last executing test programs:

2m34.252729731s ago: executing program 0 (id=3495):
r0 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="08010000000000002900000002000000ae"], 0x108}}], 0x2, 0xc040)

2m34.046986605s ago: executing program 0 (id=3497):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000500)={'gre0\x00', &(0x7f0000000280)={'tunl0\x00', 0x0, 0x710, 0x1100, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x0, 0x0, 0x5, 0x2f, 0x0, @empty, @loopback}}}})

2m33.76229733s ago: executing program 0 (id=3499):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xd, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000100)={0x2, @pix={0x20, 0xffff, 0x52424752, 0x0, 0x0, 0x4, 0xb}})

2m33.603394783s ago: executing program 4 (id=3500):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./bus\x00', 0x1800840, &(0x7f0000000540)={[{@numtail}, {@shortname_win95}, {@numtail}, {@rodir}, {@fat=@check_strict}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@shortname_mixed}, {@fat=@nfs}, {@numtail}, {@uni_xlateno}, {@utf8no}, {@shortname_win95}, {@fat=@nfs_stale_rw}]}, 0x1, 0x360, &(0x7f0000001fc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)

2m33.598069093s ago: executing program 0 (id=3501):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./bus\x00', 0x800, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x1, 0x152a, &(0x7f0000003000)="$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")
mount(0x0, &(0x7f0000000640)='./file0/../file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)

2m33.079087603s ago: executing program 0 (id=3504):
syz_usb_connect(0x0, 0x24, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x10, 0x55, 0xd4, 0x40, 0x41e, 0x400a, 0x49f8, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x3a, 0x0, 0x0, 0xcf, 0x9, 0xa4}}]}}]}}, 0x0)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)

2m32.663355131s ago: executing program 4 (id=3506):
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000240)=0x101, 0x6, 0x1)
set_mempolicy_home_node(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0)

2m32.388590707s ago: executing program 0 (id=3509):
r0 = syz_init_net_socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_bt_cmtp_CMTPCONNDEL(r0, 0x400443c9, &(0x7f0000000040)={@none})

2m32.329492168s ago: executing program 4 (id=3511):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x2800, 0x0)
mmap$fb(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x0)

2m31.903305156s ago: executing program 32 (id=3509):
r0 = syz_init_net_socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_bt_cmtp_CMTPCONNDEL(r0, 0x400443c9, &(0x7f0000000040)={@none})

2m31.884327786s ago: executing program 4 (id=3515):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./bus\x00', 0x800, &(0x7f0000000200)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c6b6565705f6c6173745f646f74732c696f636861727365743d63703835302c7379735f747a2c696f636861727365743d69736f383835392d31352c6572726f72733d636f6e74696e75652c74696d655f6f66667365743d3078303030303030303030303030303030382c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c646d61736b3d30303030303030303030303030303030303030303031332c646973636172642c646973636172642c00e0669f62a389f94dcc2fda2101686c10656f728020f5a616130a1fc56df99c298f3ad694c74a629be0af8c838281"], 0x1, 0x152a, &(0x7f0000003000)="$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")
mount(0x0, &(0x7f0000000640)='./file0/../file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)

2m31.460292314s ago: executing program 4 (id=3519):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000300)='source', &(0x7f0000000180)='4.::\x00\x8e\xf7\xd4\t\xe1\xae\x19\xe5\xf7c\x84\x9c\x06\x00\x00\x00\x11\x01\xf2 \xec\xbe#\'S\xc4\xbd\xb5\x1e\x98MM\x06\x1a\x7f5U\x18\x90\x99\xb2\xfa\')Z\x9ew\xae\xe8\xdd\b\t\xf0\xc4\xbfj\xb6\x88/)~\x93E\x1d4\xa7\xcb\xeb\x0f\xd4(\xb6>\x87\xc3\t\xb0\x80\xf7\xe6\x8b?\xa4\xb3\b\x00\x81\xbe\xea\x1f\xfe\xed\x9d\x1a\x8aQ\xafQ\x06\x0fJ\xc0\xc0=}\x7f\xaeB\xb1\xed\xa4\xf3c#\xbe\b\x1f\xa4L[\xfa\x01Uu\xe0\x8b\x94E\xda\xd9j\x93\xc8~\xd9\x82\x8f\xcam\x17\xa2\xed\xf3\xc3_h\xfc6\t\x96@\xaf\xe6\xd0!)\xc3\xcfe\xe1g\xe7\xe5F\xbdC\xd9$\x9b@\xaf\xc2j1p\xa9\xb2d\x92\x8fo\xcbg\x9fZ\xd7\xef\xb2z\xf5\x0fq\x7f\b\xc2\xa7\x90\xc5\xf5Y\xbc\xf1s\x93X\xb6\xeb\x86&\xa7\x14%B', 0x0)

2m30.63543796s ago: executing program 4 (id=3525):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f00000002c0)={0x0, 0x5a})

2m30.175448499s ago: executing program 33 (id=3525):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f00000002c0)={0x0, 0x5a})

3.162039454s ago: executing program 1 (id=5160):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x3, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="180200000200000000000000000000008500000087000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.986891846s ago: executing program 1 (id=5164):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000001980)=[{{&(0x7f0000000240)={0xa, 0x4e22, 0x8, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x7fff}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=[@rthdr={{0x24, 0x29, 0x39, {0x4, 0x2, 0x2, 0x1, 0x0, [@mcast2]}}}], 0x24}}], 0x1, 0x44010)

2.894203168s ago: executing program 6 (id=5165):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
close(r0)

2.806810779s ago: executing program 1 (id=5167):
syz_usb_connect(0x2, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x2, &(0x7f0000000180)=ANY=[]}]})
syz_usb_connect(0x0, 0x5a, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000ec13b2106d04f308280b0102030109024800010000000009046900000e010000084101", @ANYBLOB="32d33cd83c2d"], 0x0)

2.667853631s ago: executing program 6 (id=5169):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
ppoll(&(0x7f0000000180)=[{r0, 0x1c00}], 0x1, &(0x7f00000002c0)={0x0, 0x989680}, 0x0, 0x0)

2.507657753s ago: executing program 5 (id=5172):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=', @ANYBLOB='z'])

2.470577134s ago: executing program 6 (id=5174):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xaf)

2.249653277s ago: executing program 5 (id=5176):
syz_mount_image$reiserfs(&(0x7f0000001100), &(0x7f0000000040)='./bus\x00', 0x2, &(0x7f0000000180)={[{@balloc_test4}, {@usrjquota_file, 0x4}, {@acl}, {@notail}, {@usrjquota, 0x3d}]}, 0x2, 0x110f, &(0x7f0000001140)="$eJzs2LFqFEEYB/D/7B2Y7mTTL4IWFhISzs4qRYRrrW0kpDJVrooI4rv4OJLKPuQBLAKWwshusp5IIGAuhoPfD2Z3+OabmW/KmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCVV/1nu0naMdIkKUnXnS0uknRj/PHXSZOSN0eL5cHJ/PUyyWRIL33rZ/XT0u493Wrn7bzda19u7z9rl6cf3r87Pj46uV6mpMv55foPUq7rudHW+vcDAACATVHvbPb3ktP/uz8AAABwm7U+JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8gzpb9dskP2utaZKUpOvOFhdJuocsEAAAALizkiZvZzfFMzwDrLzIt1kZ4mP7Ufqc3XwZ5j9apR429184AAAAbJTprRnlj/v480xTa/00jj3JNDs7V/3+1w98308mpwfZ/X0n/zx8zy8/Ho6t1Mk9nQcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAXO3BAAgAAACDo/+t2BAoAAAAAAAAAAAAAAAAAAAAAAB8FAAD//6zC3aE=")
symlink(&(0x7f000000a900)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.150228879s ago: executing program 6 (id=5178):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x17}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}]}], {0x14}}, 0xd4}}, 0x0)

2.01947392s ago: executing program 6 (id=5180):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x204092, &(0x7f0000000200), 0x6, 0x521, &(0x7f0000001140)="$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")
quotactl$Q_QUOTAOFF(0xffffffff80000700, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x8cffffff00000000)

1.730283095s ago: executing program 2 (id=5183):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r0, 0xc00864c0, &(0x7f0000000140))

1.633515536s ago: executing program 2 (id=5185):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$setownex(r0, 0xf, &(0x7f000000af00)={0x3})

1.534220748s ago: executing program 2 (id=5186):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x64, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_DEV={0x14, 0x3, 'netdevsim0\x00'}]}, @NFTA_CHAIN_POLICY={0x8}]}], {0x14}}, 0xac}}, 0x0)

1.322839481s ago: executing program 2 (id=5187):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x101, 0x3e8}, 0x10)

1.308796621s ago: executing program 3 (id=5188):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x400)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x0, 0xcc, 0x0}, &(0x7f0000000240)="238d7acf0800", 0x0, 0x0, 0x0, 0x0, 0x0})

1.140839763s ago: executing program 2 (id=5189):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x20, 0x2f, 0xb, 0x0, 0x0, {0x7}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x0, 0x0, 0x0, @str='\x88H'}]}]}, 0x20}}, 0x20000010)

1.122401804s ago: executing program 1 (id=5190):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='gfs2\x00', 0x8000, 0x0)

1.095052054s ago: executing program 3 (id=5191):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x29, 0x18, 0x0, 0x0)

1.084926794s ago: executing program 5 (id=5192):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r0, 0x27, 0x12, 0x0, &(0x7f0000000880)="f8ad1dcc02cb29dcc8003200810066a286dd", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)

982.627126ms ago: executing program 6 (id=5193):
syz_mount_image$reiserfs(&(0x7f0000001100), &(0x7f0000001140)='./file0\x00', 0x0, &(0x7f0000001180), 0x1, 0x10ef, &(0x7f00000011c0)="$eJzs2DGLE0EYBuB3Nukjc/0iaGEhxx3xD1yhkMbC2kaOq7zqUin3c/w5cpX9cb0pAvbKkGwUCYhkMSDPA8t8+7LzzU45EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGimydeSnHRJHbIuSUn6/m7xkKQf8kefJ11K3lwtli9v5q+W209b1qW0sk1LPX9S67zO63l9cXLxtC4/fHz/7vr66mbbpqTP/fr2Mq9Xo26lrT0ZtSMAAAD8H74fbHbk9QEAAIA/Ge0iAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAEdSi6JCXp+7vFQ5L+uL8FAAAAHKiky9vZvnxzDfDT83yZlV3exm+l1Wf5tGc+AAAA8HfKL+fxZ5nuzuUte5xpTk8379shq4tkkuTstz7369vL4Sn/cgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPxgB44FAAAAAIT5W6fRsQEAAAAAAAAAAAAAADBVAAAA//8mRNS4")
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)

893.181567ms ago: executing program 1 (id=5194):
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043c07aaaaaaaaaa1005074f"], 0xa)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

833.756988ms ago: executing program 3 (id=5195):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000e80)=@nat={'nat\x00', 0x8, 0x5, 0x628, 0x0, 0x208, 0xffffffff, 0x2f8, 0x0, 0x558, 0x558, 0xffffffff, 0x558, 0x558, 0x5, 0x0, {[{{@uncond, 0xb7030000, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x1d, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv6=@private0, @port, @gre_key}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, [0x80000000, 0xffffffff, 0x0, 0xff000000], [0xff, 0x0, 0xffffff00, 0xffffffff], 'veth0_to_hsr\x00', 'nr0\x00', {}, {0xff}, 0x33, 0x4, 0x4, 0x42}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@connlabel={{0x28}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@loopback, @ipv6=@dev, @icmp_id, @icmp_id}}}, {{@ipv6={@mcast1, @local, [], [], 'wg1\x00', 'virt_wifi0\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv4, @icmp_id, @icmp_id}}}, {{@ipv6={@rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @empty}, [], [], 'dummy0\x00', 'syzkaller0\x00', {}, {}, 0x0, 0x0, 0x7}, 0x0, 0x218, 0x260, 0x0, {}, [@common=@inet=@sctp={{0x148}}, @common=@mh={{0x28}, {"0c06"}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@multicast1, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @icmp_id, @icmp_id}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x688)

799.717958ms ago: executing program 2 (id=5196):
syz_mount_image$reiserfs(&(0x7f0000001100), &(0x7f0000000000)='./file0\x00', 0xc0c2, &(0x7f0000000900)={[{@acl}, {@usrjquota_file, 0x4}, {@acl}, {@balloc_hashed_reloc}, {@usrjquota, 0x3d}]}, 0x2, 0x111a, &(0x7f00000033c0)="$eJzs2LFqFEEYB/D/7B0Yq5NNvwhaWEhIODurFBGutbaRkMpUuSoiqO/i40gq+5AHsAhYCiN7uTUigSh3IRz8fjC7w8w3M9+U3wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuvOw/203SDiNNkpJ03dnsIkk3jD/6OmpS8vpoNj84mb6aJxktwkvf+lX9srR7T7baaTtt99oX2/tP2/np+3dvj4+PTpbblHQ5v1z/RcoynxttlfUfCAAAABuirmzy95bjofMvFffq5wMAAAC3WfuDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB/qpOkLvttkp+11jRJStJ1Z7OLJN095wgAAACspqTJm8lN41k8A1x7nm+Tkk/Lub79KH3Mbr4s1j+4Dj1s8vDuUwcAAIANMr41ovxRjz/LOLXWj8Pc44yzs3PV73/9xPf9ZHR6kN3fNfnnxff88sPh0Eod3dF9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bc7cEACAAAAIOj/63YECgAAAAAAAAAAAAAAAAAAAAAAAADwUQAAAP//5vjfKg==")
setxattr$system_posix_acl(&(0x7f0000000280)='.\x00', &(0x7f0000000200)='system.posix_acl_default\x00', &(0x7f0000000340)={{}, {}, [], {0x4, 0x6}, [{0x8, 0x4}]}, 0x2c, 0x0)

614.201371ms ago: executing program 1 (id=5197):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)=ANY=[@ANYBLOB='coherency=buffered,heartbeat=none,coherency=full,commit=00000000000000000004,heartbeat=none,localflocks,intr,dir_resv_level=00000000000000\x00\x000000,noacl,resv_level=00000000000000000001,journal_async_commit,commit=00000000000000000249,\x00'], 0x9, 0x442b, &(0x7f0000004480)="$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")
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000100)='.\x00', 0x1800e1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

568.993202ms ago: executing program 3 (id=5198):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000009c0)=ANY=[@ANYBLOB="c00100001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000480000004800128009000100766c616e00000000380002800c0003000000000005000000280004800c200100ff0f0000000000000c00010006000000050000000c000100060000000900000014000300766c616e30"], 0x1c0}, 0x1, 0xba01}, 0x20048050)

535.817862ms ago: executing program 5 (id=5199):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xfffffffa}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x60}}, 0x0)

257.898727ms ago: executing program 3 (id=5200):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)

232.565147ms ago: executing program 5 (id=5201):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_int(r0, 0x29, 0x48, 0x0, &(0x7f0000000300))

