2): allowing degraded mounts
[  275.067338][ T9600] BTRFS info (device loop2): enabling disk space caching
[  275.074846][ T5830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  275.108787][ T5830] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  275.125415][ T9600] BTRFS info (device loop2): disk space caching is enabled
[  275.147565][ T5830] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  275.164791][ T9625] loop0: detected capacity change from 0 to 128
[  275.165518][ T5830] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  275.179939][ T5830] usb 6-1: SerialNumber: syz
[  275.186149][ T9625] EXT4-fs: Ignoring removed mblk_io_submit option
[  275.204276][ T9632] loop1: detected capacity change from 0 to 1024
[  275.239942][ T9609] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  275.254762][ T5830] cdc_acm 6-1:1.0: Control and data interfaces are not separated!
[  275.272904][ T5830] cdc_acm: probe of 6-1:1.0 failed with error -12
[  275.298045][ T9625] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  275.325587][ T9632] hfsplus: walked past end of dir
[  275.390454][ T9600] BTRFS info (device loop2): auto enabling async discard
[  275.423702][ T9600] BTRFS info (device loop2): rebuilding free space tree
[  275.439287][ T9600] BTRFS info (device loop2): disabling free space tree
[  275.446688][ T9625] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #2: comm syz.0.1259: No space for directory leaf checksum. Please run e2fsck -D.
[  275.446762][ T9625] EXT4-fs error (device loop0): __ext4_find_entry:1696: inode #2: comm syz.0.1259: checksumming directory block 0
[  275.483020][ T5810] usb 6-1: USB disconnect, device number 2
[  275.496153][ T9600] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  275.506413][ T9600] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  275.678957][ T5772] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  275.824415][ T9600] BTRFS info (device loop2): balance: start -d -m
[  275.900481][ T9600] BTRFS info (device loop2): relocating block group 6881280 flags data|metadata
[  276.289183][ T9600] BTRFS info (device loop2): balance: canceled
[  276.358825][ T9663] loop0: detected capacity change from 0 to 1024
[  276.422317][ T5769] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  276.492375][   T28] audit: type=1800 audit(276.436:59): pid=9663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1257" name="file1" dev="loop0" ino=20 res=0 errno=0
[  276.532586][ T9663] hfsplus: request for non-existent node 16777216 in B*Tree
[  276.580337][ T9663] hfsplus: request for non-existent node 16777216 in B*Tree
[  277.382510][ T9685] xt_CT: No such helper "syz1"
[  277.565389][ T9692] siw: device registration error -23
[  277.591082][ T9693] loop5: detected capacity change from 0 to 764
[  277.644458][ T9693] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  277.856091][ T9697] loop0: detected capacity change from 0 to 1024
[  277.913103][ T9671] loop1: detected capacity change from 0 to 32768
[  278.017051][ T9671] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  278.107854][ T9671] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  278.114185][ T9702] loop5: detected capacity change from 0 to 4096
[  278.290833][ T9709] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  278.315149][ T9675] loop2: detected capacity change from 0 to 32768
[  278.331115][ T1079] hfsplus: b-tree write err: -5, ino 4
[  278.340632][ T9675] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.1260 (9675)
[  278.359004][ T5770] ocfs2: Unmounting device (7,1) on (node local)
[  278.365113][ T9675] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  278.408502][ T9675] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  278.437499][ T9675] BTRFS info (device loop2): using free space tree
[  278.499018][ T9702] NILFS (loop5): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  278.548824][ T9702] NILFS error (device loop5): nilfs_bmap_truncate: broken bmap (inode number=12)
[  278.592005][ T9702] Remounting filesystem read-only
[  278.604624][ T9702] NILFS (loop5): error -5 truncating bmap (ino=12)
[  278.727686][ T9675] BTRFS info (device loop2): enabling ssd optimizations
[  278.750786][ T9675] BTRFS info (device loop2): auto enabling async discard
[  278.828038][ T8707] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer
[  278.851558][ T8707] NILFS (loop5): discard dirty page: offset=0, ino=2
[  278.858347][ T8707] NILFS (loop5): discard dirty block: blocknr=14, size=4096
[  278.897157][ T8707] NILFS (loop5): discard dirty page: offset=0, ino=6
[  278.909497][ T8707] NILFS (loop5): discard dirty block: blocknr=23, size=4096
[  278.938327][ T8707] NILFS (loop5): discard dirty page: offset=4096, ino=6
[  278.965966][ T8707] NILFS (loop5): discard dirty block: blocknr=24, size=4096
[  278.983470][ T8707] NILFS (loop5): discard dirty page: offset=8192, ino=6
[  279.009963][ T8707] NILFS (loop5): discard dirty block: blocknr=25, size=4096
[  279.177226][ T5769] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  279.547379][ T9159] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 10 /dev/loop2 scanned by udevd (9159)
[  280.096932][ T9764] loop5: detected capacity change from 0 to 128
[  280.621803][ T9779] overlayfs: missing 'lowerdir'
[  280.660450][   T27] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  280.725128][ T9781] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1294'.
[  280.871740][   T27] usb 1-1: Using ep0 maxpacket: 16
[  280.881855][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.886491][ T9775] loop5: detected capacity change from 0 to 32768
[  280.903771][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.906510][ T9775] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.1291 (9775)
[  280.920310][   T27] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  280.952649][   T27] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  280.967915][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.985168][ T9775] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  281.007785][ T9775] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  281.013199][   T27] usb 1-1: config 0 descriptor??
[  281.018544][ T9775] BTRFS info (device loop5): force zlib compression, level 3
[  281.029749][ T9775] BTRFS info (device loop5): force clearing of disk cache
[  281.041948][ T9775] BTRFS info (device loop5): setting nodatasum
[  281.053023][ T9775] BTRFS info (device loop5): allowing degraded mounts
[  281.088178][ T9775] BTRFS info (device loop5): enabling disk space caching
[  281.097906][ T9785] loop1: detected capacity change from 0 to 128
[  281.106146][ T9785] EXT4-fs: Ignoring removed mblk_io_submit option
[  281.115347][ T9775] BTRFS info (device loop5): disk space caching is enabled
[  281.152060][ T9785] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  281.221466][ T9785] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:406: inode #2: comm syz.1.1304: No space for directory leaf checksum. Please run e2fsck -D.
