last executing test programs:

2m11.010132251s ago: executing program 1 (id=236):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x28, 0x6, 0x0, @local, @local, {[], {{0x4e22, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "c5a7b796e1d5ec8b59e2ac10928dbfd5"}]}}}}}}}}, 0x0)

2m10.639652209s ago: executing program 1 (id=239):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400400142603600e122f00160006000400a8000600200003400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b31d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025cc40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de603000000e4edef3d93452a92954b43370e9703920723f9a94100"/216, 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m10.245196378s ago: executing program 1 (id=240):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000b80)=[{{&(0x7f0000000300)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000580), 0x4)

2m10.015769577s ago: executing program 1 (id=242):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000000, &(0x7f0000002ac0)=ANY=[@ANYRES8=0x0], 0xfe, 0x62a3, &(0x7f000000efc0)="$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")
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='nr_inodes=1'])
chdir(&(0x7f0000000300)='./file0\x00')
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, 0x1)

2m8.517759291s ago: executing program 1 (id=252):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$eJzs3T+LHGUcB/Df7M3OrlrsFlYiOKCFVciltdlDEhCvMmyhFnqYC8jtItzBgX9wTWVrY2HhKxAEX4iN70CwFeyMEHhkZmeyu5dlcxuyJyafT5MnzzzfeX7Ps8PdXHHPffzq9OROGXfvffV79PtZdEYxivtZDKMTrW9ixei7AAD+z+6nFH+luW1yWUT0d1cWALBDl/v+ny+av1xJWQDADt1+/4N3Dw4Pb75Xlv24Nf32fFz9ZF/9O79+cDc+jUkcx/UYxIOI+kWhG/XbQtW8lVKa5WVlGG9MZ+fjKjn96Nfm/gd/RtT5/RjEsO56+LZR5985vLlfzi3lZ1UdLzbzj6r8jRjEyw/DK/kba/IxLuLN15fqvxaD+O2T+CwmcacuYpH/er8s307f//3lh1V5VT6bnY979biFtHfFHw0AAAAAAAAAAAAAAAAAAAAAAM+wa83ZOb2oz++puprzd/YeVP/pRtkarp7PM89n7Y2WzwdKKc1S/Nier3O9LMvUDFzk83glXz5YEAAAAAAAAAAAAAAAAAAAAJ5fZ59/cXI0mRyfPpVGexpAHhH/3I540vuMlnpei82De82cR5NJp2mujsmXe2KvHZNFbCyjWsST7kYeW639hUdqbho//bzt7P3Hj+mun+tpNtqn6+QoW7+HvWh7+s1G/VBELMYUccm5ios9aTC/T9rqIyjWXhpsvfbipbox2zAmsk2FvfXHfOeanuziKop6V9fGu01jKX7h2bjU8xz9efzRrxWZ0zoAAAAAAAAAAAAAAAAAAGCnFr/9u+bivY3RTurtrCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuFKLv/+/RWPWhI9Pz/LHDC7i9Ow/XiIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPgX8DAAD//x0KWZ8=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x0, 0x0, 0x0, 0x0, 0x100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x33)
open_by_handle_at(r0, &(0x7f0000000080)=ANY=[@ANYBLOB='K\x00\x00\x00r'], 0x0)

2m7.562576647s ago: executing program 1 (id=255):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x1)
r1 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f03c, 0x2})

2m6.946633125s ago: executing program 32 (id=255):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x1)
r1 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f03c, 0x2})

1m55.697020594s ago: executing program 3 (id=342):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x1, 0x4)
syz_emit_ethernet(0x3b, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x19, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}, "ac7e310ed9a664c9951472fe6b"}}}}}}, 0x0)

1m55.328974373s ago: executing program 3 (id=347):
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x3ff, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x5)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0xdd)

1m54.64928172s ago: executing program 3 (id=352):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100))
r1 = syz_open_pts(r0, 0xea642)
write$binfmt_aout(r1, 0x0, 0x0)

1m54.40277218s ago: executing program 3 (id=354):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000400)='./file0\x00', 0x2000202, &(0x7f0000000480)={[{@iocharset={'iocharset', 0x3d, 'cp860'}}, {@gid}, {@gid}, {@rootdir={'rootdir', 0x3d, 0x4}}, {@uid}, {}, {@utf8}, {@anchor={'anchor', 0x3d, 0xf87a}}, {@umask={'umask', 0x3d, 0x70ed}}]}, 0x1, 0xc3b, &(0x7f0000001a40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

1m53.513209866s ago: executing program 3 (id=360):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3804402, &(0x7f0000000bc0)={[{@user_xattr}, {@nojournal_checksum}, {@resuid}, {@errors_remount}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x1}}, {@noinit_itable}, {@nomblk_io_submit}, {@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000002f80)="$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")
truncate(&(0x7f0000000040)='./file1\x00', 0x7fff)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
fallocate(r0, 0x20, 0x4000, 0x8000)

1m52.731269293s ago: executing program 3 (id=364):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000010000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af25, &(0x7f0000000140)=0x0)

1m52.159609752s ago: executing program 33 (id=364):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000010000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af25, &(0x7f0000000140)=0x0)

54.885628021s ago: executing program 2 (id=799):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x5c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x1000000, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x4}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0x3}]}}}]}, 0x5c}}, 0x0)

54.61337258s ago: executing program 2 (id=801):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0)

54.169096029s ago: executing program 2 (id=803):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x2c}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000cc0)={{r1}, &(0x7f0000000c40), &(0x7f0000000c80)=r0}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000b00)={{r1}, &(0x7f0000000a80), &(0x7f0000000ac0)='%-5lx  \x00'}, 0x20)

53.855498497s ago: executing program 2 (id=807):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
open(&(0x7f0000001500)='./file2\x00', 0xe080, 0x0)

52.952161083s ago: executing program 2 (id=814):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x9}}]}, 0x4c}}, 0x0)

52.437756782s ago: executing program 2 (id=819):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc0bc5351, &(0x7f0000000300)={0x0, 0x0, 'client1\x00', 0x80000004, "fada128e1d9fabfc", "1f15f151ad62129d4b65d8423deaf5612fd98ea9387ef3469e0d395c3520ff23"})

51.99964943s ago: executing program 34 (id=819):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc0bc5351, &(0x7f0000000300)={0x0, 0x0, 'client1\x00', 0x80000004, "fada128e1d9fabfc", "1f15f151ad62129d4b65d8423deaf5612fd98ea9387ef3469e0d395c3520ff23"})

15.861567258s ago: executing program 4 (id=1158):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0xfc, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
listen(r0, 0x3)

14.695095104s ago: executing program 4 (id=1169):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [], 0xa, '\\d'}, 0xd)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000540)=""/154, 0x9a}], 0x1, 0x2, 0x1)

14.594020273s ago: executing program 4 (id=1171):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0x10, &(0x7f0000000040), 0x4)
sendmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
connect$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)

14.523242823s ago: executing program 4 (id=1172):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
open(&(0x7f0000001500)='./file2\x00', 0xe080, 0x0)

13.866486451s ago: executing program 4 (id=1179):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000fc007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000001a00)={r1, 0x1}, 0xc)

13.301212548s ago: executing program 4 (id=1182):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x15)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188)

12.971947557s ago: executing program 35 (id=1182):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x15)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188)

4.424652176s ago: executing program 0 (id=1237):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="5401000010003306000000000000000000000000000000000000000000000000000000010000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0000000000000000000000000000010000000032000000fe8000000000000000000000000000aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000a000400610000000000000048000200656362286369706865725f6e756c6c2900"], 0x154}, 0x1, 0x0, 0x0, 0x24040000}, 0x0)

3.838827024s ago: executing program 0 (id=1242):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000080)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xce024d}, 0x9c)

3.766934614s ago: executing program 0 (id=1243):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000200)={0x2c, &(0x7f0000000040)={0x0, 0x11, 0x5, {0x5, 0x11, "61121c"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000080)='Q')

2.176636458s ago: executing program 6 (id=1261):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f00000000c0), 0x10)
r1 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r1, &(0x7f0000000040)={0x2, 0x0, @empty, 0x18}, 0x10)

2.059182908s ago: executing program 6 (id=1262):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0xfc, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
listen(r0, 0x3)

2.024625437s ago: executing program 7 (id=1263):
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
r0 = syz_open_dev$dmmidi(&(0x7f00000002c0), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x40045702, &(0x7f0000000000))
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000280)={0x0, 0x9e, 0x3, 0x0, 0x81})

1.937061457s ago: executing program 5 (id=1264):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r0, 0x1)
setsockopt$sock_int(r1, 0x1, 0x22, &(0x7f0000000040)=0x7, 0x4)
recvmmsg(r1, &(0x7f0000003000)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x40000340, 0x0)

1.849058847s ago: executing program 7 (id=1265):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_FROZEN_INFO(r0, 0xc00c620f, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001680)={0x4, 0x0, &(0x7f0000000640)=[@enter_looper], 0x1, 0x0, &(0x7f0000000680)='W'})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001740)="d7"})

1.734028446s ago: executing program 0 (id=1266):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00')
preadv(r1, &(0x7f0000000b40)=[{&(0x7f0000000380)=""/218, 0xda}, {&(0x7f0000000b80)=""/133, 0x85}], 0x2, 0x14a, 0x0)

1.733902116s ago: executing program 5 (id=1267):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000440)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_LOW_RATE_THRESHOLD={0x8, 0xb, 0x2}, @TCA_FQ_RATE_ENABLE={0x8, 0x5, 0xfffffffc}]}}]}, 0x40}}, 0x0)

1.563223476s ago: executing program 5 (id=1268):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x105042, 0x0)
setreuid(0x0, 0xee00)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000280)=ANY=[], 0x4000)

1.560777076s ago: executing program 0 (id=1269):
syz_open_dev$sg(&(0x7f0000000340), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_setup(0x6, &(0x7f0000001380)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x1000000, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

1.393771865s ago: executing program 0 (id=1270):
r0 = syz_usb_connect$hid(0x0, 0x3b, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5543, 0x522, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000300)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x000!\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfe3a)

1.238186544s ago: executing program 5 (id=1271):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f00000000c0), 0x10)
r1 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r1, &(0x7f0000000040)={0x2, 0x0, @empty, 0x18}, 0x10)

1.096997904s ago: executing program 6 (id=1272):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
setresuid(0x0, 0xee00, 0x0)
fchdir(r0)

996.559574ms ago: executing program 5 (id=1273):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000000b3000040"])

970.093034ms ago: executing program 6 (id=1274):
landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
r0 = io_uring_setup(0x1de0, &(0x7f0000000440))
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x16, 0x20000028, r1)

881.067393ms ago: executing program 7 (id=1275):
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

758.318743ms ago: executing program 6 (id=1276):
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xabf, &(0x7f0000002340)="$eJzs3U2MW0fhAPCxd73JJuk/Tv8JXdLQJhTa8tFNs7uEjwiSKhESUVMhLpUiLlGalogQJIoEVJVIcuJGqypInPgQp16qgpDoBUU9calEI1VIPRUOHIiCqMQBAonReme89sTusze7fnb8+0mz43kzzzPP+/z8PmcCMLGqzb9LS3OVEC6/8cqxvz3819nlKYdbJerNv9NtqVoIoRLT09n7vTe1Et98/8XT3eJKWGj+Tenw1PXWvFtDCBfC3nAl1MPuy1dffmvhyRMXj1/a9/arh65tzNIDAMBk+eqVQ0u7/vzH+3fceO2BI2FTmrz8orl/Xo8TtsX9/iNxxz/t/1dDZ7rSFtrNZOWmY6jOdpab6lKuvZ5aVm66R/0zWf21HuU2hQ+uf6ptWrflhnGW1uN6qFTnO9LV6vz8yjF5aB7Xz1Tmz5899+zzJTUUWHf/fDCEsLctHL3UmR61cHgE2pCF5r5FH+UaI9DWsQxHhlfXjcaK0pd5SKGxvewtEMCK/HrhbS7kZxbuTOvdpvur//oT1e7zwzoY9vo/UP0zJdcf1P+ri7Y4rJ+7dW1Ky5W+R9tiOr+OkN+/1Pv7l1/p6JyaX4+o9dnOXtcRxuX6Qq92Tg25HWvVq/35enG3+mKM0+fwpSy//fuT/0/H5X8MdPev/Py/IAijHUJHunYn79UoefsDjK78vrlGuj4a5ff15fmbCvI3F+TPFuRvKcjfWpAPk+w33/1xeKmyepyfH9MPej48nWe7J8b/N2B78vORg9af3/c7qDutP7+fGEbZ7049feZzz5y8unL/f6W1/t+K63s63KjH79aVWCCdL8zPq7fu/a931lPtUe7erD33dCnffL2zs1xl5+r7hLbtzG3tmOucb3uvcns6y9WzcrMxbM7am++fbMnmS/sfabuaPq/pbHlr2XLMZO1I25UdMc7bAWuR1sde9/+n9XMu1CrPnj135vGYTuvpH6Zqm5anHxhyu4E71+/zP3Oh8/mfba3ptWr7dmH76vTKynbh9fh+ndMXWvV0Tl+M6fQ7942p2eb0+dPfPvfM+i8+TLTnf/DCN0+dO3fmO6W/WJwNYQSasYYXXx6NZgzyIh22jEp7vBi5FyVvmIANt/+HKzsBj5391qnnzjx35vziwYOLCwsHP7+4tL+5X7+/fe++3YUSWgusp9Uf/bJbAgAAAAAAAAAAAPTre8ePXX3nzc++u/L8/+rzf+n5/3Tnb3r+/0fZ8//5c/LpOfj0HOCOLvnNMlkHqzNZuVoM/5+1d2dWz65svg/FuDWOX3z+P1WX9+ua2nNfNr3WI5l1J3BbfykzWR8k+XiBH43xpRj/MkCJKrPdJ8e4qH/rtK6n/ina+qVo6B94fKT/W1obUj8m6fnvrv06tf2zdwyhjay/YTxOWPYyAt39faL6//7H6oKX3hahd5gebn0/ndx1otFzL73fEWwA1kfZ43+m854pPv/7r2xeDqnY9Sc6t5d5/6UwiD+905ke9fEnN7r+fNy+Yddf9vIPe/zP1vh3fW//shHz6mur998/u/ZuW7Vhd7/158uf+oHeOVj9N2L9aWkeCf3V3/hFVn9+QahP/8nq39Jn/bct/5611f/fWH/62B59qN/6V1pcqXa2Iz9vnK7/5eeNk5vZ8qe+PT+g/q+90G351zhQ461YP0yycRlndlDZfkRrp33t4/9GF9Z3/N9WY7PNWn4fxmdiOm2I030O+Xgng7Y/3V+Rfgd2Ze9fKfh9M/7vePtCjIu+D2n837Q+1uNPflu6+VmmdK3LZ3u3bmtgXL03Udf/1iGc3PA6Npe+jCMfjoxAG1qhMbWG+VrjxJXc/kajsbEntAqUWjmlf/5lHyeUXX/Zn3+RfPzffB8+H/83z8/H/83z8/F/8/zZ+B/qlZ+P/5t/nvn4v3n+fdn75uMDzxXkf7ggf3f3/NZh+/0F8+8pyP9IQf6+Vv7hjhIp/4GC+R8syL+3IP+hgvyPFeR/vCD/4YL8R9vy28eATvmfKJj/bpeeR5nU5YdJlj+f5/sPkyNd/+n1/d9ZkA+Mr5+8duDoyV9/vb7y/P9M63xIuo53JKZr8fjp+zGdX/cObenlvDdj+i9Z/qif74BJkvefkf++P1KQD4yvdJ+X7zdMoMrm7pNjXNRvVa/9fMbLJ2P8qRh/OsaPxXg+xvtjfCDGC0NqHxvj6Ou/PfRSZfV4f3uW3+/95PnzQB39RIUQFvtsT35+YND72fN+/AZ1p/Wv8XEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA0lSbf5eW5iohXH7jlWNPnzi7f3nK4VaJevPvdFuq1povhMdjPBXjn8cXN99/8XR7fCvGlbAQKqHSmh6eut6qaWsI4ULYG66Eeth9+erLby08eeLi8Uv73n710LWN+wQAAADg7ve/AAAA//+NnAuo")
link(&(0x7f0000000280)='./file1\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mount(0x0, &(0x7f00000001c0)='.\x00', 0x0, 0x10f4c2a, 0x0)
rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000c80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00')