2.55758ms ago: executing program 5 (id=5202):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$inet_buf(r0, 0x29, 0x10, 0x0, 0x0)

0s ago: executing program 3 (id=5203):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000000c0)={0xf0f026, 0x200000b})

kernel console output (not intermixed with test programs):

 552.800675][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  552.830702][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  552.840246][T13792] loop2: detected capacity change from 0 to 32768
[  552.844800][T13711] XFS (loop1): Ending clean mount
[  552.868759][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  552.924681][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  552.944037][T13792] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  552.944037][T13792] 
[  552.978464][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  552.984150][T13792] ERROR: (device loop2): remounting filesystem as read-only
[  552.998106][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  553.019575][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  553.092722][ T4274] XFS (loop1): Unmounting Filesystem
[  553.115595][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  553.151810][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  553.171066][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  553.215165][T12868] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  553.452177][T13075] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  553.494334][T13075] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  553.517741][T13833] loop3: detected capacity change from 0 to 32768
[  553.544161][   T48] Bluetooth: hci1: command 0x0419 tx timeout
[  553.684183][T13833] XFS (loop3): Mounting V5 Filesystem
[  553.758755][T13075] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  553.872428][T13833] XFS (loop3): Ending clean mount
[  553.897417][T13075] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  553.960553][ T7893] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[  554.085866][ T4280] XFS (loop3): Unmounting Filesystem
[  554.163810][ T7893] usb 2-1: Using ep0 maxpacket: 16
[  554.182914][ T7893] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 1024
[  554.195173][ T4364] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  554.221453][ T4364] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  554.273016][ T7893] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 1024
[  554.295152][ T7893] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  554.351270][ T7893] usb 2-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  554.376809][ T7893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.397626][ T7893] usb 2-1: Product: syz
[  554.407529][ T7893] usb 2-1: Manufacturer: syz
[  554.417521][ T7893] usb 2-1: SerialNumber: syz
[  554.440635][ T7893] usb 2-1: config 0 descriptor??
[  554.465394][T13860] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  554.482762][T13860] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  554.552820][    C1] port100 2-1:0.0: NFC: Urb failure (status -71)
[  554.567407][    C1] port100 2-1:0.0: NFC: Urb failure (status -71)
[  554.576717][ T7893] port100 2-1:0.0: NFC: Could not get supported command types
[  554.823219][    T7] usb 2-1: USB disconnect, device number 97
[  554.839134][T12868] 8021q: adding VLAN 0 to HW filter on device batadv0
[  555.211440][T13923] netlink: 'syz.2.3586': attribute type 13 has an invalid length.
[  555.237081][T13923] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3586'.
[  555.268490][T13923] syz_tun: refused to change device tx_queue_len
[  555.286924][T13923] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  555.384995][   T40] device hsr_slave_0 left promiscuous mode
[  555.404224][   T40] device hsr_slave_1 left promiscuous mode
[  555.450058][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  555.477689][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[  555.510630][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  555.518445][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[  555.582482][   T40] device bridge_slave_1 left promiscuous mode
[  555.596573][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  555.628568][   T40] device bridge_slave_0 left promiscuous mode
[  555.634879][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  555.838597][   T40] device veth1_macvtap left promiscuous mode
[  555.848885][   T40] device veth0_macvtap left promiscuous mode
[  555.870642][   T40] device veth1_vlan left promiscuous mode
[  555.885462][   T40] device veth0_vlan left promiscuous mode
[  556.661875][T13982] loop3: detected capacity change from 0 to 512
[  556.737473][T13982] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  556.846302][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  557.175646][   T40] team0 (unregistering): Port device team_slave_1 removed
[  557.227692][   T40] team0 (unregistering): Port device team_slave_0 removed
[  557.279587][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  557.334866][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  557.916454][   T40] bond0 (unregistering): Released all slaves
[  558.002042][T13962] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3594'.
[  558.053542][T13075] 8021q: adding VLAN 0 to HW filter on device bond0
[  558.127533][T13075] 8021q: adding VLAN 0 to HW filter on device team0
[  558.139241][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  558.161421][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  558.240428][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  558.250733][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  558.298294][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  558.305509][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  558.361134][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  558.394090][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  558.425199][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  558.432405][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  558.474068][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  558.534697][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  558.555416][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  558.579227][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  558.641127][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  558.695080][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  558.714328][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  558.743393][T14026] loop2: detected capacity change from 0 to 128
[  558.754049][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  558.763784][T14023] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  558.770364][T14023] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  558.786962][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  558.835891][T14023] vhci_hcd vhci_hcd.0: Device attached
[  558.863229][T14024] vhci_hcd: connection closed
[  558.864673][T13480] vhci_hcd: stop threads
[  558.885822][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  558.896325][T13480] vhci_hcd: release socket
[  558.901470][T13480] vhci_hcd: disconnect device
[  558.906818][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  558.939591][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  558.966075][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  559.010108][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  559.063415][T13075] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  559.134200][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  559.153857][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  559.163022][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  559.187607][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  559.210260][T12868] device veth0_vlan entered promiscuous mode
[  559.243259][T12868] device veth1_vlan entered promiscuous mode
[  559.269616][T14017] loop3: detected capacity change from 0 to 32768
[  559.298818][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  559.310656][T14017] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.3608 (14017)
[  559.338663][T14017] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  559.341507][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  559.350208][T14017] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  559.366176][T14017] BTRFS info (device loop3): using free space tree
[  559.393636][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  559.416623][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  559.448512][T12868] device veth0_macvtap entered promiscuous mode
[  559.460352][T12868] device veth1_macvtap entered promiscuous mode
[  559.480430][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  559.491796][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.501826][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  559.512620][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.605610][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  559.653633][T14017] BTRFS info (device loop3): enabling ssd optimizations
[  559.670840][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.753138][T12868] batman_adv: batadv0: Interface activated: batadv_slave_0
[  559.777741][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  559.817653][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  559.881875][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  559.941776][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  560.005222][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.041019][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.080653][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.119608][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.146947][T12868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  560.168333][T12868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.200217][ T4280] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  560.201808][T12868] batman_adv: batadv0: Interface activated: batadv_slave_1
[  560.267590][T12868] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  560.298065][T12868] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  560.306926][T12868] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  560.337872][T12868] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  560.363129][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  560.394824][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  560.674969][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  560.703215][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  560.728423][T13075] 8021q: adding VLAN 0 to HW filter on device batadv0
[  560.930489][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  560.959395][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.029053][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  561.091941][ T4371] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  561.124960][ T4371] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.185285][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  561.270470][T14077] loop2: detected capacity change from 0 to 32768
[  561.360467][T14077] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  561.504187][T14077] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2048 but claims that 39166 are free
[  561.504530][T14077] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  561.504546][T14077] OCFS2: File system is now read-only.
[  561.504568][T14077] (syz.2.3615,14077,1):ocfs2_search_chain:1761 ERROR: status = -30
[  561.504710][T14077] (syz.2.3615,14077,1):ocfs2_search_chain:1871 ERROR: status = -30
[  561.504736][T14077] (syz.2.3615,14077,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  561.504759][T14077] (syz.2.3615,14077,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  561.504784][T14077] (syz.2.3615,14077,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  561.504808][T14077] (syz.2.3615,14077,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  561.504834][T14077] (syz.2.3615,14077,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  561.504858][T14077] (syz.2.3615,14077,1):ocfs2_mknod:385 ERROR: status = -30
[  561.505955][T14077] (syz.2.3615,14077,1):ocfs2_mknod:502 ERROR: status = -30
[  561.506054][T14077] (syz.2.3615,14077,1):ocfs2_create:676 ERROR: status = -30
[  561.695488][ T4273] ocfs2: Unmounting device (7,2) on (node local)
[  561.735644][T14093] loop1: detected capacity change from 0 to 32768
[  561.740300][T14093] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.3619 (14093)
[  561.743787][T14093] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  561.743870][T14093] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  561.743924][T14093] BTRFS info (device loop1): using free space tree
[  562.082407][T14093] BTRFS info (device loop1): enabling ssd optimizations
[  562.281191][ T4274] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  562.740584][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  562.741256][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  562.851763][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  562.852595][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  562.853424][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  562.854022][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  562.856871][T13075] device veth0_vlan entered promiscuous mode
[  562.921331][T13075] device veth1_vlan entered promiscuous mode
[  562.925873][T14176] Driver unsupported XDP return value 0 on prog  (id 220) dev N/A, expect packet loss!
[  563.008920][T14161] loop2: detected capacity change from 0 to 32768
[  563.009124][T13075] device veth0_macvtap entered promiscuous mode
[  563.010972][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  563.011682][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  563.012289][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  563.012900][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  563.017364][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  563.041983][T13075] device veth1_macvtap entered promiscuous mode
[  563.114682][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.114709][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.114721][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.114736][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.114747][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.114761][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.114775][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.114790][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.116313][T13075] batman_adv: batadv0: Interface activated: batadv_slave_0
[  563.126418][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  563.127333][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  563.134080][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  563.246705][T14161] ERROR: (device loop2): dbAllocNext: Corrupt dmap page
[  563.246705][T14161] 
[  563.596343][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.620887][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.623396][T14161] ERROR: (device loop2): remounting filesystem as read-only
[  563.645038][T14161] ialloc: diAlloc returned -5!
[  563.651224][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.667981][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.678277][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.698676][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.713072][T13075] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.726184][T13075] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.743693][T13075] batman_adv: batadv0: Interface activated: batadv_slave_1
[  563.757906][T13075] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  563.801611][T13075] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  563.811767][T13075] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  563.822440][T13075] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  563.884518][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  563.910181][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  564.163602][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  564.187322][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  564.262195][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  564.304316][T13480] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  564.312631][T13480] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  564.380512][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  564.541133][T14180] loop1: detected capacity change from 0 to 32768
[  564.587131][T14180] XFS: noikeep mount option is deprecated.
[  564.626479][T14180] XFS: ikeep mount option is deprecated.
[  564.667830][T14180] XFS: noikeep mount option is deprecated.
[  564.811965][T14180] XFS (loop1): Mounting V5 Filesystem
[  565.011616][T14180] XFS (loop1): Ending clean mount
[  565.057429][T14180] XFS (loop1): Quotacheck needed: Please wait.
[  565.202040][T14180] XFS (loop1): Quotacheck: Done.
[  565.246251][T14282] loop6: detected capacity change from 0 to 64
[  565.540422][ T4274] XFS (loop1): Unmounting Filesystem
[  567.041003][T14371] xt_ecn: cannot match TCP bits for non-tcp packets
[  567.051706][T14367] loop5: detected capacity change from 0 to 512
[  567.058911][T14367] EXT4-fs: Ignoring removed nomblk_io_submit option