[  281.252678][ T9785] EXT4-fs error (device loop1): __ext4_find_entry:1696: inode #2: comm syz.1.1304: checksumming directory block 0
[  281.307609][ T9775] BTRFS info (device loop5): auto enabling async discard
[  281.322439][ T9775] BTRFS info (device loop5): rebuilding free space tree
[  281.353139][ T9775] BTRFS info (device loop5): disabling free space tree
[  281.380419][ T9775] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  281.408782][ T9775] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  281.423384][ T5770] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  281.516526][   T27] microsoft 0003:045E:07DA.0018: No inputs registered, leaving
[  281.570578][   T27] microsoft 0003:045E:07DA.0018: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  281.622752][   T27] microsoft 0003:045E:07DA.0018: no inputs found
[  281.629180][   T27] microsoft 0003:045E:07DA.0018: could not initialize ff, continuing anyway
[  281.685055][ T9775] BTRFS info (device loop5): balance: start -d -m
[  281.701282][ T9775] BTRFS info (device loop5): relocating block group 6881280 flags data|metadata
[  281.776557][ T9811] loop2: detected capacity change from 0 to 1024
[  281.805567][ T5862] usb 1-1: USB disconnect, device number 16
[  281.817567][ T9775] BTRFS info (device loop5): balance: canceled
[  281.921264][ T9811] hfsplus: walked past end of dir
[  281.984084][ T8707] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  282.408298][ T9823] loop2: detected capacity change from 0 to 1764
[  282.811152][ T9836] loop1: detected capacity change from 0 to 1024
[  282.877635][   T28] audit: type=1800 audit(282.826:60): pid=9836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1311" name="file1" dev="loop1" ino=20 res=0 errno=0
[  282.897957][ T9836] hfsplus: request for non-existent node 16777216 in B*Tree
[  282.915911][ T9836] hfsplus: request for non-existent node 16777216 in B*Tree
[  283.060726][ T5810] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  283.150081][ T9843] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1323'.
[  283.174843][ T9845] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1315'.
[  283.270444][ T5810] usb 3-1: Using ep0 maxpacket: 16
[  283.296449][ T5810] usb 3-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  283.320246][ T5810] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  283.341293][ T5810] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  283.366979][ T5810] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  283.400567][ T5810] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  283.442204][ T5810] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  283.460015][ T5810] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  283.468941][ T9852] overlayfs: missing 'lowerdir'
[  283.474617][ T5810] usb 3-1: SerialNumber: syz
[  283.495016][ T9833] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  283.520861][ T5810] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  283.540234][ T5810] cdc_acm: probe of 3-1:1.0 failed with error -12
[  283.548317][ T9853] loop1: detected capacity change from 0 to 4096
[  283.638994][ T9858] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  283.791345][ T5810] usb 3-1: USB disconnect, device number 15
[  283.854618][ T9861] binder: BINDER_SET_CONTEXT_MGR already set
[  283.865379][ T9863] smc: net device lo applied user defined pnetid SYZ1
[  283.899010][ T9861] binder: 9860:9861 ioctl 40046207 0 returned -16
[  284.068522][ T9868] loop5: detected capacity change from 0 to 1024
[  284.150367][   T28] audit: type=1800 audit(284.096:61): pid=9868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1324" name="file1" dev="loop5" ino=20 res=0 errno=0
[  284.153815][ T9868] hfsplus: request for non-existent node 16777216 in B*Tree
[  284.206517][ T9868] hfsplus: request for non-existent node 16777216 in B*Tree
[  284.215893][ T9865] loop1: detected capacity change from 0 to 4096
[  284.242567][ T9865] ntfs3: Bad value for 'gid'
[  284.450081][ T9873] Bluetooth: MGMT ver 1.22
[  284.886981][ T9886] loop5: detected capacity change from 0 to 128
[  284.961907][ T9886] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  285.039432][ T9895] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1339'.
[  285.112032][ T8707] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  285.112992][ T9898] loop1: detected capacity change from 0 to 512
[  285.129177][ T9898] EXT4-fs: Ignoring removed mblk_io_submit option
[  285.135728][ T9898] EXT4-fs: Ignoring removed bh option
[  285.163535][ T9898] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  285.190653][ T9898] EXT4-fs (loop1): 1 truncate cleaned up
[  285.203557][ T9898] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.463591][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.656875][ T9909] loop2: detected capacity change from 0 to 1024
[  285.705772][ T9909] hfsplus: bad catalog entry type
[  285.796942][ T3518] hfsplus: b-tree write err: -5, ino 4
[  286.042517][ T9916] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  286.236649][ T9919] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1349'.
[  286.260291][ T9919] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1349'.
[  286.287281][ T9918] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1349'.
[  286.337901][ T9922] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1350'.
[  286.380319][ T9922] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1350'.
[  286.393707][ T9903] loop5: detected capacity change from 0 to 40427
[  286.406175][ T9921] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1350'.
[  286.492725][ T9903] F2FS-fs (loop5): Found nat_bits in checkpoint
[  286.553518][ T9924] netlink: 'syz.1.1351': attribute type 1 has an invalid length.
[  286.635256][ T9930] loop2: detected capacity change from 0 to 4096
[  286.660327][ T9903] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  286.697867][ T9932] loop0: detected capacity change from 0 to 1024
[  286.714970][ T9934] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  286.733669][ T9932] EXT4-fs: inline encryption not supported
[  286.764952][ T9932] EXT4-fs: Ignoring removed oldalloc option
[  286.789174][ T9903] syz.5.1340: attempt to access beyond end of device
[  286.789174][ T9903] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  286.822956][ T9932] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  286.974709][ T9932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.057988][ T8707] syz-executor: attempt to access beyond end of device
[  287.057988][ T8707] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  287.140704][ T8707] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  287.142783][ T9932] EXT4-fs (loop0): Online resizing not supported with bigalloc
[  287.359009][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.586456][ T9950] loop0: detected capacity change from 0 to 16
[  287.639303][ T9950] erofs: (device loop0): mounted with root inode @ nid 36.
[  287.950771][ T9957] loop2: detected capacity change from 0 to 256
[  287.968742][ T9957] exfat: Deprecated parameter 'utf8'
[  288.004208][ T9957] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  288.190462][   T27] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[  288.407385][   T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  288.439258][   T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.476740][   T27] usb 2-1: New USB device found, idVendor=056a, idProduct=00d0, bcdDevice= 0.00
[  288.496229][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.537581][   T27] usb 2-1: config 0 descriptor??
[  288.617717][ T9971] loop0: detected capacity change from 0 to 8
[  288.683852][ T9971] SQUASHFS error: zstd decompression failed, data probably corrupt
[  288.708304][ T9971] SQUASHFS error: Failed to read block 0x4ec: -5
[  288.745654][ T9971] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  288.784927][ T9971] SQUASHFS error: Unable to read inode 0x2011f
[  288.800710][ T9975] net_ratelimit: 66 callbacks suppressed
[  288.800727][ T9975] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  289.028486][   T27] wacom 0003:056A:00D0.0019: unknown main item tag 0x0
[  289.073658][   T27] wacom 0003:056A:00D0.0019: unknown main item tag 0x0
[  289.090935][   T27] wacom 0003:056A:00D0.0019: unknown main item tag 0x0
[  289.106499][   T27] wacom 0003:056A:00D0.0019: unknown main item tag 0x0
[  289.124269][   T27] wacom 0003:056A:00D0.0019: unknown main item tag 0x0
[  289.141324][   T27] wacom 0003:056A:00D0.0019: Unknown device_type for 'HID 056a:00d0'. Assuming pen.