643.937182ms ago: executing program 5 (id=1277):
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x3200c02, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x3, 0xa94, &(0x7f0000001280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xfd06)
ftruncate(r0, 0x0)

643.368352ms ago: executing program 7 (id=1278):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x2c, r0, 0x121, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0x2c}}, 0x0)

373.290562ms ago: executing program 7 (id=1279):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)=""/202, 0xca}, {&(0x7f0000000940)=""/4091, 0xffb}], 0x2}, 0x2000)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)

144.27643ms ago: executing program 7 (id=1280):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000023c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32\x00'}, 0x58)
r1 = accept4$alg(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000700)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000200)="a35e90f696", 0x5}], 0x1, 0x0, 0x0, 0x24000014}], 0x1, 0x20000881)

54.89632ms ago: executing program 8 (id=1183):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2})

0s ago: executing program 6 (id=1281):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x42, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f0080047e0ffff00124000632f77fbac14fe16e0001e0a07080403fe80003f51b7140020006558845013f2325f1a3901050b038da1880b", 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x50)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="1e031800dd5c980128854d4a828e00000000002f"], 0xffdd)

kernel console output (not intermixed with test programs):

8] sysv_free_block: getblk() failed
[  151.687509][ T5098] sysv_free_block: getblk() failed
[  151.692710][ T5098] sysv_free_block: getblk() failed
[  151.714238][ T5098] sysv_free_block: getblk() failed
[  151.724327][ T5098] sysv_free_block: getblk() failed
[  151.732606][ T5098] sysv_free_block: getblk() failed
[  151.763008][ T5098] sysv_free_block: trying to free block not in datazone
[  151.800634][ T5098] sysv_free_block: trying to free block not in datazone
[  151.818290][ T5098] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  151.963710][ T6062] netlink: 8 bytes leftover after parsing attributes in process `syz.5.529'.
[  152.263147][ T6072] loop5: detected capacity change from 0 to 64
[  152.403658][ T6072] Trying to free block not in datazone
[  152.928199][ T6090] bridge0: port 3(syz_tun) entered blocking state
[  152.934838][ T6090] bridge0: port 3(syz_tun) entered disabled state
[  152.979925][ T6090] device syz_tun entered promiscuous mode
[  153.006812][ T6090] bridge0: port 3(syz_tun) entered blocking state
[  153.014950][ T6090] bridge0: port 3(syz_tun) entered forwarding state
[  153.082524][ T6098] syzkaller0: tun_chr_ioctl cmd 2148553947
[  153.514726][ T6112] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  153.523363][ T6112] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  153.570741][ T6112] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  153.577282][ T6112] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  153.612735][ T6112] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  153.619271][ T6112] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  153.640439][ T6112] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  153.646958][ T6112] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  153.665475][ T5461] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  153.674412][ T6112] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  153.680936][ T6112] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  153.814295][ T6085] loop6: detected capacity change from 0 to 32768
[  153.860043][ T4874] udevd[4874]: symlink '../../loop6' '/dev/disk/by-uuid/45b0d9a3-5e0b-4fd0-ae05-2ff6b274033b.tmp-b7:6' failed: Read-only file system
[  153.877124][ T5461] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  153.891643][ T5461] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.952424][ T5461] usb 5-1: config 0 descriptor??
[  153.979050][ T5461] cp210x 5-1:0.0: cp210x converter detected
[  154.321454][   T27] audit: type=1326 audit(1737662197.361:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f238cd29 code=0x7ffc0000
[  154.385762][ T5461] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[  154.396439][   T27] audit: type=1326 audit(1737662197.401:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f238cd29 code=0x7ffc0000
[  154.422026][ T5461] usb 5-1: cp210x converter now attached to ttyUSB0
[  154.500742][   T27] audit: type=1326 audit(1737662197.401:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb2f238b690 code=0x7ffc0000
[  154.613164][ T5461] usb 5-1: USB disconnect, device number 5
[  154.633367][ T5461] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  154.644601][   T27] audit: type=1326 audit(1737662197.401:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb2f238b690 code=0x7ffc0000
[  154.715355][ T5461] cp210x 5-1:0.0: device disconnected
[  154.751509][   T27] audit: type=1326 audit(1737662197.401:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f238cd29 code=0x7ffc0000
[  154.781089][ T6148] loop2: detected capacity change from 0 to 2048
[  154.821013][ T4874] udevd[4874]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  154.838132][   T27] audit: type=1326 audit(1737662197.401:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7fb2f238cd29 code=0x7ffc0000
[  154.879579][ T6148] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  154.909376][ T4874] udevd[4874]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  154.939695][ T6148] EXT4-fs (loop2): shut down requested (2)
[  154.946203][   T27] audit: type=1326 audit(1737662197.401:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.5.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2f238cd29 code=0x7ffc0000
[  155.076534][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  155.497244][ T6166] mkiss: ax0: crc mode is auto.
[  155.666334][ T6170] tipc: Started in network mode
[  155.671289][ T6170] tipc: Node identity ac14140f, cluster identity 4711
[  155.727763][ T6170] tipc: New replicast peer: 255.255.255.255
[  155.785284][ T6170] tipc: Enabled bearer <udp:syz2>, priority 10
[  156.150692][ T6153] loop6: detected capacity change from 0 to 32768
[  156.246379][ T4874] udevd[4874]: symlink '../../loop6' '/dev/disk/by-uuid/45b0d9a3-5e0b-4fd0-ae05-2ff6b2740000.tmp-b7:6' failed: Read-only file system
[  156.285457][ T4295] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  156.472222][ T6160] loop2: detected capacity change from 0 to 32768
[  156.495502][ T4295] usb 1-1: Using ep0 maxpacket: 8
[  156.507077][ T4295] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  156.547655][ T4295] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.549262][ T4874] udevd[4874]: symlink '../../loop2' '/dev/disk/by-uuid/3550edcd-4d53-4e80-911f-c2d0fbc49ebf.tmp-b7:2' failed: Read-only file system
[  156.568912][ T6190] netlink: 36 bytes leftover after parsing attributes in process `syz.5.573'.
[  156.585381][ T4295] usb 1-1: Product: syz
[  156.599842][ T4295] usb 1-1: Manufacturer: syz
[  156.604499][ T4295] usb 1-1: SerialNumber: syz
[  156.642137][ T4295] usb 1-1: config 0 descriptor??
[  156.699940][ T6162] loop4: detected capacity change from 0 to 40427
[  156.705165][ T4295] gspca_main: se401-2.14.0 probing 047d:5003
[  156.754401][ T6162] F2FS-fs (loop4): invalid crc value
[  156.784880][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:4' failed: Read-only file system
[  156.831604][ T6162] F2FS-fs (loop4): Found nat_bits in checkpoint
[  156.897786][ T5461] tipc: Node number set to 2886997007
[  157.047569][ T6162] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[  157.062685][ T6201] loop6: detected capacity change from 0 to 512
[  157.075734][ T6162] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  157.121052][ T4295] gspca_se401: ExtraFeatures: 47
[  157.129882][ T4295] gspca_se401: Too many frame sizes
[  157.141347][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:4' failed: Read-only file system
[  157.179679][ T6201] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  157.215829][ T6201] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.235438][ T6201] netlink: 8 bytes leftover after parsing attributes in process `syz.6.572'.
[  157.244429][ T6201] netlink: 48 bytes leftover after parsing attributes in process `syz.6.572'.
[  157.279036][ T6201] device geneve2 entered promiscuous mode
[  157.302866][ T6162] syz.4.564: attempt to access beyond end of device
[  157.302866][ T6162] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  157.331676][ T4295] usb 1-1: USB disconnect, device number 4
[  157.414755][ T4874] udevd[4874]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  157.464941][ T4874] udevd[4874]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  157.752715][ T4361] udevd[4361]: symlink '../../loop2' '/dev/disk/by-uuid/3550edcd-4d53-4e80-911f-c2d0fbc49ebf.tmp-b7:2' failed: Read-only file system
[  158.106150][ T6160] find_entry called with index = 0
[  158.111817][ T6160] find_entry called with index = 0
[  158.127450][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  158.143597][ T6160] find_entry called with index = 0
[  158.157753][ T6160] find_entry called with index = 0
[  158.178943][ T6160] find_entry called with index = 0
[  158.224711][ T6160] find_entry called with index = 0
[  158.242466][ T6223] mkiss: ax0: crc mode is auto.
[  158.268512][ T6160] find_entry called with index = 0
[  158.294111][ T6160] find_entry called with index = 0
[  158.336897][ T6160] find_entry called with index = 0
[  158.554665][ T6232] loop4: detected capacity change from 0 to 2048
[  158.628112][ T6232] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  158.671237][ T6232] UDF-fs: Scanning with blocksize 512 failed
[  158.674583][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-label/LinuxUDF.tmp-b7:4' failed: Read-only file system
[  158.719484][ T6232] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  158.761409][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-uuid/1234567812345678.tmp-b7:4' failed: Read-only file system
[  159.297504][ T6254] Process accounting resumed
[  159.335565][ T6254] kernel write not supported for file /279/clear_refs (pid: 6254 comm: syz.4.587)
[  159.650769][ T6266] netlink: 340 bytes leftover after parsing attributes in process `syz.5.594'.
[  159.923675][ T6277] loop5: detected capacity change from 0 to 256
[  160.046766][ T6277] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  160.693494][ T6293] device vlan2 entered promiscuous mode
[  160.777730][ T6298] loop2: detected capacity change from 0 to 65
[  160.796344][ T6298] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  161.076780][ T6310] hugetlbfs: syz.4.607 (6310): Using mlock ulimits for SHM_HUGETLB is obsolete
[  161.219207][ T6316] loop5: detected capacity change from 0 to 512
[  161.287654][ T6316] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  161.310494][ T6316] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.348048][ T4874] udevd[4874]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  161.355281][ T4294] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  161.547019][ T6329] EXT4-fs error (device loop5): ext4_empty_dir:3154: inode #12: block 31: comm syz.5.609: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=1, rec_len=6, size=1024 fake=1
[  161.573142][ T4294] usb 1-1: Using ep0 maxpacket: 8
[  161.584178][ T4294] usb 1-1: config 0 has no interfaces?
[  161.595897][ T4294] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  161.625457][ T4294] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.665892][ T4294] usb 1-1: Product: syz
[  161.670231][ T4294] usb 1-1: Manufacturer: syz
[  161.674975][ T4294] usb 1-1: SerialNumber: syz
[  161.721463][ T4294] usb 1-1: config 0 descriptor??
[  161.726567][ T6329] EXT4-fs (loop5): Remounting filesystem read-only
[  161.781245][ T6329] EXT4-fs warning (device loop5): ext4_empty_dir:3156: inode #12: comm syz.5.609: directory missing '..'
[  161.968768][ T4565] usb 1-1: USB disconnect, device number 5
[  162.013465][ T6325] loop4: detected capacity change from 0 to 32768
[  162.022417][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  162.074433][ T6325] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop4 scanned by syz.4.612 (6325)
[  162.141727][ T6325] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  162.155973][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-uuid/3d39d0ba-bdae-447e-827b-b091e1a68885.tmp-b7:4' failed: Read-only file system
[  162.204997][ T6348] loop5: detected capacity change from 0 to 1024
[  162.224204][ T6325] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  162.279903][ T6348] EXT4-fs: Ignoring removed nobh option
[  162.289865][ T6325] BTRFS info (device loop4): setting nodatacow, compression disabled
[  162.308863][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  162.329972][ T6325] BTRFS info (device loop4): turning on flush-on-commit
[  162.355287][ T6325] BTRFS info (device loop4): using free space tree
[  162.381415][ T6348] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  162.460910][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  162.577009][ T6325] BTRFS info (device loop4): enabling ssd optimizations
[  162.742601][ T4874] udevd[4874]: symlink '../../loop4' '/dev/disk/by-uuid/3d39d0ba-bdae-447e-827b-b091e1a68885.tmp-b7:4' failed: Read-only file system
[  162.750940][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  163.070838][ T6388] loop6: detected capacity change from 0 to 512
[  163.085864][ T4258] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  163.135984][ T6388] EXT4-fs: Ignoring removed nomblk_io_submit option
[  163.205151][ T4361] udevd[4361]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  163.576913][ T6388] EXT4-fs error (device loop6): ext4_do_update_inode:5224: inode #16: comm syz.6.623: corrupted inode contents
[  163.592162][ T6390] loop0: detected capacity change from 0 to 8192
[  163.632208][ T6388] EXT4-fs error (device loop6): ext4_dirty_inode:6089: inode #16: comm syz.6.623: mark_inode_dirty error
[  163.666876][ T6388] EXT4-fs error (device loop6): ext4_do_update_inode:5224: inode #16: comm syz.6.623: corrupted inode contents
[  163.698269][ T6388] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #16: comm syz.6.623: mark_inode_dirty error
[  163.753713][ T4361] udevd[4361]: symlink '../../loop0' '/dev/disk/by-label/SYZKALLER.tmp-b7:0' failed: Read-only file system
[  163.757652][ T6388] EXT4-fs error (device loop6): ext4_do_update_inode:5224: inode #16: comm syz.6.623: corrupted inode contents
[  163.802062][ T4361] udevd[4361]: symlink '../../loop0' '/dev/disk/by-uuid/1DC8-C73B.tmp-b7:0' failed: Read-only file system
[  163.894182][ T6388] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  163.921281][ T6363] loop2: detected capacity change from 0 to 40427
[  163.931202][ T6388] EXT4-fs error (device loop6): ext4_do_update_inode:5224: inode #16: comm syz.6.623: corrupted inode contents
[  163.956439][ T5551] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  163.981975][ T6363] F2FS-fs (loop2): invalid crc value
[  163.994215][ T6388] EXT4-fs error (device loop6): ext4_truncate:4311: inode #16: comm syz.6.623: mark_inode_dirty error
[  164.001512][ T4361] udevd[4361]: symlink '../../loop2' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:2' failed: Read-only file system
[  164.035575][ T6388] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  164.054664][ T6363] F2FS-fs (loop2): Found nat_bits in checkpoint
[  164.072065][ T6388] EXT4-fs (loop6): 1 truncate cleaned up
[  164.088689][ T6388] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  164.113303][ T4634] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  164.119230][ T6388] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.145595][ T4634] EXT4-fs error (device loop6): ext4_release_dquot:6817: comm kworker/u4:7: Failed to release dquot type 1
[  164.167297][ T5551] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  164.234735][ T5551] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  164.264047][ T4874] udevd[4874]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  164.285318][ T6363] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  164.294171][ T5551] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  164.324829][ T5551] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.368497][ T6400] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  164.517257][ T6388] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  164.595625][ T6388] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  164.658749][ T6424] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  164.695353][ T6388] EXT4-fs error (device loop6): ext4_acquire_dquot:6794: comm syz.6.623: Failed to acquire dquot type 1
[  164.735516][ T6424] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  164.770425][   T14] usb 6-1: USB disconnect, device number 2