[  567.175488][T14367] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  567.198125][T14382] loop2: detected capacity change from 0 to 512
[  567.259077][T14367] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  567.312370][T14367] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  567.318177][T14382] EXT4-fs: Ignoring removed nobh option
[  567.351715][T14367] EXT4-fs error (device loop5): ext4_acquire_dquot:6816: comm syz.5.3664: Failed to acquire dquot type 1
[  567.396464][T14382] EXT4-fs error (device loop2): __ext4_iget:5077: inode #11: block 1: comm syz.2.3667: invalid block
[  567.418943][T14382] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.3667: couldn't read orphan inode 11 (err -117)
[  567.429567][T14396] loop6: detected capacity change from 0 to 64
[  567.509466][T14382] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  567.777369][T12868] EXT4-fs (loop5): unmounting filesystem.
[  567.948550][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  568.157134][T14435] loop2: detected capacity change from 0 to 256
[  568.337912][T14440] loop1: detected capacity change from 0 to 1024
[  568.675048][   T56] hfsplus: b-tree write err: -5, ino 4
[  570.025209][T14460] loop5: detected capacity change from 0 to 32768
[  570.182195][T14460] XFS (loop5): Mounting V5 Filesystem
[  570.208171][T14543] loop1: detected capacity change from 0 to 16
[  570.232845][T14543] erofs: (device loop1): mounted with root inode @ nid 36.
[  570.249309][T14543] erofs: (device loop1): z_erofs_readahead: readahead error at page 2 @ nid 9895604650073
[  570.279492][   T48] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -20 in[4096, 0] out[8192]
[  570.293409][T14543] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -20 in[4096, 0] out[4096]
[  570.301542][T14460] XFS (loop5): Ending clean mount
[  570.315918][   T26] audit: type=1800 audit(34449240.311:14): pid=14543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3705" name="file3" dev="loop1" ino=9895604650073 res=0 errno=0
[  570.362240][T14460] XFS (loop5): Quotacheck needed: Please wait.
[  570.492997][T14460] XFS (loop5): Quotacheck: Done.
[  570.889565][T14505] loop6: detected capacity change from 0 to 32768
[  570.939064][T12868] XFS (loop5): Unmounting Filesystem
[  571.046216][T14505] ea_get: invalid extended attribute
[  571.056905][T14505] ffff888054ba8330: 04 00 00 00                                      ....
[  571.385393][T14538] loop3: detected capacity change from 0 to 40427
[  571.431621][T14547] loop2: detected capacity change from 0 to 32768
[  571.468290][T14538] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  571.476486][T14547] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.3706 (14547)
[  571.496890][T14538] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  571.589483][T14538] F2FS-fs (loop3): invalid crc value
[  571.623639][T14547] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  571.689945][T14538] F2FS-fs (loop3): Found nat_bits in checkpoint
[  571.748656][T14586] loop1: detected capacity change from 0 to 256
[  571.768083][T14547] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  571.793626][T14547] BTRFS info (device loop2): force zlib compression, level 3
[  571.855442][T14547] BTRFS info (device loop2): force clearing of disk cache
[  571.901600][T14547] BTRFS info (device loop2): setting nodatasum
[  571.923654][T14538] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  571.931055][T14538] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  571.969110][T14547] BTRFS info (device loop2): doing ref verification
[  571.985858][T14547] BTRFS info (device loop2): allowing degraded mounts
[  572.038019][T14547] BTRFS info (device loop2): using free space tree
[  572.208380][T14538] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  572.245885][T14538] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  572.456098][T14547] BTRFS info (device loop2): enabling ssd optimizations
[  572.491299][T14547] BTRFS info (device loop2): rebuilding free space tree
[  572.974242][ T4273] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  574.141136][   T93] block nbd5: Attempted send on invalid socket
[  574.147946][   T93] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  574.191430][T14677] vxfs: unable to read disk superblock at 1
[  574.262078][   T93] block nbd5: Attempted send on invalid socket
[  574.268381][   T93] I/O error, dev nbd5, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  574.280265][T14677] vxfs: unable to read disk superblock at 8
[  574.286394][T14677] vxfs: can't find superblock.
[  574.419915][T14684] netlink: 'syz.6.3728': attribute type 2 has an invalid length.
[  574.448150][T14643] loop3: detected capacity change from 0 to 32768
[  574.480976][T14684] netlink: 'syz.6.3728': attribute type 1 has an invalid length.
[  574.609475][   T48] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1
[  574.681997][T14702] loop5: detected capacity change from 0 to 4096
[  574.731562][T14643] XFS (loop3): Mounting V5 Filesystem
[  574.764203][T14711] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  574.828772][T14643] XFS (loop3): Ending clean mount
[  574.892782][T14702] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  574.930540][T14702] Remounting filesystem read-only
[  575.114639][ T4280] XFS (loop3): Unmounting Filesystem
[  575.777414][T14755] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  576.837579][T14811] loop5: detected capacity change from 0 to 2048
[  576.993347][T14811] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  577.052601][T14821] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  577.096476][T14811] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  577.334931][T14833] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3764'.
[  577.383923][T14833] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3764'.
[  577.385853][T12868] EXT4-fs (loop5): unmounting filesystem.
[  577.639400][T14780] loop1: detected capacity change from 0 to 32768
[  577.749329][T14780] ERROR: (device loop1): dbAllocNext: Corrupt dmap page
[  577.749329][T14780] 
[  577.804698][T14780] ERROR: (device loop1): remounting filesystem as read-only
[  577.837163][T14780] ialloc: diAlloc returned -5!
[  577.879414][T14858] loop6: detected capacity change from 0 to 256
[  577.960953][T14858] FAT-fs (loop6): Directory bread(block 64) failed
[  577.966267][T14803] loop2: detected capacity change from 0 to 32768
[  577.967722][T14858] FAT-fs (loop6): Directory bread(block 65) failed
[  578.064523][T14858] FAT-fs (loop6): Directory bread(block 66) failed
[  578.092970][T14858] FAT-fs (loop6): Directory bread(block 67) failed
[  578.154555][T14803] XFS (loop2): Mounting V5 Filesystem
[  578.155167][T14858] FAT-fs (loop6): Directory bread(block 68) failed
[  578.167141][T14858] FAT-fs (loop6): Directory bread(block 69) failed
[  578.173948][T14858] FAT-fs (loop6): Directory bread(block 70) failed
[  578.180516][T14858] FAT-fs (loop6): Directory bread(block 71) failed
[  578.187268][T14858] FAT-fs (loop6): Directory bread(block 72) failed
[  578.194100][T14858] FAT-fs (loop6): Directory bread(block 73) failed
[  578.402664][T14803] XFS (loop2): Ending clean mount
[  578.482542][ T4329] usb 4-1: new high-speed USB device number 91 using dummy_hcd
[  578.689190][ T4273] XFS (loop2): Unmounting Filesystem
[  578.706875][ T4329] usb 4-1: Using ep0 maxpacket: 8
[  578.716785][ T4329] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  578.778150][ T4329] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  578.809563][ T4329] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  578.845673][ T4329] usb 4-1: Product: syz
[  578.849917][ T4329] usb 4-1: Manufacturer: syz
[  578.897789][ T4329] usb 4-1: SerialNumber: syz
[  578.951223][T14901] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3779'.
[  579.161497][ T4329] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  579.201051][ T4329] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  579.227200][ T4329] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  579.403211][ T4329] usb 4-1: palm_os_3_probe - error -71 getting bytes available request
[  579.434351][ T4329] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  579.456020][ T4329] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  579.484864][ T4329] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  579.526385][ T4329] usb 4-1: USB disconnect, device number 91
[  579.584589][ T4329] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  579.650706][ T4329] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  579.688279][ T4329] visor 4-1:1.0: device disconnected
[  579.933056][T14955] loop6: detected capacity change from 0 to 2048
[  579.980728][T14955] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  580.040301][T14955] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  580.200115][T14965] loop2: detected capacity change from 0 to 64
[  580.234023][T14907] loop1: detected capacity change from 0 to 32768
[  580.268824][T14964] loop3: detected capacity change from 0 to 2048
[  580.343946][T14964] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  580.359181][T14907] ea_get: invalid extended attribute
[  580.450844][T14964] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  580.663090][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  580.966245][T14997] netlink: 'syz.2.3793': attribute type 7 has an invalid length.
[  581.181058][T15005] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3795'.
[  581.212902][T15005] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3795'.
[  581.648193][T14978] loop6: detected capacity change from 0 to 32768
[  581.652766][T15021] loop5: detected capacity change from 0 to 764
[  581.707442][T14978] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.3788 (14978)
[  581.813657][T14978] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  581.874807][T14978] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  581.940277][T14978] BTRFS info (device loop6): using free space tree
[  582.085260][T15042] netlink: 'syz.5.3804': attribute type 1 has an invalid length.
[  582.097063][T15042] netlink: 228 bytes leftover after parsing attributes in process `syz.5.3804'.
[  582.238403][T15056] overlayfs: bad mount option "redirect_dir=on:/"
[  582.407405][T14978] BTRFS info (device loop6): enabling ssd optimizations
[  582.733089][T13075] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  582.838232][T15091] IPVS: length: 120 != 24
[  583.034289][ T7852] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop6 scanned by udevd (7852)
[  583.132718][T15099] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  583.754035][T15129] netlink: 'syz.2.3824': attribute type 7 has an invalid length.
[  584.397602][T15165] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3834'.
[  584.447037][T15165] unsupported nla_type 65024
[  584.696501][T15175] 8021q: adding VLAN 0 to HW filter on device bond1
[  584.779105][T15218] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3840'.
[  584.803437][T15217] loop5: detected capacity change from 0 to 2048
[  584.819171][T15222] loop1: detected capacity change from 0 to 256
[  584.925668][T15222] FAT-fs (loop1): Directory bread(block 64) failed
[  584.953370][T15226] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  584.980962][T15222] FAT-fs (loop1): Directory bread(block 65) failed
[  585.035969][T15222] FAT-fs (loop1): Directory bread(block 66) failed
[  585.042627][T15222] FAT-fs (loop1): Directory bread(block 67) failed
[  585.115904][T15222] FAT-fs (loop1): Directory bread(block 68) failed
[  585.160359][T15222] FAT-fs (loop1): Directory bread(block 69) failed
[  585.189079][T15222] FAT-fs (loop1): Directory bread(block 70) failed
[  585.213158][T15222] FAT-fs (loop1): Directory bread(block 71) failed
[  585.235352][T15222] FAT-fs (loop1): Directory bread(block 72) failed
[  585.262626][T15222] FAT-fs (loop1): Directory bread(block 73) failed
[  585.672721][T15253] loop6: detected capacity change from 0 to 1024
[  585.940771][   T56] hfsplus: b-tree write err: -5, ino 4
[  586.549883][T15300] netlink: 'syz.3.3858': attribute type 1 has an invalid length.
[  586.637218][T15308] loop2: detected capacity change from 0 to 256
[  586.751510][T15315] netlink: 'syz.6.3863': attribute type 2 has an invalid length.
[  586.752983][T15308] FAT-fs (loop2): Directory bread(block 64) failed
[  586.856320][T15308] FAT-fs (loop2): Directory bread(block 65) failed
[  586.882085][T15308] FAT-fs (loop2): Directory bread(block 66) failed
[  586.923477][T15308] FAT-fs (loop2): Directory bread(block 67) failed
[  586.930236][T15308] FAT-fs (loop2): Directory bread(block 68) failed
[  586.970126][T15308] FAT-fs (loop2): Directory bread(block 69) failed
[  587.000683][T15308] FAT-fs (loop2): Directory bread(block 70) failed
[  587.029247][T15308] FAT-fs (loop2): Directory bread(block 71) failed
[  587.046470][T15308] FAT-fs (loop2): Directory bread(block 72) failed
[  587.060939][T15308] FAT-fs (loop2): Directory bread(block 73) failed
[  587.699387][   T26] audit: type=1326 audit(34449256.577:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15359 comm="syz.6.3874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  587.789252][   T26] audit: type=1326 audit(34449256.577:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15359 comm="syz.6.3874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  587.816812][T15349] loop3: detected capacity change from 0 to 8192
[  587.896241][   T26] audit: type=1326 audit(34449256.615:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15359 comm="syz.6.3874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  587.912079][T15349] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  588.002115][   T26] audit: type=1326 audit(34449256.615:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15359 comm="syz.6.3874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  588.023894][T15349] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  588.056582][T15349] REISERFS (device loop3): using ordered data mode
[  588.063168][T15349] reiserfs: using flush barriers
[  588.129847][T15349] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  588.136575][   T26] audit: type=1326 audit(34449256.615:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15359 comm="syz.6.3874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  588.231134][T15349] REISERFS (device loop3): checking transaction log (loop3)
[  588.302556][T15349] REISERFS (device loop3): Using r5 hash to sort names
[  588.325701][T15349] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  588.387262][T15349] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  588.902079][ T6131] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  588.911229][T15423] tmpfs: Bad value for 'mpol'
[  589.099742][T15434] netlink: 'syz.1.3894': attribute type 1 has an invalid length.
[  589.113709][ T6131] usb 7-1: Using ep0 maxpacket: 32
[  589.123541][ T6131] usb 7-1: config 0 has an invalid interface number: 35 but max is 0
[  589.151941][ T6131] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  589.184545][ T6131] usb 7-1: config 0 has no interface number 0
[  589.209919][ T6131] usb 7-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  589.272990][ T6131] usb 7-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  589.293407][ T6131] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  589.336316][ T6131] usb 7-1: Product: syz
[  589.352213][ T6131] usb 7-1: Manufacturer: syz
[  589.356992][ T6131] usb 7-1: SerialNumber: syz
[  589.416191][ T6131] usb 7-1: config 0 descriptor??
[  589.431387][ T6131] radio-si470x 7-1:0.35: could not find interrupt in endpoint
[  589.459692][ T6131] radio-si470x: probe of 7-1:0.35 failed with error -5
[  589.508105][T15458] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3899'.
[  589.651257][ T6131] radio-raremono 7-1:0.35: this is not Thanko's Raremono.
[  589.670324][ T6131] usbhid 7-1:0.35: couldn't find an input interrupt endpoint
[  589.915471][ T6131] usb 7-1: USB disconnect, device number 2
[  590.005124][T15483] capability: warning: `syz.3.3903' uses 32-bit capabilities (legacy support in use)
[  590.243511][T15440] loop5: detected capacity change from 0 to 32768
[  590.311561][T15440] ialloc: diAlloc returned -5!
[  591.008259][T15532] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3916'.
[  591.257969][T15544] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_team, syncid = 0, id = 0
[  591.349610][T15550] loop6: detected capacity change from 0 to 24
[  591.500186][T15550] romfs: read error for inode 0x8000
[  591.907395][T15575] netlink: 'syz.3.3927': attribute type 1 has an invalid length.
[  591.920423][T15572] netlink: 666 bytes leftover after parsing attributes in process `syz.6.3925'.
[  591.931051][T15575] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3927'.
[  592.354200][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  592.360834][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  592.564963][   T26] audit: type=1326 audit(34449261.126:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15609 comm="syz.3.3937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a6b8eec9 code=0x7ffc0000
[  592.606878][   T26] audit: type=1326 audit(34449261.135:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15609 comm="syz.3.3937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fa2a6b8eec9 code=0x7ffc0000