[  289.181456][   T27] wacom 0003:056A:00D0.0019: hidraw0: USB HID v0.00 Device [HID 056a:00d0] on usb-dummy_hcd.1-1/input0
[  289.249692][   T27] input: Wacom Bamboo 2FG Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:00D0.0019/input/input29
[  289.296953][ T9987] loop0: detected capacity change from 0 to 512
[  289.341978][ T9987] EXT4-fs: Ignoring removed nobh option
[  289.363389][ T9987] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  289.449555][ T9987] EXT4-fs (loop0): 1 truncate cleaned up
[  289.531512][ T9987] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.712787][   T27] usb 2-1: USB disconnect, device number 18
[  289.768078][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.828209][ T9992] loop2: detected capacity change from 0 to 2048
[  289.863813][ T9992] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  289.967596][ T9998] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  290.520399][   T27] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  290.550589][ T5810] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  290.728626][   T27] usb 1-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  290.742069][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.750587][ T5810] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  290.759680][ T5810] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.778221][   T27] usb 1-1: Product: syz
[  290.784026][   T27] usb 1-1: Manufacturer: syz
[  290.793794][ T5810] usb 3-1: config 0 descriptor??
[  290.801030][   T27] usb 1-1: SerialNumber: syz
[  290.819516][ T5810] cp210x 3-1:0.0: cp210x converter detected
[  290.833965][   T27] usb 1-1: config 0 descriptor??
[  290.844415][   T27] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  290.928035][T10015] ceph: Unexpected value for 'acl'
[  291.115578][T10019] loop5: detected capacity change from 0 to 1024
[  291.132035][T10019] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  291.200420][T10019] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  291.236290][ T5810] usb 3-1: cp210x converter now attached to ttyUSB0
[  291.381154][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.471987][   T27] gspca_sunplus: reg_r err -71
[  291.476924][   T27] sunplus: probe of 1-1:0.0 failed with error -71
[  291.514674][   T27] usb 1-1: USB disconnect, device number 17
[  291.553180][ T5862] usb 3-1: USB disconnect, device number 16
[  291.571249][T10028] loop5: detected capacity change from 0 to 164
[  291.578508][ T5862] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  291.665777][ T5862] cp210x 3-1:0.0: device disconnected
[  292.023551][T10040] loop1: detected capacity change from 0 to 2048
[  292.095255][T10040] Alternate GPT is invalid, using primary GPT.
[  292.116785][T10040]  loop1: p2 p3 p7
[  292.579182][ T8706] udevd[8706]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[  292.604225][ T8752] udevd[8752]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  292.618646][ T9159] udevd[9159]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  292.636864][T10053] loop2: detected capacity change from 0 to 1024
[  292.871829][   T48] hfsplus: b-tree write err: -5, ino 4
[  293.051015][T10065] loop5: detected capacity change from 0 to 512
[  293.078934][T10065] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  293.099079][T10069] loop0: detected capacity change from 0 to 1024
[  293.161162][T10073] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  293.210717][T10065] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.1409: iget: bad i_size value: 360287970189639680
[  293.231337][T10069] hfsplus: found bad thread record in catalog
[  293.239553][T10069] hfsplus: catalog searching failed
[  293.293120][T10065] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1409: couldn't read orphan inode 15 (err -117)
[  293.346925][T10065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.400910][   T58] hfsplus: b-tree write err: -5, ino 4
[  293.479820][T10065] EXT4-fs error (device loop5): ext4_lookup:1858: inode #15: comm syz.5.1409: iget: bad i_size value: 360287970189639680
[  293.629668][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.763525][T10083] ucma_write: process 794 (syz.1.1418) changed security contexts after opening file descriptor, this is not allowed.
[  294.475131][T10103] loop2: detected capacity change from 0 to 2048
[  294.550754][T10106] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1425'.
[  294.581289][T10103] Alternate GPT is invalid, using primary GPT.
[  294.587738][T10103]  loop2: p2 p3 p7
[  294.590344][T10106] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1425'.
[  294.632555][T10106] tipc: Invalid UDP bearer configuration
[  294.632625][T10106] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  295.055694][ T8708] udevd[8708]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  295.077771][ T9159] udevd[9159]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  295.090089][ T8755] udevd[8755]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  295.126989][T10117] loop5: detected capacity change from 0 to 512
[  295.198489][T10117] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  295.324358][T10117] EXT4-fs (loop5): 1 truncate cleaned up
[  295.356095][T10117] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.462383][T10129] loop0: detected capacity change from 0 to 1024
[  295.490686][   T27] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  295.601896][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.717180][   T27] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  295.726184][   T27] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  295.751228][   T27] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  295.771763][   T27] usb 3-1: config 220 has no interface number 2
[  295.782059][   T27] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  295.811575][   T27] usb 3-1: config 220 interface 0 has no altsetting 0
[  295.819058][   T27] usb 3-1: config 220 interface 76 has no altsetting 0
[  295.865342][ T1079] hfsplus: b-tree write err: -5, ino 4
[  295.875636][   T27] usb 3-1: config 220 interface 1 has no altsetting 0
[  295.902983][   T27] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  295.913492][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.933804][   T27] usb 3-1: Product: syz
[  295.938051][   T27] usb 3-1: Manufacturer: syz
[  295.950473][   T27] usb 3-1: SerialNumber: syz
[  295.996148][T10137] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1439'.
[  296.223689][   T27] usb 3-1: selecting invalid altsetting 0
[  296.250344][   T27] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  296.256905][   T27] usb 3-1: No valid video chain found.
[  296.287121][   T27] usb 3-1: selecting invalid altsetting 0
[  296.307424][   T27] usbtest: probe of 3-1:220.1 failed with error -22
[  296.340555][   T27] usb 3-1: USB disconnect, device number 17
[  296.640828][T10135] loop5: detected capacity change from 0 to 32768
[  296.704914][T10135] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  297.077746][T10159] loop2: detected capacity change from 0 to 2048
[  297.145725][T10161] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  297.156749][T10135] XFS (loop5): Ending clean mount
[  297.174715][T10135] XFS (loop5): Quotacheck needed: Please wait.
[  297.293144][T10141] loop1: detected capacity change from 0 to 32768
[  297.300746][T10135] XFS (loop5): Quotacheck: Done.
[  297.378887][T10141] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  297.513528][   T28] audit: type=1800 audit(297.466:62): pid=10135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1437" name="bus" dev="loop5" ino=9290 res=0 errno=0
[  297.674126][ T8707] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  297.701552][T10141] XFS (loop1): Ending clean mount
[  297.966886][ T5770] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  298.616955][T10182] loop1: detected capacity change from 0 to 1024
[  298.646136][T10182] EXT4-fs: Ignoring removed nobh option
[  298.663310][T10182] EXT4-fs: Ignoring removed bh option
[  298.720817][T10182] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  298.852836][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.101962][T10195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1454'.
[  299.239424][T10162] loop0: detected capacity change from 0 to 32768
[  299.351231][T10180] loop2: detected capacity change from 0 to 32768
[  299.442132][T10180] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  299.468213][T10162] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  299.838189][ T5769] ocfs2: Unmounting device (7,2) on (node local)
[  300.008379][T10217] loop5: detected capacity change from 0 to 512
[  300.131055][T10219] loop1: detected capacity change from 0 to 16
[  300.155363][T10219] erofs: (device loop1): mounted with root inode @ nid 36.