[  164.786778][ T6424] EXT4-fs error (device loop6): ext4_acquire_dquot:6794: comm syz.6.623: Failed to acquire dquot type 1
[  164.816057][ T4250] syz-executor: attempt to access beyond end of device
[  164.816057][ T4250] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  165.043309][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  165.076665][   T11] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  165.115839][   T11] EXT4-fs error (device loop6): ext4_release_dquot:6817: comm kworker/u4:1: Failed to release dquot type 1
[  165.242255][ T6438] netlink: 8 bytes leftover after parsing attributes in process `syz.0.637'.
[  165.326298][ T6438] netlink: 'syz.0.637': attribute type 1 has an invalid length.
[  165.392435][ T6438] netlink: 'syz.0.637': attribute type 2 has an invalid length.
[  165.683881][ T6449] loop4: detected capacity change from 0 to 2048
[  165.776570][ T6457] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  165.914902][ T6455] loop5: detected capacity change from 0 to 4096
[  166.028503][ T6464] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  166.159610][   T27] audit: type=1800 audit(1737662209.201:25): pid=6455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.641" name="file1" dev="loop5" ino=15 res=0 errno=0
[  166.216710][ T6455] syz.5.641 (6455) used greatest stack depth: 18224 bytes left
[  167.651807][ T6487] loop0: detected capacity change from 0 to 32768
[  167.691573][ T6476] loop6: detected capacity change from 0 to 40427
[  167.742857][ T6487] XFS (loop0): Mounting V5 Filesystem
[  167.758864][ T4874] udevd[4874]: symlink '../../loop0' '/dev/disk/by-uuid/986211a9-7d00-4ebf-a576-e3de63fa2cbd.tmp-b7:0' failed: Read-only file system
[  167.786821][ T6476] F2FS-fs (loop6): invalid crc value
[  167.859486][ T6499] loop2: detected capacity change from 0 to 32768
[  167.881376][ T6499] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.655 (6499)
[  167.928226][ T4361] udevd[4361]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:6' failed: Read-only file system
[  167.942328][ T6476] F2FS-fs (loop6): Found nat_bits in checkpoint
[  167.978741][ T6499] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.980146][ T6487] XFS (loop0): Ending clean mount
[  167.997066][ T6499] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  168.024685][ T4874] udevd[4874]: symlink '../../loop2' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:2' failed: Read-only file system
[  168.037688][ T6499] BTRFS info (device loop2): using free space tree
[  168.132627][ T4361] udevd[4361]: symlink '../../loop0' '/dev/disk/by-uuid/986211a9-7d00-4ebf-a576-e3de63fa2cbd.tmp-b7:0' failed: Read-only file system
[  168.264916][ T4261] XFS (loop0): Unmounting Filesystem
[  168.281323][ T6476] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  168.333498][ T4361] udevd[4361]: symlink '../../loop6' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:6' failed: Read-only file system
[  168.592180][ T6499] BTRFS info (device loop2): enabling ssd optimizations
[  168.655752][ T4874] udevd[4874]: symlink '../../loop2' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:2' failed: Read-only file system
[  168.971828][ T4250] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  169.111884][ T6554] loop5: detected capacity change from 0 to 8192
[  169.132461][ T6554] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  169.232115][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  169.276979][ T6554] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  169.287991][ T6554] REISERFS (device loop5): using ordered data mode
[  169.294544][ T6554] reiserfs: using flush barriers
[  169.312415][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-uuid/12312308-1233-1233-1231-123413412412.tmp-b7:5' failed: Read-only file system
[  169.357815][ T6554] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  169.399246][ T6565] loop0: detected capacity change from 0 to 64
[  169.425743][ T6554] REISERFS (device loop5): checking transaction log (loop5)
[  169.458837][ T6554] REISERFS (device loop5): Using r5 hash to sort names
[  169.503785][ T6565] Trying to free block not in datazone
[  169.510194][ T6554] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  169.528169][ T6567] device veth1_to_bond entered promiscuous mode
[  169.544551][ T6565] Trying to free block not in datazone
[  169.557684][ T6567] device veth1_to_bond left promiscuous mode
[  169.563951][ T6565] Trying to free block not in datazone
[  169.574069][ T6554] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  169.604571][ T6565] Trying to free block not in datazone
[  169.615879][ T6565] minix_free_block (loop0:6): bit already cleared
[  169.650906][ T6565] Trying to free block not in datazone
[  169.671142][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system
[  169.685367][ T6565] Trying to free block not in datazone
[  169.735013][ T5503] syz-executor: attempt to access beyond end of device
[  169.735013][ T5503] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.744893][ T4361] udevd[4361]: symlink '../../loop5' '/dev/disk/by-uuid/12312308-1233-1233-1231-123413412412.tmp-b7:5' failed: Read-only file system
[  170.023734][ T6573] loop0: detected capacity change from 0 to 16
[  170.102588][ T6573] erofs: (device loop0): mounted with root inode @ nid 36.
[  170.541053][ T6559] loop4: detected capacity change from 0 to 32768
[  170.595908][ T6559] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.664 (6559)
[  170.667234][ T6559] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  170.714911][ T6559] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  170.771113][ T6559] BTRFS info (device loop4): metadata ratio 2
[  170.811561][ T6559] BTRFS info (device loop4): force zlib compression, level 3
[  170.845976][ T6559] BTRFS info (device loop4): enabling auto defrag
[  170.882934][ T6559] BTRFS info (device loop4): max_inline at 0
[  170.905854][ T6559] BTRFS info (device loop4): using free space tree
[  171.387939][ T6621] loop6: detected capacity change from 0 to 128
[  171.554198][ T6621] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  171.612017][ T6621] ext4 filesystem being mounted at /32/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  171.771615][ T4258] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  171.935263][   T14] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  172.092984][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  172.142232][   T14] usb 6-1: Using ep0 maxpacket: 16
[  172.176099][   T14] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11
[  172.194982][   T14] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  172.214303][   T14] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  172.233011][   T14] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.272628][   T14] usb 6-1: config 0 descriptor??
[  172.727492][   T14] kovaplus 0003:1E7D:2D50.0003: unknown main item tag 0x0
[  172.746059][   T14] kovaplus 0003:1E7D:2D50.0003: unknown main item tag 0x0
[  172.831639][   T14] kovaplus 0003:1E7D:2D50.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.5-1/input0
[  173.161464][   T27] audit: type=1326 audit(1737662216.201:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.168142][   T14] kovaplus 0003:1E7D:2D50.0003: couldn't init struct kovaplus_device
[  173.194452][ T6675] loop6: detected capacity change from 0 to 1024
[  173.273440][   T14] kovaplus 0003:1E7D:2D50.0003: couldn't install mouse
[  173.301485][   T27] audit: type=1326 audit(1737662216.251:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.357360][   T14] kovaplus: probe of 0003:1E7D:2D50.0003 failed with error -71
[  173.397401][ T4361] udevd[4361]: failed to send result of seq 13321 to main daemon: Connection refused
[  173.405703][   T14] usb 6-1: USB disconnect, device number 3
[  173.436799][   T27] audit: type=1326 audit(1737662216.251:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.463628][ T4361] printk: udevd: 11 output lines suppressed due to ratelimiting
[  173.511130][ T6682] loop4: detected capacity change from 0 to 256
[  173.570003][   T27] audit: type=1326 audit(1737662216.251:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.639730][   T27] audit: type=1326 audit(1737662216.251:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.725051][   T27] audit: type=1326 audit(1737662216.251:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa170b8cd29 code=0x7ffc0000
[  173.815361][   T27] audit: type=1326 audit(1737662216.251:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa170b83ce7 code=0x7ffc0000
[  173.865879][   T11] hfsplus: b-tree write err: -5, ino 4
[  173.893769][   T27] audit: type=1326 audit(1737662216.261:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa170b28f29 code=0x7ffc0000
[  173.990096][   T27] audit: type=1326 audit(1737662216.261:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa170b83ce7 code=0x7ffc0000
[  174.090125][   T27] audit: type=1326 audit(1737662216.261:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.4.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa170b28f29 code=0x7ffc0000
[  174.720068][ T6678] loop0: detected capacity change from 0 to 40427
[  174.747303][ T6678] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff
[  174.794379][ T6678] F2FS-fs (loop0): invalid crc value
[  174.800675][ T6714] netlink: 4 bytes leftover after parsing attributes in process `syz.4.699'.
[  174.837873][ T6678] F2FS-fs (loop0): Found nat_bits in checkpoint
[  174.997863][ T6678] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  175.003377][ T6694] loop6: detected capacity change from 0 to 32768
[  175.052184][ T6694] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.691 (6694)
[  175.073912][ T6694] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  175.091768][ T6694] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  175.100871][ T6694] BTRFS info (device loop6): metadata ratio 2
[  175.113122][ T6694] BTRFS info (device loop6): force zlib compression, level 3
[  175.120834][ T6694] BTRFS info (device loop6): enabling auto defrag
[  175.133013][ T6694] BTRFS info (device loop6): max_inline at 0
[  175.139293][ T6694] BTRFS info (device loop6): using free space tree
[  175.184002][ T4261] syz-executor: attempt to access beyond end of device
[  175.184002][ T4261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  175.308719][ T6729] loop4: detected capacity change from 0 to 1764
[  175.507769][ T6751] netlink: 'syz.2.705': attribute type 16 has an invalid length.
[  175.517359][ T6751] netlink: 'syz.2.705': attribute type 3 has an invalid length.
[  175.525892][ T6751] netlink: 64066 bytes leftover after parsing attributes in process `syz.2.705'.
[  175.774821][ T5503] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  175.847464][ T6764] program syz.2.708 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  176.978751][ T6757] loop5: detected capacity change from 0 to 32768
[  177.125540][ T6757] XFS (loop5): Mounting V5 Filesystem
[  177.327506][ T6757] XFS (loop5): Ending clean mount
[  177.383502][ T6757] XFS (loop5): Quotacheck needed: Please wait.
[  177.485824][ T6757] XFS (loop5): Quotacheck: Done.
[  177.758218][ T5098] XFS (loop5): Unmounting Filesystem
[  177.878720][ T6811] loop4: detected capacity change from 0 to 32768
[  177.983356][ T6791] loop6: detected capacity change from 0 to 40427
[  178.001668][ T6839] loop2: detected capacity change from 0 to 512
[  178.035817][ T6791] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  178.059472][ T6839] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  178.066398][ T6791] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  178.102066][ T6791] F2FS-fs (loop6): invalid crc value
[  178.142877][ T6791] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  178.174104][ T6791] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  178.204634][ T6839] EXT4-fs (loop2): 1 truncate cleaned up
[  178.215463][ T6839] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  178.387670][ T6852] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #15: comm syz.2.728: corrupted xattr block 33
[  178.414408][ T6791] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  178.437888][ T6791] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  178.452242][ T6852] EXT4-fs (loop2): Remounting filesystem read-only
[  178.470854][ T6852] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #15: comm syz.2.728: corrupted xattr block 33
[  178.496880][ T6852] EXT4-fs (loop2): Remounting filesystem read-only
[  178.507386][ T6852] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117)
[  178.644465][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  178.761590][ T6862] net_ratelimit: 66 callbacks suppressed
[  178.761608][ T6862] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  179.005279][ T4296] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  179.111727][ T6869] loop0: detected capacity change from 0 to 4096
[  179.120569][ T6869] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[  179.200343][ T6869] ntfs3: loop0: Failed to load $Extend.
[  179.200808][ T4296] usb 5-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.235372][ T4296] usb 5-1: config 0 interface 0 has no altsetting 0
[  179.248560][ T4296] usb 5-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  179.258860][ T4296] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.268974][ T4296] usb 5-1: config 0 descriptor??
[  179.338501][ T6875] loop2: detected capacity change from 0 to 128
[  179.408869][ T6875] VFS: Found a Xenix FS (block size = 512) on device loop2
[  179.443470][ T6875] sysv_free_block: trying to free block not in datazone
[  179.479092][ T6875] sysv_count_free_blocks: free block count was -2041545929, correcting to 9
[  179.570295][ T6875] sysv_count_free_inodes: unable to read inode table
[  179.696716][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.704187][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.727523][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.745274][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.757360][ T4250] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  179.757532][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.801517][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.829902][ T4296] logitech 0003:046D:C29C.0004: unknown main item tag 0x0
[  179.858014][ T4296] logitech 0003:046D:C29C.0004: hidraw0: USB HID v10.00 Device [HID 046d:c29c] on usb-dummy_hcd.4-1/input0
[  179.875457][   T27] kauditd_printk_skb: 6 callbacks suppressed
[  179.875474][   T27] audit: type=1326 audit(1737662222.911:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm="syz.6.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  179.955475][   T27] audit: type=1326 audit(1737662222.921:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm="syz.6.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  179.998662][   T27] audit: type=1326 audit(1737662222.921:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm="syz.6.745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.038253][   T27] audit: type=1326 audit(1737662222.921:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm=98D9E98622158B30828785925E45C2 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.078871][   T27] audit: type=1326 audit(1737662222.921:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm=98D9E98622158B30828785925E45C2 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.113250][ T4296] logitech 0003:046D:C29C.0004: no inputs found
[  180.125512][ T4296] usb 5-1: USB disconnect, device number 6
[  180.145515][ T6897] loop0: detected capacity change from 0 to 256
[  180.160904][ T6897] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  180.168910][   T27] audit: type=1326 audit(1737662222.921:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm=98D9E98622158B30828785925E45C2 exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.200055][   T27] audit: type=1326 audit(1737662222.921:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm=98D9E98622158B30828785925E45C2 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.237348][   T27] audit: type=1326 audit(1737662222.921:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6890 comm=98D9E98622158B30828785925E45C2 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f594238cd29 code=0x7ffc0000
[  180.334784][ T6905] loop5: detected capacity change from 0 to 128
[  180.361169][ T6905] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  180.384367][ T6905] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  180.399975][ T6907] loop6: detected capacity change from 0 to 4096
[  180.418833][ T6907] ntfs: (device loop6): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[  180.445385][ T4251] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  180.448486][   T27] audit: type=1800 audit(1737662223.491:50): pid=6905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.752" name="file1" dev="loop5" ino=1048615 res=0 errno=0
[  180.498459][ T6907] ntfs: volume version 3.1.