[  592.784733][   T26] audit: type=1326 audit(34449261.135:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15609 comm="syz.3.3937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a6b8eec9 code=0x7ffc0000
[  592.880092][   T26] audit: type=1326 audit(34449261.135:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15609 comm="syz.3.3937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a6b8eec9 code=0x7ffc0000
[  593.111611][T15640] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3946'.
[  593.183435][T15644] IPv6: sit1: Disabled Multicast RS
[  593.551696][T15667] xt_hashlimit: overflow, try lower: 18446744073709551615/9
[  593.593227][   T26] audit: type=1326 audit(34449262.099:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15666 comm="syz.6.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  593.694635][   T26] audit: type=1326 audit(34449262.108:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15666 comm="syz.6.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  593.825796][   T26] audit: type=1326 audit(34449262.108:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15666 comm="syz.6.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  593.990776][   T26] audit: type=1326 audit(34449262.108:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15666 comm="syz.6.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  594.099509][   T26] audit: type=1326 audit(34449262.108:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15666 comm="syz.6.3954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  594.121620][    C1] vkms_vblank_simulate: vblank timer overrun
[  594.312426][T15701] netlink: 1 bytes leftover after parsing attributes in process `syz.1.3963'.
[  594.438326][T15693] loop5: detected capacity change from 0 to 8192
[  594.481487][T15693] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  594.953048][T15735] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-alb(6)
[  595.043345][T15740] device geneve2 entered promiscuous mode
[  595.649563][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3984'.
[  595.686683][T15776] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3985'.
[  596.168690][T15798] loop6: detected capacity change from 0 to 4096
[  596.597501][T15815] xt_connbytes: Forcing CT accounting to be enabled
[  596.615248][T15815] xt_NFQUEUE: number of total queues is 0
[  597.060428][T15845] loop1: detected capacity change from 0 to 512
[  597.133164][T15845] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  597.210291][T15845] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #2: block 9: comm syz.1.4002: lblock 0 mapped to illegal pblock 9 (length 1)
[  597.245069][T15854] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4004'.
[  597.284263][T15845] EXT4-fs (loop1): mount failed
[  597.380009][ T7852] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  597.859400][T15875] loop6: detected capacity change from 0 to 4096
[  597.964402][T15875] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  598.007452][T15875] ntfs3: loop6: Failed to load $Extend.
[  598.431998][T15911] netlink: 52 bytes leftover after parsing attributes in process `syz.6.4021'.
[  599.082644][T15951] device geneve2 entered promiscuous mode
[  599.270470][T15958] loop1: detected capacity change from 0 to 4096
[  599.285968][ T7894] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  599.371982][T15958] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  599.397130][T15958] ntfs3: loop1: Failed to load $Secure.
[  599.488929][ T7894] usb 7-1: Using ep0 maxpacket: 8
[  599.496451][ T7894] usb 7-1: config 0 has an invalid interface number: 52 but max is 0
[  599.560391][ T7894] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  599.673938][ T7894] usb 7-1: config 0 has no interface number 0
[  599.734648][ T7894] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  599.793375][ T7894] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  599.836155][ T7894] usb 7-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  599.889333][ T7894] usb 7-1: config 0 interface 52 has no altsetting 0
[  599.954683][ T7894] usb 7-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  600.000942][ T7894] usb 7-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  600.020865][ T7894] usb 7-1: Product: syz
[  600.048347][ T7894] usb 7-1: SerialNumber: syz
[  600.092801][ T7894] usb 7-1: config 0 descriptor??
[  600.350749][ T7894] input: syz (Stick) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.52/input/input42
[  600.377245][ T3622] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  600.469266][ T3622] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  600.485501][T16015] loop5: detected capacity change from 0 to 4096
[  600.543034][ T3622] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  600.606657][T16015] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  600.618696][ T7853] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  600.643883][ T5367] usb 7-1: USB disconnect, device number 3
[  600.653862][ T3622] synaptics_usb 7-1:0.52: synusb_open - usb_submit_urb failed, error: -19
[  600.756465][T16015] Quota error (device loop5): find_block_dqentry: Quota for id 0 referenced but not present
[  600.811815][T16015] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  600.897458][T16015] EXT4-fs error (device loop5): ext4_acquire_dquot:6816: comm syz.5.4046: Failed to acquire dquot type 0
[  600.962351][T16039] loop3: detected capacity change from 0 to 8192
[  601.018801][T16039] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  601.152061][T12868] EXT4-fs (loop5): unmounting filesystem.
[  601.939330][T16100] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  601.947431][T16100] IPv6: NLM_F_CREATE should be set when creating new route
[  601.954870][T16100] IPv6: NLM_F_CREATE should be set when creating new route
[  602.255259][T16114] netlink: 292 bytes leftover after parsing attributes in process `syz.1.4068'.
[  602.514655][T16133] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4072'.
[  602.785819][T16138] loop6: detected capacity change from 0 to 4096
[  602.884617][T16138] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[  602.989882][T16138] ntfs3: loop6: failed to convert "c46c" to cp852
[  603.464175][ T6131] usb 2-1: new full-speed USB device number 98 using dummy_hcd
[  603.489805][T16121] loop2: detected capacity change from 0 to 32768
[  603.559298][T16121] 
[  603.559298][T16121]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  603.559298][T16121] 
[  603.657877][T16121] ERROR: (device loop2): diWrite: ixpxd invalid
[  603.657877][T16121] 
[  603.710193][ T6131] usb 2-1: not running at top speed; connect to a high speed hub
[  603.728230][ T6131] usb 2-1: config 95 has an invalid interface number: 1 but max is 0
[  603.740278][T16121] ERROR: (device loop2): txCommit: 
[  603.740278][T16121] 
[  603.747553][ T6131] usb 2-1: config 95 has no interface number 0
[  603.783672][ T6131] usb 2-1: config 95 interface 1 has no altsetting 0
[  603.851358][ T6131] usb 2-1: string descriptor 0 read error: -22
[  603.891113][ T6131] usb 2-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79
[  603.934666][ T6131] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  604.052263][ T4273] 
[  604.052263][ T4273]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  604.052263][ T4273] 
[  604.096964][ T4273] 
[  604.096964][ T4273]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  604.096964][ T4273] 
[  604.271321][T16146] loop3: detected capacity change from 0 to 32768
[  604.383826][T16146] XFS (loop3): Mounting V5 Filesystem
[  604.490479][ T6131] usb 2-1: USB disconnect, device number 98
[  604.680068][T16146] XFS (loop3): Ending clean mount
[  604.911212][ T4280] XFS (loop3): Unmounting Filesystem
[  605.003830][T16173] loop5: detected capacity change from 0 to 32768
[  605.387605][T16246] ip6t_srh: unknown srh match flags  4000
[  606.486938][T16304] netlink: 'syz.3.4106': attribute type 5 has an invalid length.
[  606.763378][T16318] IPv6: sit1: Disabled Multicast RS
[  606.809436][T16323] netlink: 45 bytes leftover after parsing attributes in process `syz.3.4110'.
[  606.973365][T16330] loop2: detected capacity change from 0 to 512
[  607.018376][T16335] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4114'.
[  607.059785][T16330] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (340!=2687)
[  607.120080][T16330] EXT4-fs (loop2): group descriptors corrupted!
[  607.663695][   T26] audit: type=1326 audit(34449275.267:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.1.4122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111018eec9 code=0x7ffc0000
[  607.734232][   T26] audit: type=1326 audit(34449275.267:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.1.4122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f111018eec9 code=0x7ffc0000
[  607.770617][T16361] loop6: detected capacity change from 0 to 4096
[  607.793029][   T26] audit: type=1326 audit(34449275.267:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.1.4122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111018eec9 code=0x7ffc0000
[  607.956504][T16387] loop3: detected capacity change from 0 to 256
[  607.980308][T16387] exfat: Deprecated parameter 'utf8'
[  607.986026][ T6131] usb 3-1: new high-speed USB device number 89 using dummy_hcd
[  607.998542][T16361] ntfs3: loop6: ino=1e, "file1" attr_set_size
[  608.026154][T16387] exfat: Deprecated parameter 'namecase'
[  608.043119][T16361] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  608.095749][T16387] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  608.240421][ T6131] usb 3-1: Using ep0 maxpacket: 8
[  608.249260][ T6131] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  608.290243][ T6131] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  608.386865][ T6131] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  608.453839][ T6131] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  608.471716][ T6131] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  608.521381][ T6131] usb 3-1: config 0 descriptor??
[  609.026583][ T5367] usb 3-1: USB disconnect, device number 89
[  609.130392][ T6132] usb 4-1: new high-speed USB device number 92 using dummy_hcd
[  609.248220][T16461] loop1: detected capacity change from 0 to 64
[  609.374365][ T6132] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  609.405254][ T6132] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.443685][ T6132] usb 4-1: config 0 descriptor??
[  609.467148][ T6132] cp210x 4-1:0.0: cp210x converter detected
[  609.900463][ T6132] cp210x 4-1:0.0: failed to get vendor val 0x370c size 13: -71
[  609.935019][ T6132] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  609.963222][T16503] netlink: 308 bytes leftover after parsing attributes in process `syz.1.4157'.
[  609.971679][ T6132] usb 4-1: cp210x converter now attached to ttyUSB0
[  610.046348][ T6132] usb 4-1: USB disconnect, device number 92
[  610.066977][ T6132] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  610.076193][ T6132] cp210x 4-1:0.0: device disconnected
[  610.138228][T16501] loop6: detected capacity change from 0 to 4096
[  610.162560][T16501] ntfs3: loop6: ino=3, Correct links count -> 2.
[  610.174506][T16501] ntfs3: loop6: Failed to load $Volume.
[  610.183526][T16505] loop2: detected capacity change from 0 to 4096
[  610.308842][T16505] ntfs: volume version 3.1.
[  610.523747][T16533] loop1: detected capacity change from 0 to 1024
[  610.675515][T16533] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  610.728323][T16533] EXT4-fs warning (device loop1): ext4_empty_dir:3147: inode #11: comm syz.1.4161: directory missing '.'
[  611.022072][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  611.325643][T16580] netlink: 'syz.2.4172': attribute type 2 has an invalid length.
[  611.830352][T16608] loop3: detected capacity change from 0 to 256
[  611.837944][T16606] loop1: detected capacity change from 0 to 1024
[  611.885630][T16608] exfat: Deprecated parameter 'namecase'
[  611.926231][T16608] exfat: Deprecated parameter 'namecase'
[  611.936175][T16606] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  611.965373][T16608] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  612.035204][T16606] EXT4-fs error (device loop1): ext4_generic_delete_entry:2729: inode #2: block 16: comm syz.1.4179: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1
[  612.187744][T16606] EXT4-fs error (device loop1) in ext4_delete_entry:2800: Corrupt filesystem
[  612.376003][T16627] loop5: detected capacity change from 0 to 1024
[  612.463750][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  612.503502][T16627] hfsplus: xattr searching failed
[  613.095643][T16595] loop2: detected capacity change from 0 to 32768
[  613.118537][T16661] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  613.135212][T16662] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  613.142657][T16662] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  613.165624][T16595] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.4176 (16595)
[  613.244959][T16595] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  613.283033][T16595] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  613.348425][T16595] BTRFS info (device loop2): using free space tree
[  613.682037][T16595] BTRFS info (device loop2): enabling ssd optimizations
[  613.769575][T16705] loop1: detected capacity change from 0 to 256
[  613.952303][T16714] binder: 16712:16714 ioctl c018620c 200000000380 returned -22
[  613.996235][ T4273] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  614.156857][T16720] loop6: detected capacity change from 0 to 256
[  614.191448][T16725] afs: Bad value for 'source'
[  614.245848][T16720] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  614.943694][T16755] xt_hashlimit: overflow, try lower: 5/0
[  615.243717][T16761] loop2: detected capacity change from 0 to 2048
[  615.283795][T16761] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  615.353366][T16761] syz.2.4202: attempt to access beyond end of device
[  615.353366][T16761] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  615.368083][T16771] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  615.436085][T16761] syz.2.4202: attempt to access beyond end of device
[  615.436085][T16761] loop2: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  615.513287][T16761] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=0)
[  615.725988][T16730] loop5: detected capacity change from 0 to 32768
[  615.879737][T16730] ialloc: diAlloc returned -17!
[  616.128708][T16744] loop6: detected capacity change from 0 to 32768
[  616.226401][T16744] ERROR: (device loop6): dbFindCtl: Corrupt dmapctl page
[  616.226401][T16744] 
[  616.273085][T16744] ERROR: (device loop6): remounting filesystem as read-only
[  616.284936][T16805] device veth3 entered promiscuous mode
[  616.317598][T16744] ialloc: diAlloc returned -5!
[  616.511815][T16825] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4224'.
[  616.519704][T16829] loop3: detected capacity change from 0 to 256
[  616.823807][T16839] loop6: detected capacity change from 0 to 128
[  616.939451][T16839] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00)
[  617.022651][T16839] FAT-fs (loop6): Filesystem has been set read-only
[  617.806872][T16893] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  617.827335][T16895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4241'.
[  618.017724][T16906] loop1: detected capacity change from 0 to 16
[  618.024831][T16906] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  618.072178][T16909] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4245'.
[  618.122558][ T7852] udevd[7852]: incorrect cramfs checksum on /dev/loop1
[  618.124074][T16909] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4245'.
[  618.332694][T16922] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4249'.
[  618.364970][T16922] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4249'.
[  618.737588][T16947] autofs4:pid:16947:autofs_fill_super: called with bogus options
[  618.969289][T16961] loop2: detected capacity change from 0 to 16
[  619.065339][T16961] erofs: (device loop2): mounted with root inode @ nid 36.
[  619.110759][T16961] erofs: (device loop2): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 36
[  619.168314][T16961] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  619.221627][T16961] erofs: (device loop2): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 36
[  619.294309][T16961] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  619.345430][T16961] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117]
[  619.931264][   T26] audit: type=1326 audit(34449286.751:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17009 comm="syz.2.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  620.057435][   T26] audit: type=1326 audit(34449286.751:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17009 comm="syz.2.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  620.147055][   T26] audit: type=1326 audit(34449286.779:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17009 comm="syz.2.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  620.243847][T17013] loop6: detected capacity change from 0 to 8192
[  620.269164][   T26] audit: type=1326 audit(34449286.779:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17009 comm="syz.2.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  620.296202][T17026] loop2: detected capacity change from 0 to 2048