[  300.155683][T10217] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.186733][T10219] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  300.257176][T10219] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -46 in[60, 4036] out[1851]
[  300.288676][T10225] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1462'.
[  300.297432][T10162] XFS (loop0): Ending clean mount
[  300.302140][T10225] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1462'.
[  300.338849][T10219] erofs: (device loop1): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  300.340586][T10222] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  300.399176][T10222] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -46 in[60, 4036] out[1851]
[  300.420756][T10222] erofs: (device loop1): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  300.445884][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.467958][T10162] XFS (loop0): Quotacheck needed: Please wait.
[  300.729008][T10162] XFS (loop0): Quotacheck: Done.
[  300.812436][T10231] loop1: detected capacity change from 0 to 512
[  300.863413][T10231] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1467: bg 0: block 5: invalid block bitmap
[  300.880384][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  300.895449][T10229] loop5: detected capacity change from 0 to 4096
[  300.937490][T10229] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  300.983716][T10229] EXT4-fs (loop5): Test dummy encryption mode enabled
[  301.014022][T10231] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  301.044799][T10242] loop2: detected capacity change from 0 to 128
[  301.060672][T10242] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  301.081023][T10231] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1467: invalid indirect mapped block 3 (level 2)
[  301.114540][T10231] EXT4-fs (loop1): 1 orphan inode deleted
[  301.120545][T10242] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  301.129754][T10231] EXT4-fs (loop1): 1 truncate cleaned up
[  301.149083][T10229] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.166938][T10231] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.461743][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.752842][T10229] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  301.940596][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.965606][T10258] loop2: detected capacity change from 0 to 512
[  302.082216][T10258] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1478: corrupted inode contents
[  302.124003][T10258] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #16: comm syz.2.1478: mark_inode_dirty error
[  302.170419][T10258] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1478: corrupted inode contents
[  302.221792][T10258] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1478: mark_inode_dirty error
[  302.261130][T10258] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1478: corrupted inode contents
[  302.306636][T10258] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  302.330671][T10258] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1478: corrupted inode contents
[  302.383148][T10258] EXT4-fs error (device loop2): ext4_truncate:4288: inode #16: comm syz.2.1478: mark_inode_dirty error
[  302.407245][T10258] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  302.441868][T10258] EXT4-fs (loop2): 1 truncate cleaned up
[  302.461622][T10258] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.461781][ T1124] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  302.488893][ T1124] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:6: Failed to release dquot type 1
[  302.545436][   T28] audit: type=1800 audit(302.496:63): pid=10258 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1478" name="file2" dev="loop2" ino=16 res=0 errno=0
[  302.570876][T10277] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1484'.
[  302.579971][T10277] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1484'.
[  302.643306][T10276] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1484'.
[  302.728334][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.955162][T10285] loop5: detected capacity change from 0 to 1024
[  303.074643][ T9159] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  303.559629][T10279] loop0: detected capacity change from 0 to 32768
[  303.609058][T10279] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  303.780304][T10279] XFS (loop0): Ending clean mount
[  303.791005][T10291] loop1: detected capacity change from 0 to 32768
[  303.848975][T10279] XFS (loop0): Quotacheck needed: Please wait.
[  303.873947][T10291] JBD2: Ignoring recovery information on journal
[  304.007141][T10279] XFS (loop0): Quotacheck: Done.
[  304.007553][T10291] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  304.072041][T10314] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1496'.
[  304.121934][T10314] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1496'.
[  304.160913][T10313] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1496'.
[  304.289622][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  304.465558][ T5770] ocfs2: Unmounting device (7,1) on (node local)
[  304.674777][T10322] loop2: detected capacity change from 0 to 512
[  304.732472][T10322] EXT4-fs: Ignoring removed mblk_io_submit option
[  304.738977][T10322] EXT4-fs: Ignoring removed bh option
[  304.792964][T10322] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  304.895565][T10322] EXT4-fs (loop2): 1 truncate cleaned up
[  304.938455][T10322] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.148834][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.326792][T10320] loop5: detected capacity change from 0 to 40427
[  305.355552][T10320] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x7ffff
[  305.368844][T10333] overlayfs: disabling nfs_export due to verity=on
[  305.388637][T10333] overlayfs: missing 'lowerdir'
[  305.394812][T10320] F2FS-fs (loop5): invalid crc value
[  305.442068][T10320] F2FS-fs (loop5): Found nat_bits in checkpoint
[  305.630705][T10320] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  305.755964][T10320] F2FS-fs (loop5): access invalid blkaddr:2816
[  305.774601][T10346] loop0: detected capacity change from 0 to 164
[  305.781043][T10320] CPU: 1 PID: 10320 Comm: syz.5.1500 Not tainted 6.6.95-syzkaller #0
[  305.789161][T10320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  305.799259][T10320] Call Trace:
[  305.802577][T10320]  <TASK>
[  305.805539][T10320]  dump_stack_lvl+0x16c/0x230
[  305.810275][T10320]  ? show_regs_print_info+0x20/0x20
[  305.815535][T10320]  ? f2fs_get_next_page_offset+0x690/0x690
[  305.821431][T10320]  f2fs_is_valid_blkaddr+0xef8/0x1580
[  305.826874][T10320]  f2fs_map_blocks+0xcdd/0x3c00
[  305.831977][T10320]  ? f2fs_get_block_locked+0xe0/0xe0
[  305.837361][T10320]  ? __might_sleep+0xe0/0xe0
[  305.842012][T10320]  ? down_read_killable+0x340/0x340
[  305.847360][T10320]  ? stack_trace_save+0x9c/0xe0
[  305.852295][T10320]  ? stack_trace_snprint+0xf0/0xf0
[  305.857470][T10320]  f2fs_fiemap+0x902/0x1650
[  305.862050][T10320]  ? f2fs_overwrite_io+0x1e0/0x1e0
[  305.867242][T10320]  ? __might_fault+0xaa/0x120
[  305.870566][ T5862] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  305.872051][T10320]  ? __might_fault+0xaa/0x120
[  305.884475][T10320]  ? __might_fault+0xc6/0x120
[  305.889209][T10320]  ? __might_fault+0xaa/0x120
[  305.893947][T10320]  do_vfs_ioctl+0x140c/0x1bb0
[  305.898690][T10320]  ? __ia32_compat_sys_ioctl+0x7f0/0x7f0
[  305.904390][T10320]  ? tomoyo_path_number_perm+0x1ba/0x590
[  305.910071][T10320]  ? __lock_acquire+0x7c80/0x7c80
[  305.915141][T10320]  ? slab_free_freelist_hook+0x130/0x1b0
[  305.920828][T10320]  ? tomoyo_path_number_perm+0x477/0x590
[  305.926519][T10320]  ? __kmem_cache_free+0xba/0x1f0
[  305.931687][T10320]  ? tomoyo_path_number_perm+0x4dc/0x590
[  305.937364][T10320]  ? tomoyo_path_number_perm+0x1ba/0x590
[  305.943044][T10320]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  305.948596][T10320]  ? __fget_files+0x28/0x4d0
[  305.953264][T10320]  ? bpf_lsm_file_ioctl+0x9/0x10
[  305.958245][T10320]  ? security_file_ioctl+0x80/0xa0
[  305.963410][T10320]  __se_sys_ioctl+0x83/0x170
[  305.968059][T10320]  do_syscall_64+0x55/0xb0
[  305.972531][T10320]  ? clear_bhb_loop+0x40/0x90
[  305.977252][T10320]  ? clear_bhb_loop+0x40/0x90
[  305.981993][T10320]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  305.987954][T10320] RIP: 0033:0x7f656df8e929
[  305.992409][T10320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  306.012065][T10320] RSP: 002b:00007f656ede0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  306.020538][T10320] RAX: ffffffffffffffda RBX: 00007f656e1b5fa0 RCX: 00007f656df8e929
[  306.028650][T10320] RDX: 0000200000000280 RSI: 00000000c020660b RDI: 0000000000000004
[  306.036669][T10320] RBP: 00007f656e010b39 R08: 0000000000000000 R09: 0000000000000000
[  306.044697][T10320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  306.052717][T10320] R13: 0000000000000000 R14: 00007f656e1b5fa0 R15: 00007ffe3d57b938
[  306.060755][T10320]  </TASK>
[  306.085956][ T5862] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.113671][ T5862] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.144261][ T5862] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  306.168986][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.212223][ T5862] usb 3-1: config 0 descriptor??
