last executing test programs:

2m45.952357525s ago: executing program 2 (id=3027):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
munlockall()

2m45.670110877s ago: executing program 2 (id=3030):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)=ANY=[@ANYBLOB='iocharset=maciceland,gid=', @ANYRESHEX=0x0, @ANYBLOB="009b09c3f8", @ANYRESHEX=0x0, @ANYBLOB=',errors=continue,fmask=00000000000000000177777,time_offset=0x0000000000000005,namecase=1,iocharset=iso8859-7,utf8,errors=continue,\x00'], 0x1, 0x152d, &(0x7f0000001f80)="$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")
chroot(&(0x7f0000000000)='./file0/../file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffff9c, 0x0, 0x250)

2m45.062510651s ago: executing program 2 (id=3033):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r0}, 0x10)
getrlimit(0x7, &(0x7f0000000000))

2m44.711943276s ago: executing program 2 (id=3036):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x52, 0x1, 0x0, 0x10000, {0x1c}, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040010}, 0x0)

2m44.366475368s ago: executing program 2 (id=3041):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$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")
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2m43.290684732s ago: executing program 2 (id=3051):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYBLOB='\b\x00\n'], 0x54}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m35.783045951s ago: executing program 5 (id=3134):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$binder(&(0x7f000000d000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x8000000000000)
mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)

2m35.576860802s ago: executing program 5 (id=3136):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000000b40)=ANY=[@ANYBLOB="300000006800010000000000feffffff0a00000000000000080008800400010008000500", @ANYRES32=r1, @ANYBLOB="060007000200000008167e8795d6f7d381"], 0x30}, 0x1, 0x0, 0x0, 0x8810}, 0x40040d0)

2m35.258617109s ago: executing program 5 (id=3139):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
unshare(0x20000400)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m35.062961275s ago: executing program 5 (id=3141):
r0 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r0, @ANYBLOB="01000000000000000000010000001400020077673100000000000000000000000000f40108807000008048000980280000f8060001000a00000014000200fe8000000000000000000000000000aa050003000000000003000080060001000200000908000200e00000010500030000000000240001"], 0x21c}, 0x1, 0x0, 0x0, 0x20040010}, 0x4008804)

2m34.744173239s ago: executing program 5 (id=3145):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x98}, 0x1, 0x0, 0x0, 0x88bffd7102520d33}, 0x0)

2m34.465248572s ago: executing program 5 (id=3148):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
sync()

2m28.159015361s ago: executing program 32 (id=3051):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYBLOB='\b\x00\n'], 0x54}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m19.222637688s ago: executing program 33 (id=3148):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
sync()

2m2.079827725s ago: executing program 0 (id=3433):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000240)=@fragment={0x32, 0x0, 0xff, 0x1, 0x0, 0x5, 0x67}, 0x8)
sendmsg$inet6(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0xa, 0x4e23, 0x7fffffff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7}, 0x1c, &(0x7f0000000580)=[{&(0x7f00000001c0)='5', 0x1}], 0x1}, 0x20000091)

2m0.942168986s ago: executing program 0 (id=3448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x1c, 0x44, 0x107, 0xfffffffc, 0x0, {0x1, 0x7c}, [@typed={0x8, 0x1, 0x0, 0x0, @pid=r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

2m0.697266427s ago: executing program 0 (id=3450):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x20)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
read$msr(r0, &(0x7f0000000180)=""/174, 0xae)

2m0.447579912s ago: executing program 0 (id=3451):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x800, &(0x7f0000000100)=ANY=[@ANYBLOB='iocharset=iso8859-9,utf8,dmask=00000000000000000000011,utf8,errors=remount-ro,utf8,fmask=00000000000000000000001,errors=remount-ro,iocharset=iso8859-5,gid=', @ANYRESHEX=0x0, @ANYBLOB="0002"], 0x1, 0x1548, &(0x7f0000000380)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)

1m59.719464691s ago: executing program 0 (id=3457):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
mlock(&(0x7f0000000000/0x2000)=nil, 0x2000)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)

1m58.943874686s ago: executing program 0 (id=3461):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r0, 0x0, 0x97)

1m58.068676783s ago: executing program 34 (id=3461):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r0, 0x0, 0x97)

8.215389728s ago: executing program 6 (id=4496):
syz_mount_image$jfs(&(0x7f00000002c0), &(0x7f0000000040)='./bus\x00', 0xa, &(0x7f0000000340)=ANY=[@ANYRES8=0x0], 0xfa, 0x6158, &(0x7f000000c680)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000340)='./file0\x00', 0x8f)

6.563022273s ago: executing program 6 (id=4518):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xb4}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

5.848733934s ago: executing program 3 (id=4527):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000180)={[{@nolazytime}, {@abort}, {@lazytime}, {@mblk_io_submit}, {@noauto_da_alloc}]}, 0xde, 0x53b, &(0x7f0000000e00)="$eJzs3c1vI2cZAPBnJnbIdlOSAodSqR+ii3YrWHvT0Dbi0BaBuFUClfsSJd4oWme9ip12E1WQFX8AEkJQiRMnLkjcuCCh/RMQUiX2jgCBEGzhwAEYNOPxNmvG2cD6Y5X8ftJrv/OOPc/zOvb4nY94AjizXoiINyNiLiJeioilsj0tSxz2S/64D++9t5GXvPntvySRlG0RRfW+8+XTFvp3lbr7B9fX2+3Wbjnd7O3cbHb3Dy5v76xvtbZaN1ZXV15de23tlbUrY+ln3q/Xv/KHH3z3J199/Zeff/e3V/906Vt50l8u5w/6NT7Fqxd3i9t6/lrcV4uI3fEGm5m5sj/1WScCAMCJ5KPUT0TEZ4rx/1LMFaO5wvCQbmH62QEAAADjkL2xGP9MIjIAAADg1HojIhYjSRvluQCLkaaNRv8c3k/FE2m70+197lpn78ZmPi9iOerpte1260p5Tu1y1JN8eqWofzT98tD0akQ8FRHfXzpXTDc2Ou3NWe/8AAAAgDPi/ND2/9+X+tv/AAAAwCmzPOsEAAAAgIkbtf2fTDkPAAAAYHIc/wcAAIBT7WtvvZWXbHD968139veud965vNnqXm/s7G00Njq7Nxtbnc5W8Zt9O8ctqx4R7U7n5hci9m41e61ur9ndP7i609m70bu67fqBAAAAMCtPPX/nbhIRh188V5TcfH4zN+IJzhWAUyMd0V75Mf/9ZHMBpmvU1/wJzI8zD2D6arNOAJidw1knAMzaAz/1UTEoOHryzgP7DH41uZwAAIDxuvjpO3e/XXH8v1aezw+cXqOO/wOn3yMc/89l48oDmD7H/+HsqsdctnTiR9+eaC7AbDzsUh8jf7yj6vh/5ZnBWfbQZQEAABO1WJTn00Z5LHAx0rTRiHiy+B/genJtu926EhEfj4jfLNU/lk+vFM9MXB4QAAAAAAAAAAAAAAAAAAAAAAAAAE4oy5LIAAAAgFMtIv1jUl7/6+LShcXh/QPzyT+KywPOR8S7P3r7h7fWe73dlbz9r/fbe++X7S/PYg8GAAAAnEW1Y+cOttMH2/EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAME4f3ntvY1CmGffPX4qI5ar4tVgo7heiHhFP/C2J2pHnJRExN4b4h7cj4umq+EmeViyXWQzHTyPi3HTiP5tlWWX882OID2fZnXz982bV5y+NF4r76s9/rSyP6oH13/zPj8xJ76//5kas/548YYxnPvhZc2T82xHP1KrXP4P4yYj4L1YtsOJF+eY3Dg7+q7G/8Mh+HHGx8vsneSBWs7dzs9ndP7i8vbO+1dpq3VhdXXl17bW1V9auNK9tt1vlbVWI+N6zv/j3UPR/ZX1F/6MfP6rWv8f1/0JeqR9pzIbDlME+uHXvk/1qfWgRRfxLL1a//54+Jn7+nvhs+T2Qz784qB/260c999NfP1eZWBl/c8Tr/7C//6VRCx3y0te/87sTPhQAmILBKGu3u39wfb3dbk2s8n6WZRMO8X9UIj3pg4vhYkTMPufJVGqTficsPC49nXLlwuORxv9SGceeLQAA4HHz0aB/1pkAAAAAAAAAAAAAAAAAAADA2dXdj3TSPyc2HPNwNl0FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADjWfwIAAP//nJjX8w==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)

5.247502167s ago: executing program 6 (id=4532):
syz_mount_image$minix(&(0x7f0000000540), &(0x7f00000002c0)='./file1\x00', 0x8040, &(0x7f0000000c00)=ANY=[@ANYRES16=0x0], 0xfd, 0x1d0, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000005, 0x80010, r0, 0x8000000)

4.543815741s ago: executing program 3 (id=4535):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="130000001000000002"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xa0}}}, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000400)="5aee41dea43e9eee28e622e563a3", 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.138069863s ago: executing program 6 (id=4550):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x75, 0x1c, 0x1, 0x10, 0xfe6, 0x9800, 0xd19a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x29, 0x2, 0x2, 0xb4, 0x8c, 0xbb, 0x0, [], [{{0x9, 0x5, 0x4, 0x2, 0x10, 0x0, 0xfa}}, {{0x9, 0x5, 0x82, 0x2, 0x40}}]}}]}}]}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

3.797323247s ago: executing program 3 (id=4541):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000009c0)=[{&(0x7f0000000140)="bec4", 0x2}, {0x0}], 0x2, &(0x7f0000000740)=[@ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_retopts={{0x10}}], 0x28}, 0x0)

3.536993916s ago: executing program 3 (id=4546):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)

3.278330933s ago: executing program 1 (id=4549):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000040)="5b8d7acda0b2", 0x0, 0x0, 0x0, 0x0, 0x0})

3.185629848s ago: executing program 3 (id=4552):
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3200400, &(0x7f0000000140)=ANY=[], 0x1, 0xa73, &(0x7f0000003cc0)="$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")
syz_usb_connect(0x5, 0x50, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001accd5910a9054a264ce50102030109023e0001030f400809049bbc000e01000d0a0d020101020401727f05240600000509000500030b24130b21c4"], 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)

2.997285688s ago: executing program 1 (id=4553):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./file2\x00', 0x221c012, &(0x7f0000000500)={[{@noinit_itable}, {@data_ordered}, {@nodioread_nolock}, {@barrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x400}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000000}}, {@jqfmt_vfsold}], [{@euid_eq}, {@permit_directio}]}, 0xfe, 0x4fb, &(0x7f0000000880)="$eJzs3V9rHGsZAPBnJrvnNG2Om6Ne6AHbYitJ0W6SxrbBi1ZB9Kqg1vsak20I2WRLsmmbUDTFDyCIqOCNXnkj+AEE6UcQoWDvRUURbfVCoTqyu7MxTXeTlG52Mfv7wZv5u/M8b5Z5Z96ZYSeAoXU+IiYjIsuy7FJElPL5aV5ip1Ua6714/mihUZLIstt/TSLJ57W39W4+PJN/7FREfO3LEd9MXo+7sbW9Ml+tVtbz6an6avIyy7YvL6/OL1WWKmuzszPX5q7PXZ2b7kk9xyPixhf/+IPv/uxLN371mQe/u/PnyW+1Ktiytx691Kp6sfm/aCtExPpxBBuQQrOGLVcHnAsAAAdrnO9/OCI+GRGXohQjzbM5AAAA4CTJbo7Fy6R1/w8AAAA4mdKIGIskLefP+45FmpbLrWd4Pxqn02pto/7prLR7vWA8iund5WplOn92YDyKSWN6Jn/Gtj19Zd/0bES8HxHfL402p8sLteriQK98AAAAwPA4s6///49Sq/8PAAAAnDDjg04AAAAAOHb6/wAAAHDy6f8DAADAifaVW7caJWu//3rx/tbmSu3+5cXKxkp5dXOhvFBbv1deqtWWmr/Zt3rY9qq12r3Pxtrmw6l6ZaM+tbG1fWe1trlWv7P8yiuwAQAAgD56/9yTZ0lE7HxuNI2ILNmzrBiRjexdudD//IDjk77Jyn84vjyA/hsZdALAwDilh+FVHHQCwMAd1g50fXjn173PBQAAOB4TH3/yLFr3/5ul4Z18WTLIxIBjl9//T+zrMHzc/4fh5f4fDK/iQWcAOgVw4qVH2NXf/v5/lr1RUgAAQM+NNUuSlvN+wFikabkc8V7ztQDF5O5ytTIdER+KiN+Wiu82pmean0xcHgAAAAAAAAAAAAAAAAAAAAAAAACAI8qyJLIuRnfXAQAAAP6fRaR/SvL3f02ULo7tvz7wTvLPUnMYEQ9+fPuHD+fr9fWZxvy/7c6v/yiff6XfVy8AAACATtr99HY/HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB66cXzRwvt0s+4f/lCRIx3il+IU83hqShGxOm/J1HY87kkIkZ6EH/ncUR8rFP8pJFWjOdZ7I+fRsTogOOf6UF8GGZPGu3P5zvtf2mcbw4773+FvLyt7u1futv+jXRp/97rtMH09VkfPP3FVNf4jyM+KHRuf9rxky7xLxyxjt/4+vZ2t2XZTyMmOh5/kldiTSWFe1MbW9uXl1fnlypLlbXZ2Zlrc9fnrs5NT91drlbyvx1jfO8Tv/zPQfU/3SX++CH1v3jE+v/76cPnH2mNFvctKsZPsmzyQufjb+v/Hzf3x28f+z6Vf92N6Yn2+E5rfK+zP//N2XNdcht9HLHYpf6Hff+TR6z/pa9+5/dHXBUA6IONre2V+Wq1st5xpHWcP3gdI0YOGxmNPgadj4PWaZ/E9iGfb+eh+lj3f2U92+AAGyUAAOBY/O+kf9CZAAAAAAAAAAAAAAAAAAAAwPA67GfAogc/J7Y/5s5gqgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcKD/BgAA///E6ck2")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)

2.59310113s ago: executing program 8 (id=4558):
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x12, &(0x7f00000004c0)={[{@codepage={'codepage', 0x3d, 'cp737'}}, {@creator={'creator', 0x3d, "288ec79c"}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}]}, 0x4, 0x339, &(0x7f0000000140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/234, 0xea)

2.477919755s ago: executing program 1 (id=4559):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000580)='./file0\x00', 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], 0x1, 0x120b, &(0x7f0000002300)="$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")
chown(&(0x7f0000000140)='./file0\x00', 0xee00, 0x0)

2.106838557s ago: executing program 8 (id=4562):
r0 = semget$private(0x0, 0x4000000009, 0x0)
semop(r0, &(0x7f0000000680)=[{0x7, 0xec7b, 0x1000}, {0x4, 0x5, 0xc00}], 0x2)
semop(r0, &(0x7f0000000040)=[{0x1, 0xffff, 0x1000}, {0x2, 0x1, 0x800}, {0x2, 0x4, 0x800}], 0x3)

2.035825804s ago: executing program 4 (id=4563):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000080)=0x3, 0x4)