[  620.420864][T17026] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  620.450365][   T26] audit: type=1326 audit(34449286.779:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17009 comm="syz.2.4272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  620.660088][T17039] loop3: detected capacity change from 0 to 1024
[  621.177735][T17068] loop2: detected capacity change from 0 to 256
[  621.403994][T17079] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  621.560560][T17085] loop3: detected capacity change from 0 to 64
[  621.994315][T17114] loop2: detected capacity change from 0 to 128
[  622.368459][T17134] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4305'.
[  622.408716][T17134] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4305'.
[  622.448008][T17141] syz.2.4306 uses obsolete (PF_INET,SOCK_PACKET)
[  622.638083][T17149] loop6: detected capacity change from 0 to 2048
[  622.707905][T17149] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  622.757612][T17149] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  622.991528][T17171] netlink: 'syz.1.4314': attribute type 10 has an invalid length.
[  623.140414][T17171] team0: Device veth1_vlan failed to register rx_handler
[  623.901216][T17213] loop3: detected capacity change from 0 to 1024
[  623.939725][T17217] TCP: TCP_TX_DELAY enabled
[  623.958821][T17213] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #3: comm syz.3.4327: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[  624.009613][T17213] EXT4-fs error (device loop3): ext4_quota_enable:7027: comm syz.3.4327: Bad quota inode: 3, type: 0
[  624.027898][T17213] EXT4-fs warning (device loop3): ext4_enable_quotas:7068: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  624.044988][T17213] EXT4-fs (loop3): mount failed
[  624.355021][T17234] 9pnet_fd: p9_fd_create_tcp (17234): problem connecting socket to 127.0.0.1
[  624.454241][T17238] loop3: detected capacity change from 0 to 2048
[  624.517986][T17238] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  624.674961][T17252] xt_TCPMSS: Only works on TCP SYN packets
[  624.954344][T17263] device xfrm0 entered promiscuous mode
[  625.109076][T17206] loop2: detected capacity change from 0 to 32768
[  625.221577][T17206] ERROR: (device loop2): duplicateIXtree: 
[  625.221577][T17206] 
[  625.241577][T17275] netlink: 'syz.1.4342': attribute type 10 has an invalid length.
[  625.258670][T17206] ERROR: (device loop2): remounting filesystem as read-only
[  625.267556][T17275] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  625.325364][T17275] batman_adv: batadv0: Removing interface: batadv_slave_0
[  625.401356][T17275] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  625.604385][T17290] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4346'.
[  625.811113][T17300] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4348'.
[  625.858511][T17300] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4348'.
[  625.946973][T17300] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4348'.
[  625.997232][T17300] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4348'.
[  626.511825][T17341] ptrace attach of "./syz-executor exec"[12868] was attempted by ""[17341]
[  627.479568][T17397] netlink: 'syz.5.4374': attribute type 10 has an invalid length.
[  627.552851][T17397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  627.602038][T17397] batman_adv: batadv0: Removing interface: batadv_slave_0
[  627.698036][T17397] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  629.233638][T17494] kAFS: unparsable volume name
[  629.385656][T17501] netlink: 52 bytes leftover after parsing attributes in process `syz.2.4407'.
[  629.433677][T17505] ipt_rpfilter: unknown options
[  631.268104][T17597] loop3: detected capacity change from 0 to 512
[  631.319684][T17597] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  631.439152][T17551] loop6: detected capacity change from 0 to 32768
[  631.496340][T17597] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  631.580168][T17551] XFS (loop6): Mounting V5 Filesystem
[  631.716830][T17551] XFS (loop6): Ending clean mount
[  631.867557][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  631.921485][T17551] XFS (loop6): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair.
[  632.245274][T13075] XFS (loop6): Unmounting Filesystem
[  632.335851][T17573] loop1: detected capacity change from 0 to 32768
[  632.983875][T17656] 9pnet: Could not find request transport: 0xffffffffffffffff
[  633.366673][T17687] tmpfs: Bad value for 'mpol'
[  633.545598][T17633] loop2: detected capacity change from 0 to 40427
[  633.586699][T17698] loop1: detected capacity change from 0 to 164
[  633.596591][T17633] F2FS-fs (loop2): Fix alignment : internally, start(4096) end(16896) block(12288)
[  633.662500][T17633] F2FS-fs (loop2): invalid crc value
[  633.763643][T17633] F2FS-fs (loop2): Found nat_bits in checkpoint
[  633.999490][T17633] F2FS-fs (loop2): recover fsync data on readonly fs
[  634.033727][T17633] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1
[  634.041840][T17633] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[  634.112032][T17704] loop5: detected capacity change from 0 to 8192
[  634.132703][T17633] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  634.153792][T17704] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  634.186448][T17704] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  634.225833][T17633] F2FS-fs (loop2): Try to recover all the superblocks, ret: 0
[  634.240982][T17704] REISERFS (device loop5): using ordered data mode
[  634.251659][T17704] reiserfs: using flush barriers
[  634.276009][T17704] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  634.368143][T17704] REISERFS (device loop5): checking transaction log (loop5)
[  634.824930][T17704] REISERFS (device loop5): Using tea hash to sort names
[  634.832777][T17704] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  636.484414][T17832] loop6: detected capacity change from 0 to 256
[  636.745338][T17779] loop5: detected capacity change from 0 to 32768
[  636.833839][T17779] (syz.5.4473,17779,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  636.893698][T17779] (syz.5.4473,17779,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  637.049341][T17779] JBD2: Ignoring recovery information on journal
[  637.160372][T17873] loop1: detected capacity change from 0 to 2048
[  637.172124][T17873] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  637.270652][T17779] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  637.534652][T17885] netlink: 'syz.2.4502': attribute type 3 has an invalid length.
[  637.566825][T17885] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.4502'.
[  637.613917][T17890] device team0 entered promiscuous mode
[  637.669635][T17890] device team_slave_0 entered promiscuous mode
[  637.719665][T17890] device team_slave_1 entered promiscuous mode
[  637.761187][T17890] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  637.834094][   T26] audit: type=1326 audit(34449303.494:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17898 comm="syz.6.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  637.886410][T12868] ocfs2: Unmounting device (7,5) on (node local)
[  637.947418][   T26] audit: type=1326 audit(34449303.550:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17898 comm="syz.6.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  638.082621][   T26] audit: type=1326 audit(34449303.559:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17898 comm="syz.6.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  638.203153][   T26] audit: type=1326 audit(34449303.559:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17898 comm="syz.6.4506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  638.649742][T17930] loop6: detected capacity change from 0 to 2048
[  638.721810][T17930] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  638.739120][T17942] bond0: option ad_select: unable to set because the bond device is up
[  638.919173][T17951] loop5: detected capacity change from 0 to 64
[  639.099761][T17958] comedi comedi3: pcl711: I/O port conflict (0x4f27,16)
[  639.157221][T17964] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4524'.
[  639.246345][T17964] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4524'.
[  639.568708][T17988] loop1: detected capacity change from 0 to 256
[  639.635608][T17988] exfat: Deprecated parameter 'utf8'
[  639.691617][T17988] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  640.341331][ T6128] usb 4-1: new high-speed USB device number 93 using dummy_hcd
[  640.499821][T18040] loop1: detected capacity change from 0 to 256
[  640.572251][ T6128] usb 4-1: Using ep0 maxpacket: 32
[  640.584710][ T6128] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  640.637686][ T6128] usb 4-1: config 0 has no interface number 0
[  640.658997][ T6128] usb 4-1: config 0 interface 196 has no altsetting 0
[  640.698230][T18051] loop5: detected capacity change from 0 to 256
[  640.725158][ T6128] usb 4-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  640.748586][ T6128] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.779174][ T6128] usb 4-1: Product: syz
[  640.790234][ T6128] usb 4-1: Manufacturer: syz
[  640.810159][ T6128] usb 4-1: SerialNumber: syz
[  640.839202][ T6128] usb 4-1: config 0 descriptor??
[  641.098859][ T6128] ipheth 4-1:0.196: Unable to find endpoints
[  641.164694][ T6128] usb 4-1: USB disconnect, device number 93
[  641.561394][T18104] netlink: 'syz.1.4555': attribute type 9 has an invalid length.
[  641.801018][ T4374] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  642.021366][T18072] loop2: detected capacity change from 0 to 32768
[  642.046693][ T4374] usb 6-1: Using ep0 maxpacket: 8
[  642.069886][ T4374] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  642.081500][T18072] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  642.113921][T18072] (syz.2.4550,18072,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=16, inode=65, rec_len=16, name_len=64
[  642.114677][ T4374] usb 6-1: config 179 has no interface number 0
[  642.137783][T18072] (syz.2.4550,18072,0):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2
[  642.170209][T18072] (syz.2.4550,18072,0):ocfs2_mknod:298 ERROR: status = -2
[  642.184435][T18072] (syz.2.4550,18072,0):ocfs2_mknod:502 ERROR: status = -2
[  642.233919][T18072] (syz.2.4550,18072,0):ocfs2_mkdir:659 ERROR: status = -2
[  642.235162][T18130] netlink: 188 bytes leftover after parsing attributes in process `syz.1.4560'.
[  642.271087][ T4374] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  642.324883][ T4374] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  642.375886][ T4374] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  642.419812][ T4374] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  642.473818][ T4374] usb 6-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  642.538273][ T4374] usb 6-1: config 179 interface 65 has no altsetting 0
[  642.550989][ T4374] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  642.581491][ T4374] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  642.618795][ T4273] ocfs2: Unmounting device (7,2) on (node local)
[  642.628868][T18105] loop6: detected capacity change from 0 to 32768
[  642.704348][T18105] (syz.6.4554,18105,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  642.728877][ T4374] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:179.65/input/input44
[  642.826468][T18105] (syz.6.4554,18105,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  643.000802][T18105] JBD2: Ignoring recovery information on journal
[  643.149930][ T5367] usb 6-1: USB disconnect, device number 2
[  643.152131][    C0] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  643.164751][ T5367] xpad 6-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  643.292042][T18105] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  643.298978][T18172] loop1: detected capacity change from 0 to 256
[  643.711515][T13075] ocfs2: Unmounting device (7,6) on (node local)
[  644.205142][ T4374] usb 2-1: new high-speed USB device number 99 using dummy_hcd
[  644.422095][T18224] loop5: detected capacity change from 0 to 4096
[  644.428997][ T4374] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  644.440822][T18224] ntfs3: loop5: Different NTFS' sector size (1024) and media sector size (512)
[  644.461573][ T4374] usb 2-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  644.531788][ T4374] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.580766][ T4374] gspca_main: stv0680-2.14.0 probing 041e:4007
[  644.597800][T18236] loop3: detected capacity change from 0 to 2048
[  644.603108][T18242] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  644.686700][T18236] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  644.740227][T18236] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  644.793340][T18236] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  644.846927][T18236] UDF-fs: Scanning with blocksize 512 failed
[  644.917827][T18236] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  645.455066][T18278] loop6: detected capacity change from 0 to 8
[  645.585917][T18278] SQUASHFS error: lzo decompression failed, data probably corrupt
[  645.618015][T18278] SQUASHFS error: Failed to read block 0x1c0: -5
[  645.641862][T18278] SQUASHFS error: Unable to read metadata cache entry [1be]
[  645.691087][ T4374] stv0680 2-1:4.0: STV(e): camera ping failed!!
[  645.912754][ T4374] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  645.935673][ T4374] stv0680 2-1:4.0: last error: 85,  command = 0x7f
[  645.962335][ T4374] usb 2-1: USB disconnect, device number 99
[  645.976073][T18315] usb usb8: check_ctrlrecip: process 18315 (syz.2.4596) requesting ep 01 but needs 81
[  645.998980][T18315] usb usb8: usbfs: process 18315 (syz.2.4596) did not claim interface 0 before use
[  646.016039][T18303] loop3: detected capacity change from 0 to 4096
[  646.059907][T18303] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[  646.226903][T18327] loop5: detected capacity change from 0 to 512
[  646.276667][T18327] EXT4-fs: Ignoring removed nomblk_io_submit option
[  646.329872][T18326] loop6: detected capacity change from 0 to 4096
[  646.336688][T18327] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  646.353528][T18327] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01d, mo2=0102]
[  646.375803][T18327] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80)
[  646.385515][T18327] EXT4-fs (loop5): Skipping orphan cleanup due to unknown ROCOMPAT features
[  646.394355][T18327] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  646.433409][T18327] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80)
[  646.584733][T18330] loop2: detected capacity change from 0 to 8192
[  646.683715][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.708636][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.719753][T12868] EXT4-fs (loop5): unmounting filesystem.
[  646.734968][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.778642][T18343] loop1: detected capacity change from 0 to 2048
[  646.784470][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.823116][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.875891][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.931738][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.944681][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.955310][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.964731][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.965087][T18343] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  646.973843][T18330] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  646.995202][   T26] audit: type=1800 audit(34449312.067:41): pid=18330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4599" name="file2" dev="loop2" ino=1048640 res=0 errno=0
[  647.183351][T18343] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.4601: bg 0: block 345: padding at end of block bitmap is not set
[  647.275933][T18343] EXT4-fs (loop1): Remounting filesystem read-only
[  647.537800][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  647.548477][T18379] loop5: detected capacity change from 0 to 128
[  647.719623][T18385] loop6: detected capacity change from 0 to 2048
[  647.820549][T18385] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  648.030370][T18385] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.4611: bg 0: block 345: padding at end of block bitmap is not set
[  648.118339][T18385] EXT4-fs (loop6): Remounting filesystem read-only
[  648.125212][T18409] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  648.141698][T18411] xt_CT: You must specify a L4 protocol and not use inversions on it
[  648.301169][T13075] EXT4-fs (loop6): unmounting filesystem.
[  648.552458][T18420] loop1: detected capacity change from 0 to 4096
[  648.605878][T18420] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  648.725832][T18420] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  648.757940][T18420] ntfs3: loop1: mft corrupted
[  648.778301][T18420] ntfs3: loop1: Failed to load $Extend.
[  649.148102][T18380] loop2: detected capacity change from 0 to 32768
[  649.536265][T18469] netlink: 'syz.5.4631': attribute type 3 has an invalid length.
[  650.020668][T18493] loop6: detected capacity change from 0 to 512
