last executing test programs:

40.025307873s ago: executing program 3 (id=749):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$FS_IOC_SETVERSION(r0, 0x40045201, 0x0)

39.790583777s ago: executing program 3 (id=753):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x40, 0x3, 0x2}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESOCT=r0])

38.795835164s ago: executing program 3 (id=762):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000005c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000077400062c00070073797374656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080004200000000014000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x40)

38.749669711s ago: executing program 1 (id=764):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$TCSETS(r0, 0x89f0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7ff, 0x0, "5dee000000594000"})

38.354015493s ago: executing program 3 (id=767):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue1\x00'})

38.219328052s ago: executing program 3 (id=769):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61)
fallocate(r0, 0x0, 0x0, 0x8000c62)

37.918823115s ago: executing program 3 (id=774):
syz_mount_image$xfs(&(0x7f00000004c0), &(0x7f000000c780)='./file0\x00', 0x0, &(0x7f0000000240), 0xff, 0xc7b2, &(0x7f000000c7c0)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./file1\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000540)={{}, {0x1, 0x6}, [], {0x4, 0x1}, [], {0x10, 0x2}, {0x20, 0x1}}, 0x24, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180), &(0x7f0000000cc0)=ANY=[], 0xde, 0x0)

36.231074516s ago: executing program 4 (id=778):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000540)={0xa, 0x4e23, 0x380000, @mcast2, 0x200001}, 0x1c)

36.097633402s ago: executing program 0 (id=780):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000180), 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000080)={0xf, 0x400000000000, 0x25, 0x7, 0x8, r0, 0x0, 0x0, 0x40000000000e7, 0x0, 0x2, r0}])

35.881311954s ago: executing program 1 (id=782):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1804810, &(0x7f0000000140)=ANY=[], 0xfb, 0x69d, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000500)=""/45, 0x2d)
getdents64(r0, 0x0, 0x18)

35.881127942s ago: executing program 4 (id=783):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000240)={[{@barrier_val={'barrier', 0x3d, 0x401}}, {@nodioread_nolock}, {@noquota}, {@nodelalloc}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x4012011, r0, 0x0)
semctl$IPC_INFO(0x0, 0x2, 0x3, &(0x7f0000000140)=""/104)

35.555925863s ago: executing program 2 (id=784):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0x10}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x20, 0x20, 0x5, [@enum={0x3, 0x1, 0x0, 0xf, 0x4, [{}]}, @struct]}, {0x0, [0x0, 0x0, 0x61]}}, 0x0, 0x3d, 0x0, 0x1}, 0x28)

35.522465651s ago: executing program 4 (id=785):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000013000100000000000000000007000001", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a8018000480140004800800020000000000080001"], 0x3c}}, 0x0)

35.513002474s ago: executing program 0 (id=786):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha384\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)

35.455773849s ago: executing program 1 (id=787):
unshare(0x20000400)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
process_madvise(r1, 0x0, 0x0, 0xe, 0x0)

35.322267245s ago: executing program 2 (id=788):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x11, 0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$TUNSETOFFLOAD(r0, 0x40047438, 0xf0ff1f00000000)

35.321747859s ago: executing program 0 (id=789):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0}, 0x94)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xc3)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_le_read_num_supported_adv_sets={{0x2}, {0x0, 0x6}}}}, 0x8)
ioctl$SIOCAX25ADDFWD(r0, 0x89ea, &(0x7f0000000500)={@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})

35.202687103s ago: executing program 4 (id=790):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = dup(r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x74, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x4c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x3c, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x28, 0x5, 0x0, 0x1, [{0xa, 0x4, @local}, {0xa, 0x4, @local}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x74}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

35.131271399s ago: executing program 0 (id=791):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, 0x0, 0x91, 0x0, 0x1}, 0x28)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x403, &(0x7f0000000240)={&(0x7f0000000180)=""/116, 0x74})

35.13093715s ago: executing program 2 (id=792):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x38, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}]}]}]}, 0x38}}, 0x0)