1.817654735s ago: executing program 4 (id=4565):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x8000, &(0x7f00000001c0)={[{@errors_continue}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@utf8}, {@errors_remount}, {@dmask={'dmask', 0x3d, 0x8}}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@utf8}, {@fmask={'fmask', 0x3d, 0x6}}, {@sys_tz}]}, 0x1, 0x1548, &(0x7f0000000f00)="$eJzs3AuYTdX7OPD3XWvtMSSdJrkMa613c5LLMkmSS5JckiRJktwSkib5SkJiyC1pSEJyGZLLEJLLxKRxv98vCU2SJklCckvW/1H8fftVv++lvl/P85v38zz7sd6z9rv22vOeM2fvdZz5psvQmo1rVWtIRPCn4C//JAFALAAMBIBrACAAgHJx5eIu9OeUmPTnDsL+Wg+lXukZsCuJ65+9cf2zN65/9sb1z964/tkb1z974/pnb1x/xrKzzdMLXstb9t14/T874/f//0OySo/9Ym3p67sCxPyzKVz/7I3r/39W8M/sxPXP3rj+2VXslZ4A+yvN/vfS+PWfHeT4wx6uf/bG9WcsO/t5HTgnXPF16Cu1QSR7fwZypZ9/jDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcayh9P+MgUAl9pXel6MMcYYY4wxxhj76/gcV3oGjDHGGGOMMcYY+89DECBBQQAxkANiISfkAgEAV0MeuAYicC3EwXWQF66HfJAfCkBBiIdCUBg0GLBAEEIRKApRuAGKwY1QHEpASSgFDkpDAtwEZeBmKAu3QDm4FcrDbVABKkIlqAy3QxW4A6rCnVAN7oLqUANqQi24G2rDPVAH7oW6cB/Ug/uhPjwADeBBaAgPQSN4GBrDI9AEHoWm0AyaQwto+W/lvwA94EXoCb0gCXpDH3gJ+kI/6A8DYCC8DIPgFRgMr0IyDIGh8BoMg9dhOLwBI2AkjII3YTS8BWNgLIyD8ZACE2AivA2T4B2YDFNgKkyDVJgOM+BdmAmzYDa8B3PgfZgL82A+LIA0+AAWwiJIhw9hMXwEGbAElsIyWA4rYCWsgtWwBtbCuh/7wgbYCJtgM2yBrbANtsMO2Akfwy74BHbDntfnAUAmfPZH+bD+d/NPXcqHvfApZEJXBAQUKFChwhiMwViMxVyYC3NjbsyDeTCCEYzDOMyLeTEf5sMCWADjMR4LY2E0aJCQsAgWwShGsRgWw+JYHEtiSXToMAETsAzejGWxLJbDclgey2MFrIgVsTJWxipYBatiVayG1bA6VseaWBPvxruxN9bBOlgX62I9rHdpeQobYkNshI2wMTbGJtgEm2JTbI7NsSW2xFbYCltja2yLbbEdtsP22B4TMRE7YAfsiB2xE3bCztgZu2AX7IrdsFvWCzkAX8QXsRdWF72xD/bBvpicoz8OwAH4Mg7CV/AVfBWTcQgOxdfwNXwdh+NJHIEjcRSOwiriLRyDY5HEeEzBFJyIE3ESTsLJOAWn4DRMxek4A2fgTJyFs/A9nIPv4/s4D+fhAkzDNFyIizAd03ExnsIMXIJLcRkuxxW4HFfhalyFa3EdrsUNuAE34SbcgltwG27DHbgDP0YFgJ/gHtyDyZiJmbgP9+F+3I8H8ABmYRYexIN4CA/hYTyMR/AIHsVjeByP4Qk8gSfxFJ7G03gWz+I5fC7+q0Yfl1iTDOICJZSIETEiVsSKXCKXyC1yizwij4iIiIgTcSKvyCvyiXyigCgg4kW8KCwKCyOMIBHGAICIiqgoJoqJ4qK4KClKCiecSBAJoowoI8qKsqKcuFWUF7eJCqKiaOMqi8qiimjrqoo7RTVRTVQXNURNUUvUErVFbVFH1BF1RV1RT9QT9cUDooHojf3xIXGhMo3FEGwihmJT0UzIi7/BWonh2Fq0EW3FE2IkjsD2opVLFE+LDmIMdhR/E2PxWdFZjMcu4nnRVXQT3cULoodo7XqKXmIy9hZ9xDTsK/qJ/mKAmIk1xHs4J2dN8apIFkPEUPGaWICvi+HiDTFCjBSjxJtitHhLjBFjxTgxXqSICWKieFtMEu+IyWKKmCqmiVQxXcwQ74qZYpaYLd4Tc8T7Yq6YJ+aLBSJNfCAWikUiXXwoFouPRIZYIpaKZWK5WCFWilVitVgj1op1Yr3YIDaKTWKz2CK2im1iu9ghdoqPxS7xidgt9oi94lORKT4T+8TnYr/4QhwQX4os8ZU4KL4Wh8Q34rD4VhwR34mj4pg4Lr4XJ8QP4qQ4JU6LM+Ks+FGcEz+J88ILkCiFlFLJQMbIHDJW5pS55FUytwwu/nSvlXHyOplXXi/zyfyygCwo42UhWVhqaaSVJENZRBaVUXmDLCZvlMVlCVlSlpJOlpYJ8iZZRt4sy8pbZDl5qywvb5MVZEVZSVaWt8sq8g4JkV+OUV3WkDVlLXm3TIJ7ZB15r6wr75P15P2yvnxANpAPyobyIdlIPiwby0dkE/mobCqbyeayhWwpH5Ot5OOytWwj28onZDv5pGwvn5KJ8mnZQfqLT5FnZWf5nOwin5ddZTfZXf4kz0sve8peEnqD7CNfkn1lP9lfDpAD5ctykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZTpFT5TSZKqfL/hdHmi3lP8x/+3fyB/989E1ys9wit8ptcrvcIXfKj+UuuUvulrvlXrlXZspMuU/uk/vlfnlAHpBZMkselAflIXlIHpaH5RF5RB6Vx+QZ+b08IX+QJ+UpeUqekWflWXnu4s8AFCqhpFIqUDEqh4pVOVUudZXKra5WedQ1KqKuVXHqOpVXXa/yqfyqgCqo4lUhVVhpZZRVpEJVRBVVUXUDXnzCqJKqlHKqtEpQN/0r+aqYulEVVyV+lX9pfkl/ML+WqqVqpVqp1qq1aqvaqnaqnWqv2qtElag6qA6qo+qoOqlOqrPqrLqoLqqr6qq6q+6qh+qheqqeKkklqT7qJdVX9VP91QA1UL2sBqlBarAarJJVshqqhqphapgaroarEWqEGqVGqdFqtBqjxqhxapxKUSlqopqoJqlJarKarKaqqSpVpaoZaoaaqWaq2Wq2mqPmqLlqrpqv5qs0laYWqoUqXaWrxWqxylBL1BK1TC1TK9QKtUqtUmvUGrVOrVMb1AaVoTarzWqr2qq2q+1qp9qpdqldarfarfaqvSpTZap9ap/ar/arA+qAylJZ6qA6qA6pQ+qwOqyOqCPqqDqqjqvj6oQ6oU6qk+q0Oq3OqrPqnDqnzqvzFy77AhGIQAUqiAligtggNsgV5ApyB7mDPEGeIBJEgrggLsgbXB/kC/IHBYKCQXxQKCgc6MAENhAXix4NbgiKBTcGxYMSQcmgVOCC0kFCzMXO4JagXHBrUD64LagQVAwqBZWD24MqwR1B1eDOoFpwV1A9qBHUDGoFdwe1g3uCOsG9Qd3gvqBecH9QP3ggaBA8GDQMHgoaBQ8HjYNHgibBo0HToFnQPGgRtAxuDsr+ZeN7fzL/466n7qWTdG/dR7+k++p+ur8eoAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erKeoqfqaTpVT9cz9Lt6pp6lZ+v39Bz9vp6r5+n5eoFO0x/ohXqRTtcf6sX6I52hl+ileplerlfolXqVXq3X6LV6nV6vN+iNepPerLforXqb3q536J36Y71Lf6J36z16r/5UZ+rP9D79ud6vv9AH9Jc6S3+lD+qv9SH9jT6sv9VH9Hf6qD6mj+vv9Qn9gz6pT+nT+ow+q3/U5/RP+rz2Fy7uL7y9G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emr8lr8pl8poApYOJNvClsCpsLyJApYoqYqImaYqaYKW6Km5KmpHHGmQSTYMqYMqasKWvKmXKmvClvKpgKppKpZG43t5s7zB3mTnOnucvcZWqYGqaWqWVqm9qmjqlj6pq6pp6pZ+qb+qaBaWAamoamkWlkGpvGpolpYpqapqa5aW5ampamlWllWpvWpq1pa9qZdqa9aW8STaLpYDqYjqaj6WQ6mc6ms+liupiupqvpbrqbHqaH6Wl6miSTZPqYPqav6Wv6m/5moBloBplBZrAZbJJNshlqhpphZpgZboabEWakGXXhQtW8ZcaYsWacGW9STIqZaCaaSWaSmWwmm6lmqkk1qWaGmWFmmplmtplt5pg5Zq6Za+ab+SbNpJmFZqFJN+lmsVlsMkyGWWqWmuVmuVlpVprVZrVZa9aa9bDebDQbzWaz2Ww1W812s93sNDvNLrPL7Da7zV6z12SaTLPP7DP7zX5zwBwwWSbLHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81Zk//i+6U3sTanzWWvsrnt1TaPvcb+z7iALWjjbSFb2Gqbz+b/VWystcVtCVvSlrLOlrYJ9qbfxBVsRVvJVra32yr2Dlv1N3Fte4+tY++1de19tpa9+1dxPXu/rW8fsQ0QAWwz28i2sI3tI7aJfdQ2tc1sc9vCtrNP2vb2KZton7Yd7DO/iRfaRXa1XWPX2nV2t91jT9sz9pD9xp61P9qetpcdaF+2g+wrdrB91SbbIb+JR9k37Wj7lh1jx9pxdvxv4ql2mk210+0M+66daWf9Jk6zH9g5Nt3OtfPsfLvg5/jCnNLth3ax/chm2ACW2mV2uV1hV9pV/3+uy+wGu9FusrvsJ3ar3Wa32x1256ULYbvH7rWf2kz7mT1ov7b77Rf2gD1ss+xXP8cXzu+w/dYesd/Zo/aYPW6/tyfsD+pS9oVz/97+ZM9bb4GQgCQpCiiGclAs5aRcdBXlpqspD11DEbqW4ug6ykvXUz7KTwWoIMVTISpMmgxZIgqpCBWlKN1Al6ZXkkqRo9KUQDdRGbqZytItVI5upfJ0G1WgilSJKtPtVIXuoKp0J1Wju6g61aCaVIvuptp0D9Whe6ku3Uf16H6qTw9QA3qQGtJD1Igepsb0CDWhR6kpNaPm1IJa0mPUih6n1tSG2tIT1I6epPb0FCXS09SBnqGO9DfqRM9SZ3qOutDz1JW6UXd6gXrQi9STelES9aY+9BL1pX7UnwbQQHqZBtErNJhepWQaQkPpNRpGr9NweoNG0EgaRW/SaHqLxtBYGkfjKYUm0ER6mybROzSZptBUmkapNJ1m0Ls0k2bRbHqP5tD7NJfm0XxaQGn0AS2kRZROH9Ji+ogyaAktpWW0nFbQSlpFq2kNraV1tJ420EbaRJtpC22lbbSddtBO+ph20Se0m/bQXvqUMukz2kef0376gg7Ql5RFX9FB+poO0Td0mL71veg7OkrH6Dh9TyfoBzpJp+g0naGz9COdo5/oPHmCEEMRylCFQRgT5ghjw5xhrvCqMHd4dZgnvCaMhNeGceF1Yd7w+jBfmD8sEBYM48NCYeFQhya0IYVhWCQsGkbDG8Ji4Y1h8bBEWDIsFbqwdJgQ3hSWCW8Oy4a3hOXCW8Py4W1hhbBi+Mh9lcPbwyrhHWHV8M6wWnhXWD2sEdYMa4V3h7XDe8I64b1h3fC+sGx4f1g/fCBsED4YNgwfChuFD4eNw0fCJuGjYdOwWdg8bBG2DB8LW4WPh63DNmHb8ImwXfhk2D58KkwMnw47hM/83H//oj/uTwp7h33Cl8KXQu/vlfOjC6Jp0Q+iC6OLounRD6OLox9FM6JLokujy6LLoyuiK6Oroquja6Jro+ui66Mbohujm6Le18oBDp1w0ikXuBiXw8W6nC6Xu8rldle7PO4aF3HXujh3ncvrrnf5XH5XwBV08a6QK+y0M846cqEr4oq6qLvBFXM3uuKuhCvpSjnnSrsE18K1dC1dK/e4a+3auLbuCfeEe9I96Z5yT7mnXQf3jOvo/uY6uWddZ/ece84977q6bq67e8H1cBPy/PKaTHJ9XB/X1/V1/V1/N9ANdIPcIDfYDXbJLtkNdUPdMDfMDXfD3Qg3wo1yo9xoN9qNcWPcODfOpbgUN9FNdJPcJDfZTXZT3VSX6lLdDDfDzXQzXZVZvxxlrpvr5rv5Ls2luYXuwjVjulvsFrsMl+GWuqVuuVvuVrqVbrVb7da6tW69W+82uo1us9vstrqtbrvb7na6nW6X2+V2+2t+GdRlun1un9vv9rsD7kuX5b5yB93X7pD7xh1237oj7jt31B1zx9337oT7wZ10p9xpd8addT+6c+4nd955lxKZEJkYeTsyKfJOZHJkSmRqZFokNTI9MiPybmRmZFZkduS9yJzI+5G5kXmR+ZEFkbTIB5GFkUWR9MiHkcWRjyIZkSWRpZFlkeWRFRHvC20NfRFf1Ef9Db6Yv9EX9yV8SV/KO1/aJ/ibfBl/sy/rb/Hl/K2+vL/NV/AVfSX/qG/qm/nmvoVv6R/zrfzjvrVv49v6J3w7/6Rv75/yif5p38E/4zv6v/lO/lnf2T/nu/jnfVffzXf3L/ge/kXf0/fySb637+Nf8n19P9/fD/AD/ct+kH/FD/av+mQ/xA/1r/lh/nU/3L/hR/iRflTMm370pVtkGO9T/AQ/0b/tJ/l3/GQ/xU/103yqn+5n+Hf9TD/Lz/bv+Tn+fT/Xz/Pz/QKf5j/wC/0in+4/9Iv9Rz7DL7m0qOxX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+m1+u9/hd/qP/S7/id/t9/i9/lOf6T/z+/znfr//wh/wX/os/5U/6L/2h/w3/rD/1h/x3/mj/pg/7r/3J/wP/qQ/5U/7M/6s/9Gf8z/58/ydNcYYY4yxf8qEy03x655flvN7/06O+Lud+wDA1dsKZv19/4UryvX5fmn3E/HtIgDwdK8uD13aqldPSkq6uG+GhKDoPIBLnwRd8POy8cV4CbSFJyER2kCZ351/P9HtLP2D8aO3AuT6u5xYuBxfHv9zAEz6nfEfe2LUwvLh6bj/Zfx5AMWLXs7JCZfjJdD25/WVNlD2D+afv9U/mH/OL1IAWv9dTm64HF+efwI8Ds9A4q/2ZIwxxhhjjDHGftFPVOp06f7z0v/4/L3783h1OScHXI7/0f05Y4wxxhhjjDHGrrxnu3V/6rFL39x7LDGxTaefH/lnGlX/lZ3/9UYT+E+NzI3fbXgPcOkRBQB/ckCACw353zyLLf+VYyVffLX8z67lZ3wA3Ytd/NLjX3fQ2D9fi3+ncaV+IzHGGGOMMcb+Uy5f9P/6cXWlJsQYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjGVD/40/J3alz5ExxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhi70v5fAAAA//8XnvpB")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000002e80)=""/4088, 0xff8)

1.690396128s ago: executing program 1 (id=4566):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
close(0x3)

1.621757779s ago: executing program 7 (id=4567):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xfe, 0xc, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
migrate_pages(0x0, 0x9, &(0x7f0000000040)=0x9, &(0x7f0000000380)=0x102)

1.538635727s ago: executing program 6 (id=4568):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0xa00008, &(0x7f0000000340)={[{@noacl}]}, 0xfc, 0x7bb, &(0x7f00000007c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x105}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r0}, 0x38)

1.320045242s ago: executing program 1 (id=4569):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000580)=ANY=[@ANYBLOB='\x00\x00\x00\x00@\x00\x00\x00?'])

1.282871367s ago: executing program 4 (id=4570):
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="0403fc08c800405c0ba375"], 0xe)
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x25, &(0x7f0000000000), 0x20000010)

1.114099955s ago: executing program 7 (id=4571):
r0 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000003a80)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)

1.000870533s ago: executing program 3 (id=4572):
syz_usb_connect(0x5, 0x24, &(0x7f0000001280)={{0x12, 0x1, 0x300, 0x0, 0x1f, 0x66, 0x8, 0x58f, 0x6610, 0x4805, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x4, 0x95, 0x70, 0x81, [{{0x9, 0x4, 0x0, 0x81, 0x0, 0xff, 0xff, 0xff, 0x2}}]}}]}}, &(0x7f0000001700)={0xffffffa0, 0x0, 0x0, 0x0, 0x23})
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
writev(r0, &(0x7f0000000040)=[{&(0x7f00000002c0)="85", 0x1}], 0x1)

997.715777ms ago: executing program 8 (id=4573):
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x8, 'macsec0\x00', {'netpci0\x00'}})
r0 = socket$inet(0x2, 0x3, 0x30)
getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000080)=0x2c)

972.845653ms ago: executing program 1 (id=4574):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x1, 0x54f4, &(0x7f0000005600)="$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")
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x80740, 0x9c37611dc13d0cab)
fchown(r0, 0xee01, 0xffffffffffffffff)

928.539753ms ago: executing program 6 (id=4575):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x501a, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000001c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="000085000000"], 0x0, 0x0, 0x0, 0x0}, 0x0)

921.365825ms ago: executing program 4 (id=4576):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'wg2\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)

860.905882ms ago: executing program 7 (id=4577):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x10, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x27, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0}, 0x40)

686.829027ms ago: executing program 8 (id=4578):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
bind$bt_rfcomm(r0, &(0x7f0000000200)={0x1f, @any, 0x9}, 0xa)
bind$bt_rfcomm(r0, &(0x7f0000000000), 0xa)

555.99836ms ago: executing program 4 (id=4579):
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x5e75, &(0x7f0000000400)={0x0, 0x6aa3, 0x4002, 0x0, 0x2b1}, 0x0, 0x0)

553.612708ms ago: executing program 7 (id=4580):
unshare(0x22020600)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000200)='u', 0x1, 0x20040840, &(0x7f0000000040)={0xa, 0x0, 0x7, @local, 0x13}, 0xfffffffffffffef6)

365.493507ms ago: executing program 4 (id=4581):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f0000000780)=""/245, 0xf5}, {&(0x7f0000000880)=""/233, 0xe9}, {&(0x7f0000000380)=""/207, 0xcf}, {&(0x7f0000000680)=""/203, 0xcb}, {&(0x7f0000003100)=""/4090, 0xffa}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000a80)=""/211, 0xd3}, {&(0x7f0000000980)=""/217, 0xd9}], 0x8}, 0x40012100)

364.675738ms ago: executing program 8 (id=4593):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="18010000", @ANYRES16=r1, @ANYBLOB="010027bd7000fcdbdf250100000014000180080003000300000008000400", @ANYRES32, @ANYBLOB="04000300ac00028054000180080001000300000008000100060000000800010000000000080001000700000008000100080000000800010007000000080001000200000008000100020000000800010002000000080001000800000024000180080001000300000008000100020000000800010000000000080001000000000014000180080001000200000008000100030000001c000180080001000000000008000100140000000800010001000000040003003800028034000180080001000500000008000100050000000800010006000000080001000800000008000100080000000800010002000000040003"], 0x118}, 0x1, 0x0, 0x0, 0x804}, 0x4050)

291.368044ms ago: executing program 7 (id=4582):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xff01, &(0x7f0000000180))

111.703923ms ago: executing program 8 (id=4583):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r0, 0x560e, &(0x7f0000000000))

0s ago: executing program 7 (id=4584):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x1004c10, &(0x7f0000002cc0)=ANY=[], 0x1, 0x291, &(0x7f00000000c0)="$eJzs3UFrE00cx/HfbNI2z9NS17YiiKdqwZO09VK8VKQH7148idpEKIYKtqL1FD2LHgXvvgVfgEdP4lkQPHjyBeQWmdmJ2U2z2bg03U38fiAh6c5/9j87O52ZlBIB+Gfd3Pn+4dpP+zBSRRVJ16VAUk2qSjqn87Wn+4d7h81GfVhFFRdhH0ZRpDlWZne/MSjUxrkIL7TvqlqI/wzjUfum1tsbt54VnQeK5Ua/8y4xbgNpzo9Od7xWTHonrlV0Aqetr+NMW20912JR6QAAysHP/4Gf5xf8+j0IpDU/eyTn/wmfQNtFJzBmnzKOx+Z/t8vqGNu/Z9yh3n7PLQXt8aC7S8yTy6yiO6uSSCBrV+lyCf57uNdsXN193KwHeqVtb6ZXbMU916Nbtyue7cvjVa8O2JsOkb/t864NM7YNm/H8Y0WWU874Y0vKdbWzmM/mi7lrQr1X/c/6r9oxtptcT4V9PRXlv55eo2vlrFyplFaedSe54M/gDb2uFfWlETfr60x8QBBm5emilvqiotZtZEQt+1YmozYzolb6z9W7m9Mjx828MXfMqn7po3Zi6//AXu01jTIybRlX0t8ZQ9tTdSVDN5/4Ude6OLBkkLdFyOG1HmhLiwdHLx7dbzYbT6b2hR2JJUijVC+6N0FZ8pnaF/YiF3L27ryTv57CfjPhFPU6/S8D+dvMtLDrLhPt/2L7lXW3WLNPYXKdPheP7WRVHqtxI2VvsOSe/0/fwSUY99HDfPoObtQ916Ur0uVRzhgJfZ7ls50nyOzoq+7x+T8AAAAAAAAAAAAAAAAAAMCkOTiq6WT+5SC9nqLbCAAAAAAAAAAAAAAAAAAAAADApCvd9//eVvSO7/8Fxu53AAAA//8KS3aP")
setresuid(0x0, 0xee00, 0xffffffffffffffff)
chmod(&(0x7f0000000480)='./file1\x00', 0x114)

kernel console output (not intermixed with test programs):

74] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.235961][T13501] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.496915][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/854.tmp-b7:6' failed: Read-only file system
[  413.508712][ T5833] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  413.535973][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/819.tmp-b7:4' failed: Read-only file system
[  413.571096][ T5854] udevd[5854]: symlink '../../loop3' '/dev/disk/by-diskseq/855.tmp-b7:3' failed: Read-only file system
[  413.575650][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/854.tmp-b7:6' failed: Read-only file system
[  413.642295][ T5871] udevd[5871]: symlink '../../loop7' '/dev/disk/by-diskseq/853.tmp-b7:7' failed: Read-only file system
[  413.694045][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/854.tmp-b7:6' failed: Read-only file system
[  413.710471][ T5833] usb 2-1: Using ep0 maxpacket: 32
[  413.733828][ T5833] usb 2-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00
[  413.768645][ T5833] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.796525][ T5871] udevd[5871]: symlink '../../loop8' '/dev/disk/by-diskseq/836.tmp-b7:8' failed: Read-only file system
[  413.812123][ T5833] usb 2-1: config 0 descriptor??
[  413.868565][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/856.tmp-b7:6' failed: Read-only file system
[  413.957900][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/853.tmp-b7:7' failed: Read-only file system
[  414.145446][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/836.tmp-b7:8' failed: Read-only file system
[  414.276146][ T5833] waltop 0003:172F:0502.0010: hidraw0: USB HID v0.00 Device [HID 172f:0502] on usb-dummy_hcd.1-1/input0
[  414.478587][ T5833] usb 2-1: USB disconnect, device number 16
[  414.608932][T15120] fido_id[15120]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  414.941491][T15104] loop4: detected capacity change from 0 to 32768
[  415.053374][T15104] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  415.384263][ T5851] ocfs2: Unmounting device (7,4) on (node local)
[  415.413542][T15114] loop7: detected capacity change from 0 to 32768
[  415.556158][T15114] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  415.598153][T15114] (syz.7.3783,15114,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=8
[  415.624102][T15155] loop3: detected capacity change from 0 to 512
[  415.642627][T15155] EXT4-fs: Ignoring removed oldalloc option
[  415.784833][T15155] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.3799: error while reading EA inode 32 err=-116
[  415.961222][T15155] EXT4-fs (loop3): Remounting filesystem read-only
[  415.968590][T13732] ocfs2: Unmounting device (7,7) on (node local)
[  416.015002][T15155] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  416.083582][T15155] EXT4-fs (loop3): 1 orphan inode deleted
[  416.139788][T15155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.462839][T15176] openvswitch: netlink: ct_state flags 0000ffff unsupported
[  416.474910][ T5850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.155630][ T5833] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  417.350112][ T5833] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  417.387439][ T5833] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.409633][ T5833] usb 2-1: Product: syz
[  417.413865][ T5833] usb 2-1: Manufacturer: syz
[  417.420366][T15209] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3822'.
[  417.440545][T15203] loop4: detected capacity change from 0 to 8192
[  417.449437][ T5833] usb 2-1: SerialNumber: syz
[  417.492778][T15213] loop6: detected capacity change from 0 to 128
[  417.512072][   T30] audit: type=1800 audit(1752147459.098:122): pid=15203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3819" name="file2" dev="loop4" ino=1048782 res=0 errno=0
[  417.547620][ T5833] usb 2-1: config 0 descriptor??
[  417.573023][T15203] syz.4.3819: attempt to access beyond end of device
[  417.573023][T15203] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  417.578368][T15213] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  417.613021][T15212] loop8: detected capacity change from 0 to 1764
[  417.677918][T15213] ext4 filesystem being mounted at /113/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  417.722927][T15212] iso9660: Corrupted directory entry in block 0 of inode 1792
[  417.851909][T15213] EXT4-fs warning (device loop6): ext4_dirblock_csum_verify:375: inode #2: comm syz.6.3824: No space for directory leaf checksum. Please run e2fsck -D.
[  417.928145][T15213] EXT4-fs error (device loop6): htree_dirblock_to_tree:1051: inode #2: comm syz.6.3824: Directory block failed checksum
[  418.052201][ T5833] airspy 2-1:0.0: Board ID: 00
[  418.084326][ T5833] airspy 2-1:0.0: Firmware version: 
[  418.175607][T15226] 9pnet_fd: p9_fd_create_tcp (15226): problem binding to privport
[  418.205521][T13501] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  418.258594][ T5833] airspy 2-1:0.0: usb_control_msg() failed -71 request 11
[  418.341666][ T5833] airspy 2-1:0.0: Registered as swradio24
[  418.372580][ T5833] airspy 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  418.385797][ T5833] usb 2-1: USB disconnect, device number 17
[  418.534957][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/864.tmp-b7:6' failed: Read-only file system
[  418.556258][ T5854] udevd[5854]: symlink '../../loop8' '/dev/disk/by-diskseq/867.tmp-b7:8' failed: Read-only file system
[  418.588665][T14269] udevd[14269]: symlink '../../loop4' '/dev/disk/by-diskseq/866.tmp-b7:4' failed: Read-only file system
[  418.637963][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/864.tmp-b7:6' failed: Read-only file system
[  418.664314][ T6027] udevd[6027]: symlink '../../loop7' '/dev/disk/by-diskseq/861.tmp-b7:7' failed: Read-only file system
[  418.816257][ T5871] udevd[5871]: symlink '../../loop3' '/dev/disk/by-diskseq/862.tmp-b7:3' failed: Read-only file system
[  418.952522][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/868.tmp-b7:6' failed: Read-only file system
[  418.960799][T15247] loop6: detected capacity change from 0 to 64
[  418.970331][ T5833] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  419.038440][ T5854] udevd[5854]: symlink '../../loop1' '/dev/disk/by-diskseq/848.tmp-b7:1' failed: Read-only file system
[  419.045736][T14269] udevd[14269]: symlink '../../loop7' '/dev/disk/by-diskseq/861.tmp-b7:7' failed: Read-only file system
[  419.088255][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/866.tmp-b7:4' failed: Read-only file system
[  419.162759][ T5833] usb 9-1: Using ep0 maxpacket: 32
[  419.171603][ T5833] usb 9-1: config 0 interface 0 has no altsetting 0
[  419.195082][ T5833] usb 9-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  419.276053][ T5833] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  419.331449][ T5833] usb 9-1: config 0 descriptor??
[  419.366735][T15258] tipc: Enabling of bearer <‰ý‘eth:g> rejected, media not registered
[  419.659480][ T5997] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  419.716006][T15269] loop7: detected capacity change from 0 to 64
[  419.772358][ T5833] corsair-cpro 0003:1B1C:0C10.0011: unknown main item tag 0x0
[  419.773130][T15269] syz.7.3847: attempt to access beyond end of device
[  419.773130][T15269] loop7: rw=0, sector=1024, nr_sectors = 2 limit=64
[  419.809632][ T5833] corsair-cpro 0003:1B1C:0C10.0011: unknown main item tag 0x0
[  419.843837][T15269] Buffer I/O error on dev loop7, logical block 512, async page read
[  419.849472][ T5833] corsair-cpro 0003:1B1C:0C10.0011: unknown main item tag 0x0
[  419.862420][T15269] syz.7.3847: attempt to access beyond end of device
[  419.862420][T15269] loop7: rw=0, sector=113152, nr_sectors = 2 limit=64
[  419.882957][ T5997] usb 4-1: Using ep0 maxpacket: 16
[  419.896847][ T5997] usb 4-1: config 252 has an invalid interface number: 15 but max is 0
[  419.907108][ T5997] usb 4-1: config 252 has no interface number 0
[  419.914893][ T5833] corsair-cpro 0003:1B1C:0C10.0011: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.8-1/input0
[  419.925018][T15269] Buffer I/O error on dev loop7, logical block 56576, async page read
[  419.935240][ T5997] usb 4-1: config 252 interface 15 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  419.957168][ T5997] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=2b.29
[  419.983200][ T5997] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.016605][ T5997] usb 4-1: Product: syz
[  420.040138][ T5997] usb 4-1: Manufacturer: syz
[  420.072972][ T5833] corsair-cpro 0003:1B1C:0C10.0011: probe with driver corsair-cpro failed with error -71
[  420.083440][ T5997] usb 4-1: SerialNumber: syz
[  420.181793][ T5997] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  420.200641][ T5833] usb 9-1: USB disconnect, device number 2
[  420.379193][T15283] loop4: detected capacity change from 0 to 764
[  420.401370][T15275] fido_id[15275]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  420.402950][ T5948] usb 4-1: USB disconnect, device number 15
[  420.431206][   T13] usb 4-1: Failed to submit usb control message: -71
[  420.462962][   T13] usb 4-1: unable to send the bmi data to the device: -71
[  420.509598][   T13] usb 4-1: unable to get target info from device
[  420.516031][   T13] usb 4-1: could not get target info (-71)
[  420.571128][   T13] usb 4-1: could not probe fw (-71)
[  420.892632][T15304] loop6: detected capacity change from 0 to 8
[  420.983280][T15304] SQUASHFS error: zstd decompression error: 10
[  421.028858][T15304] SQUASHFS error: zstd decompression failed, data probably corrupt
[  421.042799][ T5928] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  421.118656][T15304] SQUASHFS error: Failed to read block 0x60: -5
[  421.178229][T15304] SQUASHFS error: zstd decompression error: 10
[  421.209429][T15304] SQUASHFS error: zstd decompression failed, data probably corrupt
[  421.249591][T15304] SQUASHFS error: Failed to read block 0x60: -5
[  421.269796][ T5928] usb 2-1: Using ep0 maxpacket: 16
[  421.306818][ T5928] usb 2-1: unable to get BOS descriptor or descriptor too short
[  421.380969][ T5928] usb 2-1: config 1 has an invalid descriptor of length 14, skipping remainder of the config
[  421.439433][ T5928] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  421.492407][ T5928] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  421.520323][ T5928] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.579653][ T5928] usb 2-1: Product: syz
[  421.583882][ T5928] usb 2-1: Manufacturer: syz
[  421.588498][ T5928] usb 2-1: SerialNumber: syz
[  421.908685][ T5928] cdc_ether 2-1:1.0: skipping garbage
[  421.949005][ T5928] cdc_ether 2-1:1.0: skipping garbage
[  421.969354][ T5928] cdc_ether 2-1:1.0: skipping garbage
[  421.975644][ T5928] cdc_ether 2-1:1.0: skipping garbage
[  422.032014][ T5928] cdc_ether 2-1:1.0: skipping garbage
[  422.037929][ T5928] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  422.112866][ T5928] usb 2-1: USB disconnect, device number 18
[  422.166423][T15334] loop8: detected capacity change from 0 to 256
[  422.220203][T15337] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3872'.
[  422.267572][T15334] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  422.435756][T15290] loop7: detected capacity change from 0 to 40427
[  422.484663][T15290] F2FS-fs (loop7): Wrong segment_count / block_count (64 > 16384)
[  422.530933][T15290] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  422.540018][ T5928] libceph: connect (1)[c::]:6789 error -101
[  422.547798][ T5928] libceph: mon0 (1)[c::]:6789 connect error
[  422.813305][  T974] libceph: connect (1)[c::]:6789 error -101
[  422.859565][  T974] libceph: mon0 (1)[c::]:6789 connect error
[  423.060566][T15290] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  423.101714][T15290] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  423.284423][T15340] ceph: No mds server is up or the cluster is laggy
[  423.401173][ T5928] libceph: connect (1)[c::]:6789 error -101
[  423.426501][T15329] loop3: detected capacity change from 0 to 32768
[  423.441456][ T5928] libceph: mon0 (1)[c::]:6789 connect error
[  423.507687][T15329] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3869 (15329)
[  423.606658][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/848.tmp-b7:1' failed: Read-only file system
[  423.633052][T15329] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  423.649615][T15329] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  423.721009][T15329] BTRFS info (device loop3): using free-space-tree
[  423.858839][T15312] udevd[15312]: symlink '../../loop3' '/dev/disk/by-diskseq/880.tmp-b7:3' failed: Read-only file system
[  423.873089][T15312] udevd[15312]: symlink '../../loop3' '/dev/disk/by-uuid/395ef67a-297e-477c-816d-cd80a5b93e5d.tmp-b7:3' failed: Read-only file system
[  423.955200][ T6028] udevd[6028]: symlink '../../loop4' '/dev/disk/by-diskseq/874.tmp-b7:4' failed: Read-only file system
[  423.996936][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/848.tmp-b7:1' failed: Read-only file system
[  424.031292][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-diskseq/876.tmp-b7:6' failed: Read-only file system
[  424.113972][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/878.tmp-b7:7' failed: Read-only file system
[  424.264792][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/878.tmp-b7:7' failed: Read-only file system
[  424.345507][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/874.tmp-b7:4' failed: Read-only file system
[  424.350750][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/881.tmp-b7:7' failed: Read-only file system
[  424.456192][ T1034] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  424.615032][ T5850] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  425.319178][T15424] netlink: 4083 bytes leftover after parsing attributes in process `syz.6.3893'.
[  425.341829][T15421] sctp: [Deprecated]: syz.3.3894 (pid 15421) Use of int in max_burst socket option.
[  425.341829][T15421] Use struct sctp_assoc_value instead
[  425.360491][T15419] netlink: 4083 bytes leftover after parsing attributes in process `syz.6.3893'.
[  425.400356][T15423] loop1: detected capacity change from 0 to 1024
[  425.460602][T15423] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  425.508354][T15423] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  425.617934][T15423] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  425.770536][T15423] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.3895: lblock 2 mapped to illegal pblock 2 (length 1)
[  425.849705][T15423] EXT4-fs (loop1): Remounting filesystem read-only
[  425.905740][T15423] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  425.915164][T15368] loop8: detected capacity change from 0 to 40427
[  425.954849][T15423] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  426.005683][T15423] EXT4-fs (loop1): 1 orphan inode deleted
[  426.040382][T15423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.450561][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.886740][T15417] loop4: detected capacity change from 0 to 32768
[  427.084636][T15417] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  427.525566][T15417] XFS (loop4): Ending clean mount
[  427.818975][T15427] loop7: detected capacity change from 0 to 40427
[  427.840243][ T5851] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  427.877236][T15486] loop1: detected capacity change from 0 to 256
[  427.880490][T15427] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  427.916828][T15427] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  427.993928][T15427] F2FS-fs (loop7): invalid crc value
[  428.030300][T15486] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  428.039057][T15486] FAT-fs (loop1): Filesystem has been set read-only
[  428.423819][T15495] loop8: detected capacity change from 0 to 2048
[  428.533521][T15495] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024)
[  428.586408][T15495] NILFS (loop8): mounting unchecked fs
[  428.624170][T15462] loop6: detected capacity change from 0 to 32768
[  428.638445][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/889.tmp-b7:1' failed: Read-only file system
[  428.675512][ T5871] udevd[5871]: incorrect nilfs2 checksum on /dev/loop8
[  428.718825][ T5871] udevd[5871]: symlink '../../loop8' '/dev/disk/by-diskseq/891.tmp-b7:8' failed: Read-only file system
[  428.801191][T15312] udevd[15312]: symlink '../../loop7' '/dev/disk/by-diskseq/888.tmp-b7:7' failed: Read-only file system
[  428.802160][T15495] NILFS (loop8): recovery complete
[  428.874240][T15500] loop1: detected capacity change from 0 to 4096
[  428.880781][T15503] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  428.936205][T15462] JBD2: Ignoring recovery information on journal
[  428.942833][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-diskseq/884.tmp-b7:3' failed: Read-only file system
[  429.028524][T15510] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  429.055163][T15312] udevd[15312]: symlink '../../loop8' '/dev/disk/by-diskseq/891.tmp-b7:8' failed: Read-only file system
[  429.134789][T15500] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.'
[  429.180415][T15312] udevd[15312]: symlink '../../loop8' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:8' failed: Read-only file system
[  429.230719][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-diskseq/893.tmp-b7:6' failed: Read-only file system
[  429.253916][T15500] Remounting filesystem read-only
[  429.262577][T15462] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  429.321117][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-uuid/03e7aa51-a951-448e-b9eb-6dd609435e20.tmp-b7:6' failed: Read-only file system
[  429.365311][T15312] udevd[15312]: symlink '../../loop3' '/dev/disk/by-diskseq/884.tmp-b7:3' failed: Read-only file system
[  429.370092][T15514] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3919'.
[  429.499465][ T5853] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  429.700177][  T974] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  429.729662][T13501] (syz-executor,13501,0):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 22
[  429.835660][T13501] ocfs2: Unmounting device (7,6) on (node local)
[  429.844246][T15522] netlink: 'syz.1.3921': attribute type 1 has an invalid length.
[  429.897116][  T974] usb 4-1: too many endpoints for config 0 interface 0 altsetting 255: 33, using maximum allowed: 30
[  429.919369][T15522] NCSI netlink: No device for ifindex 0
[  429.929884][T15526] loop4: detected capacity change from 0 to 64
[  429.972528][  T974] usb 4-1: config 0 interface 0 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 33
[  430.032380][  T974] usb 4-1: config 0 interface 0 has no altsetting 0
[  430.077053][  T974] usb 4-1: New USB device found, idVendor=0458, idProduct=501b, bcdDevice= 0.00
[  430.149414][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.206406][  T974] usb 4-1: config 0 descriptor??
[  430.627521][T15544] loop1: detected capacity change from 0 to 24
[  430.693767][T15544] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  430.702593][  T974] kye 0003:0458:501B.0012: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  430.761244][  T974] kye 0003:0458:501B.0012: hidraw0: USB HID v8.00 Device [HID 0458:501b] on usb-dummy_hcd.3-1/input0
[  430.778020][T15544] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  430.811373][  T974] kye 0003:0458:501B.0012: tablet-enabling feature report not found
[  430.882254][  T974] kye 0003:0458:501B.0012: tablet enabling failed
[  431.000008][  T974] usb 4-1: USB disconnect, device number 16
[  431.148989][T15558] devtmpfs: Cannot retroactively limit size
[  431.263290][T15552] fido_id[15552]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  431.321761][T15559] loop6: detected capacity change from 0 to 1024
[  431.685829][ T1034] hfsplus: b-tree write err: -5, ino 4
[  431.696239][T15566] loop8: detected capacity change from 0 to 1024
[  431.743754][T15566] EXT4-fs: Ignoring removed nomblk_io_submit option
[  431.848190][T15566] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  431.959839][T15566] EXT4-fs error (device loop8): __ext4_new_inode:1073: comm syz.8.3936: reserved inode found cleared - inode=18
[  432.098329][T15587] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3942'.
[  432.360194][T14235] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.567460][T15604] loop6: detected capacity change from 0 to 1024
[  432.699374][  T974] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  432.866490][T15612] loop4: detected capacity change from 0 to 512
[  432.873700][ T5978] hfsplus: b-tree write err: -5, ino 4
[  432.930288][  T974] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[  432.983844][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  433.069711][  T974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  433.131266][  T974] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[  433.223658][  T974] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0014, bcdDevice= 0.00
[  433.227898][ T5867] Bluetooth: hci1: command 0x0405 tx timeout
[  433.318270][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.385391][  T974] usb 4-1: config 0 descriptor??
[  433.479603][ T5948] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  433.557793][T15622] loop7: detected capacity change from 0 to 4096
[  433.646849][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  433.677154][ T5948] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[  433.685520][T15622] EXT4-fs (loop7): Test dummy encryption mode enabled
[  433.694797][T15626] CIFS mount error: No usable UNC path provided in device string!
[  433.694797][T15626] 
[  433.706595][ T5948] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.712100][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/902.tmp-b7:1' failed: Read-only file system
[  433.718394][ T5948] usb 7-1: config 0 descriptor??
[  433.726726][T15626] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  433.834687][T15622] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  433.850166][T15622] System zones: 0-5
[  433.872259][  T974] cmedia_hs100b 0003:0D8C:0014.0013: item fetching failed at offset 5/7
[  433.900354][  T974] cmedia_hs100b 0003:0D8C:0014.0013: probe with driver cmedia_hs100b failed with error -22
[  433.901506][T15622] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  433.963943][T15607] loop8: detected capacity change from 0 to 32768
[  434.028008][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/902.tmp-b7:1' failed: Read-only file system
[  434.124722][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/911.tmp-b7:7' failed: Read-only file system