[  180.628013][ T4251] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.647430][ T4251] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.668782][ T4251] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  180.724001][ T4251] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.727673][ T6917] netlink: 52 bytes leftover after parsing attributes in process `syz.0.757'.
[  180.774858][ T4251] usb 3-1: config 0 descriptor??
[  181.036344][ T4251] usbhid 3-1:0.0: can't add hid device: -71
[  181.042389][ T4251] usbhid: probe of 3-1:0.0 failed with error -71
[  181.071003][ T4251] usb 3-1: USB disconnect, device number 3
[  181.983942][ T6927] loop0: detected capacity change from 0 to 40427
[  182.012525][ T6954] loop4: detected capacity change from 0 to 512
[  182.035453][ T6927] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  182.044377][ T6927] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  182.074977][ T6927] F2FS-fs (loop0): invalid crc value
[  182.081726][ T6954] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  182.111796][ T6927] F2FS-fs (loop0): Found nat_bits in checkpoint
[  182.145279][ T6954] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.157411][ T6964] loop6: detected capacity change from 0 to 4096
[  182.233566][ T6927] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  182.251127][ T6927] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  182.375321][ T6954] EXT4-fs error (device loop4): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.4.767: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  182.412651][   T11] kworker/u4:1: attempt to access beyond end of device
[  182.412651][   T11] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  182.475638][ T6954] EXT4-fs (loop4): Remounting filesystem read-only
[  182.495288][ T6954] EXT4-fs error (device loop4): ext4_get_first_dir_block:3594: inode #12: comm syz.4.767: directory missing '.'
[  182.539925][ T6954] EXT4-fs (loop4): Remounting filesystem read-only
[  182.748249][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  182.857451][ T6990] xt_CT: You must specify a L4 protocol and not use inversions on it
[  184.043784][ T7032] loop0: detected capacity change from 0 to 512
[  184.132632][ T7032] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  184.147882][ T7032] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  184.191630][ T7041] loop5: detected capacity change from 0 to 256
[  184.207563][ T7041] FAT-fs (loop5): bogus sectors per cluster 223
[  184.234504][ T7041] FAT-fs (loop5): Can't find a valid FAT filesystem
[  184.302005][ T7006] loop4: detected capacity change from 0 to 40427
[  184.332427][ T7006] F2FS-fs (loop4): invalid crc value
[  184.361046][ T7006] F2FS-fs (loop4): Found nat_bits in checkpoint
[  184.481724][ T7006] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  184.944475][ T4258] syz-executor: attempt to access beyond end of device
[  184.944475][ T4258] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  184.987112][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  185.174904][ T7063] netlink: 56 bytes leftover after parsing attributes in process `syz.6.796'.
[  185.702303][ T7081] bridge0: port 4(ipvlan3) entered blocking state
[  185.723800][ T7081] bridge0: port 4(ipvlan3) entered disabled state
[  185.827512][ T7084] loop6: detected capacity change from 0 to 4096
[  185.907835][ T7089] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  186.085116][ T7093] loop4: detected capacity change from 0 to 512
[  186.120995][   T14] NILFS (loop6): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  186.144865][ T7093] EXT4-fs: Ignoring removed mblk_io_submit option
[  186.153070][   T14] NILFS error (device loop6): nilfs_bmap_truncate: broken bmap (inode number=12)
[  186.192360][   T14] Remounting filesystem read-only
[  186.209865][   T14] NILFS (loop6): error -5 truncating bmap (ino=12)
[  186.221149][ T7093] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  186.260098][ T7093] ext4 filesystem being mounted at /171/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.293680][ T5503] NILFS (loop6): discard dirty page: offset=0, ino=6
[  186.315326][ T5503] NILFS (loop6): discard dirty block: blocknr=23, size=4096
[  186.322708][ T5503] NILFS (loop6): discard dirty page: offset=4096, ino=6
[  186.336467][ T7076] loop0: detected capacity change from 0 to 40427
[  186.357171][ T7076] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff
[  186.405682][ T7076] F2FS-fs (loop0): invalid crc value
[  186.412497][ T5503] NILFS (loop6): discard dirty block: blocknr=24, size=4096
[  186.420249][ T5503] NILFS (loop6): discard dirty page: offset=8192, ino=6
[  186.434803][ T7076] F2FS-fs (loop0): Found nat_bits in checkpoint
[  186.472262][ T5503] NILFS (loop6): discard dirty block: blocknr=25, size=4096
[  186.501889][ T7109] loop2: detected capacity change from 0 to 512
[  186.561316][ T7076] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  186.599401][ T7109] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  186.623280][ T7109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002]
[  186.651003][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  186.657800][ T7109] System zones: 0-1, 15-15, 18-18, 34-34
[  186.680309][ T4261] syz-executor: attempt to access beyond end of device
[  186.680309][ T4261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  186.683012][ T7109] EXT4-fs (loop2): orphan cleanup on readonly fs
[  186.742713][ T7109] __quota_error: 2 callbacks suppressed
[  186.742735][ T7109] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  186.783339][ T7109] EXT4-fs warning (device loop2): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  186.837631][ T7109] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  186.872399][ T7109] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.807: bad orphan inode 16
[  186.904247][ T7109] EXT4-fs (loop2): Remounting filesystem read-only
[  186.928774][ T7109] ext4_test_bit(bit=15, block=18) = 1
[  186.934224][ T7109] is_bad_inode(inode)=0
[  186.959103][ T7109] NEXT_ORPHAN(inode)=0
[  186.963243][ T7109] max_ino=32
[  186.980784][ T7109] i_nlink=2
[  186.984030][ T7109] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  187.110111][ T7109] fscrypt (loop2, inode 16): Error -61 getting encryption context
[  187.155468][   T14] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  187.262904][ T4250] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  187.320590][ T4250] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  187.365549][   T14] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  187.389994][   T14] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.426828][   T14] usb 7-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  187.458916][   T14] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.462674][ T7142] loop0: detected capacity change from 0 to 64
[  187.489301][   T14] usb 7-1: config 0 descriptor??
[  187.603579][ T4250] device syz_tun left promiscuous mode
[  187.614822][ T4250] bridge0: port 3(syz_tun) entered disabled state
[  187.701762][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  187.834587][ T4306] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.944330][   T14] cypress 0003:04B4:DE61.0005: ignoring exceeding usage max
[  187.963423][   T14] cypress 0003:04B4:DE61.0005: item fetching failed at offset 4/7
[  187.990973][   T14] cypress 0003:04B4:DE61.0005: parse failed
[  188.010411][   T14] cypress: probe of 0003:04B4:DE61.0005 failed with error -22
[  188.021909][ T4306] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.167862][ T4306] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.214368][ T4296] usb 7-1: USB disconnect, device number 4
[  188.294983][ T4306] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.547494][ T4266] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  188.982737][ T4267] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  188.994805][ T4267] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  189.004234][ T4267] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  189.012253][ T4267] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  189.020447][ T4267] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  189.045483][ T4267] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  189.071812][ T4266] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  189.079324][ T4266] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  189.086747][ T4266] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  189.094932][ T4266] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  189.106138][ T4266] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  189.114145][ T4266] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  189.305856][ T7182] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input10
[  189.485415][ T7179] loop5: detected capacity change from 0 to 32768
[  189.498691][ T7179] XFS: noikeep mount option is deprecated.
[  189.594906][ T7179] XFS (loop5): Mounting V5 Filesystem
[  189.619759][ T7193] device hsr0 entered promiscuous mode
[  189.676539][ T7193] device hsr0 left promiscuous mode
[  189.741713][ T7179] XFS (loop5): Ending clean mount
[  189.771247][ T7179] XFS (loop5): Quotacheck needed: Please wait.
[  189.930701][ T7179] XFS (loop5): Quotacheck: Done.
[  190.041099][ T7173] loop0: detected capacity change from 0 to 40427
[  190.052313][ T5098] XFS (loop5): Unmounting Filesystem
[  190.078503][ T7173] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff
[  190.101666][ T7173] F2FS-fs (loop0): invalid crc value
[  190.151479][ T7173] F2FS-fs (loop0): Found nat_bits in checkpoint
[  190.333909][ T7173] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  190.369346][ T7177] chnl_net:caif_netlink_parms(): no params data found
[  190.525683][ T4261] syz-executor: attempt to access beyond end of device
[  190.525683][ T4261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  190.764730][ T7177] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.800322][ T7177] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.827836][ T7177] device bridge_slave_0 entered promiscuous mode
[  190.911435][ T7177] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.919739][ T7177] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.928028][ T7177] device bridge_slave_1 entered promiscuous mode
[  190.954775][ T7177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.967278][ T7177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.022484][ T7177] team0: Port device team_slave_0 added
[  191.047898][ T7177] team0: Port device team_slave_1 added
[  191.100412][ T4306] device hsr_slave_0 left promiscuous mode
[  191.110153][ T4306] device hsr_slave_1 left promiscuous mode
[  191.116992][ T4306] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.124447][ T4306] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.132848][ T4306] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.140396][ T4306] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.148171][ T4306] device bridge_slave_1 left promiscuous mode
[  191.155985][ T4306] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.164228][ T4306] device bridge_slave_0 left promiscuous mode
[  191.170803][ T4306] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.186453][ T4266] Bluetooth: hci2: command 0x0409 tx timeout
[  191.207872][ T4306] device veth1_macvtap left promiscuous mode
[  191.213971][ T4306] device veth0_macvtap left promiscuous mode
[  191.221033][ T4306] device veth1_vlan left promiscuous mode
[  191.230247][ T4306] device veth0_vlan left promiscuous mode
[  191.518110][ T4306] team0 (unregistering): Port device bond1 removed
[  191.527338][ T4306] bond1 (unregistering): Released all slaves
[  192.028243][ T4306] team0 (unregistering): Port device team_slave_1 removed
[  192.083229][ T4306] team0 (unregistering): Port device team_slave_0 removed
[  192.136309][ T4306] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  192.190963][ T4306] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  192.763760][ T4306] bond0 (unregistering): Released all slaves
[  192.850338][ T7177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  192.857552][ T7177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.883632][ T7177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.903829][ T7177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.911630][ T7177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.939636][ T7177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  193.027050][ T7177] device hsr_slave_0 entered promiscuous mode
[  193.041573][ T7177] device hsr_slave_1 entered promiscuous mode
[  193.048476][ T7177] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  193.056292][ T7177] Cannot create hsr debugfs directory
[  193.255566][ T4266] Bluetooth: hci2: command 0x041b tx timeout
[  193.304143][ T7177] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  193.314514][ T7177] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  193.365465][ T7177] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  193.378275][ T7177] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  193.580517][ T7177] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.600302][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  193.611949][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  193.623131][ T7177] 8021q: adding VLAN 0 to HW filter on device team0
[  193.634407][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  193.643814][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  193.657754][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.664838][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.673793][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  193.688243][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  193.697187][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  193.707506][ T4634] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.714640][ T4634] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.725995][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  193.740657][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  193.754476][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  193.765831][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  193.774465][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  193.785008][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  193.796227][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  193.814176][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  193.823114][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  193.833598][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  193.985073][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  193.992829][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  194.009541][ T7177] 8021q: adding VLAN 0 to HW filter on device batadv0
[  194.219116][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.225541][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.240503][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  194.250315][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  194.266148][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  194.274579][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  194.283255][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  194.292350][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  194.303881][ T7177] device veth0_vlan entered promiscuous mode
[  194.317379][ T7177] device veth1_vlan entered promiscuous mode
[  194.339360][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  194.348146][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  194.356473][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  194.365031][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  194.385495][ T7177] device veth0_macvtap entered promiscuous mode
[  194.397688][ T7177] device veth1_macvtap entered promiscuous mode
[  194.414811][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.425823][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.435721][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.446363][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.456955][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.467903][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.478616][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.490354][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.502044][ T7177] batman_adv: batadv0: Interface activated: batadv_slave_0
[  194.511799][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  194.521757][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  194.530343][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  194.540049][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  194.551126][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.562200][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.572617][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.583383][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.593492][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.604081][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.613952][ T7177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.624722][ T7177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.636760][ T7177] batman_adv: batadv0: Interface activated: batadv_slave_1