[  650.102500][T18493] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  650.229338][T18493] Quota error (device loop6): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  650.268998][T18507] netlink: 128 bytes leftover after parsing attributes in process `syz.2.4642'.
[  650.302960][T18507] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4642'.
[  650.306371][T18493] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  650.323280][T18507] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4642'.
[  650.348583][T18493] EXT4-fs error (device loop6): ext4_acquire_dquot:6816: comm syz.6.4639: Failed to acquire dquot type 0
[  650.703469][T13075] EXT4-fs (loop6): unmounting filesystem.
[  650.737741][T18523] netlink: 'syz.2.4645': attribute type 4 has an invalid length.
[  650.954216][T18481] loop3: detected capacity change from 0 to 32768
[  650.990489][T18481] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.4635 (18481)
[  651.041417][T18481] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  651.074828][T18481] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  651.118501][T18481] BTRFS info (device loop3): enabling auto defrag
[  651.125737][T18481] BTRFS info (device loop3): doing ref verification
[  651.149874][T18481] BTRFS info (device loop3): use no compression
[  651.200951][T18481] BTRFS info (device loop3): force clearing of disk cache
[  651.219986][T18547] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4653'.
[  651.232797][T18481] BTRFS info (device loop3): max_inline at 4096
[  651.259354][T18481] BTRFS info (device loop3): disabling free space tree
[  651.535968][T18481] BTRFS info (device loop3): enabling ssd optimizations
[  651.546416][T18481] BTRFS info (device loop3): rebuilding free space tree
[  651.673144][T18481] BTRFS info (device loop3): disabling free space tree
[  651.738151][T18481] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  651.747917][T18481] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  652.002387][T18598] loop6: detected capacity change from 0 to 256
[  652.034606][T18598] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  652.079417][T18598] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  652.080545][T18590] loop5: detected capacity change from 0 to 4096
[  652.227891][ T4280] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  652.233821][T18590] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  652.285228][T18611] loop2: detected capacity change from 0 to 256
[  652.433678][T18611] FAT-fs (loop2): Directory bread(block 64) failed
[  652.477499][T18611] FAT-fs (loop2): Directory bread(block 65) failed
[  652.484215][T18611] FAT-fs (loop2): Directory bread(block 66) failed
[  652.571377][T18611] FAT-fs (loop2): Directory bread(block 67) failed
[  652.578179][T18611] FAT-fs (loop2): Directory bread(block 68) failed
[  652.635504][T18611] FAT-fs (loop2): Directory bread(block 69) failed
[  652.642326][T18611] FAT-fs (loop2): Directory bread(block 70) failed
[  652.687793][T18611] FAT-fs (loop2): Directory bread(block 71) failed
[  652.713496][T18617] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  652.721242][T18611] FAT-fs (loop2): Directory bread(block 72) failed
[  652.772981][T18611] FAT-fs (loop2): Directory bread(block 73) failed
[  653.088418][T18632] loop3: detected capacity change from 0 to 512
[  653.143637][T18632] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  653.218623][T18635] loop6: detected capacity change from 0 to 2048
[  653.235309][T18635] EXT4-fs: Ignoring removed mblk_io_submit option
[  653.271644][T18632] EXT4-fs (loop3): 1 truncate cleaned up
[  653.325915][T18632] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  653.486079][T18635] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  653.624166][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  653.718474][T13075] EXT4-fs (loop6): unmounting filesystem.
[  653.821544][T18668] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4678'.
[  654.426061][T18699] loop1: detected capacity change from 0 to 512
[  654.456453][T18699] EXT4-fs: Ignoring removed orlov option
[  654.488192][T18699] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  654.525964][T18699] EXT4-fs (loop1): orphan cleanup on readonly fs
[  654.555405][T18699] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.4688: bg 0: block 248: padding at end of block bitmap is not set
[  654.592532][T18699] Quota error (device loop1): write_blk: dquota write failed
[  654.617792][T18656] loop5: detected capacity change from 0 to 32768
[  654.634050][T18699] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  654.726491][T18699] EXT4-fs error (device loop1): ext4_acquire_dquot:6816: comm syz.1.4688: Failed to acquire dquot type 1
[  654.825145][T18699] EXT4-fs (loop1): 1 truncate cleaned up
[  654.841215][T18699] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  654.907578][T18719] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  655.005107][T18699] EXT4-fs: Ignoring removed orlov option
[  655.047471][T18699] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  655.104666][T18699] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  655.149899][T18699] EXT4-fs error (device loop1): __ext4_remount:6625: comm syz.1.4688: Abort forced by user
[  655.188872][T18699] EXT4-fs (loop1): Remounting filesystem read-only
[  655.247170][T18699] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  655.434221][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  655.917994][T18766] netlink: 'syz.2.4704': attribute type 25 has an invalid length.
[  655.925899][T18766] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4704'.
[  656.321077][T18783] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  656.501279][T18822] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4716'.
[  656.765194][T18758] loop3: detected capacity change from 0 to 32768
[  657.198732][T18852] binder: 18851:18852 ioctl c018620c 0 returned -14
[  657.736410][T18826] loop1: detected capacity change from 0 to 32768
[  657.783573][T18826] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.4715 (18826)
[  657.803808][T18876] netlink: 'syz.3.4731': attribute type 10 has an invalid length.
[  657.877075][T18826] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  657.909733][T18826] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  657.918697][T18876] device macvlan0 entered promiscuous mode
[  657.929982][T18826] BTRFS info (device loop1): enabling auto defrag
[  657.940697][T18826] BTRFS info (device loop1): doing ref verification
[  657.974866][T18826] BTRFS info (device loop1): use no compression
[  657.999928][T18876] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  658.001035][T18826] BTRFS info (device loop1): force clearing of disk cache
[  658.016972][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  658.023699][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  658.063583][T18826] BTRFS info (device loop1): max_inline at 4096
[  658.069936][T18826] BTRFS info (device loop1): disabling free space tree
[  658.300342][T18899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4735'.
[  658.407890][T18908] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4739'.
[  658.485904][T18914] netlink: 'syz.3.4737': attribute type 8 has an invalid length.
[  658.623197][T18826] BTRFS info (device loop1): enabling ssd optimizations
[  658.642987][T18826] BTRFS info (device loop1): rebuilding free space tree
[  658.787544][T18826] BTRFS info (device loop1): disabling free space tree
[  658.828515][T18826] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  658.883447][T18826] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  658.921814][T18935] loop2: detected capacity change from 0 to 164
[  659.041371][T18935] ISOFS: unable to read i-node block
[  659.128763][T18935] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  659.181014][T18942] team0: Port device team_slave_0 removed
[  659.205898][T18942] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  659.215472][T18949] loop5: detected capacity change from 0 to 22
[  659.272977][T18949] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  659.303155][T18949] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  659.532163][ T4274] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  660.940964][T19030] loop6: detected capacity change from 0 to 128
[  660.990236][T19030] FAT-fs (loop6): Directory bread(block 11554) failed
[  660.990285][T19030] FAT-fs (loop6): Directory bread(block 11555) failed
[  660.990316][T19030] FAT-fs (loop6): Directory bread(block 11556) failed
[  660.990347][T19030] FAT-fs (loop6): Directory bread(block 11557) failed
[  660.990379][T19030] FAT-fs (loop6): Directory bread(block 11558) failed
[  660.990419][T19030] FAT-fs (loop6): Directory bread(block 11559) failed
[  660.990451][T19030] FAT-fs (loop6): Directory bread(block 11560) failed
[  660.990482][T19030] FAT-fs (loop6): Directory bread(block 11561) failed
[  660.990776][T19030] FAT-fs (loop6): Directory bread(block 11562) failed
[  660.990810][T19030] FAT-fs (loop6): Directory bread(block 11563) failed
[  661.147175][T19039] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4773'.
[  661.813115][T19103] loop3: detected capacity change from 0 to 64
[  662.201791][T19124] loop1: detected capacity change from 0 to 512
[  662.284200][T19124] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  662.323156][T19124] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #4: comm syz.1.4787: corrupted inode contents
[  662.423634][T19124] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #4: comm syz.1.4787: mark_inode_dirty error
[  662.471659][T19124] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #4: comm syz.1.4787: corrupted inode contents
[  662.534382][T19124] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #4: comm syz.1.4787: mark_inode_dirty error
[  662.601609][T19124] Quota error (device loop1): write_blk: dquota write failed
[  662.662853][T19124] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  662.701882][T19124] EXT4-fs error (device loop1): ext4_acquire_dquot:6816: comm syz.1.4787: Failed to acquire dquot type 1
[  662.900276][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  663.245065][T19169] team0: Port device team_slave_0 removed
[  663.272357][T19169] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  663.795863][T19157] loop6: detected capacity change from 0 to 32768
[  663.808270][T19186] loop2: detected capacity change from 0 to 128
[  663.937454][T19186] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  664.006189][T19157] JBD2: Ignoring recovery information on journal
[  664.118060][T19178] loop3: detected capacity change from 0 to 32768
[  664.129518][T19178] XFS: noikeep mount option is deprecated.
[  664.146792][T19186] hpfs: filesystem error: improperly stopped
[  664.152860][T19186] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  664.200574][T19157] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  664.241884][T19186] hpfs: You really don't want any checks? You are crazy...
[  664.251738][T19186] hpfs: hpfs_map_sector(): read error
[  664.257175][T19186] hpfs: code page support is disabled
[  664.263325][T19186] hpfs: hpfs_map_4sectors(): unaligned read
[  664.269343][T19186] hpfs: hpfs_map_4sectors(): unaligned read
[  664.284153][T19186] hpfs: filesystem error: unable to find root dir
[  664.337024][T19157] OCFS2: ERROR (device loop6): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #1792 has bad signature 
[  664.372299][T19178] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  664.379669][T19186] hpfs: hpfs_map_4sectors(): unaligned read
[  664.391876][T19178] XFS (loop3): Mounting V5 Filesystem
[  664.396668][T19157] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  664.449092][T19157] OCFS2: File system is now read-only.
[  664.476217][T19157] (syz.6.4796,19157,1):ocfs2_search_chain:1785 ERROR: status = -30
[  664.491163][T19157] (syz.6.4796,19157,1):ocfs2_search_chain:1871 ERROR: status = -30
[  664.494112][T19175] loop1: detected capacity change from 0 to 32768
[  664.499741][T19157] (syz.6.4796,19157,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  664.514947][T19157] (syz.6.4796,19157,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  664.523777][T19157] (syz.6.4796,19157,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  664.532914][T19157] (syz.6.4796,19157,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  664.541214][T19157] (syz.6.4796,19157,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  664.549174][T19157] (syz.6.4796,19157,1):ocfs2_mknod:385 ERROR: status = -30
[  664.556558][T19157] (syz.6.4796,19157,1):ocfs2_mknod:502 ERROR: status = -30
[  664.562893][T19178] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  664.564589][T19157] (syz.6.4796,19157,1):ocfs2_create:676 ERROR: status = -30
[  664.636384][T19175] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.4802 (19175)
[  664.656543][T13075] ocfs2: Unmounting device (7,6) on (node local)
[  664.739374][T19178] XFS (loop3): Starting recovery (logdev: internal)
[  664.786992][T19175] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  664.821499][T19178] XFS (loop3): Corruption warning: Metadata has LSN (256:16) ahead of current LSN (1:48). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  664.836975][T19175] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  664.878797][T19175] BTRFS info (device loop1): enabling disk space caching
[  664.912519][T19178] XFS (loop3): Metadata corruption detected at xfs_agf_verify+0x211/0xa70, xfs_agf block 0x1 
[  664.916290][T19175] BTRFS info (device loop1): disabling tree log
[  664.983070][T19175] BTRFS info (device loop1): setting nodatasum
[  664.987184][T19178] XFS (loop3): Unmount and run xfs_repair
[  664.998551][T19178] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  665.006569][T19178] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 10 00  XAGF............
[  665.032965][T19175] BTRFS info (device loop1): turning off barriers
[  665.072707][T19175] BTRFS info (device loop1): doing ref verification
[  665.079433][T19175] BTRFS info (device loop1): force clearing of disk cache
[  665.112445][T19178] 00000010: 00 00 00 01 00 00 00 02 00 00 00 00 00 00 00 01  ................
[  665.121286][T19175] BTRFS info (device loop1): turning on flush-on-commit
[  665.162603][T19175] BTRFS info (device loop1): enabling ssd optimizations
[  665.168805][T19178] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  665.178657][   T26] audit: type=1326 audit(34449329.091:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19226 comm="syz.6.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  665.186916][T19175] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[  665.233118][T19229] netlink: 92 bytes leftover after parsing attributes in process `syz.2.4811'.
[  665.244028][T19178] 00000030: 00 00 00 04 00 00 0b a2 00 00 0b a0 00 00 00 00  ................
[  665.274638][   T26] audit: type=1326 audit(34449329.091:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19226 comm="syz.6.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  665.307727][T19178] 00000040: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  665.317144][T19229] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  665.338624][T19178] 00000050: 00 00 00 00 00 00 00 01 00 00 00 05 00 00 00 01  ................
[  665.348658][T19175] BTRFS info (device loop1): use lzo compression, level 0
[  665.372426][T19175] BTRFS info (device loop1): disk space caching is enabled
[  665.401068][   T26] audit: type=1326 audit(34449329.147:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19226 comm="syz.6.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  665.424762][T19178] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  665.441853][T19178] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  665.455348][T19178] XFS (loop3): Corruption of in-memory data (0x8) detected at _xfs_buf_ioapply+0x1ff/0x670 (fs/xfs/xfs_buf.c:1553).  Shutting down filesystem.
[  665.470813][T19178] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  665.480896][T19178] XFS (loop3): log mount/recovery failed: error -117
[  665.502941][   T26] audit: type=1326 audit(34449329.147:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19226 comm="syz.6.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  665.536460][   T26] audit: type=1326 audit(34449329.147:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19226 comm="syz.6.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bcc58eec9 code=0x7ffc0000
[  665.621107][T19178] XFS (loop3): log mount failed
[  665.928197][   T26] audit: type=1326 audit(34449329.802:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19260 comm="syz.2.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  666.049880][   T26] audit: type=1326 audit(34449329.821:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19260 comm="syz.2.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  666.072806][   T26] audit: type=1326 audit(34449329.830:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19260 comm="syz.2.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  666.103562][T19175] BTRFS info (device loop1): rebuilding free space tree
[  666.180114][T19175] BTRFS info (device loop1): disabling free space tree
[  666.228525][T19175] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  666.280425][T19175] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  666.408403][T19286] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4823'.
[  666.442511][T19289] loop6: detected capacity change from 0 to 8