[  434.154690][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/909.tmp-b7:4' failed: Read-only file system
[  434.163233][  T974] usb 4-1: USB disconnect, device number 17
[  434.189479][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  434.212630][ T5948] lua 0003:1E7D:2C2E.0014: hidraw0: USB HID v0.00 Device [HID 1e7d:2c2e] on usb-dummy_hcd.6-1/input0
[  434.252347][T15622] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  434.269055][T15634] loop1: detected capacity change from 0 to 2048
[  434.333615][T15638] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  434.345249][T15636] loop4: detected capacity change from 0 to 1024
[  434.422897][ T5854] udevd[5854]: symlink '../../loop8' '/dev/disk/by-diskseq/912.tmp-b7:8' failed: Read-only file system
[  434.449546][T15636] hfsplus: bad catalog entry type
[  434.468129][  T974] usb 7-1: USB disconnect, device number 5
[  434.468584][T15622] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  434.502228][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/913.tmp-b7:1' failed: Read-only file system
[  434.516739][ T5854] udevd[5854]: symlink '../../loop8' '/dev/disk/by-uuid/35307472-fd4b-42de-878f-83186a645fa6.tmp-b7:8' failed: Read-only file system
[  434.529562][T15637] fido_id[15637]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  434.543708][T14269] udevd[14269]: symlink '../../loop4' '/dev/disk/by-diskseq/914.tmp-b7:4' failed: Read-only file system
[  434.572523][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:1' failed: Read-only file system
[  434.659421][ T5833] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  434.680175][ T3474] hfsplus: b-tree write err: -5, ino 4
[  434.820369][ T5833] usb 2-1: Using ep0 maxpacket: 16
[  434.872394][ T5833] usb 2-1: config 3 has an invalid interface number: 155 but max is 0
[  434.899598][ T5833] usb 2-1: config 3 has an invalid interface association descriptor of length 3, skipping
[  434.944810][ T5833] usb 2-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[  434.976627][ T5833] usb 2-1: config 3 has no interface number 0
[  435.007597][ T5833] usb 2-1: config 3 interface 155 has no altsetting 0
[  435.028705][ T5833] usb 2-1: New USB device found, idVendor=05a9, idProduct=264a, bcdDevice=e5.4c
[  435.048569][ T5833] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.059850][T13732] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.113670][ T5833] usb 2-1: Product: syz
[  435.123591][T15645] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (5001287)
[  435.159178][ T5833] usb 2-1: Manufacturer: syz
[  435.169423][T15645] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535
[  435.189695][ T5833] usb 2-1: SerialNumber: syz
[  435.463625][ T5833] usb 2-1: USB disconnect, device number 19
[  435.481783][T15655] loop8: detected capacity change from 0 to 1024
[  435.544407][   T30] audit: type=1800 audit(1752147477.138:123): pid=15655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3969" name="file1" dev="loop8" ino=20 res=0 errno=0
[  435.616897][T15659] loop3: detected capacity change from 0 to 512
[  435.649363][ T5997] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  435.726270][T15659] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.780331][T15659] ext4 filesystem being mounted at /629/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  435.793143][   T13] hfsplus: b-tree write err: -5, ino 4
[  435.821004][ T5997] usb 7-1: Using ep0 maxpacket: 8
[  435.833045][ T5997] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[  435.848512][ T5997] usb 7-1: config 0 has no interface number 0
[  435.864891][ T5997] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  435.903864][ T5997] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.949341][ T5997] usb 7-1: Product: syz
[  435.954083][ T5997] usb 7-1: Manufacturer: syz
[  435.992356][ T5997] usb 7-1: SerialNumber: syz
[  436.018592][ T5997] usb 7-1: config 0 descriptor??
[  436.032110][ T5850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.489817][ T5997] usb 7-1: Found UVC 0.04 device syz (046d:08c3)
[  436.519908][ T5997] uvcvideo 7-1:0.31: Entity type for entity Output 6 was not initialized!
[  436.561694][ T5997] usb 7-1: Failed to initialize entity for entity 5
[  436.568309][ T5997] usb 7-1: Failed to register entities (-22).
[  436.610006][ T5948] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  436.729732][ T5997] usb 7-1: USB disconnect, device number 6
[  436.783280][ T5948] usb 9-1: Using ep0 maxpacket: 8
[  436.803758][ T5948] usb 9-1: unable to get BOS descriptor or descriptor too short
[  436.831773][ T5948] usb 9-1: config 4 interface 0 has no altsetting 0
[  436.850445][ T5948] usb 9-1: string descriptor 0 read error: -22
[  436.860688][ T5948] usb 9-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  436.875958][ T5948] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.912809][ T5948] usb 9-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  436.957469][ T5948] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  436.988582][ T5948] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  437.008820][ T5948] usb 9-1: media controller created
[  437.088997][ T5948] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  437.150201][ T5948] zl10353_read_register: readreg error (reg=127, ret==0)
[  437.207013][T15665] loop7: detected capacity change from 0 to 40427
[  437.223008][ T5948] usb 9-1: USB disconnect, device number 3
[  437.294385][T15665] F2FS-fs (loop7): invalid crc value
[  437.632258][   T30] audit: type=1326 audit(1752147479.218:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15687 comm="syz.1.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f472238e929 code=0x7fc00000
[  437.699607][T15665] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  437.959650][T13732] syz-executor: attempt to access beyond end of device
[  437.959650][T13732] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  438.051921][T13732] CPU: 0 UID: 0 PID: 13732 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  438.051957][T13732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  438.051973][T13732] Call Trace:
[  438.051982][T13732]  <TASK>
[  438.051993][T13732]  dump_stack_lvl+0x189/0x250
[  438.052033][T13732]  ? __pfx_dump_stack_lvl+0x10/0x10
[  438.052062][T13732]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  438.052101][T13732]  ? __pfx_queue_work_on+0x10/0x10
[  438.052133][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052162][T13732]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  438.052199][T13732]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  438.052238][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052266][T13732]  ? f2fs_hw_is_readonly+0x39b/0x470
[  438.052310][T13732]  f2fs_handle_critical_error+0x37c/0x540
[  438.052355][T13732]  f2fs_write_end_io+0x495/0x810
[  438.052379][T13732]  ? blkg_put+0x22/0x240
[  438.052429][T13732]  __submit_merged_bio+0x27a/0x6a0
[  438.052475][T13732]  __submit_merged_write_cond+0x255/0x530
[  438.052520][T13732]  f2fs_write_data_pages+0x261d/0x3000
[  438.052562][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052631][T13732]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  438.052688][T13732]  ? arch_stack_walk+0xfc/0x150
[  438.052753][T13732]  ? __mod_zone_page_state+0xd7/0x140
[  438.052803][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052832][T13732]  ? folios_put_refs+0x560/0x640
[  438.052886][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052915][T13732]  ? __lock_acquire+0xab9/0xd20
[  438.052952][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.052980][T13732]  ? do_raw_spin_lock+0x121/0x290
[  438.053025][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053059][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053088][T13732]  ? do_raw_spin_unlock+0x122/0x240
[  438.053126][T13732]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  438.053170][T13732]  do_writepages+0x32e/0x550
[  438.053205][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053239][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053268][T13732]  ? do_raw_spin_unlock+0x122/0x240
[  438.053344][T13732]  filemap_fdatawrite+0x191/0x230
[  438.053376][T13732]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  438.053457][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053492][T13732]  ? do_raw_spin_unlock+0x122/0x240
[  438.053536][T13732]  f2fs_sync_dirty_inodes+0x31f/0x830
[  438.053581][T13732]  f2fs_write_checkpoint+0x94a/0x1de0
[  438.053637][T13732]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  438.053720][T13732]  ? kill_f2fs_super+0x298/0x6c0
[  438.053754][T13732]  kill_f2fs_super+0x2c3/0x6c0
[  438.053793][T13732]  ? __pfx_kill_f2fs_super+0x10/0x10
[  438.053816][T13732]  ? radix_tree_delete_item+0x2b6/0x400
[  438.053864][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.053893][T13732]  ? shrinker_free+0x2ce/0x3e0
[  438.053936][T13732]  deactivate_locked_super+0xbc/0x130
[  438.053966][T13732]  cleanup_mnt+0x425/0x4c0
[  438.053989][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.054018][T13732]  ? lockdep_hardirqs_on+0x9c/0x150
[  438.054063][T13732]  task_work_run+0x1d4/0x260
[  438.054108][T13732]  ? __pfx_task_work_run+0x10/0x10
[  438.054146][T13732]  ? __x64_sys_umount+0x122/0x160
[  438.054183][T13732]  ? exit_to_user_mode_loop+0x40/0x110
[  438.054215][T13732]  exit_to_user_mode_loop+0xec/0x110
[  438.054243][T13732]  do_syscall_64+0x2bd/0x3b0
[  438.054267][T13732]  ? lockdep_hardirqs_on+0x9c/0x150
[  438.054307][T13732]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.054330][T13732]  ? srso_alias_return_thunk+0x5/0xfbef5
[  438.054360][T13732]  ? exc_page_fault+0x9f/0xf0
[  438.054402][T13732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.054427][T13732] RIP: 0033:0x7f59d758fc57
[  438.054449][T13732] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  438.054471][T13732] RSP: 002b:00007fff6eac9b78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  438.054497][T13732] RAX: 0000000000000000 RBX: 00007f59d7610925 RCX: 00007f59d758fc57
[  438.054514][T13732] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff6eac9c30
[  438.054531][T13732] RBP: 00007fff6eac9c30 R08: 0000000000000000 R09: 0000000000000000
[  438.054547][T13732] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff6eacacc0
[  438.054564][T13732] R13: 00007f59d7610925 R14: 000000000006ae28 R15: 00007fff6eacad00
[  438.054603][T13732]  </TASK>
[  438.054613][T13732] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  438.109526][   T30] audit: type=1326 audit(1752147479.698:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  438.118611][T15713] RDS: rds_bind could not find a transport for ::4000:0:20:0, load rds_tcp or rds_rdma?
[  438.189435][   T30] audit: type=1326 audit(1752147479.698:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  438.587329][T15719] loop6: detected capacity change from 0 to 1024
[  438.728196][T15717] loop8: detected capacity change from 0 to 2048
[  438.753676][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/910.tmp-b7:6' failed: Read-only file system
[  438.815680][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/922.tmp-b7:1' failed: Read-only file system
[  438.861986][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-label/untitled.tmp-b7:6' failed: Read-only file system
[  438.919098][T14269] udevd[14269]: symlink '../../loop3' '/dev/disk/by-diskseq/921.tmp-b7:3' failed: Read-only file system
[  438.922193][T15724] rtc_cmos 00:00: Alarms can be up to one day in the future
[  438.933437][T15698] loop4: detected capacity change from 0 to 32768
[  438.951449][T15727] loop3: detected capacity change from 0 to 16
[  438.959147][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:6' failed: Read-only file system
[  438.960204][T15727] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  438.984441][T15717] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  438.985536][T15719] hfsplus: bad catalog entry type
[  438.994450][T15698] XFS: attr2 mount option is deprecated.
[  439.054297][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-diskseq/927.tmp-b7:3' failed: Read-only file system
[  439.101350][ T6027] udevd[6027]: symlink '../../loop7' '/dev/disk/by-diskseq/923.tmp-b7:7' failed: Read-only file system
[  439.144471][ T5854] udevd[5854]: symlink '../../loop8' '/dev/disk/by-diskseq/925.tmp-b7:8' failed: Read-only file system
[  439.150984][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-label/Compressed.tmp-b7:3' failed: Read-only file system
[  439.193837][   T30] audit: type=1326 audit(1752147479.698:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.221791][ T5854] udevd[5854]: symlink '../../loop8' '/dev/disk/by-label/LinuxUDF.tmp-b7:8' failed: Read-only file system
[  439.254776][   T30] audit: type=1326 audit(1752147479.748:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.307535][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  439.308940][   T12] hfsplus: b-tree write err: -5, ino 4
[  439.351628][   T30] audit: type=1326 audit(1752147479.748:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.352723][T15698] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  439.376476][ T5997] rtc_cmos 00:00: Alarms can be up to one day in the future
[  439.393660][   T30] audit: type=1326 audit(1752147479.748:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.420719][ T5997] rtc_cmos 00:00: Alarms can be up to one day in the future
[  439.428179][ T5997] rtc_cmos 00:00: Alarms can be up to one day in the future
[  439.452578][   T30] audit: type=1326 audit(1752147479.748:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.477123][   T30] audit: type=1326 audit(1752147479.748:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15710 comm="syz.8.3991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f21f8f8e929 code=0x7ffc0000
[  439.540474][ T5997] rtc_cmos 00:00: Alarms can be up to one day in the future
[  439.569972][ T5997] rtc rtc0: __rtc_set_alarm: err=-22
[  439.709234][T15698] XFS (loop4): Ending clean mount
[  439.730616][T15698] XFS (loop4): Quotacheck needed: Please wait.
[  439.747872][ T5833] hid-generic 0004:0006:0003.0015: unknown main item tag 0x1
[  439.814927][ T5833] hid-generic 0004:0006:0003.0015: hidraw0: <UNKNOWN> HID v0.09 Device [syz1] on syz1
[  439.845672][T15698] XFS (loop4): Quotacheck: Done.
[  439.929720][ T5997] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  439.949809][   T10] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  440.129495][ T5997] usb 4-1: Using ep0 maxpacket: 16
[  440.140095][   T10] usb 7-1: Using ep0 maxpacket: 16
[  440.145999][ T5997] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  440.163599][T15747] fido_id[15747]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  440.186723][   T10] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[  440.198229][ T5851] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  440.235962][ T5997] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  440.257864][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  440.269210][ T5997] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  440.283779][   T10] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[  440.304591][ T5997] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  440.335571][   T10] usb 7-1: New USB device found, idVendor=1e71, idProduct=2006, bcdDevice= 0.00
[  440.349493][ T5997] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  440.369732][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.379329][ T5997] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  440.399829][ T5997] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  440.410560][   T10] usb 7-1: config 0 descriptor??
[  440.431906][ T5997] usb 4-1: Manufacturer: syz
[  440.481256][ T5997] usb 4-1: config 0 descriptor??
[  440.758823][T15757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4009'.
[  440.843117][   T10] nzxt-smart2 0003:1E71:2006.0016: item fetching failed at offset 10/11
[  440.874839][   T10] nzxt-smart2 0003:1E71:2006.0016: probe with driver nzxt-smart2 failed with error -22
[  440.942258][T15764] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4013'.
[  441.011411][ T5997] rc_core: IR keymap rc-hauppauge not found
[  441.017359][ T5997] Registered IR keymap rc-empty
[  441.069544][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.089477][   T10] usb 7-1: USB disconnect, device number 7
[  441.129463][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.170989][ T5997] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  441.235321][ T5997] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input19
[  441.330656][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.362647][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.393376][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.451600][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.479874][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.519421][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.570300][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.610007][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.617986][T15786] loop8: detected capacity change from 0 to 512
[  441.649409][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.680615][ T5997] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  441.720871][T15786] EXT4-fs error (device loop8): ext4_orphan_get:1393: inode #15: comm syz.8.4023: iget: bad extended attribute block 1
[  441.761705][ T5997] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  441.826857][T15786] EXT4-fs error (device loop8): ext4_orphan_get:1398: comm syz.8.4023: couldn't read orphan inode 15 (err -117)
[  441.844669][ T5997] mceusb 4-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  441.894735][T15786] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.903342][ T5997] usb 4-1: USB disconnect, device number 18
[  442.169225][T14235] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.178758][T15800] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4029'.
[  442.209571][   T10] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  442.251336][T15800] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4029'.
[  442.394933][   T10] usb 2-1: Using ep0 maxpacket: 32
[  442.418720][   T10] usb 2-1: too many configurations: 255, using maximum allowed: 8
[  442.446199][T15804] loop4: detected capacity change from 0 to 2048
[  442.503106][   T10] usb 2-1: New USB device found, idVendor=0e41, idProduct=534d, bcdDevice=85.bd
[  442.533893][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=254
[  442.564586][T15804] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.575133][T15810] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4034'.
[  442.599396][   T10] usb 2-1: Product: syz
[  442.613810][   T10] usb 2-1: Manufacturer: syz
[  442.627750][   T10] usb 2-1: SerialNumber: syz
[  442.666843][   T10] usb 2-1: config 0 descriptor??
[  442.978844][  T974] usb 2-1: USB disconnect, device number 20
[  442.999370][   T10] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  443.199851][   T10] usb 9-1: Using ep0 maxpacket: 8
[  443.218221][   T10] usb 9-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  443.242174][   T10] usb 9-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  443.279353][   T10] usb 9-1: Product: syz
[  443.283583][   T10] usb 9-1: Manufacturer: syz
[  443.288191][   T10] usb 9-1: SerialNumber: syz
[  443.334451][   T10] usb 9-1: config 0 descriptor??
[  443.354435][   T10] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  443.582842][T15828] loop4: detected capacity change from 0 to 2048
[  443.629975][T15828] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  443.669429][T15828] NILFS (loop4): mounting unchecked fs
[  443.736905][T15828] NILFS (loop4): recovery complete
[  443.751951][T15833] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  443.765521][T15832] loop1: detected capacity change from 0 to 256
[  443.793701][T15812] loop6: detected capacity change from 0 to 32768
[  443.798826][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/937.tmp-b7:4' failed: Read-only file system
[  443.839752][T15832] FAT-fs (loop1): Directory bread(block 1285) failed
[  443.866039][T15812] JBD2: Ignoring recovery information on journal
[  443.923179][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:4' failed: Read-only file system
[  443.964534][   T10] gspca_zc3xx: reg_w_i err -71
[  443.970508][   T10] gspca_zc3xx 9-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  443.983820][   T10] usb 9-1: USB disconnect, device number 4
[  444.078574][T15812] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  444.127199][ T6027] udevd[6027]: symlink '../../loop7' '/dev/disk/by-diskseq/928.tmp-b7:7' failed: Read-only file system
[  444.157507][T15822] loop3: detected capacity change from 0 to 32768
[  444.201220][T15822] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4040 (15822)
[  444.204754][ T5854] udevd[5854]: symlink '../../loop1' '/dev/disk/by-diskseq/938.tmp-b7:1' failed: Read-only file system
[  444.236261][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/937.tmp-b7:4' failed: Read-only file system
[  444.285104][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:4' failed: Read-only file system
[  444.303895][T15822] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  444.344512][T15746] udevd[15746]: symlink '../../loop6' '/dev/disk/by-diskseq/939.tmp-b7:6' failed: Read-only file system
[  444.367728][T15822] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  444.374082][ T5854] udevd[5854]: symlink '../../loop1' '/dev/disk/by-diskseq/938.tmp-b7:1' failed: Read-only file system
[  444.389551][T15822] BTRFS info (device loop3): using free-space-tree
[  444.437291][T15746] udevd[15746]: symlink '../../loop6' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:6' failed: Read-only file system
[  444.473865][T14269] udevd[14269]: symlink '../../loop7' '/dev/disk/by-diskseq/928.tmp-b7:7' failed: Read-only file system
[  444.633437][T13501] ocfs2: Unmounting device (7,6) on (node local)
[  444.950312][T15868] loop7: detected capacity change from 0 to 1764
[  445.103987][T15870] loop4: detected capacity change from 0 to 16
[  445.143532][T15870] erofs: Unknown parameter 'ÿÿÿÿÿÿÿÿ000000000000000000030xffffffffffffffff'
[  445.154188][ T1034] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  445.507547][T15874] loop4: detected capacity change from 0 to 8
[  445.562479][ T5850] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  445.573848][T15874] SQUASHFS error: lzo decompression failed, data probably corrupt
[  445.619787][T15874] SQUASHFS error: Failed to read block 0x91: -5
[  445.644163][T15874] SQUASHFS error: Unable to read metadata cache entry [8f]