[  306.344538][T10337] loop1: detected capacity change from 0 to 32768
[  306.419200][T10337] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  306.585708][T10358] loop0: detected capacity change from 0 to 512
[  306.654036][T10358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.665273][ T5862] pyra 0003:1E7D:2CF6.001A: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.2-1/input0
[  306.701568][T10337] XFS (loop1): Ending clean mount
[  306.722115][T10337] XFS (loop1): Quotacheck needed: Please wait.
[  306.829001][T10337] XFS (loop1): Quotacheck: Done.
[  306.839879][ T5862] pyra 0003:1E7D:2CF6.001A: couldn't init struct pyra_device
[  306.852744][ T5862] pyra 0003:1E7D:2CF6.001A: couldn't install mouse
[  306.872074][ T5862] pyra: probe of 0003:1E7D:2CF6.001A failed with error -71
[  306.898612][ T5862] usb 3-1: USB disconnect, device number 18
[  306.939445][T10364] loop5: detected capacity change from 0 to 2048
[  306.961119][   T28] audit: type=1800 audit(306.916:64): pid=10337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1508" name="bus" dev="loop1" ino=9290 res=0 errno=0
[  306.993899][T10362] fido_id[10362]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  306.998176][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.053224][T10364] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  307.117925][ T5770] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  307.436004][T10370] loop5: detected capacity change from 0 to 256
[  307.489886][T10370] MINIX-fs: mounting file system with errors, running fsck is recommended
[  307.947368][T10384] loop2: detected capacity change from 0 to 128
[  308.255080][T10392] loop2: detected capacity change from 0 to 64
[  308.391728][ T5862] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  308.650661][ T5862] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  308.658753][ T5862] usb 6-1: config 0 has no interface number 0
[  308.680561][ T5862] usb 6-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  308.689763][ T5862] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.729958][ T5862] usb 6-1: config 0 descriptor??
[  308.744308][ T5862] usb 6-1: selecting invalid altsetting 1
[  308.757704][ T5862] dvb_ttusb_budget: ttusb_init_controller: error
[  308.772554][ T5862] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  308.876219][T10387] loop0: detected capacity change from 0 to 32768
[  308.928003][T10404] loop2: detected capacity change from 0 to 2048
[  308.949197][T10387] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  308.969237][T10404]  loop2: p1 < > p4
[  308.978604][T10404] loop2: p4 size 8388608 extends beyond EOD, truncated
[  309.069072][ T5862] DVB: Unable to find symbol cx22700_attach()
[  309.260694][ T5862] DVB: Unable to find symbol tda10046_attach()
[  309.268807][T10387] XFS (loop0): Ending clean mount
[  309.281962][T10387] XFS (loop0): Quotacheck needed: Please wait.
[  309.292478][ T5862] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  309.354357][ T5862] usb 6-1: USB disconnect, device number 3
[  309.479901][ T8755] udevd[8755]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  309.486375][ T9159] udevd[9159]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  309.522387][T10387] XFS (loop0): Quotacheck: Done.
[  309.654358][   T28] audit: type=1800 audit(309.606:65): pid=10387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1525" name="bus" dev="loop0" ino=9290 res=0 errno=0
[  309.883114][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  310.467365][T10433] loop0: detected capacity change from 0 to 2048
[  310.516504][T10433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.601254][T10433] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.1538: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  310.630886][T10433] EXT4-fs (loop0): Remounting filesystem read-only
[  310.685338][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.870050][T10444] loop0: detected capacity change from 0 to 64
[  310.899809][T10444] hfs: unable to locate alternate MDB
[  310.919882][T10444] hfs: continuing without an alternate MDB
[  311.091620][ T5830] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  311.147132][T10448] netlink: 'syz.1.1549': attribute type 28 has an invalid length.
[  311.164745][T10450] loop0: detected capacity change from 0 to 64
[  311.177876][T10450] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  311.283153][ T5830] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.310535][ T5830] usb 6-1: New USB device found, idVendor=056a, idProduct=00d4, bcdDevice= 0.00
[  311.319661][ T5830] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.368344][ T5830] usb 6-1: config 0 descriptor??
[  311.507309][T10453] loop1: detected capacity change from 0 to 4096
[  311.528995][T10453] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  311.585159][T10453] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[  311.595806][T10453] ntfs3: loop1: Failed to initialize $Extend/$Reparse.
[  311.703565][T10453] ntfs3: loop1: ino=1e, "file1" encrypted i/o not supported
[  311.743208][   T28] audit: type=1800 audit(311.686:66): pid=10453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1551" name="file1" dev="loop1" ino=30 res=0 errno=0
[  311.836709][ T5830] wacom 0003:056A:00D4.001B: Unknown device_type for 'HID 056a:00d4'. Assuming pen.
[  311.858326][ T1079] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22.
[  311.878996][ T5830] wacom 0003:056A:00D4.001B: hidraw0: USB HID vff.fe Device [HID 056a:00d4] on usb-dummy_hcd.5-1/input0
[  311.891366][ T5770] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[  311.923299][ T5830] input: Wacom Bamboo Pen Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:00D4.001B/input/input32
[  311.928069][ T5770] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  311.965597][ T5770] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[  312.019193][ T1079] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22.
[  312.069475][ T5830] usb 6-1: USB disconnect, device number 4
[  312.170104][T10465] fido_id[10465]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[  312.488498][T10477] loop2: detected capacity change from 0 to 2048
[  312.548501][T10477] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  312.853997][T10489] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1567'.
[  313.226475][T10503] hugetlbfs: Bad value for 'mode'
[  313.916217][T10525] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1584'.