[  666.472827][T19286] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4823'.
[  666.484787][T19289] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  666.522874][ T7853] udevd[7853]: incorrect cramfs checksum on /dev/loop6
[  666.549061][T19286] device vlan0 entered promiscuous mode
[  666.586173][T19289] cramfs: Error -3 while decompressing!
[  666.633189][T19289] cramfs: ffffffff96d7a1c2(26)->ffff88804d078000(4096)
[  666.640148][T19289] cramfs: Error -3 while decompressing!
[  666.649910][ T4274] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  666.675976][T19289] cramfs: ffffffff96d7a1dc(16)->ffff88804b8e5000(4096)
[  666.691718][T19297] kAFS: unable to lookup cell '
[  666.691718][T19297] $)-.�ײf�Y�ǝ�a���2s�
[  666.691718][T19297] '
[  666.734980][T19289] cramfs: Error -3 while decompressing!
[  666.768033][T19289] cramfs: ffffffff96d7a1c2(26)->ffff88804d078000(4096)
[  666.810836][T19301] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4828'.
[  667.217448][T19318] loop5: detected capacity change from 0 to 512
[  667.458027][T19318] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  667.512441][T19318] EXT4-fs (loop5): 1 truncate cleaned up
[  667.602922][T19318] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  667.755845][T19318] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.4833: Logical block already allocated
[  667.790783][T19352] loop2: detected capacity change from 0 to 8
[  667.809032][T19318] EXT4-fs (loop5): Remounting filesystem read-only
[  667.815686][T19352] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  667.862813][ T7853] udevd[7853]: incorrect cramfs checksum on /dev/loop2
[  667.892819][T19352] cramfs: Error -3 while decompressing!
[  667.913574][ T7852] udevd[7852]: incorrect cramfs checksum on /dev/loop2
[  667.917055][T19352] cramfs: ffffffff96d761c2(26)->ffff88804f26c000(4096)
[  667.969406][T19352] cramfs: Error -3 while decompressing!
[  667.996462][T19352] cramfs: ffffffff96d761dc(16)->ffff88804115e000(4096)
[  668.014540][T12868] EXT4-fs (loop5): unmounting filesystem.
[  668.067724][T19352] cramfs: Error -3 while decompressing!
[  668.074599][T19352] cramfs: ffffffff96d761c2(26)->ffff88804f26c000(4096)
[  668.097978][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  668.097995][   T26] audit: type=1800 audit(34449331.832:53): pid=19352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4842" name="file2" dev="loop2" ino=348 res=0 errno=0
[  668.162154][T19372] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4846'.
[  668.542489][T19389] netlink: 71 bytes leftover after parsing attributes in process `syz.3.4852'.
[  668.943895][T19410] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  669.032580][T19410] x_tables: ip_tables: osf match: only valid for protocol 6
[  669.210745][T19421] loop6: detected capacity change from 0 to 1024
[  669.477353][ T4345] hfsplus: b-tree write err: -5, ino 4
[  669.554055][T19432] loop1: detected capacity change from 0 to 512
[  669.615953][T19426] xt_CT: No such helper "netbios-ns"
[  669.706443][T19432] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  669.734399][T19444] loop5: detected capacity change from 0 to 8
[  669.906931][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  670.320310][T19415] loop2: detected capacity change from 0 to 32768
[  670.713721][T19485] xt_bpf: check failed: parse error
[  670.746131][T19488] netlink: 'syz.6.4881': attribute type 10 has an invalid length.
[  670.823867][T19488] device macvlan0 entered promiscuous mode
[  670.944786][T19488] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  671.571908][T19527] loop5: detected capacity change from 0 to 1024
[  671.706268][T19527] hfsplus: xattr searching failed
[  671.849338][T19544] netlink: 'syz.2.4898': attribute type 10 has an invalid length.
[  671.880197][T19544] device macvlan0 entered promiscuous mode
[  671.917922][T19535] loop3: detected capacity change from 0 to 4096
[  671.952159][T19544] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  671.961860][T19535] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  672.148255][T19535] ntfs3: loop3: failed to convert "c46c" to cp932
[  672.360901][T19563] loop5: detected capacity change from 0 to 1024
[  672.407687][T19563] EXT4-fs: Ignoring removed oldalloc option
[  672.413819][T19563] EXT4-fs: Ignoring removed orlov option
[  672.549992][T19563] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  672.578971][T19573] loop6: detected capacity change from 0 to 128
[  672.649083][T19573] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  672.704452][T19573] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  672.730939][T12868] EXT4-fs (loop5): unmounting filesystem.
[  672.785514][T19582] loop2: detected capacity change from 0 to 1024
[  672.973905][T19590] loop5: detected capacity change from 0 to 256
[  673.080727][T19590] FAT-fs (loop5): Directory bread(block 64) failed
[  673.115881][T19590] FAT-fs (loop5): Directory bread(block 65) failed
[  673.145227][T19590] FAT-fs (loop5): Directory bread(block 66) failed
[  673.151843][T19590] FAT-fs (loop5): Directory bread(block 67) failed
[  673.162078][T19539] loop1: detected capacity change from 0 to 32768
[  673.205216][T19590] FAT-fs (loop5): Directory bread(block 68) failed
[  673.250615][T19590] FAT-fs (loop5): Directory bread(block 69) failed
[  673.257408][T19590] FAT-fs (loop5): Directory bread(block 70) failed
[  673.293383][T19590] FAT-fs (loop5): Directory bread(block 71) failed
[  673.300076][T19590] FAT-fs (loop5): Directory bread(block 72) failed
[  673.324637][T19539] XFS (loop1): Mounting V5 Filesystem
[  673.367054][T19590] FAT-fs (loop5): Directory bread(block 73) failed
[  673.404938][T19539] XFS (loop1): Ending clean mount
[  673.415358][T19539] XFS (loop1): Quotacheck needed: Please wait.
[  673.520674][T19539] XFS (loop1): Quotacheck: Done.
[  673.807503][ T4274] XFS (loop1): Unmounting Filesystem
[  674.377052][   T26] audit: type=1326 audit(34449337.697:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19658 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  674.470191][   T26] audit: type=1326 audit(34449337.697:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19658 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  674.512204][T19665] netlink: 10 bytes leftover after parsing attributes in process `syz.6.4928'.
[  674.544208][T19670] xt_TPROXY: Can be used only with -p tcp or -p udp
[  674.588489][   T26] audit: type=1326 audit(34449337.715:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19658 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  674.641655][T19674] cgroup: Invalid name
[  674.694603][   T26] audit: type=1326 audit(34449337.715:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19658 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  674.832774][   T26] audit: type=1326 audit(34449337.715:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19658 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  675.429921][T19714] netlink: 'syz.1.4944': attribute type 32 has an invalid length.
[  675.492148][T19718] netlink: 'syz.5.4946': attribute type 2 has an invalid length.
[  675.752812][ T6128] usb 4-1: new high-speed USB device number 94 using dummy_hcd
[  675.775984][T19738] loop6: detected capacity change from 0 to 16
[  675.805841][T19738] erofs: (device loop6): mounted with root inode @ nid 36.
[  675.976885][ T6128] usb 4-1: Using ep0 maxpacket: 32
[  675.998535][T19748] dlm: non-version read from control device 0
[  676.000164][ T6128] usb 4-1: config 0 has an invalid interface number: 35 but max is 0
[  676.030075][ T6128] usb 4-1: config 0 has no interface number 0
[  676.051048][ T6128] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  676.067736][T19753] loop1: detected capacity change from 0 to 1024
[  676.075729][ T6128] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  676.093255][ T6128] usb 4-1: Product: syz
[  676.098139][ T6128] usb 4-1: Manufacturer: syz
[  676.107449][ T6128] usb 4-1: SerialNumber: syz
[  676.146310][ T6128] usb 4-1: config 0 descriptor??
[  676.352274][T19768] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4958'.
[  676.368652][ T4345] hfsplus: b-tree write err: -5, ino 4
[  676.399400][ T6128] radio-si470x 4-1:0.35: this is not a si470x device.
[  676.480898][   T26] audit: type=1326 audit(34449339.670:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19772 comm="syz.5.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60698eec9 code=0x7ffc0000
[  676.538624][   T26] audit: type=1326 audit(34449339.670:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19772 comm="syz.5.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fe60698eec9 code=0x7ffc0000
[  676.552578][T19776] loop1: detected capacity change from 0 to 164
[  676.563538][   T26] audit: type=1326 audit(34449339.670:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19772 comm="syz.5.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60698eec9 code=0x7ffc0000
[  676.623906][ T6128] radio-raremono 4-1:0.35: this is not Thanko's Raremono.
[  676.639504][ T4285] Bluetooth: hci0: command 0x0406 tx timeout
[  676.639608][   T48] Bluetooth: hci1: command 0x0406 tx timeout
[  676.674587][ T6128] usb 4-1: USB disconnect, device number 94
[  677.794241][T19837] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4977'.
[  677.973762][T19812] loop5: detected capacity change from 0 to 32768
[  678.045423][T19812] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9
[  678.305750][T19861] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4985'.
[  678.432660][T19865] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4986'.
[  678.495876][T19865] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4986'.
[  678.513702][ T7852] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9
[  679.654803][   T26] audit: type=1326 audit(34449342.636:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19936 comm="syz.2.5008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  679.728571][   T26] audit: type=1326 audit(34449342.664:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19936 comm="syz.2.5008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  679.750729][    C1] vkms_vblank_simulate: vblank timer overrun
[  679.825456][   T26] audit: type=1326 audit(34449342.664:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19936 comm="syz.2.5008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  679.900074][   T26] audit: type=1326 audit(34449342.664:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19936 comm="syz.2.5008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa057d8eec9 code=0x7ffc0000
[  679.950821][T19952] loop2: detected capacity change from 0 to 1024
[  680.057857][T19952] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  680.152411][T19972] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5018'.
[  680.162369][T19972] netlink: 'syz.3.5018': attribute type 1 has an invalid length.
[  680.435950][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  681.237641][T20029] vivid-000: =================  START STATUS  =================
[  681.290226][T20029] vivid-000: Radio HW Seek Mode: Bounded
[  681.317324][T20029] vivid-000: Radio Programmable HW Seek: false
[  681.333694][T20029] vivid-000: RDS Rx I/O Mode: Block I/O
[  681.336180][T20032] loop3: detected capacity change from 0 to 64
[  681.351277][T20029] vivid-000: Generate RBDS Instead of RDS: false
[  681.359494][T20029] vivid-000: RDS Reception: true
[  681.399591][T20029] vivid-000: RDS Program Type: 0 inactive
[  681.429024][T20029] vivid-000: RDS PS Name:  inactive
[  681.434345][T20029] vivid-000: RDS Radio Text:  inactive
[  681.475835][T20029] vivid-000: RDS Traffic Announcement: false inactive
[  681.514815][T20029] vivid-000: RDS Traffic Program: false inactive
[  681.521258][T20029] vivid-000: RDS Music: false inactive
[  681.577073][T20029] vivid-000: ==================  END STATUS  ==================
[  682.145172][ T4329] usb 3-1: new high-speed USB device number 90 using dummy_hcd
[  682.285241][T20038] loop1: detected capacity change from 0 to 32768
[  682.324947][T20038] JBD2: Ignoring recovery information on journal
[  682.353263][ T4329] usb 3-1: Using ep0 maxpacket: 8
[  682.383582][ T4329] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  682.398011][ T4329] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  682.406493][ T4329] usb 3-1: Product: syz
[  682.410697][ T4329] usb 3-1: Manufacturer: syz
[  682.415419][ T4329] usb 3-1: SerialNumber: syz
[  682.428581][ T4329] usb 3-1: config 0 descriptor??
[  682.442840][T20038] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  682.593037][T20038] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #1792 has bad signature 
[  682.657816][ T4329] usb 3-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  682.706237][T20038] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  682.756347][T20038] OCFS2: File system is now read-only.
[  682.814051][T20038] (syz.1.5038,20038,1):ocfs2_search_chain:1785 ERROR: status = -30
[  682.840937][T20038] (syz.1.5038,20038,1):ocfs2_search_chain:1871 ERROR: status = -30
[  682.848986][T20038] (syz.1.5038,20038,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  682.874471][T20038] (syz.1.5038,20038,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  682.904693][ T4329] usb write operation failed. (-71)
[  682.928193][ T4329] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  682.939213][T20038] (syz.1.5038,20038,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  682.965470][T20038] (syz.1.5038,20038,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  682.976176][ T4329] dvbdev: DVB: registering new adapter (Terratec H7)
[  682.991557][ T4329] usb 3-1: media controller created
[  683.011457][T20038] (syz.1.5038,20038,1):ocfs2_mknod_locked:639 ERROR: status = -30
[  683.047431][T20038] (syz.1.5038,20038,1):ocfs2_mknod:385 ERROR: status = -30
[  683.066168][ T4329] usb read operation failed. (-71)
[  683.102363][ T4329] usb write operation failed. (-71)
[  683.108204][T20038] (syz.1.5038,20038,1):ocfs2_mknod:502 ERROR: status = -30
[  683.115464][T20038] (syz.1.5038,20038,1):ocfs2_create:676 ERROR: status = -30
[  683.131262][ T4329] dvb_usb_az6007: probe of 3-1:0.0 failed with error -5
[  683.164885][ T4329] usb 3-1: USB disconnect, device number 90
[  683.263138][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  683.739052][T20153] loop1: detected capacity change from 0 to 256
[  683.847658][T20153] FAT-fs (loop1): Directory bread(block 64) failed
[  683.854456][T20153] FAT-fs (loop1): Directory bread(block 65) failed
[  683.898664][T20153] FAT-fs (loop1): Directory bread(block 66) failed
[  683.927922][T20153] FAT-fs (loop1): Directory bread(block 67) failed
[  683.940462][T20153] FAT-fs (loop1): Directory bread(block 68) failed
[  683.958492][T20166] netlink: 'syz.3.5073': attribute type 10 has an invalid length.
[  683.966790][T20153] FAT-fs (loop1): Directory bread(block 69) failed
[  683.988425][T20153] FAT-fs (loop1): Directory bread(block 70) failed
[  683.997300][T20166] device veth1_macvtap left promiscuous mode
[  684.004244][T20153] FAT-fs (loop1): Directory bread(block 71) failed
[  684.028139][T20166] bond0: (slave macsec0): Error -34 calling dev_set_mtu
[  684.048920][T20153] FAT-fs (loop1): Directory bread(block 72) failed
[  684.055652][T20153] FAT-fs (loop1): Directory bread(block 73) failed
[  684.231816][T20177] loop2: detected capacity change from 0 to 64
[  685.064285][T20222] device bridge2 entered promiscuous mode
[  685.240057][T20237] QAT: failed to copy from user cfg_data.
[  685.343149][T20242] openvswitch: netlink: Message has 4 unknown bytes.
[  685.471830][T20250] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  687.029957][T20333] kAFS: unable to lookup cell '.,'
[  687.557771][T20362] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5133'.
[  687.603945][T20362] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5133'.
[  687.751591][T20369] loop1: detected capacity change from 0 to 512
[  687.817547][T20369] EXT4-fs: Ignoring removed orlov option
[  687.864399][T20369] EXT4-fs: Ignoring removed nobh option
[  687.893615][T20369] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  687.985335][T20369] EXT4-fs (loop1): orphan cleanup on readonly fs
[  688.028630][T20388] loop5: detected capacity change from 0 to 512
[  688.040863][T20369] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.5136: bg 0: block 248: padding at end of block bitmap is not set
[  688.153657][T20369] Quota error (device loop1): write_blk: dquota write failed
[  688.161212][T20369] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  688.219881][T20369] EXT4-fs error (device loop1): ext4_acquire_dquot:6816: comm syz.1.5136: Failed to acquire dquot type 1
[  688.247427][T20355] loop2: detected capacity change from 0 to 32768
[  688.277525][T20355] XFS: ikeep mount option is deprecated.
[  688.286577][T20369] EXT4-fs (loop1): 1 truncate cleaned up
[  688.287407][T20392] loop3: detected capacity change from 0 to 2048
[  688.311172][T20386] loop6: detected capacity change from 0 to 4096
[  688.319103][T20355] XFS: ikeep mount option is deprecated.
[  688.335803][T20369] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  688.355446][T20392] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  688.390989][T20386] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512)
[  688.462745][T20369] EXT4-fs: Ignoring removed orlov option