[  445.699531][T15874] SQUASHFS error: Unable to read inode 0x7
[  445.746121][T15879] netlink: 1 bytes leftover after parsing attributes in process `syz.7.4059'.
[  445.978355][T15882] netlink: 48 bytes leftover after parsing attributes in process `syz.6.4061'.
[  446.019563][  T974] usb 5-1: new full-speed USB device number 15 using dummy_hcd
[  446.200694][  T974] usb 5-1: config 0 has an invalid interface number: 120 but max is 0
[  446.240941][  T974] usb 5-1: config 0 has no interface number 0
[  446.286153][  T974] usb 5-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 45800, setting to 64
[  446.340947][  T974] usb 5-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  446.387620][  T974] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  446.450621][  T974] usb 5-1: config 0 descriptor??
[  446.456862][T15874] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  446.514853][  T974] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.120/input/input20
[  446.660028][T15861] loop1: detected capacity change from 0 to 40427
[  446.689362][T15861] F2FS-fs (loop1): build fault injection rate: 771
[  446.759910][   T10] usb 5-1: USB disconnect, device number 15
[  446.769925][T15861] F2FS-fs (loop1): invalid crc value
[  447.233396][T15861] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  447.588310][ T5853] syz-executor: attempt to access beyond end of device
[  447.588310][ T5853] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  447.612252][ T5853] CPU: 1 UID: 0 PID: 5853 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  447.612286][ T5853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  447.612302][ T5853] Call Trace:
[  447.612311][ T5853]  <TASK>
[  447.612321][ T5853]  dump_stack_lvl+0x189/0x250
[  447.612362][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[  447.612390][ T5853]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  447.612429][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[  447.612462][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.612491][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  447.612528][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  447.612567][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.612596][ T5853]  ? f2fs_hw_is_readonly+0x39b/0x470
[  447.612639][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[  447.612684][ T5853]  f2fs_write_end_io+0x495/0x810
[  447.612707][ T5853]  ? blkg_put+0x22/0x240
[  447.612757][ T5853]  __submit_merged_bio+0x27a/0x6a0
[  447.612806][ T5853]  __submit_merged_write_cond+0x255/0x530
[  447.612850][ T5853]  f2fs_write_data_pages+0x261d/0x3000
[  447.612880][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.612931][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  447.612972][ T5853]  ? arch_stack_walk+0xfc/0x150
[  447.613021][ T5853]  ? __mod_zone_page_state+0xd7/0x140
[  447.613051][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613072][ T5853]  ? folios_put_refs+0x560/0x640
[  447.613112][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613132][ T5853]  ? __lock_acquire+0xab9/0xd20
[  447.613159][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613179][ T5853]  ? do_raw_spin_lock+0x121/0x290
[  447.613211][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613236][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613256][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  447.613284][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  447.613335][ T5853]  do_writepages+0x32e/0x550
[  447.613361][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613385][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613405][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  447.613437][ T5853]  filemap_fdatawrite+0x191/0x230
[  447.613460][ T5853]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  447.613521][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613547][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  447.613579][ T5853]  f2fs_sync_dirty_inodes+0x31f/0x830
[  447.613612][ T5853]  f2fs_write_checkpoint+0x94a/0x1de0
[  447.613654][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  447.613717][ T5853]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  447.613744][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613780][ T5853]  ? kfree+0x18e/0x440
[  447.613813][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[  447.613845][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[  447.613878][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[  447.613902][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[  447.613949][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.613978][ T5853]  ? shrinker_free+0x2ce/0x3e0
[  447.614020][ T5853]  deactivate_locked_super+0xbc/0x130
[  447.614049][ T5853]  cleanup_mnt+0x425/0x4c0
[  447.614072][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.614100][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  447.614144][ T5853]  task_work_run+0x1d4/0x260
[  447.614189][ T5853]  ? __pfx_task_work_run+0x10/0x10
[  447.614222][ T5853]  ? __x64_sys_umount+0x122/0x160
[  447.614255][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[  447.614287][ T5853]  exit_to_user_mode_loop+0xec/0x110
[  447.614312][ T5853]  do_syscall_64+0x2bd/0x3b0
[  447.614333][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  447.614368][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.614388][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  447.614414][ T5853]  ? exc_page_fault+0x9f/0xf0
[  447.614452][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.614473][ T5853] RIP: 0033:0x7f472238fc57
[  447.614492][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  447.614510][ T5853] RSP: 002b:00007ffd27b4b408 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  447.614533][ T5853] RAX: 0000000000000000 RBX: 00007f4722410925 RCX: 00007f472238fc57
[  447.614549][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd27b4b4c0
[  447.614563][ T5853] RBP: 00007ffd27b4b4c0 R08: 0000000000000000 R09: 0000000000000000
[  447.614578][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd27b4c550
[  447.614592][ T5853] R13: 00007f4722410925 R14: 000000000006d380 R15: 00007ffd27b4c590
[  447.614627][ T5853]  </TASK>
[  447.615125][ T5853] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  448.334525][T15933] netlink: 44 bytes leftover after parsing attributes in process `syz.6.4084'.
[  448.480422][ T5948] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  448.685994][T15943] gtp0: entered promiscuous mode
[  448.695562][T15943] gtp0: entered allmulticast mode
[  448.709779][ T5948] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  448.728124][ T5948] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  448.774738][ T5948] usb 8-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  448.819356][ T5948] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.870886][ T5948] usb 8-1: config 0 descriptor??
[  448.913738][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/934.tmp-b7:8' failed: Read-only file system
[  448.999976][T15746] udevd[15746]: symlink '../../loop4' '/dev/disk/by-diskseq/949.tmp-b7:4' failed: Read-only file system
[  449.121146][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/950.tmp-b7:3' failed: Read-only file system
[  449.175007][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/943.tmp-b7:6' failed: Read-only file system
[  449.249795][T15746] udevd[15746]: symlink '../../loop8' '/dev/disk/by-diskseq/934.tmp-b7:8' failed: Read-only file system
[  449.277611][ T6028] udevd[6028]: symlink '../../loop4' '/dev/disk/by-diskseq/949.tmp-b7:4' failed: Read-only file system
[  449.303561][ T5948] hkems 0003:2006:0118.0017: unbalanced delimiter at end of report description
[  449.357685][ T5948] hkems 0003:2006:0118.0017: parse failed
[  449.367955][ T5948] hkems 0003:2006:0118.0017: probe with driver hkems failed with error -22
[  449.371956][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/950.tmp-b7:3' failed: Read-only file system
[  449.513283][T15746] udevd[15746]: symlink '../../loop6' '/dev/disk/by-diskseq/943.tmp-b7:6' failed: Read-only file system
[  449.531057][ T5948] usb 8-1: USB disconnect, device number 4
[  449.638810][T15969] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4100'.
[  449.674364][T15969] tc_dump_action: action bad kind
[  449.682506][ T6028] udevd[6028]: symlink '../../loop4' '/dev/disk/by-diskseq/949.tmp-b7:4' failed: Read-only file system
[  449.714019][ T5854] udevd[5854]: symlink '../../loop3' '/dev/disk/by-diskseq/950.tmp-b7:3' failed: Read-only file system
[  449.817509][T15974] bridge0: entered promiscuous mode
[  449.864639][T15976] loop4: detected capacity change from 0 to 128
[  449.879891][T15974] macvlan3: entered promiscuous mode
[  449.886942][T15974] bridge0: port 3(macvlan3) entered blocking state
[  449.935906][T15974] bridge0: port 3(macvlan3) entered disabled state
[  449.954365][T15974] macvlan3: entered allmulticast mode
[  449.969398][T15974] bridge0: entered allmulticast mode
[  449.983536][T15974] macvlan3: left allmulticast mode
[  449.988793][T15974] bridge0: left allmulticast mode
[  450.034263][T15974] bridge0: left promiscuous mode
[  450.527180][T15986] loop8: detected capacity change from 0 to 1024
[  450.761933][T15972] loop3: detected capacity change from 0 to 32768
[  451.023535][T15999] netlink: 'syz.4.4116': attribute type 4 has an invalid length.
[  451.054493][T16003] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4115'.
[  451.512262][ T5997] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  451.619496][ T5948] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  451.714374][ T5997] usb 9-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  451.756687][ T5997] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.791729][ T5997] usb 9-1: Product: syz
[  451.803646][ T5948] usb 2-1: Using ep0 maxpacket: 16
[  451.809866][ T5997] usb 9-1: Manufacturer: syz
[  451.827779][ T5997] usb 9-1: SerialNumber: syz
[  451.840588][ T5948] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  451.848965][ T5948] usb 2-1: config 0 has no interface number 0
[  451.856586][ T5997] usb 9-1: config 0 descriptor??
[  451.877458][ T5948] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  451.898007][ T5948] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  451.916996][ T5948] usb 2-1: config 0 interface 41 has no altsetting 0
[  451.927727][ T5948] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  451.949662][ T5948] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.979457][ T5948] usb 2-1: Product: syz
[  451.983670][ T5948] usb 2-1: Manufacturer: syz
[  452.024263][ T5948] usb 2-1: SerialNumber: syz
[  452.064035][ T5948] usb 2-1: config 0 descriptor??
[  452.078048][T16014] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  452.113469][ T5949] usb 9-1: USB disconnect, device number 5
[  452.119842][T16014] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  452.377365][T16014] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  452.402076][T16014] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  452.830329][T16046] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4138'.
[  452.839828][T16046] netlink: 43 bytes leftover after parsing attributes in process `syz.7.4138'.
[  452.846790][ T5948] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -71
[  452.848757][T16046] netlink: 'syz.7.4138': attribute type 6 has an invalid length.
[  452.848776][T16046] netlink: 'syz.7.4138': attribute type 5 has an invalid length.
[  452.848794][T16046] netlink: 43 bytes leftover after parsing attributes in process `syz.7.4138'.
[  452.944094][ T5948] usb 2-1: USB disconnect, device number 21
[  452.962375][T16022] loop4: detected capacity change from 0 to 32768
[  453.048510][T16022] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  453.221667][T16063] loop7: detected capacity change from 0 to 256
[  453.229163][T16063] exfat: Deprecated parameter 'utf8'
[  453.265532][T16063] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  453.289208][T16022] XFS (loop4): Ending clean mount
[  453.696565][ T5851] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  454.184664][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-diskseq/958.tmp-b7:3' failed: Read-only file system
[  454.217942][T16090] loop6: detected capacity change from 0 to 2048
[  454.317004][T16090] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.330976][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/961.tmp-b7:7' failed: Read-only file system
[  454.376485][T16096] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4155'.
[  454.407713][T16090] EXT4-fs (loop6): Online resizing not supported with bigalloc
[  454.421878][   T30] audit: type=1800 audit(1752147495.998:133): pid=16090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4154" name="file2" dev="loop6" ino=16 res=0 errno=0
[  454.485163][T13501] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.515300][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/952.tmp-b7:1' failed: Read-only file system
[  454.532992][ T5854] udevd[5854]: symlink '../../loop3' '/dev/disk/by-diskseq/958.tmp-b7:3' failed: Read-only file system
[  454.534960][T14269] udevd[14269]: symlink '../../loop7' '/dev/disk/by-diskseq/961.tmp-b7:7' failed: Read-only file system
[  454.637297][T15746] udevd[15746]: symlink '../../loop4' '/dev/disk/by-diskseq/959.tmp-b7:4' failed: Read-only file system
[  454.651210][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/943.tmp-b7:6' failed: Read-only file system
[  454.721001][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system
[  454.764261][ T5854] udevd[5854]: symlink '../../loop3' '/dev/disk/by-diskseq/958.tmp-b7:3' failed: Read-only file system
[  454.781458][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/952.tmp-b7:1' failed: Read-only file system
[  454.897643][T16108] loop6: detected capacity change from 0 to 64
[  454.962887][T16111] loop1: detected capacity change from 0 to 64
[  455.712727][T16133] loop4: detected capacity change from 0 to 64
[  455.723486][ T5997] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  455.776682][T16136] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4175'.
[  455.788525][T16133] MINIX-fs: mounting file system with errors, running fsck is recommended
[  455.890072][T16133] syz.4.4174: attempt to access beyond end of device
[  455.890072][T16133] loop4: rw=0, sector=3610, nr_sectors = 2 limit=64
[  455.909690][ T5997] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  455.953913][T16133] Buffer I/O error on dev loop4, logical block 1805, async page read
[  455.961506][ T5997] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  455.986969][T16133] syz.4.4174: attempt to access beyond end of device
[  455.986969][T16133] loop4: rw=0, sector=3584, nr_sectors = 2 limit=64
[  456.003681][ T5997] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  456.017092][   T10] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  456.052705][T16133] Buffer I/O error on dev loop4, logical block 1792, async page read
[  456.069691][ T5997] usb 2-1: New USB device found, idVendor=0458, idProduct=501a, bcdDevice= 0.00
[  456.099027][ T5997] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.124505][T16133] syz.4.4174: attempt to access beyond end of device
[  456.124505][T16133] loop4: rw=0, sector=3610, nr_sectors = 2 limit=64
[  456.147034][ T5997] usb 2-1: config 0 descriptor??
[  456.179693][T16133] Buffer I/O error on dev loop4, logical block 1805, async page read
[  456.199664][   T10] usb 8-1: Using ep0 maxpacket: 8
[  456.213204][T16133] syz.4.4174: attempt to access beyond end of device
[  456.213204][T16133] loop4: rw=0, sector=3584, nr_sectors = 2 limit=64
[  456.216022][   T10] usb 8-1: unable to get BOS descriptor or descriptor too short
[  456.271055][   T10] usb 8-1: config 4 interface 0 has no altsetting 0
[  456.285146][   T10] usb 8-1: string descriptor 0 read error: -22
[  456.291161][T16133] Buffer I/O error on dev loop4, logical block 1792, async page read
[  456.299901][   T10] usb 8-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  456.330400][   T30] audit: type=1800 audit(1752147497.928:134): pid=16133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4174" name="file3" dev="loop4" ino=6 res=0 errno=0
[  456.350032][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.385333][   T10] usb 8-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  456.393465][T16147] netlink: 'syz.8.4179': attribute type 29 has an invalid length.
[  456.404006][T16147] netlink: 'syz.8.4179': attribute type 29 has an invalid length.
[  456.443927][   T10] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  456.474285][   T10] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  456.564437][   T10] usb 8-1: media controller created
[  456.613119][ T5997] kye 0003:0458:501A.0018: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  456.648309][ T5997] kye 0003:0458:501A.0018: unknown main item tag 0x0
[  456.699742][ T5997] kye 0003:0458:501A.0018: unknown main item tag 0x0
[  456.706494][ T5997] kye 0003:0458:501A.0018: unknown main item tag 0x0
[  456.721080][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  456.760113][ T5997] kye 0003:0458:501A.0018: unknown main item tag 0x0
[  456.774786][ T5997] kye 0003:0458:501A.0018: unknown main item tag 0x0
[  456.813137][ T5997] kye 0003:0458:501A.0018: hidraw0: USB HID v0.00 Device [HID 0458:501a] on usb-dummy_hcd.1-1/input0
[  456.838157][   T10] zl10353_read_register: readreg error (reg=127, ret==0)
[  456.877366][ T5997] kye 0003:0458:501A.0018: tablet-enabling feature report not found
[  456.909393][   T48] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  456.912065][ T5997] kye 0003:0458:501A.0018: tablet enabling failed
[  457.018133][ T5997] usb 2-1: USB disconnect, device number 22
[  457.029975][   T10] usb 8-1: USB disconnect, device number 5
[  457.074193][T16157] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4184'.
[  457.103877][   T48] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  457.133900][   T48] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  457.161414][T16154] fido_id[16154]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  457.186018][   T48] usb 7-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  457.210155][   T48] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.250068][   T48] usb 7-1: config 0 descriptor??
[  457.572422][T16168] block nbd7: not configured, cannot reconfigure
[  457.627063][T16162] loop3: detected capacity change from 0 to 8192
[  457.724558][   T48] uclogic 0003:5543:0042.0019: hidraw0: USB HID v0.00 Device [HID 5543:0042] on usb-dummy_hcd.6-1/input0
[  457.916627][   T48] usb 7-1: USB disconnect, device number 8
[  458.149438][T16183] loop3: detected capacity change from 0 to 1024
[  458.170815][T16180] fido_id[16180]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  458.380903][   T12] hfsplus: b-tree write err: -5, ino 4
[  458.592640][T16193] loop3: detected capacity change from 0 to 256
[  458.614041][T16193] exfat: Deprecated parameter 'utf8'
[  458.651513][T16193] exfat: Deprecated parameter 'utf8'
[  458.681847][T16193] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  458.728599][T16197] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4202'.
[  458.798712][T16197] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4202'.
[  459.098553][T16205] loop1: detected capacity change from 0 to 1024
[  459.236611][T16211] program syz.6.4209 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  459.272382][T16209] loop8: detected capacity change from 0 to 2048
[  459.284125][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/968.tmp-b7:6' failed: Read-only file system
[  459.321266][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/975.tmp-b7:3' failed: Read-only file system
[  459.328861][ T5854] udevd[5854]: symlink '../../loop7' '/dev/disk/by-diskseq/961.tmp-b7:7' failed: Read-only file system
[  459.335417][T14269] udevd[14269]: symlink '../../loop4' '/dev/disk/by-diskseq/970.tmp-b7:4' failed: Read-only file system
[  459.373198][T16215] loop7: detected capacity change from 0 to 512
[  459.382151][T16209] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  459.418434][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/977.tmp-b7:1' failed: Read-only file system
[  459.434229][T16215] ext4: Unknown parameter 'euid'
[  459.466443][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/975.tmp-b7:3' failed: Read-only file system
[  459.498341][ T6027] udevd[6027]: symlink '../../loop8' '/dev/disk/by-diskseq/978.tmp-b7:8' failed: Read-only file system
[  459.511319][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:1' failed: Read-only file system
[  459.515904][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/979.tmp-b7:7' failed: Read-only file system
[  459.613743][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/975.tmp-b7:3' failed: Read-only file system
[  459.688265][T16220] loop4: detected capacity change from 0 to 256
[  459.766424][T16220] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  459.859437][   T30] audit: type=1800 audit(1752147501.448:135): pid=16220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4214" name="file1" dev="loop4" ino=1048794 res=0 errno=0
[  459.880129][T16220] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  459.943885][T16220] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  460.009379][T16220] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  460.170291][   T10] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  460.351242][   T10] usb 4-1: Using ep0 maxpacket: 16
[  460.368332][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  460.387629][ T5833] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  460.409386][ T5849] Bluetooth: hci3: unexpected event for opcode 0x2041
[  460.430797][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  460.449128][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  460.465712][   T10] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  460.477497][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  460.503317][   T10] usb 4-1: config 0 descriptor??
[  460.589900][ T5833] usb 8-1: Using ep0 maxpacket: 16
[  460.615813][ T5833] usb 8-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  460.645990][ T5833] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.689310][ T5833] usb 8-1: Product: syz
[  460.706518][ T5833] usb 8-1: Manufacturer: syz
[  460.723038][ T5833] usb 8-1: SerialNumber: syz
[  460.761619][ T5833] usb 8-1: config 0 descriptor??
[  460.787178][ T5833] ums-onetouch 8-1:0.0: USB Mass Storage device detected
[  460.958435][   T10] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  461.010000][   T10] microsoft 0003:045E:07DA.001A: unbalanced collection at end of report description