[  194.645807][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  194.655769][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  194.667117][ T7177] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.676905][ T7177] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.685696][ T7177] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.694431][ T7177] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.762161][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.782777][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.798189][ T4306] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.810260][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  194.817828][ T4306] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.831892][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  195.230934][    T9] Bluetooth: hci5: Frame reassembly failed (-84)
[  195.345444][ T4267] Bluetooth: hci2: command 0x040f tx timeout
[  195.811463][ T7287] loop4: detected capacity change from 0 to 512
[  195.832344][ T7261] loop5: detected capacity change from 0 to 40427
[  195.840926][ T7261] F2FS-fs (loop5): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  195.850392][ T7261] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  195.862865][ T7261] F2FS-fs (loop5): invalid crc value
[  195.872171][ T7261] F2FS-fs (loop5): Found nat_bits in checkpoint
[  195.881978][ T7287] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  195.894683][ T7287] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.922864][ T7287] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  195.941198][ T7287] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 12 with max blocks 1 with error 28
[  195.956203][ T7287] EXT4-fs (loop4): This should not happen!! Data will be lost
[  195.956203][ T7287] 
[  195.966071][ T7287] EXT4-fs (loop4): Total free blocks count 0
[  195.973681][ T7287] EXT4-fs (loop4): Free/Dirty block details
[  195.980297][ T7287] EXT4-fs (loop4): free_blocks=39626
[  195.985788][ T7287] EXT4-fs (loop4): dirty_blocks=10
[  195.990954][ T7287] EXT4-fs (loop4): Block reservation details
[  195.997064][ T7287] EXT4-fs (loop4): i_reserved_data_blocks=10
[  196.004280][ T7294] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 3 with max blocks 10 with error 28
[  196.041582][ T7261] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  196.052488][ T7261] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  196.193674][   T46] kworker/u4:3: attempt to access beyond end of device
[  196.193674][   T46] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  196.438600][ T7309] device hsr0 entered promiscuous mode
[  196.468075][ T7309] device hsr0 left promiscuous mode
[  197.031745][ T7329] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  197.031745][ T7329] The task syz.4.861 (7329) triggered the difference, watch for misbehavior.
[  197.176213][ T7334] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input11
[  197.255402][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  197.255821][ T4266] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  197.416080][ T4266] Bluetooth: hci2: command 0x0419 tx timeout
[  197.457588][ T7342] loop6: detected capacity change from 0 to 64
[  197.918807][ T7335] loop5: detected capacity change from 0 to 40427
[  197.935787][ T7335] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x3ffff
[  197.952370][ T7357] device ip6gretap0 entered promiscuous mode
[  197.974200][ T7335] F2FS-fs (loop5): invalid crc value
[  197.980546][ T7359] program syz.4.877 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.016884][ T7335] F2FS-fs (loop5): Found nat_bits in checkpoint
[  198.130295][ T7335] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  198.168120][ T4267] Bluetooth: hci5: sending frame failed (-49)
[  198.176287][ T4266] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  198.248438][ T5098] syz-executor: attempt to access beyond end of device
[  198.248438][ T5098] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  198.568755][ T7379] loop0: detected capacity change from 0 to 256
[  198.655289][ T5460] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  198.856443][ T5460] usb 8-1: Using ep0 maxpacket: 32
[  198.870454][ T5460] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.898630][ T5460] usb 8-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  198.916888][ T5460] usb 8-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  198.955293][ T5460] usb 8-1: config 0 interface 0 has no altsetting 0
[  198.961977][ T5460] usb 8-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  198.978875][ T5460] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.006903][ T5460] usb 8-1: config 0 descriptor??
[  199.408115][ T7391] loop4: detected capacity change from 0 to 32768
[  199.416029][ T7391] XFS: noikeep mount option is deprecated.
[  199.424677][ T5460] hid-thrustmaster 0003:044F:B65D.0006: unknown main item tag 0x0
[  199.433296][ T5460] hid-thrustmaster 0003:044F:B65D.0006: unknown main item tag 0x0
[  199.441646][ T5460] hid-thrustmaster 0003:044F:B65D.0006: unknown main item tag 0x0
[  199.450478][ T5460] hid-thrustmaster 0003:044F:B65D.0006: unknown main item tag 0x0
[  199.458468][ T5460] hid-thrustmaster 0003:044F:B65D.0006: unknown main item tag 0x0
[  199.469047][ T5460] hid-thrustmaster 0003:044F:B65D.0006: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.7-1/input0
[  199.489987][ T7391] XFS (loop4): Mounting V5 Filesystem
[  199.555139][ T7391] XFS (loop4): Ending clean mount
[  199.571310][ T7391] XFS (loop4): Quotacheck needed: Please wait.
[  199.604256][ T7395] loop6: detected capacity change from 0 to 40427
[  199.613759][ T7395] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x3ffff
[  199.624428][ T5460] hid-thrustmaster 0003:044F:B65D.0006: setup data couldn't be sent
[  199.625057][ T7391] XFS (loop4): Quotacheck: Done.
[  199.641829][ T7395] F2FS-fs (loop6): invalid crc value
[  199.651359][    C1] hid-thrustmaster 0003:044F:B65D.0006: URB to get model id failed with error -71
[  199.676769][ T5460] usb 8-1: USB disconnect, device number 2
[  199.698494][ T4258] XFS (loop4): Unmounting Filesystem
[  199.699393][ T7395] F2FS-fs (loop6): Found nat_bits in checkpoint
[  199.775510][ T7395] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  199.893115][ T5503] syz-executor: attempt to access beyond end of device
[  199.893115][ T5503] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  200.706743][ T4267] Bluetooth: hci5: sending frame failed (-49)
[  200.716826][ T4266] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  200.882935][ T7435] loop6: detected capacity change from 0 to 512
[  200.966382][ T7440] netlink: 'syz.0.904': attribute type 2 has an invalid length.
[  200.996729][ T7435] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  201.005978][ T7435] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.173952][ T7447] program syz.0.908 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.175473][ T5460] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  201.205362][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  201.356240][ T7450] loop0: detected capacity change from 0 to 1024
[  201.386360][ T5460] usb 8-1: Using ep0 maxpacket: 8
[  201.394827][ T5460] usb 8-1: config 0 has no interfaces?
[  201.444314][ T5460] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  201.461187][ T5460] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.469901][ T5460] usb 8-1: Product: syz
[  201.474267][ T5460] usb 8-1: Manufacturer: syz
[  201.491850][ T5460] usb 8-1: SerialNumber: syz
[  201.498934][ T5460] usb 8-1: config 0 descriptor??
[  201.533371][ T7450] hfsplus: xattr searching failed
[  201.564561][ T7453] loop6: detected capacity change from 0 to 256
[  201.565022][ T7450] hfsplus: found bad thread record in catalog
[  201.603683][ T7453] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  201.702128][ T4634] hfsplus: found bad thread record in catalog
[  201.716415][ T4634] hfsplus: found bad thread record in catalog
[  201.744431][ T5458] usb 8-1: USB disconnect, device number 3
[  201.830101][ T7442] loop5: detected capacity change from 0 to 40427
[  201.856701][ T7442] F2FS-fs (loop5): invalid crc value
[  201.896394][ T7442] F2FS-fs (loop5): Found nat_bits in checkpoint
[  201.909815][ T7464] netlink: 8 bytes leftover after parsing attributes in process `syz.6.917'.
[  201.963731][ T7442] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  202.054517][ T5098] syz-executor: attempt to access beyond end of device
[  202.054517][ T5098] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  202.369442][ T7475] loop5: detected capacity change from 0 to 256
[  202.512708][ T7481] loop4: detected capacity change from 0 to 512
[  202.567655][ T7481] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  202.576910][ T7481] ext4 filesystem being mounted at /204/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.696450][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  202.998939][ T7499] loop4: detected capacity change from 0 to 512
[  203.022777][ T7499] EXT4-fs: Ignoring removed mblk_io_submit option
[  203.055821][ T7499] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.931: inode #1: comm syz.4.931: iget: illegal inode #
[  203.075082][ T7499] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.931: error while reading EA inode 1 err=-117
[  203.133395][ T7499] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.931: inode #1: comm syz.4.931: iget: illegal inode #
[  203.165928][ T7499] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.931: error while reading EA inode 1 err=-117
[  203.179541][ T7499] EXT4-fs (loop4): 1 orphan inode deleted
[  203.185459][ T7499] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  203.251612][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  203.321915][ T7508] loop4: detected capacity change from 0 to 64
[  203.358506][ T7508] Trying to free block not in datazone
[  203.379129][ T7489] loop0: detected capacity change from 0 to 32768
[  203.394214][ T7489] XFS: noikeep mount option is deprecated.
[  203.406262][ T7489] XFS (loop0): Mounting V5 Filesystem
[  203.463574][ T7489] XFS (loop0): Ending clean mount
[  203.474393][ T7489] XFS (loop0): Quotacheck needed: Please wait.
[  203.530009][ T7489] XFS (loop0): Quotacheck: Done.
[  203.586045][ T4261] XFS (loop0): Unmounting Filesystem
[  203.633645][ T7519] loop5: detected capacity change from 0 to 512
[  203.697602][ T7519] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  203.727945][ T7519] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.772034][ T7519] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  203.774931][ T7523] loop4: detected capacity change from 0 to 256
[  203.851244][ T7519] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 12 with max blocks 1 with error 28
[  203.907772][ T7519] EXT4-fs (loop5): This should not happen!! Data will be lost
[  203.907772][ T7519] 
[  203.955258][ T7519] EXT4-fs (loop5): Total free blocks count 0
[  203.970952][ T7519] EXT4-fs (loop5): Free/Dirty block details
[  203.980158][ T7519] EXT4-fs (loop5): free_blocks=39626
[  203.985960][ T7519] EXT4-fs (loop5): dirty_blocks=10
[  203.996249][ T7530] device ip6gretap0 entered promiscuous mode
[  204.002477][ T7519] EXT4-fs (loop5): Block reservation details
[  204.010212][ T7519] EXT4-fs (loop5): i_reserved_data_blocks=10
[  204.028894][ T7524] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 3 with max blocks 10 with error 28
[  204.458297][ T4266] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  204.965619][ T4296] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  205.165378][ T4296] usb 5-1: Using ep0 maxpacket: 16
[  205.172690][ T4296] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 8
[  205.198261][ T4296] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  205.213496][ T4296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.227368][ T4296] usb 5-1: Product: syz
[  205.237305][ T4296] usb 5-1: Manufacturer: syz
[  205.254488][ T4296] usb 5-1: SerialNumber: syz
[  205.266185][ T7575] loop0: detected capacity change from 0 to 128
[  205.267199][ T4296] usb 5-1: config 0 descriptor??
[  205.329339][ T4296] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  205.345108][ T7575] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  205.346738][ T4296] usb 5-1: Detected FT232R
[  205.354930][ T7575] ext4 filesystem being mounted at /182/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.452671][ T7580] loop7: detected capacity change from 0 to 65
[  205.494684][ T7580] BFS-fs: bfs_fill_super(): NOTE: filesystem loop7 was created with 512 inodes, the real maximum is 511, mounting anyway
[  205.529899][ T4296] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  205.666350][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  205.754018][ T4296] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  205.960947][ T4296] usb 5-1: USB disconnect, device number 7
[  205.993066][ T7589] loop5: detected capacity change from 0 to 256
[  206.002400][ T4296] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  206.022759][ T4296] ftdi_sio 5-1:0.0: device disconnected
[  206.040544][ T7591] loop7: detected capacity change from 0 to 512
[  206.069132][ T7589] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  206.103203][ T7591] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  206.123213][ T7591] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.188943][ T7591] EXT4-fs error (device loop7): ext4_empty_dir:3154: inode #12: block 31: comm syz.7.968: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=1, rec_len=6, size=1024 fake=1
[  206.290075][ T7591] EXT4-fs (loop7): Remounting filesystem read-only
[  206.310770][ T7591] EXT4-fs warning (device loop7): ext4_empty_dir:3156: inode #12: comm syz.7.968: directory missing '..'
[  206.338633][ T7573] loop6: detected capacity change from 0 to 40427
[  206.361961][ T7573] F2FS-fs (loop6): invalid crc value
[  206.420698][ T7573] F2FS-fs (loop6): Found nat_bits in checkpoint
[  206.450379][ T7177] EXT4-fs (loop7): unmounting filesystem.
[  206.587337][ T7573] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  206.686258][ T7605] netlink: 8 bytes leftover after parsing attributes in process `syz.4.970'.
[  206.749093][ T7605] netlink: 'syz.4.970': attribute type 1 has an invalid length.
[  206.773747][ T5503] syz-executor: attempt to access beyond end of device
[  206.773747][ T5503] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  206.784602][ T7605] netlink: 'syz.4.970': attribute type 2 has an invalid length.
[  206.975646][ T7612] program syz.4.974 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  207.197633][ T7617] netlink: 'syz.4.977': attribute type 1 has an invalid length.
[  207.241602][ T7617] netlink: 224 bytes leftover after parsing attributes in process `syz.4.977'.
[  207.898052][ T7644] loop5: detected capacity change from 0 to 1024
[  207.972316][ T7644] hfsplus: bad catalog entry type
[  207.973737][ T7646] loop7: detected capacity change from 0 to 4096
[  208.022198][ T7646] ntfs: (device loop7): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  208.073207][    T9] hfsplus: b-tree write err: -5, ino 4
[  208.192763][ T7646] ntfs: (device loop7): parse_options(): NLS character set macgre˙
 not found. Using previous one utf8.
[  208.222946][ T7646] ntfs: (device loop7): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  208.239317][ T7646] ntfs: (device loop7): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[  208.286297][ T7646] ntfs: volume version 3.1.
[  208.306991][ T7646] ntfs: (device loop7): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  208.328792][ T7646] ntfs: (device loop7): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  208.366248][ T7646] ntfs: (device loop7): load_system_files(): Failed to determine if Windows is hibernated.  Mounting read-only.  Run chkdsk.
[  208.409939][ T7636] loop6: detected capacity change from 0 to 32768
[  208.454533][ T7646] ntfs: (device loop7): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  208.495812][ T7638] loop0: detected capacity change from 0 to 40427
[  208.503819][ T7646] ntfs: (device loop7): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5.
[  208.535618][ T7638] F2FS-fs (loop0): invalid crc value
[  208.560941][ T7638] F2FS-fs (loop0): Found nat_bits in checkpoint
[  208.696526][ T7638] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  208.984727][ T4261] syz-executor: attempt to access beyond end of device
[  208.984727][ T4261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  209.062657][ T7674] loop5: detected capacity change from 0 to 128