[  688.469400][T20369] EXT4-fs: Ignoring removed nobh option
[  688.475381][T20369] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  688.484469][T20369] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  688.518758][T20355] XFS (loop2): Mounting V5 Filesystem
[  688.570673][T20369] EXT4-fs error (device loop1): __ext4_remount:6625: comm syz.1.5136: Abort forced by user
[  688.637143][T20369] EXT4-fs (loop1): Remounting filesystem read-only
[  688.643715][T20369] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  688.671587][T20386] ntfs3: loop6: no free space to extend mft
[  688.708851][T20418] netlink: 'syz.5.5145': attribute type 13 has an invalid length.
[  688.740190][T20418] device veth0_macvtap left promiscuous mode
[  688.821049][T20355] XFS (loop2): Ending clean mount
[  688.844037][T20418] macvtap0: refused to change device tx_queue_len
[  688.872539][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  689.002584][T20426] loop1: detected capacity change from 0 to 256
[  689.117099][T20426] FAT-fs (loop1): Directory bread(block 64) failed
[  689.125430][ T4273] XFS (loop2): Unmounting Filesystem
[  689.158187][T20426] FAT-fs (loop1): Directory bread(block 65) failed
[  689.165736][T20426] FAT-fs (loop1): Directory bread(block 66) failed
[  689.190218][T20434] AppArmor: change_hat: Invalid input ''
[  689.204774][T20436] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5149'.
[  689.233683][T20426] FAT-fs (loop1): Directory bread(block 67) failed
[  689.240374][T20426] FAT-fs (loop1): Directory bread(block 68) failed
[  689.268051][T20436] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5149'.
[  689.291140][T20426] FAT-fs (loop1): Directory bread(block 69) failed
[  689.313188][T20438] loop5: detected capacity change from 0 to 128
[  689.337118][T20426] FAT-fs (loop1): Directory bread(block 70) failed
[  689.359784][T20426] FAT-fs (loop1): Directory bread(block 71) failed
[  689.368894][T20438] VFS: Found a Xenix FS (block size = 1024) on device loop5
[  689.390071][T20426] FAT-fs (loop1): Directory bread(block 72) failed
[  689.425004][T20426] FAT-fs (loop1): Directory bread(block 73) failed
[  689.450406][T20438] syz.5.5150: attempt to access beyond end of device
[  689.450406][T20438] loop5: rw=0, sector=6491536, nr_sectors = 2 limit=128
[  689.527560][T20438] Buffer I/O error on dev loop5, logical block 3245768, async page read
[  689.748420][T12868] sysv_free_block: flc_count > flc_size
[  689.789384][T12868] sysv_free_block: flc_count > flc_size
[  689.801339][T12868] sysv_free_block: flc_count > flc_size
[  689.806983][T12868] sysv_free_block: flc_count > flc_size
[  689.842406][T12868] sysv_free_block: flc_count > flc_size
[  689.848069][T12868] sysv_free_block: flc_count > flc_size
[  689.885167][T12868] sysv_free_block: flc_count > flc_size
[  689.891044][T12868] sysv_free_block: flc_count > flc_size
[  689.916124][T12868] sysv_free_block: flc_count > flc_size
[  689.933139][T12868] sysv_free_block: flc_count > flc_size
[  689.956425][T12868] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  690.000768][T20466] xt_limit: Overflow, try lower: 1207959552/384
[  690.393772][T20488] device geneve2 entered promiscuous mode
[  690.634274][T20509] netlink: 'syz.3.5168': attribute type 1 has an invalid length.
[  690.847522][ T5366] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[  690.901169][T20523] 9p: Unknown access argument z: -22
[  690.910160][T20525] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5173'.
[  690.962851][T20525] netlink: 'syz.3.5173': attribute type 1 has an invalid length.
[  690.982636][T20525] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5173'.
[  691.050587][ T5366] usb 2-1: Using ep0 maxpacket: 16
[  691.063876][ T5366] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[  691.089909][ T5366] usb 2-1: config 0 descriptor has 1 excess byte, ignoring
[  691.128450][ T5366] usb 2-1: config 0 has no interface number 0
[  691.159446][ T5366] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  691.189354][ T5366] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  691.208278][ T5366] usb 2-1: Product: syz
[  691.219070][ T5366] usb 2-1: Manufacturer: syz
[  691.236345][ T5366] usb 2-1: SerialNumber: syz
[  691.265147][ T5366] usb 2-1: config 0 descriptor??
[  691.384583][T20547] loop6: detected capacity change from 0 to 512
[  691.400003][T20539] loop5: detected capacity change from 0 to 8192
[  691.426183][T20547] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  691.475482][T20539] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  691.492966][ T5366] usb 2-1: Found UVC 0.00 device syz (046d:08f3)
[  691.502873][ T5366] usb 2-1: No valid video chain found.
[  691.511919][ T5366] usb 2-1: USB disconnect, device number 100
[  691.543197][T20539] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  691.554117][T20539] REISERFS (device loop5): using ordered data mode
[  691.568980][T20539] reiserfs: using flush barriers
[  691.666330][T20547] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #17: comm syz.6.5180: iget: bad i_size value: -6917529027641081756
[  691.693105][T20539] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  691.718579][T20547] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.5180: couldn't read orphan inode 17 (err -117)
[  691.748409][T20539] REISERFS (device loop5): checking transaction log (loop5)
[  691.762949][T20547] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  691.805588][T20539] REISERFS (device loop5): Using r5 hash to sort names
[  691.817669][T20539] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  691.893057][T20539] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  691.901735][T20547] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.5180: bg 0: block 65: padding at end of block bitmap is not set
[  691.973365][T20547] Quota error (device loop6): write_blk: dquota write failed
[  692.005514][T20547] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  692.056327][T20547] EXT4-fs error (device loop6): ext4_acquire_dquot:6816: comm syz.6.5180: Failed to acquire dquot type 0
[  692.232569][T20590] netlink: 'syz.2.5189': attribute type 1 has an invalid length.
[  692.243516][T20591] ./file0: Can't open blockdev
[  692.263363][T13075] EXT4-fs (loop6): unmounting filesystem.
[  692.561184][T20607] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  692.723261][T20601] loop6: detected capacity change from 0 to 8192
[  692.772320][T20601] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  692.801676][T20621] netlink: 324 bytes leftover after parsing attributes in process `syz.3.5198'.
[  692.825259][T20621] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5198'.
[  692.834570][T20621] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5198'.
[  692.844394][T20601] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[  692.856901][T20612] loop2: detected capacity change from 0 to 8192
[  692.903641][T20612] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  692.927722][T20612] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  692.938089][T20612] REISERFS (device loop2): using ordered data mode
[  692.945821][T20612] reiserfs: using flush barriers
[  692.950196][T20601] REISERFS (device loop6): using ordered data mode
[  692.964155][T20612] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  693.061594][T20601] reiserfs: using flush barriers
[  693.072516][T20612] REISERFS (device loop2): checking transaction log (loop2)
[  693.092477][T20601] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  693.153129][T20601] REISERFS (device loop6): checking transaction log (loop6)
[  693.162529][T20612] REISERFS (device loop2): Using r5 hash to sort names
[  693.188918][T20612] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  693.319436][T20612] 
[  693.321827][T20612] ======================================================
[  693.328872][T20612] WARNING: possible circular locking dependency detected
[  693.335925][T20612] syzkaller #0 Not tainted
[  693.340370][T20612] ------------------------------------------------------
[  693.347422][T20612] syz.2.5196/20612 is trying to acquire lock:
[  693.353527][T20612] ffff888055045090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x75/0xd0
[  693.362559][T20612] 
[  693.362559][T20612] but task is already holding lock:
[  693.369957][T20612] ffff888054aa0980 (&type->i_mutex_dir_key#8/3){+.+.}-{3:3}, at: open_xa_dir+0x11e/0x6f0
[  693.379865][T20612] 
[  693.379865][T20612] which lock already depends on the new lock.
[  693.379865][T20612] 
[  693.390318][T20612] 
[  693.390318][T20612] the existing dependency chain (in reverse order) is:
[  693.399366][T20612] 
[  693.399366][T20612] -> #1 (&type->i_mutex_dir_key#8/3){+.+.}-{3:3}:
[  693.408032][T20612]        down_write_nested+0x39/0x60
[  693.413360][T20612]        open_xa_dir+0x11e/0x6f0
[  693.418338][T20612]        reiserfs_for_each_xattr+0x174/0x7b0
[  693.424356][T20612]        reiserfs_delete_xattrs+0x1c/0x80
[  693.430116][T20612]        reiserfs_evict_inode+0x221/0x490
[  693.435865][T20612]        evict+0x485/0x870
[  693.440303][T20612]        reiserfs_new_inode+0x5c8/0x1860
[  693.445943][T20612]        reiserfs_symlink+0x4cf/0x770
[  693.451326][T20612]        vfs_symlink+0x247/0x3d0
[  693.456273][T20612]        do_symlinkat+0x1ae/0x3f0
[  693.461312][T20612]        __x64_sys_symlink+0x7a/0x90
[  693.466602][T20612]        do_syscall_64+0x4c/0xa0
[  693.471562][T20612]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  693.478157][T20612] 
[  693.478157][T20612] -> #0 (&sbi->lock){+.+.}-{3:3}:
[  693.485378][T20612]        __lock_acquire+0x2cf8/0x7c50
[  693.490763][T20612]        lock_acquire+0x1b4/0x490
[  693.495796][T20612]        __mutex_lock+0x120/0xaf0
[  693.500829][T20612]        reiserfs_write_lock+0x75/0xd0
[  693.506303][T20612]        reiserfs_mkdir+0x30c/0x970
[  693.511504][T20612]        open_xa_dir+0x316/0x6f0
[  693.516451][T20612]        xattr_lookup+0x22/0x2a0
[  693.521396][T20612]        reiserfs_xattr_set_handle+0xf3/0xca0
[  693.527477][T20612]        __reiserfs_set_acl+0x4ec/0x680
[  693.533032][T20612]        reiserfs_set_acl+0x447/0x5f0
[  693.538422][T20612]        posix_acl_xattr_set+0x387/0x3f0
[  693.544068][T20612]        __vfs_setxattr+0x3e0/0x420
[  693.549274][T20612]        __vfs_setxattr_noperm+0x129/0x5e0
[  693.555099][T20612]        vfs_setxattr+0x168/0x2f0
[  693.560142][T20612]        setxattr+0x2b2/0x2d0
[  693.564828][T20612]        path_setxattr+0x142/0x280
[  693.569943][T20612]        __x64_sys_setxattr+0xb7/0xd0
[  693.575605][T20612]        do_syscall_64+0x4c/0xa0
[  693.580547][T20612]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  693.586968][T20612] 
[  693.586968][T20612] other info that might help us debug this:
[  693.586968][T20612] 
[  693.597197][T20612]  Possible unsafe locking scenario:
[  693.597197][T20612] 
[  693.604667][T20612]        CPU0                    CPU1
[  693.610087][T20612]        ----                    ----
[  693.615461][T20612]   lock(&type->i_mutex_dir_key#8/3);
[  693.620876][T20612]                                lock(&sbi->lock);
[  693.627388][T20612]                                lock(&type->i_mutex_dir_key#8/3);
[  693.635298][T20612]   lock(&sbi->lock);
[  693.639466][T20612] 
[  693.639466][T20612]  *** DEADLOCK ***
[  693.639466][T20612] 
[  693.647611][T20612] 3 locks held by syz.2.5196/20612:
[  693.652812][T20612]  #0: ffff88807a5a2460 (sb_writers#32){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[  693.662069][T20612]  #1: ffff888054aa2aa0 (&type->i_mutex_dir_key#8){+.+.}-{3:3}, at: vfs_setxattr+0x141/0x2f0
[  693.672263][T20612]  #2: ffff888054aa0980 (&type->i_mutex_dir_key#8/3){+.+.}-{3:3}, at: open_xa_dir+0x11e/0x6f0
[  693.682558][T20612] 
[  693.682558][T20612] stack backtrace:
[  693.688446][T20612] CPU: 1 PID: 20612 Comm: syz.2.5196 Not tainted syzkaller #0
[  693.696002][T20612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  693.706160][T20612] Call Trace:
[  693.709446][T20612]  <TASK>
[  693.712388][T20612]  dump_stack_lvl+0x168/0x22e
[  693.717119][T20612]  ? load_image+0x3b0/0x3b0
[  693.721636][T20612]  ? show_regs_print_info+0x12/0x12
[  693.726845][T20612]  ? print_circular_bug+0x12b/0x1a0
[  693.732076][T20612]  check_noncircular+0x274/0x310
[  693.737060][T20612]  ? add_chain_block+0x940/0x940
[  693.742085][T20612]  ? lockdep_lock+0xdc/0x1e0
[  693.746774][T20612]  ? _find_first_zero_bit+0xcf/0x100
[  693.752963][T20612]  __lock_acquire+0x2cf8/0x7c50
[  693.757829][T20612]  ? stack_trace_snprint+0xf0/0xf0
[  693.762976][T20612]  ? add_lock_to_list+0x191/0x280
[  693.768014][T20612]  ? verify_lock_unused+0x140/0x140
[  693.773222][T20612]  ? __lock_acquire+0x28b5/0x7c50
[  693.778288][T20612]  lock_acquire+0x1b4/0x490
[  693.782805][T20612]  ? reiserfs_write_lock+0x75/0xd0
[  693.787929][T20612]  ? __might_sleep+0xd0/0xd0
[  693.792530][T20612]  ? read_lock_is_recursive+0x10/0x10
[  693.797916][T20612]  __mutex_lock+0x120/0xaf0
[  693.802431][T20612]  ? reiserfs_write_lock+0x75/0xd0
[  693.807571][T20612]  ? memset+0x1e/0x40
[  693.811588][T20612]  ? reiserfs_write_lock+0x75/0xd0
[  693.816730][T20612]  ? mutex_lock_nested+0x10/0x10
[  693.821690][T20612]  ? __rwlock_init+0x140/0x140
[  693.826471][T20612]  ? dquot_initialize+0x20/0x20
[  693.831336][T20612]  ? memset+0x1e/0x40
[  693.835331][T20612]  reiserfs_write_lock+0x75/0xd0
[  693.840313][T20612]  reiserfs_mkdir+0x30c/0x970
[  693.845004][T20612]  ? reiserfs_symlink+0x770/0x770
[  693.850037][T20612]  ? __rwlock_init+0x140/0x140
[  693.854814][T20612]  ? stack_trace_save+0x98/0xe0
[  693.859674][T20612]  ? do_raw_spin_unlock+0x11d/0x230
[  693.864973][T20612]  open_xa_dir+0x316/0x6f0
[  693.869401][T20612]  ? listxattr_filler+0x3f0/0x3f0
[  693.874439][T20612]  ? posix_acl_xattr_set+0x387/0x3f0
[  693.879732][T20612]  ? __vfs_setxattr+0x3e0/0x420
[  693.884592][T20612]  ? __vfs_setxattr_noperm+0x129/0x5e0
[  693.890060][T20612]  ? vfs_setxattr+0x168/0x2f0
[  693.894916][T20612]  ? setxattr+0x2b2/0x2d0
[  693.899262][T20612]  ? path_setxattr+0x142/0x280
[  693.904094][T20612]  ? __x64_sys_setxattr+0xb7/0xd0
[  693.909476][T20612]  ? do_syscall_64+0x4c/0xa0
[  693.914070][T20612]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  693.920148][T20612]  xattr_lookup+0x22/0x2a0
[  693.924578][T20612]  ? reiserfs_xattr_set_handle+0xc4/0xca0
[  693.930322][T20612]  reiserfs_xattr_set_handle+0xf3/0xca0
[  693.935880][T20612]  ? chown_one_xattr+0x90/0x90
[  693.940658][T20612]  ? from_kgid+0x159/0x680
[  693.945131][T20612]  ? make_kgid+0x640/0x640
[  693.949639][T20612]  ? __reiserfs_set_acl+0x165/0x680
[  693.954850][T20612]  ? rcu_is_watching+0x11/0xa0
[  693.959622][T20612]  ? __reiserfs_set_acl+0x165/0x680
[  693.964831][T20612]  ? __kmalloc+0xe1/0x240
[  693.969173][T20612]  ? mutex_unlock+0x10/0x10
[  693.973682][T20612]  __reiserfs_set_acl+0x4ec/0x680
[  693.978717][T20612]  reiserfs_set_acl+0x447/0x5f0
[  693.983581][T20612]  ? security_set+0xc0/0xc0
[  693.988090][T20612]  ? from_kgid+0x159/0x680
[  693.992513][T20612]  ? bpf_lsm_capable+0x5/0x10
[  693.997383][T20612]  ? posix_acl_valid+0x320/0x3a0
[  694.002354][T20612]  posix_acl_xattr_set+0x387/0x3f0
[  694.007476][T20612]  ? posix_acl_xattr_get+0x550/0x550
[  694.012855][T20612]  __vfs_setxattr+0x3e0/0x420
[  694.017544][T20612]  __vfs_setxattr_noperm+0x129/0x5e0
[  694.022841][T20612]  vfs_setxattr+0x168/0x2f0
[  694.027354][T20612]  ? xattr_permission+0x500/0x500
[  694.032385][T20612]  ? _copy_from_user+0x10b/0x170
[  694.037330][T20612]  ? setxattr+0x243/0x2d0
[  694.041667][T20612]  setxattr+0x2b2/0x2d0
[  694.045921][T20612]  ? path_setxattr+0x280/0x280
[  694.050702][T20612]  ? __mnt_want_write+0x21f/0x2a0
[  694.055743][T20612]  path_setxattr+0x142/0x280
[  694.060344][T20612]  ? simple_xattr_list_add+0xf0/0xf0
[  694.065638][T20612]  ? lock_chain_count+0x20/0x20
[  694.070502][T20612]  __x64_sys_setxattr+0xb7/0xd0
[  694.075368][T20612]  do_syscall_64+0x4c/0xa0
[  694.079802][T20612]  ? clear_bhb_loop+0x60/0xb0
[  694.084496][T20612]  ? clear_bhb_loop+0x60/0xb0
[  694.089179][T20612]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  694.095075][T20612] RIP: 0033:0x7fa057d8eec9
[  694.099500][T20612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  694.119112][T20612] RSP: 002b:00007fa058ca0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  694.127532][T20612] RAX: ffffffffffffffda RBX: 00007fa057fe5fa0 RCX: 00007fa057d8eec9
[  694.135520][T20612] RDX: 0000200000000340 RSI: 0000200000000200 RDI: 0000200000000280
[  694.143518][T20612] RBP: 00007fa057e11f91 R08: 0000000000000000 R09: 0000000000000000
[  694.151495][T20612] R10: 000000000000002c R11: 0000000000000246 R12: 0000000000000000
[  694.159469][T20612] R13: 00007fa057fe6038 R14: 00007fa057fe5fa0 R15: 00007fff3c0667e8
[  694.167540][T20612]  </TASK>
[  694.264152][T20601] REISERFS (device loop6): Using rupasov hash to sort names
[  694.282754][T20601] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  694.380512][T20615] loop1: detected capacity change from 0 to 32768
[  694.401372][T20612] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  694.416575][T20612] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  694.431750][T20612] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  694.432024][T20615] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  694.532762][ T4274] ocfs2: Unmounting device (7,1) on (node local)