[  461.020995][ T5833] usb 8-1: USB disconnect, device number 6
[  461.038396][   T10] microsoft 0003:045E:07DA.001A: parse failed
[  461.047984][   T10] microsoft 0003:045E:07DA.001A: probe with driver microsoft failed with error -22
[  461.153330][   T10] usb 4-1: USB disconnect, device number 19
[  461.897563][T16277] loop6: detected capacity change from 0 to 2048
[  461.905865][T16282] loop1: detected capacity change from 0 to 256
[  461.921667][T16283] loop3: detected capacity change from 0 to 64
[  461.959883][T16282] vfat: Deprecated parameter 'posix'
[  461.965233][T16282] FAT-fs: "posix" option is obsolete, not supported now
[  461.986591][T16277] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  462.470796][T16288] loop8: detected capacity change from 0 to 4096
[  462.629551][   T10] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[  462.641784][T16288] ntfs3(loop8): failed to convert "0080" to cp860
[  462.661871][T16288] ntfs3(loop8): failed to convert name for inode 1e.
[  462.669036][T16288] ntfs3(loop8): ino=1f, mi_enum_attr
[  462.712751][T16288] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[  462.757103][T16288] ntfs3(loop8): ino=1f, mi_enum_attr
[  462.814777][   T10] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  462.841061][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.927259][   T10] usb 2-1: config 0 descriptor??
[  462.966463][   T10] cp210x 2-1:0.0: cp210x converter detected
[  463.095595][T16307] syz.3.4252 (16307): /proc/16305/oom_adj is deprecated, please use /proc/16305/oom_score_adj instead.
[  463.122300][T16308] ucma_write: process 295 (syz.7.4254) changed security contexts after opening file descriptor, this is not allowed.
[  463.482133][   T10] usb 2-1: cp210x converter now attached to ttyUSB0
[  463.593994][ T5997] usb 2-1: USB disconnect, device number 23
[  463.629330][ T5997] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  463.680613][ T5997] cp210x 2-1:0.0: device disconnected
[  463.718820][T16325] loop8: detected capacity change from 0 to 128
[  463.784332][T16325] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  463.911466][T16325] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  464.220892][T16335] sit0: entered promiscuous mode
[  464.260683][T16335] netlink: 'syz.6.4266': attribute type 1 has an invalid length.
[  464.292766][   T30] audit: type=1326 audit(1752147505.888:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.7.4268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d758e929 code=0x7ffc0000
[  464.315361][T16335] netlink: 1 bytes leftover after parsing attributes in process `syz.6.4266'.
[  464.342903][T16341] loop1: detected capacity change from 0 to 128
[  464.356932][T15746] udevd[15746]: symlink '../../loop8' '/dev/disk/by-diskseq/994.tmp-b7:8' failed: Read-only file system
[  464.373190][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/980.tmp-b7:7' failed: Read-only file system
[  464.422720][T16341] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  464.456027][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/988.tmp-b7:1' failed: Read-only file system
[  464.490724][   T30] audit: type=1326 audit(1752147505.888:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.7.4268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d758e929 code=0x7ffc0000
[  464.533928][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:1' failed: Read-only file system
[  464.571774][T16341] ext4 filesystem being mounted at /739/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  464.611551][ T6028] udevd[6028]: symlink '../../loop7' '/dev/disk/by-diskseq/980.tmp-b7:7' failed: Read-only file system
[  464.657395][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/984.tmp-b7:4' failed: Read-only file system
[  464.695361][   T30] audit: type=1326 audit(1752147505.918:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.7.4268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f59d758e929 code=0x7ffc0000
[  464.745515][T15746] udevd[15746]: symlink '../../loop1' '/dev/disk/by-diskseq/995.tmp-b7:1' failed: Read-only file system
[  464.781709][ T6028] udevd[6028]: symlink '../../loop6' '/dev/disk/by-diskseq/991.tmp-b7:6' failed: Read-only file system
[  464.819800][   T30] audit: type=1326 audit(1752147505.918:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.7.4268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d758e929 code=0x7ffc0000
[  464.846216][T15746] udevd[15746]: symlink '../../loop1' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:1' failed: Read-only file system
[  464.928640][   T30] audit: type=1326 audit(1752147505.918:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.7.4268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d758e929 code=0x7ffc0000
[  464.987604][ T5853] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  465.033344][T15746] udevd[15746]: symlink '../../loop1' '/dev/disk/by-diskseq/995.tmp-b7:1' failed: Read-only file system
[  465.823850][T16373] loop4: detected capacity change from 0 to 8
[  465.866759][T16373] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  466.140727][T16381] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4285'.
[  466.221519][T16347] loop7: detected capacity change from 0 to 40427
[  466.273057][T16347] F2FS-fs (loop7): build fault injection type: 0x7
[  466.337580][T16347] F2FS-fs (loop7): invalid crc value
[  466.537479][T16393] loop1: detected capacity change from 0 to 128
[  466.597647][T16393] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  466.652467][T16393] ext4 filesystem being mounted at /742/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  466.829669][T16347] F2FS-fs (loop7): Start checkpoint disabled!
[  466.859902][T16347] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  466.946722][   T30] audit: type=1800 audit(1752147508.538:141): pid=16347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4270" name="file1" dev="loop7" ino=10 res=0 errno=0
[  467.076373][ T5853] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  467.117118][T16404] loop4: detected capacity change from 0 to 4096
[  467.200342][   T13] kworker/u8:1: attempt to access beyond end of device
[  467.200342][   T13] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  467.267492][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  467.267528][   T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  467.267545][   T13] Workqueue: writeback wb_workfn (flush-7:7)
[  467.267594][   T13] Call Trace:
[  467.267604][   T13]  <TASK>
[  467.267614][   T13]  dump_stack_lvl+0x189/0x250
[  467.267653][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  467.267682][   T13]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  467.267722][   T13]  ? __pfx_queue_work_on+0x10/0x10
[  467.267755][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.267784][   T13]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  467.267827][   T13]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  467.267867][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.267895][   T13]  ? f2fs_hw_is_readonly+0x39b/0x470
[  467.267939][   T13]  f2fs_handle_critical_error+0x37c/0x540
[  467.267983][   T13]  f2fs_write_end_io+0x495/0x810
[  467.268005][   T13]  ? blkg_put+0x22/0x240
[  467.268055][   T13]  __submit_merged_bio+0x27a/0x6a0
[  467.268099][   T13]  __submit_merged_write_cond+0x255/0x530
[  467.268142][   T13]  f2fs_write_data_pages+0x261d/0x3000
[  467.268223][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  467.268281][   T13]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  467.268353][   T13]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  467.268396][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.268440][   T13]  ? trace_f2fs_writepages+0x7f/0x200
[  467.268478][   T13]  ? f2fs_write_node_pages+0x478/0x6e0
[  467.268531][   T13]  ? sched_clock+0x3f/0x60
[  467.268569][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.268596][   T13]  ? sched_clock_cpu+0x74/0x430
[  467.268625][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.268659][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  467.268702][   T13]  do_writepages+0x32e/0x550
[  467.268736][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.268764][   T13]  ? reacquire_held_locks+0x127/0x1d0
[  467.268801][   T13]  ? writeback_sb_inodes+0x372/0x1000
[  467.268841][   T13]  __writeback_single_inode+0x145/0xff0
[  467.268870][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.268899][   T13]  ? do_raw_spin_unlock+0x122/0x240
[  467.268941][   T13]  writeback_sb_inodes+0x6b5/0x1000
[  467.268968][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  467.269015][   T13]  ? rcu_is_watching+0x15/0xb0
[  467.269049][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269093][   T13]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  467.269171][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269200][   T13]  ? rcu_is_watching+0x15/0xb0
[  467.269230][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269269][   T13]  wb_writeback+0x43b/0xaf0
[  467.269307][   T13]  ? queue_io+0x3a1/0x590
[  467.269338][   T13]  ? __pfx_wb_writeback+0x10/0x10
[  467.269377][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  467.269421][   T13]  wb_workfn+0x409/0xef0
[  467.269481][   T13]  ? __pfx_wb_workfn+0x10/0x10
[  467.269525][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269553][   T13]  ? __lock_acquire+0xab9/0xd20
[  467.269593][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269626][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269660][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  467.269695][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  467.269725][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  467.269758][   T13]  process_scheduled_works+0xae1/0x17b0
[  467.269829][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  467.269869][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.269909][   T13]  worker_thread+0x8a0/0xda0
[  467.269974][   T13]  kthread+0x711/0x8a0
[  467.270015][   T13]  ? __pfx_worker_thread+0x10/0x10
[  467.270045][   T13]  ? __pfx_kthread+0x10/0x10
[  467.270078][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.270112][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  467.270147][   T13]  ? srso_alias_return_thunk+0x5/0xfbef5
[  467.270176][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  467.270213][   T13]  ? __pfx_kthread+0x10/0x10
[  467.270251][   T13]  ret_from_fork+0x3fc/0x770
[  467.270282][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  467.270317][   T13]  ? __switch_to_asm+0x39/0x70
[  467.270350][   T13]  ? __switch_to_asm+0x33/0x70
[  467.270382][   T13]  ? __pfx_kthread+0x10/0x10
[  467.270421][   T13]  ret_from_fork_asm+0x1a/0x30
[  467.270476][   T13]  </TASK>
[  467.283581][T16404] ntfs3(loop4): ino=1a, mi_enum_attr
[  467.386587][   T13] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  467.580097][T16404] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  468.332175][T16432] loop4: detected capacity change from 0 to 512
[  468.442706][T16432] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  468.499571][T16432] System zones: 0-2, 18-18, 34-34
[  468.538749][T16406] loop8: detected capacity change from 0 to 32768
[  468.615889][T16432] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4307: bg 0: block 248: padding at end of block bitmap is not set
[  468.657167][   T30] audit: type=1800 audit(1752147510.248:142): pid=16406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4296" name="file1" dev="loop8" ino=4 res=0 errno=0
[  468.705828][T16440] loop3: detected capacity change from 0 to 256
[  468.743846][T16432] Quota error (device loop4): write_blk: dquota write failed
[  468.754809][T16432] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  468.776756][T16440] exfat: Deprecated parameter 'utf8'
[  468.822803][T16440] exfat: Deprecated parameter 'namecase'
[  468.828623][T16440] exfat: Deprecated parameter 'utf8'
[  468.851234][T16432] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4307: Failed to acquire dquot type 1
[  468.926979][   T30] audit: type=1326 audit(1752147510.508:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  468.988630][T16440] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  469.022315][   T30] audit: type=1326 audit(1752147510.508:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  469.054671][T16432] EXT4-fs (loop4): 1 truncate cleaned up
[  469.082147][T16432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.125431][T16432] ext4 filesystem being mounted at /740/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.136181][   T30] audit: type=1326 audit(1752147510.508:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  469.229243][   T30] audit: type=1326 audit(1752147510.508:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  469.266731][T16447] [U] 
[  469.294245][   T30] audit: type=1326 audit(1752147510.508:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  469.328536][   T48] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  469.333987][T16450] loop7: detected capacity change from 0 to 64
[  469.380454][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1007.tmp-b7:3' failed: Read-only file system
[  469.403786][ T5851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.407145][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/1002.tmp-b7:1' failed: Read-only file system
[  469.449641][T16450] hfs: inconsistency in B*Tree (1,0,2,2,3)
[  469.503672][ T5854] udevd[5854]: symlink '../../loop7' '/dev/disk/by-diskseq/1010.tmp-b7:7' failed: Read-only file system
[  469.533648][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1007.tmp-b7:3' failed: Read-only file system
[  469.580442][   T48] usb 9-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  469.584048][ T5854] udevd[5854]: symlink '../../loop7' '/dev/disk/by-label/unt.tmp-b7:7' failed: Read-only file system
[  469.626712][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/1004.tmp-b7:4' failed: Read-only file system
[  469.649355][   T48] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.657372][   T48] usb 9-1: Product: syz
[  469.680877][   T48] usb 9-1: Manufacturer: syz
[  469.685518][   T48] usb 9-1: SerialNumber: syz
[  469.703418][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1009.tmp-b7:3' failed: Read-only file system
[  469.726784][   T48] usb 9-1: config 0 descriptor??
[  469.735182][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/1004.tmp-b7:4' failed: Read-only file system
[  469.802712][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1006.tmp-b7:8' failed: Read-only file system
[  469.802770][   T48] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  469.826518][ T5854] udevd[5854]: symlink '../../loop7' '/dev/disk/by-diskseq/1010.tmp-b7:7' failed: Read-only file system
[  469.939612][   T30] kauditd_printk_skb: 399 callbacks suppressed
[  469.939632][   T30] audit: type=1326 audit(1752147511.528:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.011632][T16456] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  470.058309][   T30] audit: type=1326 audit(1752147511.528:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.189539][   T30] audit: type=1326 audit(1752147511.528:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.269520][   T30] audit: type=1326 audit(1752147511.528:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.313034][T16467] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4325'.
[  470.341872][   T30] audit: type=1326 audit(1752147511.528:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.419498][   T30] audit: type=1326 audit(1752147511.528:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.445724][   T48] gspca_sunplus: reg_r err -71
[  470.451455][   T48] sunplus 9-1:0.0: probe with driver sunplus failed with error -71
[  470.471210][T16469] loop3: detected capacity change from 0 to 1024
[  470.489871][   T48] usb 9-1: USB disconnect, device number 6
[  470.525611][   T30] audit: type=1326 audit(1752147511.528:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.649451][   T30] audit: type=1326 audit(1752147511.528:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.730802][   T13] hfsplus: b-tree write err: -5, ino 4
[  470.741099][   T30] audit: type=1326 audit(1752147511.528:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.833740][   T30] audit: type=1326 audit(1752147511.528:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.6.4314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f661498e929 code=0x7ff00000
[  470.869753][T16473] loop4: detected capacity change from 0 to 128
[  471.304634][T16462] loop7: detected capacity change from 0 to 32768
[  471.349943][T16462] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.4323 (16462)
[  471.493241][T16462] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  471.499813][T16489] loop8: detected capacity change from 0 to 1024
[  471.533779][T16462] BTRFS info (device loop7): using sha256 (sha256-x86_64) checksum algorithm
[  471.577147][T16489] EXT4-fs: inline encryption not supported
[  471.619763][T16489] EXT4-fs: Ignoring removed bh option
[  471.633805][T16497] loop4: detected capacity change from 0 to 256
[  471.734170][T16489] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  471.983478][T16462] BTRFS info (device loop7): rebuilding free space tree
[  472.037359][T14235] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.059830][T16497] FAT-fs (loop4): Directory bread(block 64) failed
[  472.077494][T16462] BTRFS info (device loop7): disabling free space tree
[  472.088214][T16497] FAT-fs (loop4): Directory bread(block 65) failed
[  472.103892][ T5867] Bluetooth: hci6: command 0x0406 tx timeout
[  472.129904][T16462] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  472.135170][T16497] FAT-fs (loop4): Directory bread(block 66) failed
[  472.141941][T16516] loop3: detected capacity change from 0 to 512
[  472.146450][T16497] FAT-fs (loop4): Directory bread(block 67) failed
[  472.170119][T16497] FAT-fs (loop4): Directory bread(block 68) failed
[  472.192455][T16516] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  472.230985][T16516] EXT4-fs (loop3): 1 truncate cleaned up
[  472.248830][T16497] FAT-fs (loop4): Directory bread(block 69) failed
[  472.255823][T16516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.270338][T16462] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  472.317764][T16497] FAT-fs (loop4): Directory bread(block 70) failed
[  472.356902][T16497] FAT-fs (loop4): Directory bread(block 71) failed
[  472.426690][T16497] FAT-fs (loop4): Directory bread(block 72) failed
[  472.469717][T16497] FAT-fs (loop4): Directory bread(block 73) failed
[  472.505189][ T5850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.701206][T13732] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  473.223400][T16541] loop8: detected capacity change from 0 to 512
[  473.449054][T16541] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  473.514182][T16541] ext4 filesystem being mounted at /118/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  473.688103][T16556] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4354'.
[  473.719516][T16556] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4354'.
[  473.728452][T16556] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4354'.
[  473.813840][T16541] EXT4-fs error (device loop8): ext4_empty_dir:3075: inode #12: comm syz.8.4351: invalid size
[  474.033662][   T48] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[  474.211748][T14235] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.233831][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  474.268489][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  474.310367][   T48] usb 2-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  474.380707][   T48] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.389446][ T5948] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  474.408213][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1024.tmp-b7:8' failed: Read-only file system
[  474.451338][   T48] usb 2-1: config 0 descriptor??
[  474.464698][ T5871] udevd[5871]: symlink '../../loop3' '/dev/disk/by-diskseq/1022.tmp-b7:3' failed: Read-only file system
[  474.524285][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1026.tmp-b7:8' failed: Read-only file system
[  474.550308][T16573] loop7: detected capacity change from 0 to 4096
[  474.589585][ T5948] usb 7-1: Using ep0 maxpacket: 8
[  474.621988][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  474.669527][ T5948] usb 7-1: New USB device found, idVendor=056e, idProduct=010c, bcdDevice= 0.00
[  474.676134][T16573] ntfs3(loop7): ino=1a, mi_enum_attr
[  474.678655][ T5948] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.723265][T16573] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  474.753978][ T5948] usb 7-1: config 0 descriptor??
[  474.825540][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1026.tmp-b7:8' failed: Read-only file system
[  474.842490][ T5871] udevd[5871]: symlink '../../loop3' '/dev/disk/by-diskseq/1022.tmp-b7:3' failed: Read-only file system
[  474.948947][ T5854] udevd[5854]: symlink '../../loop4' '/dev/disk/by-diskseq/1023.tmp-b7:4' failed: Read-only file system
[  474.966454][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1017.tmp-b7:7' failed: Read-only file system
[  474.986419][   T48] hid-picolcd 0003:04D8:C002.001B: No report with id 0x11 found
[  475.028962][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  475.082420][   T48] usb 2-1: USB disconnect, device number 24
[  475.093538][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-uuid/399AA58E54924951.tmp-b7:7' failed: Read-only file system
[  475.118848][T16585] loop4: detected capacity change from 0 to 2048
[  475.176843][T16585] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  475.225913][ T5948] elecom 0003:056E:010C.001C: ignoring exceeding usage max
[  475.235639][T16589] loop7: detected capacity change from 0 to 256
[  475.253181][T16591] loop3: detected capacity change from 0 to 256
[  475.272862][ T5948] elecom 0003:056E:010C.001C: hidraw0: USB HID v0.00 Device [HID 056e:010c] on usb-dummy_hcd.6-1/input0
[  475.314840][T16591] exfat: Deprecated parameter 'namecase'
[  475.323416][ T5871] udevd[5871]: symlink '../../loop8' '/dev/disk/by-diskseq/1026.tmp-b7:8' failed: Read-only file system
[  475.373176][T16591] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  475.379135][ T5948] usb 7-1: USB disconnect, device number 9
[  475.466680][T16589] FAT-fs (loop7): Directory bread(block 64) failed
[  475.502976][T16589] FAT-fs (loop7): Directory bread(block 65) failed
[  475.541407][T16589] FAT-fs (loop7): Directory bread(block 66) failed