[  209.089069][ T7674] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  209.123006][ T7674] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.339642][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  209.477539][ T7683] loop0: detected capacity change from 0 to 256
[  209.554632][ T7683] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000006)
[  209.583195][ T7683] FAT-fs (loop0): Filesystem has been set read-only
[  209.669433][ T7636] find_entry called with index = 0
[  209.952046][ T7672] loop4: detected capacity change from 0 to 40427
[  209.983137][ T7672] F2FS-fs (loop4): invalid crc value
[  210.010271][ T7691] loop0: detected capacity change from 0 to 64
[  210.013353][ T7672] F2FS-fs (loop4): Found nat_bits in checkpoint
[  210.140604][ T7672] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  210.579914][ T7709] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1014'.
[  211.596076][ T7744] loop4: detected capacity change from 0 to 4096
[  211.624346][ T7744] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  211.836950][ T7744] ntfs: volume version 3.1.
[  212.063786][ T7732] loop5: detected capacity change from 0 to 40427
[  212.101709][ T7732] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x3ffff
[  212.155388][ T7732] F2FS-fs (loop5): invalid crc value
[  212.190399][ T7732] F2FS-fs (loop5): Found nat_bits in checkpoint
[  212.250908][ T7738] loop0: detected capacity change from 0 to 40427
[  212.321349][ T7738] F2FS-fs (loop0): invalid crc value
[  212.334609][ T7732] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  212.372112][ T7738] F2FS-fs (loop0): Found nat_bits in checkpoint
[  212.495098][ T7738] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  212.588398][ T5098] syz-executor: attempt to access beyond end of device
[  212.588398][ T5098] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  213.015557][ T4266] Bluetooth: hci2: command 0x0405 tx timeout
[  213.117356][ T7764] loop6: detected capacity change from 0 to 40427
[  213.125793][ T7764] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  213.134754][ T7764] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  213.146087][ T7764] F2FS-fs (loop6): invalid crc value
[  213.167832][ T7764] F2FS-fs (loop6): Found nat_bits in checkpoint
[  213.241833][ T7764] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  213.249823][ T7764] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  213.444959][ T7793] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1047'.
[  213.643584][ T7797] loop4: detected capacity change from 0 to 128
[  213.810460][ T7805] netlink: 'syz.7.1054': attribute type 16 has an invalid length.
[  213.835290][ T7805] netlink: 'syz.7.1054': attribute type 3 has an invalid length.
[  213.849004][ T7805] netlink: 64066 bytes leftover after parsing attributes in process `syz.7.1054'.
[  215.102395][ T7843] loop6: detected capacity change from 0 to 512
[  215.112138][ T7841] loop7: detected capacity change from 0 to 2048
[  215.144661][ T7841] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  215.158141][ T7841] UDF-fs: Scanning with blocksize 512 failed
[  215.182133][ T7841] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  215.193645][ T7843] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  215.206220][ T7843] ext4 filesystem being mounted at /119/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.236726][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  215.236743][   T27] audit: type=1800 audit(1737662258.281:51): pid=7843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1070" name="file1" dev="loop6" ino=15 res=0 errno=0
[  215.263569][   T27] audit: type=1800 audit(1737662258.291:52): pid=7843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1070" name="file2" dev="loop6" ino=16 res=0 errno=0
[  215.361240][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  215.615009][ T7854] loop0: detected capacity change from 0 to 4096
[  215.685671][ T7862] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  216.016513][ T7871] loop7: detected capacity change from 0 to 256
[  216.339288][ T7875] loop7: detected capacity change from 0 to 1024
[  216.635485][ T7856] loop4: detected capacity change from 0 to 40427
[  216.673781][ T7856] F2FS-fs (loop4): invalid crc value
[  216.694295][ T7868] loop0: detected capacity change from 0 to 32768
[  216.710514][ T7856] F2FS-fs (loop4): Found nat_bits in checkpoint
[  216.882792][ T7856] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  216.899471][ T7886] loop5: detected capacity change from 0 to 256
[  216.930729][ T7869] loop6: detected capacity change from 0 to 32768
[  217.022786][ T7869] XFS (loop6): Mounting V5 Filesystem
[  217.100733][ T7869] XFS (loop6): Ending clean mount
[  217.170923][ T4258] syz-executor: attempt to access beyond end of device
[  217.170923][ T4258] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  217.350522][ T5503] XFS (loop6): Unmounting Filesystem
[  217.423353][ T7902] loop7: detected capacity change from 0 to 8192
[  217.450177][ T7902] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  217.463524][ T7902] REISERFS (device loop7): found reiserfs format "3.5" with non-standard journal
[  217.473737][ T7902] REISERFS (device loop7): using ordered data mode
[  217.481195][ T7902] reiserfs: using flush barriers
[  217.487761][ T7902] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  217.504573][ T7902] REISERFS (device loop7): checking transaction log (loop7)
[  217.545631][ T7902] REISERFS (device loop7): Using r5 hash to sort names
[  217.553245][ T7902] REISERFS warning (device loop7): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[  217.946985][ T7919] loop4: detected capacity change from 0 to 2048
[  218.002072][ T7919] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  218.148172][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  218.351505][ T7918] loop5: detected capacity change from 0 to 32768
[  218.415748][ T4295] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  218.525730][ T4296] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  218.627567][ T4295] usb 8-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  218.649892][ T4295] usb 8-1: config 0 interface 0 has no altsetting 0
[  218.660379][ T7942] loop5: detected capacity change from 0 to 2048
[  218.665289][ T4295] usb 8-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  218.682448][ T4295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.689363][ T7942] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  218.706647][ T4295] usb 8-1: config 0 descriptor??
[  218.731947][ T7944] loop6: detected capacity change from 0 to 128
[  218.742467][ T7944] VFS: Found a Xenix FS (block size = 512) on device loop6
[  218.749430][ T4296] usb 5-1: config 1 interface 0 altsetting 2 endpoint 0x1 has invalid wMaxPacketSize 0
[  218.760077][ T4296] usb 5-1: config 1 interface 0 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 0
[  218.785534][ T4296] usb 5-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  218.797198][ T7944] sysv_free_block: trying to free block not in datazone
[  218.805273][ T4296] usb 5-1: config 1 interface 0 has no altsetting 0
[  218.828391][ T4296] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  218.840425][ T7944] sysv_count_free_blocks: free block count was -2041545929, correcting to 9
[  218.851640][ T4296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.870296][ T4296] usb 5-1: Product: syz
[  218.874581][ T4296] usb 5-1: Manufacturer: syz
[  218.880429][ T4296] usb 5-1: SerialNumber: syz
[  218.900656][ T7944] sysv_count_free_inodes: unable to read inode table
[  218.983071][ T7948] loop5: detected capacity change from 0 to 512
[  218.992016][ T7948] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  219.016182][ T5503] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  219.052649][ T7948] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm syz.5.1109: bg 0: block 16: invalid block bitmap
[  219.072958][ T7948] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  219.082238][ T7948] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1109: invalid indirect mapped block 5 (level 0)
[  219.106413][ T7948] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1109: invalid indirect mapped block 4294967295 (level 1)
[  219.127496][ T7948] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1109: invalid indirect mapped block 4294967295 (level 2)
[  219.146601][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.164388][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.178282][ T4296] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 2 proto 1 vid 0x0525 pid 0xA4A8
[  219.193249][ T7948] EXT4-fs (loop5): 1 truncate cleaned up
[  219.195648][ T7951] loop6: detected capacity change from 0 to 8192
[  219.203060][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.207894][ T7948] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  219.221399][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.235718][ T7951] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  219.249778][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.260293][ T7951] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  219.269718][ T7951] REISERFS (device loop6): using ordered data mode
[  219.271507][ T7948] EXT4-fs (loop5): re-mounted. Quota mode: none.
[  219.276375][ T7951] reiserfs: using flush barriers
[  219.277960][ T7951] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  219.289686][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.305024][ T7951] REISERFS (device loop6): checking transaction log (loop6)
[  219.320722][ T4295] logitech 0003:046D:C29C.0007: unknown main item tag 0x0
[  219.329715][ T4295] logitech 0003:046D:C29C.0007: hidraw0: USB HID v10.00 Device [HID 046d:c29c] on usb-dummy_hcd.7-1/input0
[  219.339596][ T7951] REISERFS (device loop6): Using r5 hash to sort names
[  219.355504][ T7951] REISERFS warning (device loop6): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[  219.391551][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  219.401532][ T4296] usb 5-1: USB disconnect, device number 8
[  219.420779][ T4296] usblp0: removed
[  219.550491][ T4295] logitech 0003:046D:C29C.0007: no inputs found
[  219.570380][ T4295] usb 8-1: USB disconnect, device number 4
[  219.631208][ T7958] loop5: detected capacity change from 0 to 512
[  219.699500][ T7958] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  219.715467][ T7958] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.777869][   T27] audit: type=1800 audit(1737662262.821:53): pid=7958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1112" name="file1" dev="loop5" ino=15 res=0 errno=0
[  219.858254][   T27] audit: type=1800 audit(1737662262.851:54): pid=7958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1112" name="file2" dev="loop5" ino=16 res=0 errno=0
[  219.918291][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  219.933010][ T7954] loop0: detected capacity change from 0 to 40427
[  219.941581][ T7964] loop6: detected capacity change from 0 to 1024
[  219.950384][ T7964] EXT4-fs: Ignoring removed nobh option
[  219.956115][ T7964] EXT4-fs: Ignoring removed bh option
[  219.966445][ T7954] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  219.974214][ T7954] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  219.987760][ T7964] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  220.023794][ T7954] F2FS-fs (loop0): invalid crc value
[  220.054233][ T7964] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  220.071643][ T7954] F2FS-fs (loop0): Found nat_bits in checkpoint
[  220.291070][ T7954] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  220.316639][ T7954] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  220.340238][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  220.551406][ T7986] syz.4.1123 uses obsolete (PF_INET,SOCK_PACKET)
[  220.875291][ T4251] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  221.069552][ T4251] usb 7-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  221.097136][ T4251] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=240
[  221.126357][ T4251] usb 7-1: Product: syz
[  221.145320][ T4251] usb 7-1: Manufacturer: syz
[  221.170509][ T4251] usb 7-1: SerialNumber: syz
[  221.202104][ T4251] usb 7-1: config 0 descriptor??
[  221.223415][ T4251] ch341 7-1:0.0: ch341-uart converter detected
[  221.512435][ T8001] loop5: detected capacity change from 0 to 256
[  221.717919][ T8006] loop5: detected capacity change from 0 to 1024
[  221.726782][ T8006] EXT4-fs: Ignoring removed nobh option
[  221.732422][ T8006] EXT4-fs: Ignoring removed bh option
[  221.745469][ T8006] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  221.770775][ T4295] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  221.816966][ T8006] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  221.839938][ T7999] loop0: detected capacity change from 0 to 40427
[  221.850401][ T7999] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  221.858635][ T7999] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  221.878107][ T7999] F2FS-fs (loop0): invalid crc value
[  221.934115][ T7999] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  221.947931][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  221.969292][ T7999] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  221.989271][ T4295] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.010864][ T4295] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.045268][ T4295] usb 8-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  222.046504][ T4251] usb 7-1: failed to send control message: -71
[  222.060802][ T4295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.080873][ T4251] ch341-uart: probe of ttyUSB0 failed with error -71
[  222.081984][ T4295] usb 8-1: config 0 descriptor??
[  222.107485][ T4251] usb 7-1: USB disconnect, device number 5
[  222.128580][ T4251] ch341 7-1:0.0: device disconnected
[  222.155944][ T7999] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  222.163121][ T7999] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  222.329125][ T4295] usbhid 8-1:0.0: can't add hid device: -71
[  222.338578][ T4295] usbhid: probe of 8-1:0.0 failed with error -71
[  222.359580][ T4295] usb 8-1: USB disconnect, device number 5
[  222.825751][ T8018] loop4: detected capacity change from 0 to 40427
[  222.845210][ T8018] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  222.853017][ T8018] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  222.870039][ T8018] F2FS-fs (loop4): invalid crc value
[  222.922181][ T8018] F2FS-fs (loop4): Found nat_bits in checkpoint
[  223.018543][ T8023] loop5: detected capacity change from 0 to 32768
[  223.083178][ T8037] loop7: detected capacity change from 0 to 1024
[  223.112350][ T8037] EXT4-fs: Ignoring removed nobh option
[  223.120751][ T8018] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  223.130717][ T8037] EXT4-fs: Ignoring removed bh option
[  223.133619][ T8018] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  223.199406][ T8037] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  223.328147][ T8037] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:3841: comm syz.7.1143: Allocating blocks 497-513 which overlap fs metadata
[  223.350254][ T8037] EXT4-fs (loop7): Remounting filesystem read-only
[  223.357748][ T8037] EXT4-fs (loop7): pa ffff8880742460e0: logic 8224, phys. 177, len 21
[  223.366646][ T8037] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[  223.388108][ T8037] EXT4-fs (loop7): Remounting filesystem read-only
[  223.564051][ T7177] EXT4-fs (loop7): unmounting filesystem.
[  224.036625][ T8069] loop4: detected capacity change from 0 to 1024
[  224.074854][ T8069] EXT4-fs: Ignoring removed nobh option
[  224.108188][ T8069] EXT4-fs: Ignoring removed bh option
[  224.124745][ T8069] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  224.196560][ T8069] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  224.242002][ T8080] loop7: detected capacity change from 0 to 512
[  224.287502][ T8049] loop0: detected capacity change from 0 to 32768
[  224.305197][ T8080] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  224.314662][ T8080] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.344579][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  224.349674][   T27] audit: type=1800 audit(1737662267.381:55): pid=8080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1156" name="file1" dev="loop7" ino=15 res=0 errno=0
[  224.381433][   T27] audit: type=1800 audit(1737662267.421:56): pid=8080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1156" name="file2" dev="loop7" ino=16 res=0 errno=0
[  224.451641][ T7177] EXT4-fs (loop7): unmounting filesystem.
[  224.496220][   T14] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  224.523248][ T8085] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1159'.
[  224.533168][ T8085] netem: invalid attributes len -19
[  224.545862][ T8085] netem: change failed
[  224.712025][ T8096] loop0: detected capacity change from 0 to 1024