[  313.966920][T10527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1585'.
[  313.990409][T10527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1585'.
[  313.999528][T10527] netlink: 'syz.1.1585': attribute type 7 has an invalid length.
[  314.031343][ T5830] usb 1-1: new full-speed USB device number 18 using dummy_hcd
[  314.050275][T10492] loop5: detected capacity change from 0 to 40427
[  314.062261][T10492] F2FS-fs (loop5): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  314.080355][T10492] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  314.101773][T10492] F2FS-fs (loop5): build fault injection attr: rate: 18446, type: 0x7ffff
[  314.133318][T10492] F2FS-fs (loop5): invalid crc value
[  314.186599][T10492] F2FS-fs (loop5): Found nat_bits in checkpoint
[  314.232696][ T5830] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  314.267594][ T5830] usb 1-1: New USB device found, idVendor=056a, idProduct=032b, bcdDevice= 0.00
[  314.283771][ T5830] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.303759][ T5830] usb 1-1: config 0 descriptor??
[  314.388854][T10492] F2FS-fs (loop5): Start checkpoint disabled!
[  314.401925][T10492] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  314.419286][T10492] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  314.778144][ T5830] wacom 0003:056A:032B.001C: unknown main item tag 0x7
[  314.794012][ T1124] kworker/u4:6: attempt to access beyond end of device
[  314.794012][ T1124] loop5: rw=1, sector=53248, nr_sectors = 16 limit=40427
[  314.818543][ T5830] wacom 0003:056A:032B.001C: unknown main item tag 0x0
[  314.834059][ T5830] wacom 0003:056A:032B.001C: hidraw0: USB HID v0.04 Device [HID 056a:032b] on usb-dummy_hcd.0-1/input0
[  314.863176][ T1079] kworker/u4:5: attempt to access beyond end of device
[  314.863176][ T1079] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  314.900314][ T1079] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  314.907718][ T1079] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  315.030371][ T5830] usb 1-1: USB disconnect, device number 18
[  315.071106][ T5810] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  315.280552][ T5810] usb 2-1: Using ep0 maxpacket: 32
[  315.297332][ T5810] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  315.317967][ T5810] usb 2-1: config 0 interface 0 has no altsetting 0
[  315.331650][ T5810] usb 2-1: New USB device found, idVendor=0403, idProduct=97c1, bcdDevice= 0.00
[  315.352201][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.372980][ T5810] usb 2-1: config 0 descriptor??
[  315.812777][ T5810] hid-retrode 0003:0403:97C1.001D: item fetching failed at offset 0/5
[  315.855775][ T5810] hid-retrode: probe of 0003:0403:97C1.001D failed with error -22
[  316.065085][ T5810] usb 2-1: USB disconnect, device number 19
[  316.128795][T10563] loop2: detected capacity change from 0 to 1024
[  316.240834][T10563] hfsplus: bad catalog entry type
[  316.295155][T10554] loop5: detected capacity change from 0 to 40427
[  316.304900][ T3518] hfsplus: b-tree write err: -5, ino 4
[  316.340538][T10554] F2FS-fs (loop5): Found nat_bits in checkpoint
[  316.476743][T10554] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  316.601158][ T8707] syz-executor: attempt to access beyond end of device
[  316.601158][ T8707] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  316.667820][ T8707] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  316.816489][T10573] loop1: detected capacity change from 0 to 164
[  316.850865][T10562] loop0: detected capacity change from 0 to 32768
[  316.965723][T10573] iso9660: Corrupted directory entry in block 2 of inode 1920
[  316.982312][T10562] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  317.351187][T10562] XFS (loop0): Ending clean mount
[  317.394030][T10562] XFS (loop0): Quotacheck needed: Please wait.
[  317.499577][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  317.506261][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  317.520635][T10562] XFS (loop0): Quotacheck: Done.
[  317.753333][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  318.507746][T10611] netlink: 200 bytes leftover after parsing attributes in process `syz.1.1617'.
[  318.809075][T10620] loop1: detected capacity change from 0 to 4096
[  318.849871][T10620] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[  318.910092][T10620] ntfs3: loop1: Failed to initialize $Extend/$ObjId.
[  318.934551][T10624] loop5: detected capacity change from 0 to 64
[  318.982137][T10624] BFS-fs: bfs_fill_super(): loop5 is unclean, continuing
[  319.209719][T10632] trusted_key: encrypted_key: key trusted:syz not found
[  319.226155][T10626] loop0: detected capacity change from 0 to 4096
[  319.254783][T10626] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  319.341187][T10626] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  319.363143][T10626] ntfs3: loop0: Failed to initialize $Extend/$Reparse.
[  319.464803][T10626] ntfs3: loop0: ino=1e, "file1" encrypted i/o not supported
[  319.480535][   T28] audit: type=1800 audit(319.436:67): pid=10626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1624" name="file1" dev="loop0" ino=30 res=0 errno=0
[  319.504172][T10626] ntfs3: loop0: ino=1e, "file1" encrypted i/o not supported
[  319.559410][T10639] sg_write: process 283 (syz.5.1631) changed security contexts after opening file descriptor, this is not allowed.
[  319.602659][ T1079] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  319.609729][ T5772] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  319.645659][ T5772] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  319.665773][ T5772] ntfs3: loop0: ino=3, ntfs_set_state failed, -22.
[  319.700310][ T1124] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22.
[  319.772519][   T28] audit: type=1326 audit(319.726:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10641 comm="syz.2.1633" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb906d8e929 code=0x0
[  320.210105][T10661] loop5: detected capacity change from 0 to 512
[  320.213570][T10660] loop0: detected capacity change from 0 to 512
[  320.234650][T10660] EXT4-fs (loop0): Test dummy encryption mode enabled
[  320.241934][T10660] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  320.271139][T10660] EXT4-fs (loop0): 1 truncate cleaned up
[  320.284615][T10661] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  320.336438][T10660] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.385791][T10667] loop1: detected capacity change from 0 to 8192
[  320.437172][T10667] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  320.453705][T10667] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  320.464271][T10667] REISERFS (device loop1): using ordered data mode
[  320.472745][T10667] reiserfs: using flush barriers
[  320.477734][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.497546][T10667] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  320.556312][T10667] REISERFS (device loop1): checking transaction log (loop1)
[  320.597431][T10667] REISERFS (device loop1): Using r5 hash to sort names
[  320.615020][T10661] Quota error (device loop5): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  320.672419][T10667] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  320.721071][T10661] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  320.748227][T10667] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  320.754629][T10661] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1641: Failed to acquire dquot type 0
[  320.938236][ T8707] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  321.451732][T10688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1652'.
[  321.483852][T10688] IPVS: Error joining to the multicast group
[  321.600967][ T5831] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  321.785538][T10682] loop0: detected capacity change from 0 to 32768
[  321.810357][ T5831] usb 6-1: Using ep0 maxpacket: 8
[  321.816152][T10682] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  321.831471][ T5831] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  321.851524][ T5831] usb 6-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  321.863709][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.908004][ T5831] usb 6-1: config 0 descriptor??