34.952056207s ago: executing program 1 (id=793):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x10000, &(0x7f00000009c0)=ANY=[], 0x1, 0x17f, &(0x7f0000000140)="$eJzskL1O60AQhc/azt8trm6kW6UJEgiFAmI7gOigDD0PQJSYEMXhJ44EiVIYIZSCAlHyBHmNSPQIChRR0yGliKiR0e6OzeYZ2K/w8c6cnZ2Z4+A8yAD4mg/r2IPAxF+8MAYLQJHJ2MyQek/6SnonBc/k26f4NWkhMMnxRBr0B+2a70fiwucS8knI6wa7VwZmIjOdD+v85xBAFEURjzWAjzwA1WO+WZmJ4ilYwH8xRJR4+CAMOfF8udc5Kwf9wXqrU2t6Te/EdSvb9qZtb7nlo5bv2fLLlCdoFHBdA8D3lVPyKQA35PlD+RimtEZ5pt5NKzssLWMBg1qGUoNhktyN3+EbPsAqsgAuQvYTncoqFsRIVTCYdHAspT/pyorERv3Ub4zAwOJrY1hJDecdqeTgqofKThi3OiJdIa2SjgG0aY2cYlrZKwBLVLilUymMW+w63HhZ6/W6DpCWf24Sc/+FUArxVx+MxeEeDWg0Go1Go9FoNBrNb+c7AAD//y+ic7s=")
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nodots,allow_utime=000000000034,usefree,check=strict,dots,\x00'/70], 0x1, 0x1e9, &(0x7f00000002c0)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)

34.887116635s ago: executing program 4 (id=794):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000140)={0x2, 0x20000006, 0x4000008, 0x7, 0x7, "04000000019e58f557d636028fa10a1490ea71"})

34.868976726s ago: executing program 2 (id=795):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000ffffff807b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

34.751429601s ago: executing program 0 (id=796):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=@bridge_delneigh={0x28, 0x1c, 0xc07, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x20, 0xc, 0xb}, [@NDA_LLADDR={0xa, 0x2, @remote}]}, 0x28}, 0x1, 0x0, 0x0, 0x4800}, 0x20000060)

34.644658755s ago: executing program 4 (id=797):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0xe68, 0x30, 0xb, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x2, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x0, 0x0, 0x0, 0x4}, 0x1}, [{0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x6}, {0x3}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x7fff, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x3ff}, {}, {}, {}, {}, {0x80000000}, {0x7}, {0xfffffffc, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x4}, {}, {0x0, 0x3}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x200}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {0x0, 0x2000, 0x40000}, {0x0, 0x0, 0x0, 0x0, 0xec0}, {0x0, 0x0, 0xa}, {0x2}, {}, {}, {}, {}, {0x0, 0xffffffff}, {}, {0x0, 0x0, 0x1}, {}, {}, {}, {0x0, 0x0, 0x7f0}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5b}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x0, 0x200}, {}, {0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0xffffffff, 0x0, 0x1}, {}, {}, {}, {}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0x0, 0x20000}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000, 0x100, 0x8}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {0x0, 0x1, 0x0, 0x10}, {}, {}, {}, {0x0, 0xfffffffe, 0x2}, {0x3}, {0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x3}, {0x2}, {0x0, 0x0, 0x2}, {0x0, 0xcb1, 0x0, 0x0, 0x3}, {}, {0x0, 0xffffffff, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xd28d}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {0x0, 0x2}, {}, {}, {0x0, 0x4, 0xdbbd}, {}, {0x0, 0x0, 0x0, 0x200002}, {}, {0x0, 0x8}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x70}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10001}], [{}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {0x4}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x1, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {0x5}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {0x4}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x2}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {0x4}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x1)
ioctl$TCFLSH(r0, 0x8925, 0x20001119)

34.636374424s ago: executing program 2 (id=798):
r0 = syz_io_uring_setup(0x6aeb, &(0x7f0000000880)={0x0, 0x5cd0, 0x800, 0x2, 0x1eb}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000540)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

34.58735745s ago: executing program 1 (id=799):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000021bf0000000002000000000000000000", @ANYRES32], 0x0, 0x10001}, 0x94)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000003180), 0x200, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, &(0x7f00000002c0)={'\x00', 0x3, 0x1, 0xffffffff})

34.385952304s ago: executing program 1 (id=800):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='yeah\x00', 0x5)
write$binfmt_script(r0, &(0x7f0000000200), 0xfffffd9d)