[  224.731810][   T14] usb 7-1: config 1 interface 0 altsetting 2 endpoint 0x1 has invalid wMaxPacketSize 0
[  224.736180][ T8096] EXT4-fs: Ignoring removed nobh option
[  224.755794][   T14] usb 7-1: config 1 interface 0 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 0
[  224.775040][ T8096] EXT4-fs: Ignoring removed bh option
[  224.776922][   T14] usb 7-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  224.813045][   T14] usb 7-1: config 1 interface 0 has no altsetting 0
[  224.830823][ T8096] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  224.831127][   T14] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  224.849447][   T14] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.851578][ T8100] netlink: 56 bytes leftover after parsing attributes in process `syz.7.1163'.
[  224.857715][   T14] usb 7-1: Product: syz
[  224.857737][   T14] usb 7-1: Manufacturer: syz
[  224.857754][   T14] usb 7-1: SerialNumber: syz
[  224.944303][ T8096] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3841: comm syz.0.1160: Allocating blocks 497-513 which overlap fs metadata
[  224.961074][ T8096] EXT4-fs (loop0): Remounting filesystem read-only
[  224.968307][ T8096] EXT4-fs (loop0): pa ffff888074246540: logic 8224, phys. 177, len 21
[  224.976817][ T8096] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[  224.997803][ T8096] EXT4-fs (loop0): Remounting filesystem read-only
[  225.073477][   T14] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 2 proto 1 vid 0x0525 pid 0xA4A8
[  225.123595][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  225.332356][ T8106] loop0: detected capacity change from 0 to 512
[  225.340175][ T5458] usb 7-1: USB disconnect, device number 6
[  225.348112][ T5458] usblp0: removed
[  225.357333][ T8106] EXT4-fs: Ignoring removed mblk_io_submit option
[  225.406796][ T8106] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  225.417225][ T8106] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.540752][ T8094] loop5: detected capacity change from 0 to 40427
[  225.564091][ T8094] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x3ffff
[  225.566020][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  225.586737][ T8094] F2FS-fs (loop5): invalid crc value
[  225.615473][ T8094] F2FS-fs (loop5): Found nat_bits in checkpoint
[  225.722937][ T8121] loop4: detected capacity change from 0 to 512
[  225.760508][ T8094] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  225.761134][ T8121] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  225.806043][ T8121] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002]
[  225.845585][ T5098] syz-executor: attempt to access beyond end of device
[  225.845585][ T5098] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  225.875365][ T8121] System zones: 0-1, 15-15, 18-18, 34-34
[  225.882247][ T8121] EXT4-fs (loop4): orphan cleanup on readonly fs
[  225.888984][ T8121] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  225.899184][ T8121] EXT4-fs warning (device loop4): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  225.914398][ T8121] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  225.935354][ T8121] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.1172: bad orphan inode 16
[  225.953956][ T8121] EXT4-fs (loop4): Remounting filesystem read-only
[  225.960632][ T8121] ext4_test_bit(bit=15, block=18) = 1
[  225.972102][ T8130] loop0: detected capacity change from 0 to 512
[  225.978587][ T8121] is_bad_inode(inode)=0
[  225.982794][ T8121] NEXT_ORPHAN(inode)=0
[  225.986960][ T8121] max_ino=32
[  225.990177][ T8121] i_nlink=2
[  225.993379][ T8121] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  226.023057][ T8130] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  226.060588][ T8134] loop6: detected capacity change from 0 to 1024
[  226.074842][ T8134] EXT4-fs: Ignoring removed nobh option
[  226.080842][ T8134] EXT4-fs: Ignoring removed bh option
[  226.118844][ T8130] EXT4-fs (loop0): 1 truncate cleaned up
[  226.124911][ T8130] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  226.144412][ T8121] fscrypt (loop4, inode 16): Error -61 getting encryption context
[  226.159417][ T8134] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  226.341407][ T4258] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  226.365590][ T8130] EXT4-fs error (device loop0): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  226.379020][ T8134] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:3841: comm syz.6.1175: Allocating blocks 497-513 which overlap fs metadata
[  226.402870][ T4258] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic f300, entries 1, max 4(0), depth 0(0)
[  226.423180][ T8130] EXT4-fs (loop0): Remounting filesystem read-only
[  226.447758][ T8134] EXT4-fs (loop6): Remounting filesystem read-only
[  226.474967][ T8134] EXT4-fs (loop6): pa ffff88804ac090e0: logic 8224, phys. 177, len 21
[  226.483553][ T8134] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[  226.540161][ T8134] EXT4-fs (loop6): Remounting filesystem read-only
[  226.615573][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  226.755532][ T5503] EXT4-fs (loop6): unmounting filesystem.
[  226.799024][ T4258] EXT4-fs (loop4): unmounting filesystem.
[  226.932864][ T8141] loop7: detected capacity change from 0 to 40427
[  226.962707][ T8150] loop6: detected capacity change from 0 to 128
[  226.975583][ T8141] F2FS-fs (loop7): build fault injection attr: rate: 771, type: 0x3ffff
[  227.006930][ T8141] F2FS-fs (loop7): invalid crc value
[  227.029739][ T8150] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  227.032114][    T9] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.058656][ T8141] F2FS-fs (loop7): Found nat_bits in checkpoint
[  227.067610][ T8150] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  227.142077][ T8141] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  227.193854][    T9] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.274844][ T8158] loop5: detected capacity change from 0 to 16
[  227.303111][ T8158] erofs: (device loop5): mounted with root inode @ nid 36.
[  227.353512][    T9] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.355241][ T8158] syz.5.1186: attempt to access beyond end of device
[  227.355241][ T8158] loop5: rw=0, sector=14546590680, nr_sectors = 8 limit=16
[  227.384217][ T7177] syz-executor: attempt to access beyond end of device
[  227.384217][ T7177] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  227.403056][ T8158] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -2 in[1, 1440] out[1677]
[  227.437956][ T8158] erofs: (device loop5): erofs_readdir: fail to readdir of logical block 87 of nid 36
[  227.479451][ T8160] loop6: detected capacity change from 0 to 1024
[  227.517660][ T8160] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[  227.534195][    T9] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.555247][ T4251] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  227.747029][ T4251] usb 1-1: New USB device found, idVendor=045e, idProduct=00f4, bcdDevice=d5.51
[  227.785219][ T4251] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.824946][ T4251] usb 1-1: config 0 descriptor??
[  227.845037][ T4251] gspca_main: gspca_sn9c20x-2.14.0 probing 045e:00f4
[  227.894619][ T8169] loop5: detected capacity change from 0 to 64
[  227.934759][ T4266] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  227.952050][ T4266] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  227.962813][ T4266] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  227.977444][ T4266] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  227.995016][ T4266] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  228.003695][ T4266] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  228.050793][ T4251] gspca_sn9c20x: Write register 1000 failed -71
[  228.069177][ T4251] gspca_sn9c20x: Device initialization failed
[  228.087654][ T8169] hfs: request for non-existent node 56 in B*Tree
[  228.096703][ T4251] gspca_sn9c20x: probe of 1-1:0.0 failed with error -71
[  228.114603][ T8169] hfs: request for non-existent node 56 in B*Tree
[  228.122579][ T4251] usb 1-1: USB disconnect, device number 6
[  228.161305][ T8169] hfs: request for non-existent node 57 in B*Tree
[  228.182480][ T8169] hfs: request for non-existent node 57 in B*Tree
[  228.320936][ T8175] hfs: request for non-existent node 58 in B*Tree
[  228.370704][ T8175] hfs: request for non-existent node 58 in B*Tree
[  228.425443][ T8175] hfs: request for non-existent node 59 in B*Tree
[  228.445404][ T8175] hfs: request for non-existent node 59 in B*Tree
[  229.355474][ T8167] chnl_net:caif_netlink_parms(): no params data found
[  229.943298][ T8204] loop7: detected capacity change from 0 to 32768
[  229.957319][ T8204] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop7 scanned by syz.7.1203 (8204)
[  229.964836][ T8167] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.005421][ T8204] BTRFS info (device loop7): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  230.025395][ T8204] BTRFS info (device loop7): using crc32c (crc32c-intel) checksum algorithm
[  230.034183][ T8204] BTRFS info (device loop7): enabling disk space caching
[  230.050969][ T8167] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.058440][ T4266] Bluetooth: hci3: command 0x0409 tx timeout
[  230.105363][ T8204] BTRFS info (device loop7): force clearing of disk cache
[  230.112606][ T8204] BTRFS info (device loop7): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  230.141151][ T8167] device bridge_slave_0 entered promiscuous mode
[  230.166131][ T8167] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.173465][ T8167] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.185269][ T8204] BTRFS info (device loop7): use zstd compression, level 3
[  230.194222][ T8204] BTRFS info (device loop7): disk space caching is enabled
[  230.217423][ T8167] device bridge_slave_1 entered promiscuous mode
[  230.260033][    T9] device hsr_slave_0 left promiscuous mode
[  230.269705][    T9] device hsr_slave_1 left promiscuous mode
[  230.303899][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  230.361908][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  230.380256][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  230.399042][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  230.434168][    T9] device bridge_slave_1 left promiscuous mode
[  230.445447][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.452083][ T8204] BTRFS info (device loop7): enabling ssd optimizations
[  230.473919][    T9] device bridge_slave_0 left promiscuous mode
[  230.474642][ T8204] BTRFS info (device loop7): rebuilding free space tree
[  230.495879][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.503796][ T8204] BTRFS info (device loop7): disabling free space tree
[  230.511369][ T8204] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  230.535303][ T8204] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  230.650018][    T9] device veth1_macvtap left promiscuous mode
[  230.668888][    T9] device veth0_macvtap left promiscuous mode
[  230.678845][    T9] device veth1_vlan left promiscuous mode
[  230.684912][    T9] device veth0_vlan left promiscuous mode
[  230.708373][ T7177] BTRFS info (device loop7): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  231.234723][ T8239] loop5: detected capacity change from 0 to 32768
[  231.273812][ T8239] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.1212 (8239)
[  231.355560][ T8239] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  231.372003][ T8239] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  231.401303][ T8239] BTRFS info (device loop5): using free space tree
[  231.924809][ T5098] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  232.145925][ T4267] Bluetooth: hci3: command 0x041b tx timeout
[  232.364430][ T8257] loop0: detected capacity change from 0 to 40427
[  232.410711][ T8257] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff
[  232.420885][ T8257] F2FS-fs (loop0): invalid crc value
[  232.454664][ T8257] F2FS-fs (loop0): Found nat_bits in checkpoint
[  232.575319][ T8257] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  232.703331][   T27] audit: type=1800 audit(1737662275.741:57): pid=8257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1224" name="file1" dev="loop0" ino=10 res=0 errno=0
[  232.739761][ T8284] loop5: detected capacity change from 0 to 512
[  232.762430][ T8284] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  232.792533][    T9] team0 (unregistering): Port device team_slave_1 removed
[  232.801218][ T8284] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002]
[  232.825234][ T8284] System zones: 1-12
[  232.830287][ T8284] EXT4-fs (loop5): orphan cleanup on readonly fs
[  232.852522][ T8284] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1220: bg 0: block 361: padding at end of block bitmap is not set
[  232.872865][ T8284] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  232.884299][ T8284] EXT4-fs error (device loop5): ext4_clear_blocks:883: inode #11: comm syz.5.1220: attempt to clear invalid blocks 33619980 len 1
[  232.912626][ T8284] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1220: invalid indirect mapped block 1811939328 (level 0)
[  232.912801][ T8288] loop7: detected capacity change from 0 to 512
[  232.933596][ T8284] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1220: invalid indirect mapped block 2 (level 2)
[  232.947680][ T8284] EXT4-fs (loop5): 1 truncate cleaned up
[  232.953368][ T8284] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  232.959350][ T8288] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  232.975697][ T4261] syz-executor: attempt to access beyond end of device
[  232.975697][ T4261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  232.983535][ T8284] EXT4-fs error (device loop5): ext4_map_blocks:634: inode #2: block 5: comm syz.5.1220: lblock 0 mapped to illegal pblock 5 (length 1)
[  233.017395][ T8284] EXT4-fs warning (device loop5): dx_probe:823: inode #2: lblock 0: comm syz.5.1220: error -117 reading directory block
[  233.034253][    T9] team0 (unregistering): Port device team_slave_0 removed
[  233.062109][ T8284] EXT4-fs error (device loop5): ext4_map_blocks:634: inode #2: block 5: comm syz.5.1220: lblock 0 mapped to illegal pblock 5 (length 1)
[  233.089519][ T8284] EXT4-fs warning (device loop5): dx_probe:823: inode #2: lblock 0: comm syz.5.1220: error -117 reading directory block
[  233.126633][ T8288] EXT4-fs (loop7): 1 truncate cleaned up
[  233.132824][ T8288] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  233.156185][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  233.163532][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  233.307380][ T8288] EXT4-fs error (device loop7): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  233.374842][ T8288] EXT4-fs (loop7): Remounting filesystem read-only
[  233.411526][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  233.534011][ T7177] EXT4-fs (loop7): unmounting filesystem.
[  234.191193][ T8296] loop0: detected capacity change from 0 to 32768
[  234.199583][ T8296] XFS: noikeep mount option is deprecated.
[  234.213110][ T8296] XFS: ikeep mount option is deprecated.
[  234.227630][ T4267] Bluetooth: hci3: command 0x040f tx timeout
[  234.261168][ T8296] XFS (loop0): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent.
[  234.340331][ T8296] XFS (loop0): Quotacheck needed: Please wait.
[  234.460857][ T8296] XFS (loop0): Quotacheck: Done.
[  234.509828][ T4261] XFS (loop0): Unmounting Filesystem
[  234.768494][    T9] bond0 (unregistering): Released all slaves
[  234.955764][ T8167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.970262][ T8167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  235.022871][ T8167] team0: Port device team_slave_0 added
[  235.123356][ T8167] team0: Port device team_slave_1 added
[  235.143037][ T8311] loop0: detected capacity change from 0 to 256
[  235.200064][ T8311] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  235.265938][ T8167] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.285636][ T8167] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.363671][ T8167] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.377346][ T8319] loop0: detected capacity change from 0 to 64
[  235.396198][ T8315] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1229'.
[  235.431205][ T8167] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.473686][ T8167] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.556643][ T8167] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.577430][ T8322] Bluetooth: MGMT ver 1.22
[  235.604364][ T4261] hfs: node 4:3 still has 1 user(s)!
[  235.690177][ T8167] device hsr_slave_0 entered promiscuous mode
[  235.730793][ T8167] device hsr_slave_1 entered promiscuous mode
[  235.750857][ T8167] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  235.780464][ T8167] Cannot create hsr debugfs directory
[  235.874735][ T8333] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1237'.