[  322.037678][ T9159] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  322.141776][T10700] loop0: detected capacity change from 0 to 4096
[  322.204156][T10701] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  322.285566][T10694] loop2: detected capacity change from 0 to 32768
[  322.344100][ T5831] kye 0003:0458:4018.001E: unbalanced collection at end of report description
[  322.365709][T10694] find_entry called with index = 0
[  322.381436][ T5831] kye 0003:0458:4018.001E: parse failed
[  322.399379][ T5831] kye: probe of 0003:0458:4018.001E failed with error -22
[  322.403650][T10694] read_mapping_page failed!
[  322.446046][T10694] ERROR: (device loop2): txCommit: 
[  322.446046][T10694] 
[  322.620690][   T27] usb 6-1: USB disconnect, device number 5
[  322.820624][T10710] netlink: 232 bytes leftover after parsing attributes in process `syz.2.1660'.
[  323.186322][T10718] loop1: detected capacity change from 0 to 2048
[  323.257441][T10718] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  323.607127][T10728] loop2: detected capacity change from 0 to 1024
[  323.981148][T10736] tipc: Enabled bearer <eth:team0>, priority 0
[  324.125661][T10740] loop5: detected capacity change from 0 to 2048
[  324.228665][T10740]  loop5: p1 < > p4
[  324.253179][T10740] loop5: p4 size 8388608 extends beyond EOD, truncated
[  324.610361][ T8755] udevd[8755]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  324.628329][ T9159] udevd[9159]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  324.674666][T10755] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1682'.
[  324.968991][T10761] loop5: detected capacity change from 0 to 64
[  325.070730][   T28] audit: type=1800 audit(325.016:69): pid=10761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1685" name="file1" dev="loop5" ino=18 res=0 errno=0
[  325.092451][T10761] syz.5.1685: attempt to access beyond end of device
[  325.092451][T10761] loop5: rw=34817, sector=18, nr_sectors = 400 limit=64
[  325.143876][T10761] syz.5.1685: attempt to access beyond end of device
[  325.143876][T10761] loop5: rw=34817, sector=420, nr_sectors = 20 limit=64
[  325.164434][T10761] 
[  325.166838][T10761] ======================================================
[  325.173900][T10761] WARNING: possible circular locking dependency detected
[  325.180974][T10761] 6.6.95-syzkaller #0 Not tainted
[  325.186036][T10761] ------------------------------------------------------
[  325.193086][T10761] syz.5.1685/10761 is trying to acquire lock:
[  325.199194][T10761] ffff8880604e2e78 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xdb/0x1220
[  325.210040][T10761] 
[  325.210040][T10761] but task is already holding lock:
[  325.217433][T10761] ffff88802ec7c0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x15f/0x1d0
[  325.226814][T10761] 
[  325.226814][T10761] which lock already depends on the new lock.
[  325.226814][T10761] 
[  325.237239][T10761] 
[  325.237239][T10761] the existing dependency chain (in reverse order) is:
[  325.246281][T10761] 
[  325.246281][T10761] -> #1 (&tree->tree_lock/1){+.+.}-{3:3}:
[  325.254234][T10761]        __mutex_lock+0x129/0xcc0
[  325.259292][T10761]        hfs_find_init+0x15f/0x1d0
[  325.264419][T10761]        hfs_extend_file+0x2ef/0x1220
[  325.269811][T10761]        hfs_bmap_reserve+0x107/0x430
[  325.275201][T10761]        hfs_cat_create+0x1b4/0x620
[  325.280421][T10761]        hfs_create+0x66/0xd0
[  325.285115][T10761]        path_openat+0x1277/0x3190
[  325.290252][T10761]        do_filp_open+0x1c5/0x3d0
[  325.295291][T10761]        do_sys_openat2+0x12c/0x1c0
[  325.300514][T10761]        __x64_sys_openat+0x139/0x160
[  325.305910][T10761]        do_syscall_64+0x55/0xb0
[  325.310880][T10761]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.317326][T10761] 
[  325.317326][T10761] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}:
[  325.326756][T10761]        __lock_acquire+0x2ddb/0x7c80
[  325.332155][T10761]        lock_acquire+0x197/0x410
[  325.337223][T10761]        __mutex_lock+0x129/0xcc0
[  325.342290][T10761]        hfs_extend_file+0xdb/0x1220
[  325.347591][T10761]        hfs_bmap_reserve+0x107/0x430
[  325.352985][T10761]        __hfs_ext_write_extent+0x1fa/0x470
[  325.358903][T10761]        __hfs_ext_cache_extent+0x6b/0x9b0
[  325.364727][T10761]        hfs_extend_file+0x317/0x1220
[  325.370118][T10761]        hfs_get_block+0x3d8/0xbd0
[  325.375265][T10761]        __blockdev_direct_IO+0x1679/0x3420
[  325.381271][T10761]        hfs_direct_IO+0x11b/0x220
[  325.386403][T10761]        generic_file_direct_write+0x1d4/0x3e0
[  325.392584][T10761]        __generic_file_write_iter+0x11b/0x230
[  325.398760][T10761]        generic_file_write_iter+0xaf/0x2e0
[  325.404677][T10761]        do_iter_write+0x79a/0xc70
[  325.409811][T10761]        do_writev+0x252/0x410
[  325.414589][T10761]        do_syscall_64+0x55/0xb0
[  325.419550][T10761]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.425991][T10761] 
[  325.425991][T10761] other info that might help us debug this:
[  325.425991][T10761] 
[  325.436247][T10761]  Possible unsafe locking scenario:
[  325.436247][T10761] 
[  325.443709][T10761]        CPU0                    CPU1
[  325.449087][T10761]        ----                    ----
[  325.454462][T10761]   lock(&tree->tree_lock/1);
[  325.459165][T10761]                                lock(&HFS_I(tree->inode)->extents_lock);
[  325.467682][T10761]                                lock(&tree->tree_lock/1);
[  325.474907][T10761]   lock(&HFS_I(tree->inode)->extents_lock);
[  325.480910][T10761] 
[  325.480910][T10761]  *** DEADLOCK ***
[  325.480910][T10761] 
[  325.489064][T10761] 5 locks held by syz.5.1685/10761:
[  325.494278][T10761]  #0: ffff88802a1040c8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2a3/0x330
[  325.503535][T10761]  #1: ffff88805190c418 (sb_writers#13){.+.+}-{0:0}, at: do_writev+0x236/0x410