30.312048279s ago: executing program 2 (id=801):
syz_mount_image$jfs(&(0x7f00000011c0), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000001000)=ANY=[@ANYRES8=0x0], 0xfa, 0x61e4, &(0x7f00000073c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000400)=""/153, 0x99)

15.079626805s ago: executing program 0 (id=802):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_ADDRESS={0x14, 0x1, @local}, @IFA_FLAGS={0x8, 0x8, 0x143}]}, 0x34}}, 0x0)

0s ago: executing program 32 (id=800):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='yeah\x00', 0x5)
write$binfmt_script(r0, &(0x7f0000000200), 0xfffffd9d)

kernel console output (not intermixed with test programs):

 40.250814][ T6672] loop0: detected capacity change from 0 to 256
[   40.262642][ T6668] support for the xor transformation has been removed.
[   40.565663][ T6538] Bluetooth: hci0: command tx timeout
[   40.630835][ T6664] loop2: detected capacity change from 0 to 32768
[   40.636069][ T6664] XFS: noikeep mount option is deprecated.
[   40.642479][ T6538] Bluetooth: hci2: command tx timeout
[   40.642576][ T6538] Bluetooth: hci3: command tx timeout
[   40.697056][ T6664] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   40.722568][ T6095] Bluetooth: hci4: command tx timeout
[   40.799448][ T6664] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   40.857265][ T6664] XFS (loop2): Starting recovery (logdev: internal)
[   40.898105][ T6664] XFS (loop2): Ending recovery (logdev: internal)
[   41.009427][ T6664] XFS (loop2): Metadata corruption detected at xfs_btree_lookup_get_block+0x320/0x44c, xfs_bnobt block 0x8
[   41.013791][ T6664] XFS (loop2): Unmount and run xfs_repair
[   41.057862][ T6534] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   41.079829][ T6534] XFS (loop2): Uncorrected metadata errors detected; please run xfs_repair.
[   41.355165][ T6704] loop1: detected capacity change from 0 to 40427
[   41.366243][ T6704] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   41.368889][ T6704] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   41.374224][ T6704] F2FS-fs (loop1): invalid crc value
[   41.376648][ T6719] loop4: detected capacity change from 0 to 1024
[   41.480763][ T6730] loop4: detected capacity change from 0 to 256
[   41.498288][ T6704] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   41.502006][ T6704] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   41.540778][ T6730] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[   41.621316][ T6532] syz-executor: attempt to access beyond end of device
[   41.621316][ T6532] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[   41.630430][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   41.630463][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.630471][ T6532] Call trace:
[   41.630475][ T6532]  show_stack+0x2c/0x3c (C)
[   41.630494][ T6532]  __dump_stack+0x30/0x40
[   41.630522][ T6532]  dump_stack_lvl+0xd8/0x12c
[   41.630535][ T6532]  dump_stack+0x1c/0x28
[   41.630548][ T6532]  f2fs_handle_critical_error+0x34c/0x4b8
[   41.630561][ T6532]  f2fs_stop_checkpoint+0x5c/0x70
[   41.630575][ T6532]  f2fs_write_end_io+0x58c/0x818
[   41.630587][ T6532]  bio_endio+0x804/0x840
[   41.630598][ T6532]  submit_bio_noacct+0x158/0x176c
[   41.630612][ T6532]  submit_bio+0x354/0x4d4
[   41.630624][ T6532]  f2fs_submit_write_bio+0x13c/0x324
[   41.630635][ T6532]  __submit_merged_bio+0x254/0x704
[   41.630646][ T6532]  __submit_merged_write_cond+0x380/0x4ac
[   41.630658][ T6532]  f2fs_submit_merged_write+0x38/0x48
[   41.630669][ T6532]  f2fs_sync_node_pages+0x1718/0x18d0
[   41.630682][ T6532]  f2fs_write_checkpoint+0xac8/0x1694
[   41.630696][ T6532]  kill_f2fs_super+0x21c/0x584
[   41.630708][ T6532]  deactivate_locked_super+0xc4/0x12c
[   41.630719][ T6532]  deactivate_super+0xe0/0x100
[   41.630729][ T6532]  cleanup_mnt+0x31c/0x3ac
[   41.630741][ T6532]  __cleanup_mnt+0x20/0x30
[   41.630751][ T6532]  task_work_run+0x1dc/0x260
[   41.630763][ T6532]  do_notify_resume+0x174/0x1f4
[   41.630775][ T6532]  el0_svc+0xb8/0x180
[   41.630787][ T6532]  el0t_64_sync_handler+0x84/0x12c
[   41.630798][ T6532]  el0t_64_sync+0x198/0x19c
[   41.660294][ T6532] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   41.754249][ T6743] netlink: 16 bytes leftover after parsing attributes in process `syz.2.45'.