[  475.608278][T16589] FAT-fs (loop7): Directory bread(block 67) failed
[  475.639493][T16589] FAT-fs (loop7): Directory bread(block 68) failed
[  475.657531][T16592] fido_id[16592]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  475.659561][T16595] loop8: detected capacity change from 0 to 64
[  475.702167][T16589] FAT-fs (loop7): Directory bread(block 69) failed
[  475.708866][T16589] FAT-fs (loop7): Directory bread(block 70) failed
[  475.779349][T16589] FAT-fs (loop7): Directory bread(block 71) failed
[  475.813819][T16589] FAT-fs (loop7): Directory bread(block 72) failed
[  475.865145][T16598] overlayfs: missing 'workdir'
[  475.877771][T16589] FAT-fs (loop7): Directory bread(block 73) failed
[  477.370819][T16646] program syz.7.4398 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  477.527145][T16655] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4399'.
[  477.587675][T16652] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4399'.
[  477.708799][T16659] loop4: detected capacity change from 0 to 1024
[  477.849102][T16659] hfsplus: bad catalog entry type
[  478.036160][   T13] hfsplus: b-tree write err: -5, ino 4
[  478.042060][ T5948] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  478.230506][ T5948] usb 9-1: Using ep0 maxpacket: 16
[  478.266515][ T5948] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  478.319437][ T5948] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  478.340219][ T5948] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  478.397121][ T5948] usb 9-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[  478.439447][ T5948] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.500846][ T5948] usb 9-1: config 0 descriptor??
[  478.721082][T16694] loop7: detected capacity change from 0 to 512
[  478.769954][T16694] EXT4-fs (loop7): Test dummy encryption mode enabled
[  478.822168][T16694] EXT4-fs (loop7): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.953406][T16694] EXT4-fs error (device loop7): htree_dirblock_to_tree:1051: inode #2: comm syz.7.4421: Directory hole found for htree leaf block 0
[  478.983384][ T5948] hid-multitouch 0003:0457:07DA.001D: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.8-1/input0
[  479.018320][T16694] EXT4-fs (loop7): Remounting filesystem read-only
[  479.188898][ T5948] usb 9-1: USB disconnect, device number 7
[  479.228657][T13732] EXT4-fs (loop7): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  479.391328][T16705] fido_id[16705]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  479.425814][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1040.tmp-b7:7' failed: Read-only file system
[  479.474591][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-diskseq/991.tmp-b7:6' failed: Read-only file system
[  479.493982][ T5871] udevd[5871]: symlink '../../loop3' '/dev/disk/by-diskseq/1034.tmp-b7:3' failed: Read-only file system
[  479.534964][T16716] loop7: detected capacity change from 0 to 256
[  479.604797][T16716] exfat: Deprecated parameter 'namecase'
[  479.663006][T16716] exfat: Deprecated parameter 'utf8'
[  479.708675][T16716] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  479.730140][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1041.tmp-b7:7' failed: Read-only file system
[  479.767231][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-diskseq/1034.tmp-b7:3' failed: Read-only file system
[  479.815737][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-uuid/1234-1234.tmp-b7:7' failed: Read-only file system
[  479.834136][ T5871] udevd[5871]: symlink '../../loop6' '/dev/disk/by-diskseq/991.tmp-b7:6' failed: Read-only file system
[  479.901170][T14269] udevd[14269]: symlink '../../loop8' '/dev/disk/by-diskseq/1035.tmp-b7:8' failed: Read-only file system
[  479.984338][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1041.tmp-b7:7' failed: Read-only file system
[  480.018315][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-uuid/1234-1234.tmp-b7:7' failed: Read-only file system
[  480.089452][ T5948] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  480.253773][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  480.290896][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  480.295633][T16704] loop1: detected capacity change from 0 to 32768
[  480.317257][ T5948] usb 7-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  480.328649][ T5948] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  480.372396][T16704] 
[  480.372396][T16704]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  480.372396][T16704] 
[  480.419688][ T5948] usb 7-1: config 0 descriptor??
[  480.454307][T16704] ERROR: (device loop1): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 0
[  480.454307][T16704] 
[  480.535133][T16704] JFS: Invalid stbl[1] = -128 for inode 2, block = 0
[  480.692210][ T5928] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  480.700570][ T5853] 
[  480.700570][ T5853]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  480.700570][ T5853] 
[  480.749093][ T5853] 
[  480.749093][ T5853]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  480.749093][ T5853] 
[  480.856729][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  480.884705][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  480.899814][ T5928] usb 5-1: Using ep0 maxpacket: 8
[  480.910434][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  480.939372][ T5928] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  480.952377][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  480.975517][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  480.982584][ T5928] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b09, bcdDevice= 0.00
[  481.003120][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  481.021543][ T5928] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.039356][ T5948] hkems 0003:2006:0118.001E: unknown main item tag 0x0
[  481.070505][ T5928] usb 5-1: config 0 descriptor??
[  481.085195][ T5948] hkems 0003:2006:0118.001E: hidraw0: USB HID v0.00 Device [HID 2006:0118] on usb-dummy_hcd.6-1/input0
[  481.085506][T16748] loop8: detected capacity change from 0 to 128
[  481.130388][ T5948] hkems 0003:2006:0118.001E: no inputs found
[  481.159380][ T5948] hkems 0003:2006:0118.001E: force feedback init failed
[  481.228920][ T5948] usb 7-1: USB disconnect, device number 10
[  481.318140][T16751] fido_id[16751]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  481.500774][ T5928] corsair 0003:1B1C:1B09.001F: unbalanced delimiter at end of report description
[  481.536573][ T5928] corsair 0003:1B1C:1B09.001F: parse failed
[  481.556572][ T5928] corsair 0003:1B1C:1B09.001F: probe with driver corsair failed with error -22
[  481.709378][ T5997] usb 5-1: USB disconnect, device number 16
[  481.849460][T16765] loop6: detected capacity change from 0 to 1024
[  481.945552][T16765] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.073241][T16765] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4452: bg 0: block 494: padding at end of block bitmap is not set
[  482.171996][T16772] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 494: padding at end of block bitmap is not set
[  482.199502][T16765] EXT4-fs (loop6): Remounting filesystem read-only
[  482.203998][T16772] EXT4-fs (loop6): Remounting filesystem read-only
[  482.230450][T16765] EXT4-fs (loop6): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[  482.349783][ T5849] Bluetooth: hci7: command 0x0406 tx timeout
[  482.452713][T13501] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.806245][T16794] macvlan2: entered promiscuous mode
[  482.840350][T16794] bridge0: entered promiscuous mode
[  482.853446][T16794] bridge0: port 3(macvlan2) entered blocking state
[  482.875537][T16794] bridge0: port 3(macvlan2) entered disabled state
[  482.900629][T16794] macvlan2: entered allmulticast mode
[  482.917630][T16794] bridge0: entered allmulticast mode
[  482.957995][T16794] macvlan2: left allmulticast mode
[  482.970631][T16794] bridge0: left allmulticast mode
[  482.986226][T16800] netlink: 11 bytes leftover after parsing attributes in process `syz.6.4469'.
[  483.002910][T16794] bridge0: left promiscuous mode
[  483.127333][T16778] loop1: detected capacity change from 0 to 32768
[  483.421822][T16811] netlink: 504 bytes leftover after parsing attributes in process `syz.6.4473'.
[  483.696275][T16825] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4475'.
[  483.795131][T16778] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  483.795163][T16778]   allowing incompatible features above 0.0: (unknown version)
[  483.795179][T16778]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  483.956853][T16778] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  484.024584][T16778] bcachefs (loop1): initializing new filesystem
[  484.085081][T16778] bcachefs (loop1): going read-write
[  484.192616][T16778] bcachefs (loop1): marking superblocks
[  484.415614][T16778] bcachefs (loop1): initializing freespace
[  484.432557][T15746] udevd[15746]: symlink '../../loop4' '/dev/disk/by-diskseq/1038.tmp-b7:4' failed: Read-only file system
[  484.485749][T16778] bcachefs (loop1): done initializing freespace
[  484.567531][T16778] bcachefs (loop1): reading snapshots table
[  484.584479][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1034.tmp-b7:3' failed: Read-only file system
[  484.588357][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1046.tmp-b7:8' failed: Read-only file system
[  484.636502][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-diskseq/1048.tmp-b7:6' failed: Read-only file system
[  484.654633][T16778] bcachefs (loop1): reading snapshots done
[  484.733417][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1034.tmp-b7:3' failed: Read-only file system
[  484.753255][T16778] bcachefs (loop1): done starting filesystem
[  484.810107][ T5997] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  484.872432][ T5871] udevd[5871]: symlink '../../loop4' '/dev/disk/by-diskseq/1038.tmp-b7:4' failed: Read-only file system
[  484.893195][T15746] udevd[15746]: symlink '../../loop6' '/dev/disk/by-diskseq/1048.tmp-b7:6' failed: Read-only file system
[  484.954769][T16778] bcachefs (loop1): going read-only
[  484.973793][T16778] bcachefs (loop1): finished waiting for writes to stop
[  485.011874][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  485.043689][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  485.066252][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1034.tmp-b7:3' failed: Read-only file system
[  485.079666][T16778] bcachefs (loop1): flushing journal and stopping allocators, journal seq 2
[  485.090621][ T5997] usb 9-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[  485.104409][ T5997] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.110627][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/1049.tmp-b7:1' failed: Read-only file system
[  485.154313][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-uuid/da441363-bb6a-4ab9-999b-c1f40db4fee2.tmp-b7:1' failed: Read-only file system
[  485.212866][ T5997] usb 9-1: config 0 descriptor??
[  485.291208][T16778] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 2
[  485.320781][T16778] bcachefs (loop1): clean shutdown complete, journal seq 3
[  485.338342][T16778] bcachefs (loop1): marking filesystem clean
[  485.373581][T16869] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4494'.
[  485.399162][T16778] syz.1.4456 (16778) used greatest stack depth: 15992 bytes left
[  485.434912][T16869] netlink: 43 bytes leftover after parsing attributes in process `syz.3.4494'.
[  485.477756][T16869] netlink: 'syz.3.4494': attribute type 6 has an invalid length.
[  485.524023][T16869] netlink: 'syz.3.4494': attribute type 5 has an invalid length.
[  485.549423][T16869] netlink: 43 bytes leftover after parsing attributes in process `syz.3.4494'.
[  485.585873][ T5853] bcachefs (loop1): shutting down
[  485.676385][ T5997] hkems 0003:2006:0118.0020: unbalanced delimiter at end of report description
[  485.719083][ T5997] hkems 0003:2006:0118.0020: parse failed
[  485.739652][ T5997] hkems 0003:2006:0118.0020: probe with driver hkems failed with error -22
[  485.836104][ T5853] bcachefs (loop1): shutdown complete
[  485.907376][ T5997] usb 9-1: USB disconnect, device number 8
[  486.075388][T16884] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4516'.
[  486.085270][T16884] tc_dump_action: action bad kind
[  486.571011][T16895] gtp0: entered promiscuous mode
[  486.576019][T16895] gtp0: entered allmulticast mode
[  486.907148][T16872] loop6: detected capacity change from 0 to 32768
[  487.349781][T16913] netlink: 'syz.3.4520': attribute type 30 has an invalid length.
[  487.364495][T16889] loop7: detected capacity change from 0 to 32768
[  487.406031][T16889] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.4505 (16889)
[  487.500964][T16889] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  487.569967][T16889] BTRFS info (device loop7): using sha256 (sha256-x86_64) checksum algorithm
[  487.890120][T16889] BTRFS info (device loop7): rebuilding free space tree
[  487.911136][T16939] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4526'.
[  488.010132][T16889] BTRFS info (device loop7): disabling free space tree
[  488.010642][T16943] loop3: detected capacity change from 0 to 512
[  488.017080][T16889] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  488.034972][T16889] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  488.058184][T16943] EXT4-fs: Ignoring removed mblk_io_submit option
[  488.144429][T16943] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  488.184616][T16943] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  488.252145][T16943] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  488.339138][T16943] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  488.360411][T16943] System zones: 0-2, 18-18, 34-34
[  488.393063][T16943] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.4527: iget: bad i_size value: 360287970189639680
[  488.452961][T13732] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  488.488197][T16954] loop6: detected capacity change from 0 to 64
[  488.528264][T16954] MINIX-fs: mounting file system with errors, running fsck is recommended
[  488.549904][T16943] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4527: couldn't read orphan inode 15 (err -117)
[  488.648311][T16943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  488.650837][T16954] syz.6.4532: attempt to access beyond end of device
[  488.650837][T16954] loop6: rw=0, sector=3610, nr_sectors = 2 limit=64
[  488.726088][T16954] Buffer I/O error on dev loop6, logical block 1805, async page read
[  488.791072][T16943] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.4527: path /739/file1: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  488.793777][T16954] syz.6.4532: attempt to access beyond end of device
[  488.793777][T16954] loop6: rw=0, sector=3584, nr_sectors = 2 limit=64
[  488.836308][T16960] loop8: detected capacity change from 0 to 256
[  488.858043][T16961] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4533'.
[  488.909810][T16960] exfat: Deprecated parameter 'utf8'
[  488.912461][T16954] Buffer I/O error on dev loop6, logical block 1792, async page read
[  488.971460][T16954] syz.6.4532: attempt to access beyond end of device
[  488.971460][T16954] loop6: rw=0, sector=3610, nr_sectors = 2 limit=64
[  489.013729][T16960] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  489.029769][T16954] Buffer I/O error on dev loop6, logical block 1805, async page read
[  489.084022][T16954] syz.6.4532: attempt to access beyond end of device
[  489.084022][T16954] loop6: rw=0, sector=3584, nr_sectors = 2 limit=64
[  489.143730][T16954] Buffer I/O error on dev loop6, logical block 1792, async page read
[  489.224661][ T5850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.234954][   T30] kauditd_printk_skb: 868 callbacks suppressed
[  489.234972][   T30] audit: type=1800 audit(1752147530.818:1425): pid=16954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.4532" name="file3" dev="loop6" ino=6 res=0 errno=0
[  489.503357][ T6028] udevd[6028]: symlink '../../loop8' '/dev/disk/by-diskseq/1058.tmp-b7:8' failed: Read-only file system
[  489.543534][ T5871] udevd[5871]: symlink '../../loop3' '/dev/disk/by-diskseq/1053.tmp-b7:3' failed: Read-only file system
[  489.571160][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1051.tmp-b7:7' failed: Read-only file system
[  489.668227][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1051.tmp-b7:7' failed: Read-only file system
[  489.704875][ T6028] udevd[6028]: symlink '../../loop3' '/dev/disk/by-diskseq/1053.tmp-b7:3' failed: Read-only file system
[  489.792554][T14269] udevd[14269]: symlink '../../loop4' '/dev/disk/by-diskseq/1038.tmp-b7:4' failed: Read-only file system
[  489.794056][ T5854] udevd[5854]: symlink '../../loop6' '/dev/disk/by-diskseq/1054.tmp-b7:6' failed: Read-only file system
[  489.825046][ T6027] udevd[6027]: symlink '../../loop8' '/dev/disk/by-diskseq/1058.tmp-b7:8' failed: Read-only file system
[  489.826924][ T5871] udevd[5871]: symlink '../../loop1' '/dev/disk/by-diskseq/1055.tmp-b7:1' failed: Read-only file system
[  489.843918][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1051.tmp-b7:7' failed: Read-only file system
[  489.901411][T16982] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4540'.
[  489.994235][ T5997] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  490.142976][T16988] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4543'.
[  490.165702][ T5997] usb 7-1: Using ep0 maxpacket: 16
[  490.182958][ T5997] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  490.205243][ T5997] usb 7-1: config 0 has no interface number 0
[  490.240993][ T5997] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  490.289749][ T5997] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  490.358550][ T5997] usb 7-1: config 0 interface 41 has no altsetting 0
[  490.427904][ T5997] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  490.447465][ T5997] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.468117][T16996] loop4: detected capacity change from 0 to 256
[  490.482825][ T5997] usb 7-1: Product: syz
[  490.526943][ T5997] usb 7-1: Manufacturer: syz
[  490.535964][T16996] FAT-fs (loop4): Directory bread(block 1285) failed
[  490.549146][ T5997] usb 7-1: SerialNumber: syz
[  490.638420][ T5997] usb 7-1: config 0 descriptor??
[  490.644147][T17004] loop7: detected capacity change from 0 to 64
[  490.682072][T16979] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  490.701159][T16979] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  490.718535][T17005] loop3: detected capacity change from 0 to 2048
[  490.876418][T17007] loop1: detected capacity change from 0 to 512
[  490.906557][T17011] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  490.916519][T17007] ext4: Unknown parameter 'euid'
[  490.982530][T16979] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  491.039122][T16979] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  491.162260][ T5833] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  491.252394][T17018] loop8: detected capacity change from 0 to 64
[  491.419667][ T5833] usb 4-1: Using ep0 maxpacket: 16
[  491.469774][ T5833] usb 4-1: config 3 has an invalid interface number: 155 but max is 0
[  491.481016][ T5997] CoreChips 7-1:0.41: probe with driver CoreChips failed with error -71
[  491.501308][ T5833] usb 4-1: config 3 has an invalid interface association descriptor of length 3, skipping
[  491.531030][ T5997] usb 7-1: USB disconnect, device number 11
[  491.544993][ T5833] usb 4-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[  491.588935][ T5833] usb 4-1: config 3 has no interface number 0
[  491.621396][ T5833] usb 4-1: config 3 interface 155 has no altsetting 0
[  491.653776][ T5833] usb 4-1: New USB device found, idVendor=05a9, idProduct=264a, bcdDevice=e5.4c
[  491.689652][ T5833] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.697707][ T5833] usb 4-1: Product: syz
[  491.710728][T17020] loop1: detected capacity change from 0 to 8192
[  491.750915][ T5833] usb 4-1: Manufacturer: syz
[  491.755583][ T5833] usb 4-1: SerialNumber: syz
[  492.030926][T17033] loop4: detected capacity change from 0 to 256
[  492.034227][ T5833] usb 4-1: USB disconnect, device number 20
[  492.076987][T17033] exfat: Deprecated parameter 'utf8'
[  492.139592][T17033] exfat: Deprecated parameter 'utf8'
[  492.176807][T17033] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  492.426529][T17040] loop6: detected capacity change from 0 to 2048
[  492.450007][T17040] ext4: Unknown parameter 'noacl'
[  492.531386][T17043] program syz.1.4569 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  493.134241][ T5833] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  493.241095][ T5997] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  493.333496][ T5833] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  493.377667][ T5833] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  493.397938][ T5833] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  493.429510][ T5997] usb 4-1: Using ep0 maxpacket: 8
[  493.451603][T17068] netlink: 'syz.4.4581': attribute type 29 has an invalid length.
[  493.471759][ T5833] usb 7-1: New USB device found, idVendor=0458, idProduct=501a, bcdDevice= 0.00
[  493.498241][ T5997] usb 4-1: unable to get BOS descriptor or descriptor too short
[  493.509697][ T5833] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.509867][T17070] netlink: 'syz.4.4581': attribute type 29 has an invalid length.
[  493.541634][ T5833] usb 7-1: config 0 descriptor??
[  493.546905][ T5997] usb 4-1: config 4 interface 0 has no altsetting 0
[  493.594416][ T5997] usb 4-1: string descriptor 0 read error: -22
[  493.616532][ T5997] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  493.681302][ T5997] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.699752][   T31] INFO: task syz-executor:5855 blocked for more than 143 seconds.
[  493.718124][   T31]       Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0
[  493.753323][ T5997] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  493.758423][T17075] loop7: detected capacity change from 0 to 64
[  493.763682][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  493.788034][ T5997] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  493.798714][   T31] task:syz-executor    state:D stack:21960 pid:5855  tgid:5855  ppid:1      task_flags:0x400140 flags:0x00004004
[  493.812218][ T5997] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  493.819799][   T31] Call Trace:
[  493.823210][   T31]  <TASK>
[  493.826295][ T5997] usb 4-1: media controller created
[  493.847657][   T31]  __schedule+0x16f5/0x4d00