[  325.512533][T10761]  #2: ffff8880604e43b8 (&sb->s_type->i_mutex_key#33){+.+.}-{3:3}, at: generic_file_write_iter+0x83/0x2e0
[  325.523972][T10761]  #3: ffff8880604e41f8 (&HFS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xdb/0x1220
[  325.534791][T10761]  #4: ffff88802ec7c0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x15f/0x1d0
[  325.544744][T10761] 
[  325.544744][T10761] stack backtrace:
[  325.550647][T10761] CPU: 0 PID: 10761 Comm: syz.5.1685 Not tainted 6.6.95-syzkaller #0
[  325.558821][T10761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  325.568926][T10761] Call Trace:
[  325.572226][T10761]  <TASK>
[  325.575191][T10761]  dump_stack_lvl+0x16c/0x230
[  325.579977][T10761]  ? load_image+0x3b0/0x3b0
[  325.584596][T10761]  ? show_regs_print_info+0x20/0x20
[  325.590000][T10761]  ? print_circular_bug+0x12b/0x1a0
[  325.595221][T10761]  check_noncircular+0x2bd/0x3c0
[  325.600397][T10761]  ? look_up_lock_class+0x75/0x140
[  325.605531][T10761]  ? print_deadlock_bug+0x5d0/0x5d0
[  325.610751][T10761]  ? lockdep_lock+0xe0/0x220
[  325.615372][T10761]  ? mark_lock+0x94/0x320
[  325.619735][T10761]  ? _find_first_zero_bit+0xd3/0x100
[  325.625135][T10761]  __lock_acquire+0x2ddb/0x7c80
[  325.630201][T10761]  ? verify_lock_unused+0x140/0x140
[  325.635427][T10761]  ? look_up_lock_class+0x75/0x140
[  325.640559][T10761]  lock_acquire+0x197/0x410
[  325.645082][T10761]  ? hfs_extend_file+0xdb/0x1220
[  325.650045][T10761]  ? __might_sleep+0xe0/0xe0
[  325.654696][T10761]  ? __lock_acquire+0x1334/0x7c80
[  325.659744][T10761]  ? read_lock_is_recursive+0x20/0x20
[  325.665147][T10761]  __mutex_lock+0x129/0xcc0
[  325.669791][T10761]  ? hfs_extend_file+0xdb/0x1220
[  325.674756][T10761]  ? lock_chain_count+0x20/0x20
[  325.679627][T10761]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  325.685552][T10761]  ? hfs_extend_file+0xdb/0x1220
[  325.690505][T10761]  ? verify_lock_unused+0x140/0x140
[  325.695903][T10761]  ? mutex_lock_nested+0x20/0x20
[  325.700865][T10761]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  325.706788][T10761]  ? _raw_spin_unlock+0x40/0x40
[  325.711670][T10761]  ? stack_trace_save+0x9c/0xe0
[  325.716660][T10761]  ? stack_trace_snprint+0xf0/0xf0
[  325.721821][T10761]  hfs_extend_file+0xdb/0x1220
[  325.726610][T10761]  ? hfs_get_block+0xbd0/0xbd0
[  325.731394][T10761]  ? __mutex_trylock_common+0x153/0x250
[  325.736977][T10761]  ? trace_raw_output_contention_end+0xd0/0xd0
[  325.743592][T10761]  ? rcu_is_watching+0x15/0xb0
[  325.748377][T10761]  ? hfs_brec_find+0x18f/0x500
[  325.753156][T10761]  ? __mutex_lock+0x304/0xcc0
[  325.757863][T10761]  hfs_bmap_reserve+0x107/0x430
[  325.762745][T10761]  __hfs_ext_write_extent+0x1fa/0x470
[  325.768143][T10761]  __hfs_ext_cache_extent+0x6b/0x9b0
[  325.773458][T10761]  ? hfs_find_init+0x15f/0x1d0
[  325.778256][T10761]  hfs_extend_file+0x317/0x1220
[  325.783130][T10761]  ? filemap_get_folios+0xe5/0x7b0
[  325.788267][T10761]  ? hfs_get_block+0xbd0/0xbd0
[  325.793055][T10761]  ? find_lock_entries+0xfe0/0xfe0
[  325.798394][T10761]  ? clean_bdev_aliases+0x55f/0x630
[  325.803634][T10761]  hfs_get_block+0x3d8/0xbd0
[  325.808263][T10761]  ? hfs_free_extents+0x430/0x430
[  325.813316][T10761]  ? submit_page_section+0x5f8/0xa40
[  325.818629][T10761]  ? hfs_free_extents+0x430/0x430
[  325.823787][T10761]  __blockdev_direct_IO+0x1679/0x3420
[  325.829208][T10761]  ? show_vfsstat+0x3a0/0x3a0
[  325.835271][T10761]  ? mark_lock+0x94/0x320
[  325.840667][T10761]  ? hfs_free_extents+0x430/0x430
[  325.845770][T10761]  ? filemap_write_and_wait_range+0x160/0x1f0
[  325.851869][T10761]  ? do_raw_spin_lock+0x121/0x2c0
[  325.856919][T10761]  ? __rwlock_init+0x150/0x150
[  325.861710][T10761]  hfs_direct_IO+0x11b/0x220
[  325.866329][T10761]  generic_file_direct_write+0x1d4/0x3e0
[  325.872006][T10761]  __generic_file_write_iter+0x11b/0x230
[  325.877664][T10761]  ? generic_file_write_iter+0x9b/0x2e0
[  325.883245][T10761]  generic_file_write_iter+0xaf/0x2e0
[  325.888653][T10761]  do_iter_write+0x79a/0xc70
[  325.893267][T10761]  ? vfs_iter_write+0xa0/0xa0
[  325.897963][T10761]  ? rcu_read_lock_any_held+0xb4/0x120
[  325.903449][T10761]  do_writev+0x252/0x410
[  325.907713][T10761]  ? do_readv+0x3e0/0x3e0
[  325.912070][T10761]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  325.918078][T10761]  ? lock_chain_count+0x20/0x20
[  325.922957][T10761]  ? lockdep_hardirqs_on+0x98/0x150
[  325.928204][T10761]  do_syscall_64+0x55/0xb0
[  325.932656][T10761]  ? clear_bhb_loop+0x40/0x90
[  325.937360][T10761]  ? clear_bhb_loop+0x40/0x90
[  325.942062][T10761]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.947988][T10761] RIP: 0033:0x7f656df8e929
[  325.953103][T10761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.973745][T10761] RSP: 002b:00007f656ede0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  325.982272][T10761] RAX: ffffffffffffffda RBX: 00007f656e1b5fa0 RCX: 00007f656df8e929
[  325.990348][T10761] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000004
[  325.998352][T10761] RBP: 00007f656e010b39 R08: 0000000000000000 R09: 0000000000000000
[  326.006355][T10761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  326.014348][T10761] R13: 0000000000000000 R14: 00007f656e1b5fa0 R15: 00007ffe3d57b938
[  326.022348][T10761]  </TASK>
[  326.031095][T10761] syz.5.1685: attempt to access beyond end of device
[  326.031095][T10761] loop5: rw=34817, sector=441, nr_sectors = 64 limit=64
[  326.210275][ T5831] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  326.403753][ T5831] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  326.413986][ T5831] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.422119][ T5831] usb 2-1: Product: syz
[  326.426320][ T5831] usb 2-1: Manufacturer: syz
[  326.431208][ T5831] usb 2-1: SerialNumber: syz
[  326.437657][ T5831] usb 2-1: config 0 descriptor??
[  326.652202][   T27] usb 2-1: USB disconnect, device number 20