[   42.149155][ T6747] loop4: detected capacity change from 0 to 32768
[   42.150453][ T6747] =======================================================
[   42.150453][ T6747] WARNING: The mand mount option has been deprecated and
[   42.150453][ T6747]          and is ignored by this kernel. Remove the mand
[   42.150453][ T6747]          option from the mount to silence this warning.
[   42.150453][ T6747] =======================================================
[   42.162970][ T6095] Bluetooth: hci1: command tx timeout
[   42.288282][ T6751] loop2: detected capacity change from 0 to 32768
[   42.293760][ T6751] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.47 (6751)
[   42.313529][ T6751] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   42.317105][ T6751] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   42.320397][ T6751] BTRFS info (device loop2): using free-space-tree
[   42.534808][ T6534] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   42.641646][ T6095] Bluetooth: hci0: command tx timeout
[   42.721744][ T6095] Bluetooth: hci3: command tx timeout
[   42.722179][ T6538] Bluetooth: hci2: command tx timeout
[   42.801858][ T6095] Bluetooth: hci4: command tx timeout
[   42.939015][ T6778] loop4: detected capacity change from 0 to 32768
[   43.158309][ T6798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.60'.
[   43.165877][ T6788] loop3: detected capacity change from 0 to 32768
[   43.399809][ T6792] loop2: detected capacity change from 0 to 32768
[   43.412071][ T6778] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[   43.412132][ T6778]   allowing incompatible features above 0.0: (unknown version)
[   43.412787][ T6778]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   43.412873][ T6778] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[   43.413012][ T6778] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[   43.413163][ T6778] bcachefs (loop4): Version upgrade required:
[   43.413163][ T6778] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   43.413163][ T6778] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   43.413163][ T6778]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   43.481845][ T6778] bcachefs (loop4): dropping and reconstructing all alloc info
[   43.546211][ T6815] Bluetooth: MGMT ver 1.23
[   43.552675][ T6778] bcachefs (loop4): accounting_read...
[   43.557367][ T6817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.66'.
[   43.588223][ T6778]  done
[   43.588287][ T6778] bcachefs (loop4): alloc_read... done
[   43.589467][ T6778] bcachefs (loop4): snapshots_read... done
[   43.598897][ T6778] bcachefs (loop4): check_allocations... done
[   43.657955][ T6778] bcachefs (loop4): going read-write
[   43.670711][ T6792] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=/dev/loop2,nojournal_transaction_names
[   43.670762][ T6792]   allowing incompatible features above 0.0: (unknown version)
[   43.670867][ T6792]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   43.670921][ T6792] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   43.670969][ T6792] bcachefs (loop2): initializing new filesystem
[   43.679513][ T6792] bcachefs (loop2): going read-write
[   43.709968][ T6778] bcachefs (loop4): done starting filesystem
[   43.717195][ T6832] 8021q: VLANs not supported on xfrm0
[   43.742763][ T6792] bcachefs (loop2): marking superblocks
[   43.755345][ T6792] bcachefs (loop2): initializing freespace
[   43.782560][ T6792] bcachefs (loop2): done initializing freespace
[   43.791180][ T6838] loop1: detected capacity change from 0 to 64
[   43.797063][ T6792] bcachefs (loop2): reading snapshots table
[   43.797173][ T6792] bcachefs (loop2): reading snapshots done
[   43.833323][ T6535] bcachefs (loop4): shutting down
[   43.833486][ T6535] bcachefs (loop4): going read-only
[   43.833735][ T6535] bcachefs (loop4): finished waiting for writes to stop
[   43.853905][ T6792] bcachefs (loop2): done starting filesystem
[   43.896393][ T6535] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11
[   43.916122][ T6535] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11
[   43.926310][ T6535] bcachefs (loop4): unclean shutdown complete, journal seq 12
[   43.958341][ T6535] bcachefs (loop4): done going read-only, filesystem not clean