[  493.869574][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  493.901567][   T31]  ? schedule+0x165/0x360
[  493.908302][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  493.923011][   T31]  ? __pfx___schedule+0x10/0x10
[  493.933903][ T5997] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  493.957365][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  493.971452][   T31]  ? schedule+0x91/0x360
[  493.981946][   T31]  schedule+0x165/0x360
[  493.994935][   T31]  io_schedule+0x80/0xd0
[  494.000819][ T5833] kye 0003:0458:501A.0021: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  494.018624][   T31]  folio_wait_bit_common+0x6b0/0xb90
[  494.039146][ T5997] zl10353_read_register: readreg error (reg=127, ret==0)
[  494.047699][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  494.055040][ T5833] kye 0003:0458:501A.0021: unknown main item tag 0x0
[  494.069878][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  494.081197][ T5833] kye 0003:0458:501A.0021: unknown main item tag 0x0
[  494.098387][   T31]  ? folios_put_refs+0x559/0x640
[  494.106161][ T5833] kye 0003:0458:501A.0021: unknown main item tag 0x0
[  494.115681][   T31]  ? __pfx_find_lock_entries+0x10/0x10
[  494.126748][ T5833] kye 0003:0458:501A.0021: unknown main item tag 0x0
[  494.137258][   T31]  __filemap_get_folio+0x139/0xaf0
[  494.149310][   T31]  ? mlock_drain_local+0x28e/0x490
[  494.154563][ T5833] kye 0003:0458:501A.0021: unknown main item tag 0x0
[  494.169383][   T31]  truncate_inode_pages_range+0x3ed/0xda0
[  494.183981][ T5833] kye 0003:0458:501A.0021: hidraw0: USB HID v0.00 Device [HID 0458:501a] on usb-dummy_hcd.6-1/input0
[  494.197187][ T5833] kye 0003:0458:501A.0021: tablet-enabling feature report not found
[  494.202452][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.213301][ T5997] usb 4-1: USB disconnect, device number 21
[  494.230709][T17050] loop1: detected capacity change from 0 to 40427
[  494.237296][   T31]  ? kasan_save_stack+0x4d/0x60
[  494.241038][ T5833] kye 0003:0458:501A.0021: tablet enabling failed
[  494.249685][   T31]  ? kasan_save_stack+0x3e/0x60
[  494.254667][   T31]  ? deactivate_locked_super+0xbc/0x130
[  494.272036][T17050] F2FS-fs (loop1): invalid crc value
[  494.288516][   T31]  ? cleanup_mnt+0x425/0x4c0
[  494.299402][   T31]  ? task_work_run+0x1d4/0x260
[  494.304226][   T31]  ? exit_to_user_mode_loop+0xec/0x110
[  494.326643][ T5833] usb 7-1: USB disconnect, device number 12
[  494.349644][   T31]  ? do_syscall_64+0x2bd/0x3b0
[  494.364750][   T31]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  494.385014][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.399384][   T31]  ? __lock_acquire+0xab9/0xd20
[  494.404325][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  494.432479][T17076] fido_id[17076]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  494.448288][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  494.459434][   T31]  evict+0x517/0x9c0
[  494.467601][   T31]  ? __pfx_evict+0x10/0x10
[  494.480105][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.498134][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.516433][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  494.534269][   T31]  evict_inodes+0x636/0x6c0
[  494.538909][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.553673][T17050] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  494.562539][   T31]  ? __pfx_evict_inodes+0x10/0x10
[  494.574001][   T31]  generic_shutdown_super+0x9a/0x2c0
[  494.591823][   T31]  kill_block_super+0x44/0x90
[  494.601866][   T31]  deactivate_locked_super+0xbc/0x130
[  494.614253][   T31]  cleanup_mnt+0x425/0x4c0
[  494.631664][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.665541][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-diskseq/1078.tmp-b7:1' failed: Read-only file system
[  494.667952][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  494.687668][ T6028] udevd[6028]: symlink '../../loop1' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:1' failed: Read-only file system
[  494.698622][T15746] udevd[15746]: symlink '../../loop3' '/dev/disk/by-diskseq/1076.tmp-b7:3' failed: Read-only file system
[  494.715244][   T31]  task_work_run+0x1d4/0x260
[  494.719994][   T31]  ? __pfx_task_work_run+0x10/0x10
[  494.725211][   T31]  ? __x64_sys_umount+0x122/0x160
[  494.730295][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  494.735800][   T31]  exit_to_user_mode_loop+0xec/0x110
[  494.741427][   T31]  do_syscall_64+0x2bd/0x3b0
[  494.746035][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  494.751555][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.759159][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.764924][   T31]  ? exc_page_fault+0x9f/0xf0
[  494.770070][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.775989][   T31] RIP: 0033:0x7feb9f18fc57
[  494.782012][   T31] RSP: 002b:00007ffe080a8d78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  494.793675][   T31] RAX: 0000000000000000 RBX: 00007feb9f210925 RCX: 00007feb9f18fc57
[  494.805228][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe080a8e30
[  494.826383][T15746] udevd[15746]: symlink '../../loop6' '/dev/disk/by-diskseq/1075.tmp-b7:6' failed: Read-only file system
[  494.837856][   T31] RBP: 00007ffe080a8e30 R08: 0000000000000000 R09: 0000000000000000
[  494.846766][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe080a9ec0
[  494.863060][   T31] R13: 00007feb9f210925 R14: 0000000000050a00 R15: 00007ffe080a9f00
[  494.871250][   T31]  </TASK>
[  494.874360][   T31] INFO: task syz.5.3148:13310 blocked for more than 144 seconds.
[  494.884204][   T31]       Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0
[  494.891962][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  494.911325][   T31] task:syz.5.3148      state:D stack:28720 pid:13310 tgid:13309 ppid:5846   task_flags:0x400040 flags:0x00004004
[  494.923619][   T31] Call Trace:
[  494.926915][   T31]  <TASK>
[  494.932532][   T31]  __schedule+0x16f5/0x4d00
[  494.937097][   T31]  ? schedule+0x165/0x360
[  494.945753][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1077.tmp-b7:7' failed: Read-only file system
[  494.950801][   T31]  ? __pfx___schedule+0x10/0x10
[  494.963499][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  494.969171][   T31]  ? schedule+0x91/0x360
[  494.974703][   T31]  schedule+0x165/0x360
[  494.978917][   T31]  ? rwsem_down_read_slowpath+0x568/0x880
[  494.980815][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1077.tmp-b7:7' failed: Read-only file system
[  494.987657][   T31]  schedule_preempt_disabled+0x13/0x30
[  495.003560][   T31]  rwsem_down_read_slowpath+0x552/0x880
[  495.009206][   T31]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[  495.015706][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.021926][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.027631][   T31]  down_read+0x98/0x2e0
[  495.032262][   T31]  super_lock+0x2a9/0x3b0
[  495.036103][T15746] udevd[15746]: symlink '../../loop7' '/dev/disk/by-diskseq/1079.tmp-b7:7' failed: Read-only file system
[  495.036606][   T31]  ? __pfx_super_lock+0x10/0x10
[  495.063100][   T31]  ? do_raw_spin_lock+0x121/0x290
[  495.073260][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.078951][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.087166][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  495.097006][   T31]  __iterate_supers+0x126/0x250
[  495.103814][   T31]  ? __pfx_sync_inodes_one_sb+0x10/0x10
[  495.113257][   T31]  ksys_sync+0x94/0x150
[  495.117482][   T31]  ? __pfx_ksys_sync+0x10/0x10
[  495.124261][   T31]  ? rcu_is_watching+0x15/0xb0
[  495.129036][   T31]  ? arch_syscall_is_vdso_sigreturn+0x120/0x1a0
[  495.139222][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.145113][   T31]  ? syscall_user_dispatch+0x4f/0x90
[  495.150684][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.156349][   T31]  __ia32_sys_sync+0xe/0x20
[  495.161012][   T31]  do_syscall_64+0xfa/0x3b0
[  495.165533][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  495.172802][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.178917][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.184645][   T31]  ? exc_page_fault+0x9f/0xf0
[  495.189516][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.196225][   T31] RIP: 0033:0x7fa7c638e929
[  495.200730][   T31] RSP: 002b:00007fa7c72cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  495.209178][   T31] RAX: ffffffffffffffda RBX: 00007fa7c65b5fa0 RCX: 00007fa7c638e929
[  495.217307][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  495.225666][   T31] RBP: 00007fa7c65b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  495.233854][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.242153][   T31] R13: 0000000000000000 R14: 00007fa7c65b5fa0 R15: 00007ffd9b7e2de8
[  495.250267][   T31]  </TASK>
[  495.253374][   T31] 
[  495.253374][   T31] Showing all locks held in the system:
[  495.261577][   T31] 2 locks held by ksoftirqd/0/15:
[  495.266682][   T31] 1 lock held by khungtaskd/31:
[  495.270105][ T5853] syz-executor: attempt to access beyond end of device
[  495.270105][ T5853] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  495.272472][   T31]  #0: ffffffff8e13f160 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  495.296273][ T5853] CPU: 1 UID: 0 PID: 5853 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  495.296307][ T5853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  495.296323][ T5853] Call Trace:
[  495.296332][ T5853]  <TASK>
[  495.296342][ T5853]  dump_stack_lvl+0x189/0x250
[  495.296383][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[  495.296411][ T5853]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  495.296450][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[  495.296484][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.296512][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  495.296550][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  495.296589][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.296617][ T5853]  ? f2fs_hw_is_readonly+0x39b/0x470
[  495.296661][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[  495.296706][ T5853]  f2fs_write_end_io+0x495/0x810
[  495.296730][ T5853]  ? blkg_put+0x22/0x240
[  495.296781][ T5853]  __submit_merged_bio+0x27a/0x6a0
[  495.296826][ T5853]  __submit_merged_write_cond+0x255/0x530
[  495.296875][ T5853]  f2fs_write_data_pages+0x261d/0x3000
[  495.296914][ T5853]  ? __lock_acquire+0xab9/0xd20
[  495.296981][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  495.297019][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297107][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297136][ T5853]  ? stack_depot_save_flags+0x40/0x900
[  495.297198][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297227][ T5853]  ? __lock_acquire+0xab9/0xd20
[  495.297262][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297291][ T5853]  ? do_raw_spin_lock+0x121/0x290
[  495.297335][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297368][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297396][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  495.297434][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  495.297476][ T5853]  do_writepages+0x32e/0x550
[  495.297511][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297545][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297573][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  495.297616][ T5853]  filemap_fdatawrite+0x191/0x230
[  495.297647][ T5853]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  495.297728][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.297763][ T5853]  ? do_raw_spin_unlock+0x122/0x240
[  495.297806][ T5853]  f2fs_sync_dirty_inodes+0x31f/0x830
[  495.297855][ T5853]  f2fs_write_checkpoint+0x94a/0x1de0
[  495.297910][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  495.297994][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[  495.298027][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[  495.298061][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[  495.298084][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[  495.298132][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.298160][ T5853]  ? shrinker_free+0x2ce/0x3e0
[  495.298202][ T5853]  deactivate_locked_super+0xbc/0x130
[  495.298230][ T5853]  cleanup_mnt+0x425/0x4c0
[  495.298253][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.298282][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  495.298326][ T5853]  task_work_run+0x1d4/0x260
[  495.298370][ T5853]  ? __pfx_task_work_run+0x10/0x10
[  495.298407][ T5853]  ? __x64_sys_umount+0x122/0x160
[  495.298444][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[  495.298476][ T5853]  exit_to_user_mode_loop+0xec/0x110
[  495.298504][ T5853]  do_syscall_64+0x2bd/0x3b0
[  495.298527][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  495.298566][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.298589][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.298618][ T5853]  ? exc_page_fault+0x9f/0xf0
[  495.298660][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.298685][ T5853] RIP: 0033:0x7f472238fc57
[  495.298707][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  495.298728][ T5853] RSP: 002b:00007ffd27b4b408 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  495.298753][ T5853] RAX: 0000000000000000 RBX: 00007f4722410925 RCX: 00007f472238fc57
[  495.298771][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd27b4b4c0
[  495.298787][ T5853] RBP: 00007ffd27b4b4c0 R08: 0000000000000000 R09: 0000000000000000
[  495.298803][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd27b4c550
[  495.298820][ T5853] R13: 00007f4722410925 R14: 0000000000078c15 R15: 00007ffd27b4c590
[  495.298864][ T5853]  </TASK>
[  495.298874][ T5853] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  495.409756][   T31] 2 locks held by getty/5597:
[  495.750465][   T31]  #0: ffff88803035c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  495.760358][   T31]  #1: ffffc900036cb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  495.770918][   T31] 2 locks held by syz-executor/5853:
[  495.776212][   T31]  #0: ffff88802952c0e0 (&type->s_umount_key#83){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0
[  495.787285][   T31]  #1: ffffffff8e144b40 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[  495.797374][   T31] 1 lock held by syz-executor/5855:
[  495.802855][   T31]  #0: ffff8880790940e0 (&type->s_umount_key#85){++++}-{4:4}, at: deactivate_super+0xa9/0xe0
[  495.814643][   T31] 3 locks held by kworker/u8:9/5978:
[  495.820026][   T31]  #0: ffff8880b8639f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xad/0x140
[  495.830466][   T31]  #1: ffff8880b8623f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39a/0x6d0
[  495.842004][   T31]  #2: ffff888050560768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x460
[  495.852166][   T31] 1 lock held by syz.5.3148/13310:
[  495.857311][   T31]  #0: ffff8880790940e0 (&type->s_umount_key#85){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  495.868313][   T31] 
[  495.870824][   T31] =============================================
[  495.870824][   T31] 
[  495.879241][   T31] NMI backtrace for cpu 0
[  495.879261][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  495.879290][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  495.879305][   T31] Call Trace:
[  495.879314][   T31]  <TASK>
[  495.879324][   T31]  dump_stack_lvl+0x189/0x250
[  495.879357][   T31]  ? __wake_up_klogd+0xd9/0x110
[  495.879395][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.879427][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  495.879457][   T31]  ? __pfx__printk+0x10/0x10
[  495.879508][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  495.879546][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  495.879576][   T31]  ? _printk+0xcf/0x120
[  495.879616][   T31]  ? __pfx__printk+0x10/0x10
[  495.879654][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  495.879682][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  495.879719][   T31]  watchdog+0xfee/0x1030
[  495.879745][   T31]  ? watchdog+0x1de/0x1030
[  495.879778][   T31]  kthread+0x711/0x8a0
[  495.879822][   T31]  ? __pfx_watchdog+0x10/0x10
[  495.879844][   T31]  ? __pfx_kthread+0x10/0x10
[  495.879877][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.879911][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  495.879947][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  495.879975][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  495.880013][   T31]  ? __pfx_kthread+0x10/0x10
[  495.880050][   T31]  ret_from_fork+0x3fc/0x770
[  495.880081][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  495.880114][   T31]  ? __switch_to_asm+0x39/0x70
[  495.880147][   T31]  ? __switch_to_asm+0x33/0x70
[  495.880180][   T31]  ? __pfx_kthread+0x10/0x10
[  495.880217][   T31]  ret_from_fork_asm+0x1a/0x30
[  495.880270][   T31]  </TASK>
[  496.049760][   T31] Sending NMI from CPU 0 to CPUs 1:
[  496.054993][    C1] NMI backtrace for cpu 1
[  496.055009][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  496.055035][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  496.055050][    C1] RIP: 0010:kasan_save_free_info+0x3f/0x50
[  496.055089][    C1] Code: 48 01 f7 0f 94 c1 08 c1 75 2b 53 48 c1 ee 03 48 b8 00 00 00 00 00 fc ff df 48 8d 1c 06 80 3c 06 fa 75 03 c6 03 fb 48 83 c7 08 <31> f6 e8 6a ce ff ff c6 03 fa 5b e9 4c 9f ec fe cc 90 90 90 90 90
[  496.055107][    C1] RSP: 0018:ffffc900001d7848 EFLAGS: 00000282
[  496.055126][    C1] RAX: dffffc0000000000 RBX: ffffed1006447040 RCX: 0000000000000000
[  496.055143][    C1] RDX: 0000000000000004 RSI: 1ffff11006447040 RDI: ffff888032238208
[  496.055158][    C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed1006447040
[  496.055174][    C1] R10: dffffc0000000000 R11: fffffbfff1f43dff R12: ffff88801a441780
[  496.055191][    C1] R13: 0000000000000000 R14: ffff88801a441780 R15: ffffea0000c88e00
[  496.055209][    C1] FS:  0000000000000000(0000) GS:ffff888125d1b000(0000) knlGS:0000000000000000
[  496.055227][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  496.055242][    C1] CR2: 00007f59d7781ab8 CR3: 0000000075631000 CR4: 0000000000350ef0
[  496.055259][    C1] Call Trace:
[  496.055267][    C1]  <TASK>
[  496.055276][    C1]  __kasan_slab_free+0x62/0x70
[  496.055301][    C1]  ? slab_free_after_rcu_debug+0x60/0x2a0
[  496.055337][    C1]  kfree+0x18e/0x440
[  496.055362][    C1]  ? rcu_core+0xc34/0x1710
[  496.055387][    C1]  slab_free_after_rcu_debug+0x60/0x2a0
[  496.055423][    C1]  ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[  496.055457][    C1]  ? rcu_core+0xc34/0x1710
[  496.055481][    C1]  rcu_core+0xca8/0x1710
[  496.055502][    C1]  ? __lock_acquire+0xab9/0xd20
[  496.055539][    C1]  ? __pfx_rcu_core+0x10/0x10
[  496.055569][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.055596][    C1]  ? rcu_qs+0xc4/0x170
[  496.055619][    C1]  ? __pfx_rcu_qs+0x10/0x10
[  496.055643][    C1]  ? sched_clock_cpu+0x74/0x430
[  496.055675][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.055700][    C1]  ? rcu_softirq_qs+0xf2/0x350
[  496.055724][    C1]  ? __pfx_rcu_softirq_qs+0x10/0x10
[  496.055758][    C1]  handle_softirqs+0x286/0x870
[  496.055783][    C1]  ? schedule+0x165/0x360
[  496.055817][    C1]  ? run_ksoftirqd+0x9b/0x100
[  496.055850][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  496.055879][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  496.055903][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.055932][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  496.055956][    C1]  run_ksoftirqd+0x9b/0x100
[  496.055985][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  496.056020][    C1]  smpboot_thread_fn+0x542/0xa60
[  496.056046][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  496.056078][    C1]  kthread+0x711/0x8a0
[  496.056112][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  496.056138][    C1]  ? __pfx_kthread+0x10/0x10
[  496.056168][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.056196][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  496.056227][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.056252][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  496.056286][    C1]  ? __pfx_kthread+0x10/0x10
[  496.056318][    C1]  ret_from_fork+0x3fc/0x770
[  496.056344][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  496.056372][    C1]  ? __switch_to_asm+0x39/0x70
[  496.056401][    C1]  ? __switch_to_asm+0x33/0x70
[  496.056430][    C1]  ? __pfx_kthread+0x10/0x10
[  496.056463][    C1]  ret_from_fork_asm+0x1a/0x30
[  496.056505][    C1]  </TASK>
[  496.167164][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  496.167189][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  496.167219][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  496.167236][   T31] Call Trace:
[  496.167246][   T31]  <TASK>
[  496.167258][   T31]  dump_stack_lvl+0x99/0x250
[  496.167293][   T31]  ? __asan_memcpy+0x40/0x70
[  496.167321][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  496.167352][   T31]  ? __pfx__printk+0x10/0x10
[  496.167397][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167433][   T31]  panic+0x2db/0x790
[  496.167462][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167498][   T31]  ? __pfx_panic+0x10/0x10
[  496.167527][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167555][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  496.167598][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167626][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  496.167653][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  496.167690][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167725][   T31]  watchdog+0x102d/0x1030
[  496.167753][   T31]  ? watchdog+0x1de/0x1030
[  496.167787][   T31]  kthread+0x711/0x8a0
[  496.167829][   T31]  ? __pfx_watchdog+0x10/0x10
[  496.167852][   T31]  ? __pfx_kthread+0x10/0x10
[  496.167885][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167918][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  496.167955][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  496.167986][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  496.168024][   T31]  ? __pfx_kthread+0x10/0x10
[  496.168062][   T31]  ret_from_fork+0x3fc/0x770
[  496.168093][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  496.168128][   T31]  ? __switch_to_asm+0x39/0x70
[  496.168162][   T31]  ? __switch_to_asm+0x33/0x70
[  496.168195][   T31]  ? __pfx_kthread+0x10/0x10
[  496.168233][   T31]  ret_from_fork_asm+0x1a/0x30
[  496.168286][   T31]  </TASK>
[  496.581045][   T31] Kernel Offset: disabled
[  496.585359][   T31] Rebooting in 86400 seconds..