[  236.050317][ T8336] device wg2 entered promiscuous mode
[  236.295372][ T4267] Bluetooth: hci3: command 0x0419 tx timeout
[  236.323667][ T8343] loop5: detected capacity change from 0 to 512
[  236.338256][ T8343] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  236.385565][ T8167] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  236.404146][ T8343] EXT4-fs (loop5): 1 truncate cleaned up
[  236.422775][ T8167] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  236.445414][ T8343] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  236.467760][ T8343] fscrypt (loop5, inode 18): Unsupported encryption flags (0xf4)
[  236.527892][ T8167] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  236.543465][ T8167] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  236.604413][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  236.715452][ T4294] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  236.743103][ T8167] 8021q: adding VLAN 0 to HW filter on device bond0
[  236.764740][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  236.778246][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  236.794479][ T8167] 8021q: adding VLAN 0 to HW filter on device team0
[  236.809246][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  236.827574][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  236.849268][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.856526][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.925455][ T4294] usb 1-1: Using ep0 maxpacket: 16
[  236.937195][ T4294] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.955001][ T4294] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  236.964442][ T4294] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.980617][ T4294] usb 1-1: config 0 descriptor??
[  237.135347][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  237.169415][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  237.182950][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  237.212175][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.221895][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  237.249706][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  237.261312][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  237.275936][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  237.287937][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  237.317599][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  237.335026][ T8366] loop6: detected capacity change from 0 to 128
[  237.348039][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  237.371118][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  237.383603][ T8366] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  237.404081][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  237.405463][ T4294] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x6
[  237.433971][ T4294] mcp2221 0003:04D8:00DD.0008: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  237.442782][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  237.448169][ T8366] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  237.477921][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  237.513468][ T8366] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only
[  237.516221][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  237.566811][ T8167] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  237.673246][    C0] usb 1-1: input irq status -75 received
[  237.874916][ T5460] usb 1-1: USB disconnect, device number 7
[  237.994890][ T8387] loop7: detected capacity change from 0 to 1024
[  238.001761][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  238.021920][ T4634] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  238.042200][ T8167] 8021q: adding VLAN 0 to HW filter on device batadv0
[  238.433410][ T8406] binder: 8404:8406 ioctl c00c620f 0 returned -14
[  238.671451][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  238.685811][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  238.714427][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  238.734086][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  238.745110][ T8417] loop5: detected capacity change from 0 to 2048
[  238.752726][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  238.778434][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  238.799076][ T8167] device veth0_vlan entered promiscuous mode
[  238.817729][ T8167] device veth1_vlan entered promiscuous mode
[  238.823766][ T8417] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  238.844372][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  238.864499][   T27] audit: type=1800 audit(1737662281.901:58): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1268" name="file1" dev="loop5" ino=15 res=0 errno=0
[  238.866338][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  238.918901][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  238.936708][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  238.952311][ T8167] device veth0_macvtap entered promiscuous mode
[  238.961254][ T5098] EXT4-fs (loop5): unmounting filesystem.
[  238.965954][ T8167] device veth1_macvtap entered promiscuous mode
[  238.996984][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.010184][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.020528][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.031615][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.041620][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.070430][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.089157][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.102977][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.121195][ T8167] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.133472][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  239.142832][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  239.151882][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  239.161165][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  239.176259][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.195418][ T5460] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  239.221163][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.232317][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.250040][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.276272][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.293806][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.304302][ T8167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.318467][ T8167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.344394][ T8167] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.352481][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  239.374974][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  239.411640][ T8167] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.421603][ T5460] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.449397][ T5460] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  239.459354][ T8167] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.475229][ T8167] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.483986][ T8167] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.492856][ T5460] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  239.516990][ T5460] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.541024][ T5460] usb 1-1: config 0 descriptor??
[  239.630976][ T8439] loop6: detected capacity change from 0 to 2048
[  239.674776][ T8441] loop5: detected capacity change from 0 to 2048
[  239.688468][ T8444] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  239.703596][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.732932][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.743449][ T8444] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  239.774650][ T8446] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  239.795776][ T8444] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  239.821436][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  239.855563][ T8444] Remounting filesystem read-only
[  239.859795][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.863076][    T9] NILFS (loop6): discard dirty page: offset=0, ino=6
[  239.886778][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.902479][ T8449] netlink: 'syz.7.1279': attribute type 29 has an invalid length.
[  239.905811][    T9] NILFS (loop6): discard dirty block: blocknr=18446744073709551615, size=1024
[  239.914731][ T8449] netlink: 'syz.7.1279': attribute type 29 has an invalid length.
[  239.940339][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  239.953544][ T8449] netlink: 'syz.7.1279': attribute type 29 has an invalid length.
[  239.963346][ T8449] netlink: 'syz.7.1279': attribute type 29 has an invalid length.
[  239.979241][ T5460] uclogic 0003:5543:0522.0009: unknown main item tag 0x0
[  239.986494][    T9] NILFS (loop6): discard dirty block: blocknr=18446744073709551615, size=1024
[  240.005858][ T5460] uclogic 0003:5543:0522.0009: unknown main item tag 0x0
[  240.014472][ T5460] uclogic 0003:5543:0522.0009: unknown main item tag 0x0
[  240.023819][    T9] NILFS (loop6): discard dirty block: blocknr=37, size=1024
[  240.028906][ T8450] NILFS (loop5): error -2 truncating bmap (ino=16)
[  240.032883][    T9] NILFS (loop6): discard dirty block: blocknr=38, size=1024
[  240.051728][ T5460] uclogic 0003:5543:0522.0009: unknown main item tag 0x0
[  240.059420][ T5460] uclogic 0003:5543:0522.0009: unknown main item tag 0x0
[  240.068730][ T5460] uclogic 0003:5543:0522.0009: No inputs registered, leaving
[  240.073166][ T8439] NILFS (loop6): mounting fs with errors
[  240.095508][ T5460] uclogic 0003:5543:0522.0009: hidraw0: USB HID v0.00 Device [HID 5543:0522] on usb-dummy_hcd.0-1/input0
[  240.143554][ T8444] ------------[ cut here ]------------
[  240.150323][ T8444] WARNING: CPU: 0 PID: 8444 at fs/buffer.c:1081 mark_buffer_dirty+0x394/0x7d0
[  240.159304][ T8444] Modules linked in:
[  240.163332][ T8444] CPU: 0 PID: 8444 Comm: segctord Not tainted 6.1.127-syzkaller #0
[  240.171368][ T8444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  240.179166][ T5460] usb 1-1: USB disconnect, device number 8
[  240.181528][ T8444] RIP: 0010:mark_buffer_dirty+0x394/0x7d0
[  240.193646][ T8444] Code: ba e0 ff 48 8b 7d 00 be 04 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 0b 6a fc ff e8 f6 26 89 ff e9 42 ff ff ff e8 ec 26 89 ff <0f> 0b e9 b3 fc ff ff e8 e0 26 89 ff 0f 0b e9 f6 fc ff ff e8 d4 26
[  240.215312][ T8444] RSP: 0018:ffffc900039876c8 EFLAGS: 00010293
[  240.221618][ T8444] RAX: ffffffff820175b4 RBX: ffff88807dd59801 RCX: ffff888027099dc0
[  240.229672][ T8444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  240.237713][ T8444] RBP: 0000000000000000 R08: ffffffff82017261 R09: ffffed100e4b22af
[  240.245754][ T8444] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100aca5e91
[  240.253765][ T8444] R13: 1ffff1100aca5e93 R14: ffff88805652f498 R15: ffff888072591570
[  240.261822][ T8444] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  240.270902][ T8444] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  240.277564][ T8444] CR2: 00005555686d55c8 CR3: 0000000063e71000 CR4: 00000000003506f0
[  240.285632][ T8444] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  240.293648][ T8444] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  240.301730][ T8444] Call Trace:
[  240.305039][ T8444]  <TASK>
[  240.308592][ T8444]  ? __warn+0x15a/0x520
[  240.312889][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.318095][ T8444]  ? report_bug+0x2af/0x500
[  240.322642][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.327858][ T8444]  ? handle_bug+0x3d/0x70
[  240.332226][ T8444]  ? exc_invalid_op+0x16/0x40
[  240.336979][ T8444]  ? asm_exc_invalid_op+0x16/0x20
[  240.342079][ T8444]  ? mark_buffer_dirty+0x41/0x7d0
[  240.347189][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.352354][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.357544][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.362694][ T8444]  nilfs_segctor_do_construct+0x33c/0x7100
[  240.368588][ T8444]  ? reacquire_held_locks+0x660/0x660
[  240.374007][ T8444]  ? reacquire_held_locks+0x660/0x660
[  240.379626][ T8444]  ? mark_lock+0x9a/0x340
[  240.384015][ T8444]  ? mark_lock+0x9a/0x340
[  240.388786][ T8444]  ? __lock_acquire+0x125b/0x1f80
[  240.393859][ T8444]  ? nilfs_transaction_unlock+0x210/0x210
[  240.399689][ T8444]  ? nilfs_segctor_confirm+0x24c/0x2d0
[  240.405416][ T8444]  ? __lock_acquire+0x1f80/0x1f80
[  240.410685][ T8444]  ? do_raw_spin_lock+0x14a/0x370
[  240.415884][ T8444]  ? do_raw_spin_unlock+0x137/0x8a0
[  240.421655][ T8444]  ? _raw_spin_unlock+0x24/0x40
[  240.426758][ T8444]  ? nilfs_segctor_confirm+0x24c/0x2d0
[  240.432537][ T8444]  nilfs_segctor_construct+0x181/0x6a0
[  240.438175][ T8444]  nilfs_segctor_thread+0x552/0x11a0
[  240.443630][ T8444]  ? nilfs_iput_work_func+0x70/0x70
[  240.448916][ T8444]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  240.454854][ T8444]  ? release_firmware_map_entry+0x186/0x186
[  240.460830][ T8444]  ? wake_bit_function+0x210/0x210
[  240.466036][ T8444]  ? _raw_spin_unlock+0x40/0x40
[  240.470945][ T8444]  ? __kthread_parkme+0x168/0x1c0
[  240.476065][ T8444]  kthread+0x28d/0x320
[  240.480174][ T8444]  ? nilfs_iput_work_func+0x70/0x70
[  240.485455][ T8444]  ? kthread_blkcg+0xd0/0xd0
[  240.490086][ T8444]  ret_from_fork+0x1f/0x30
[  240.494561][ T8444]  </TASK>
[  240.497649][ T8444] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  240.505619][ T8444] CPU: 0 PID: 8444 Comm: segctord Not tainted 6.1.127-syzkaller #0
[  240.513808][ T8444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  240.524186][ T8444] Call Trace:
[  240.527495][ T8444]  <TASK>
[  240.530454][ T8444]  dump_stack_lvl+0x1e3/0x2cb
[  240.535188][ T8444]  ? nf_tcp_handle_invalid+0x642/0x642
[  240.540715][ T8444]  ? panic+0x764/0x764
[  240.544816][ T8444]  ? 0xffffffffa00038c0
[  240.549018][ T8444]  ? vscnprintf+0x59/0x80
[  240.553385][ T8444]  panic+0x318/0x764
[  240.557339][ T8444]  ? __warn+0x169/0x520
[  240.561503][ T8444]  ? memcpy_page_flushcache+0xfc/0xfc
[  240.566892][ T8444]  ? ret_from_fork+0x1f/0x30
[  240.571495][ T8444]  __warn+0x348/0x520
[  240.575508][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.580625][ T8444]  report_bug+0x2af/0x500
[  240.584957][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.590160][ T8444]  handle_bug+0x3d/0x70
[  240.594325][ T8444]  exc_invalid_op+0x16/0x40
[  240.598834][ T8444]  asm_exc_invalid_op+0x16/0x20
[  240.603695][ T8444] RIP: 0010:mark_buffer_dirty+0x394/0x7d0
[  240.609474][ T8444] Code: ba e0 ff 48 8b 7d 00 be 04 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 0b 6a fc ff e8 f6 26 89 ff e9 42 ff ff ff e8 ec 26 89 ff <0f> 0b e9 b3 fc ff ff e8 e0 26 89 ff 0f 0b e9 f6 fc ff ff e8 d4 26
[  240.629349][ T8444] RSP: 0018:ffffc900039876c8 EFLAGS: 00010293
[  240.635439][ T8444] RAX: ffffffff820175b4 RBX: ffff88807dd59801 RCX: ffff888027099dc0
[  240.643437][ T8444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  240.651412][ T8444] RBP: 0000000000000000 R08: ffffffff82017261 R09: ffffed100e4b22af
[  240.659387][ T8444] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100aca5e91
[  240.667445][ T8444] R13: 1ffff1100aca5e93 R14: ffff88805652f498 R15: ffff888072591570
[  240.675513][ T8444]  ? mark_buffer_dirty+0x41/0x7d0
[  240.680632][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.685755][ T8444]  ? mark_buffer_dirty+0x394/0x7d0
[  240.690874][ T8444]  nilfs_segctor_do_construct+0x33c/0x7100
[  240.696700][ T8444]  ? reacquire_held_locks+0x660/0x660
[  240.702088][ T8444]  ? reacquire_held_locks+0x660/0x660
[  240.707524][ T8444]  ? mark_lock+0x9a/0x340
[  240.712019][ T8444]  ? mark_lock+0x9a/0x340
[  240.722318][ T8444]  ? __lock_acquire+0x125b/0x1f80
[  240.728022][ T8444]  ? nilfs_transaction_unlock+0x210/0x210
[  240.733907][ T8444]  ? nilfs_segctor_confirm+0x24c/0x2d0
[  240.739393][ T8444]  ? __lock_acquire+0x1f80/0x1f80
[  240.744436][ T8444]  ? do_raw_spin_lock+0x14a/0x370
[  240.749479][ T8444]  ? do_raw_spin_unlock+0x137/0x8a0
[  240.754688][ T8444]  ? _raw_spin_unlock+0x24/0x40
[  240.759551][ T8444]  ? nilfs_segctor_confirm+0x24c/0x2d0
[  240.765027][ T8444]  nilfs_segctor_construct+0x181/0x6a0
[  240.770506][ T8444]  nilfs_segctor_thread+0x552/0x11a0
[  240.775860][ T8444]  ? nilfs_iput_work_func+0x70/0x70
[  240.781071][ T8444]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  240.786982][ T8444]  ? release_firmware_map_entry+0x186/0x186
[  240.792883][ T8444]  ? wake_bit_function+0x210/0x210
[  240.798006][ T8444]  ? _raw_spin_unlock+0x40/0x40
[  240.803380][ T8444]  ? __kthread_parkme+0x168/0x1c0
[  240.809361][ T8444]  kthread+0x28d/0x320
[  240.814655][ T8444]  ? nilfs_iput_work_func+0x70/0x70
[  240.820142][ T8444]  ? kthread_blkcg+0xd0/0xd0
[  240.824774][ T8444]  ret_from_fork+0x1f/0x30
[  240.829858][ T8444]  </TASK>
[  240.833232][ T8444] Kernel Offset: disabled
[  240.837676][ T8444] Rebooting in 86400 seconds..