[   43.982953][ T6843] loop3: detected capacity change from 0 to 2048
[   43.984674][ T6843] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=27485, location=27485
[   44.044870][ T6535] bcachefs (loop4): shutdown complete
[   44.051217][ T6843] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   44.086600][ T6847] loop1: detected capacity change from 0 to 256
[   44.119586][ T6845] loop0: detected capacity change from 0 to 32768
[   44.135137][ T6845] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   44.244063][ T6538] Bluetooth: hci1: command tx timeout
[   44.256376][ T6843] mkiss: ax0: crc mode is auto.
[   44.316080][ T6534] bcachefs (loop2): shutting down
[   44.316170][ T6534] bcachefs (loop2): going read-only
[   44.316200][ T6534] bcachefs (loop2): finished waiting for writes to stop
[   44.337752][ T6845] XFS (loop0): Ending clean mount
[   44.345937][ T6534] bcachefs (loop2): flushing journal and stopping allocators, journal seq 2
[   44.390848][ T6859] capability: warning: `syz.4.72' uses deprecated v2 capabilities in a way that may be insecure
[   44.400208][ T6859] overlayfs: failed to create directory ./file0/work (errno: 13); mounting read-only
[   44.400419][ T6859] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[   44.445165][ T6534] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[   44.449643][ T6534] bcachefs (loop2): clean shutdown complete, journal seq 4
[   44.450481][ T6534] bcachefs (loop2): marking filesystem clean
[   44.571230][ T6862] XFS (loop0): Corruption warning: Metadata has LSN (1:65407) ahead of current LSN (1:768). Please unmount and run xfs_repair (>= v4.3) to resolve.
[   44.571460][ T6862] XFS (loop0): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0xf0, xfs_cntbt block 0x8 
[   44.572241][ T6862] XFS (loop0): Unmount and run xfs_repair
[   44.572305][ T6862] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[   44.572330][ T6862] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff  AB3C............
[   44.572352][ T6862] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 ff 7f  ................
[   44.572373][ T6862] 00000020: 00 00 00 00 00 00 4e ed a5 62 11 a8 31 b3 f7 91  ......N..b..1...
[   44.572394][ T6862] 00000030: 00 00 00 00 b0 b0 1a b8 00 00 00 0d 00 00 00 13  ................
[   44.572414][ T6862] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[   44.572435][ T6862] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   44.572455][ T6862] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   44.572476][ T6862] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   44.572646][ T6862] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1f8/0x380" at daddr 0x8 len 4 error 74
[   44.572852][ T6862] XFS (loop0): page discard on page 000000001f1ac0ec, inode 0x2446, pos 1048576.
[   44.640262][ T6534] bcachefs (loop2): shutdown complete
[   44.691131][ T6861] loop1: detected capacity change from 0 to 32768
[   44.693771][ T6861] XFS: ikeep mount option is deprecated.
[   44.721964][ T6095] Bluetooth: hci0: command tx timeout
[   44.730159][ T6861] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   44.750675][ T6529] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   44.790744][ T6529] XFS (loop0): Uncorrected metadata errors detected; please run xfs_repair.
[   44.801658][ T6095] Bluetooth: hci2: command tx timeout
[   44.816350][ T6095] Bluetooth: hci3: command tx timeout
[   44.830121][ T6876] netlink: 32 bytes leftover after parsing attributes in process `syz.3.80'.
[   44.830221][ T6876] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   44.830475][ T6876] IPv6: NLM_F_CREATE should be set when creating new route
[   44.830524][ T6876] IPv6: NLM_F_CREATE should be set when creating new route
[   44.884816][ T6876] netlink: 32 bytes leftover after parsing attributes in process `syz.3.80'.
[   44.887384][ T6876] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   44.889816][ T6876] Zero length message leads to an empty skb
[   44.893053][ T6095] Bluetooth: hci4: command tx timeout
[   44.933229][ T6861] XFS (loop1): Ending clean mount
[   44.944658][ T6861] XFS (loop1): Quotacheck needed: Please wait.
[   45.001741][ T6861] XFS (loop1): Quotacheck: Done.
[   45.123359][ T6888] syz.3.86 uses obsolete (PF_INET,SOCK_PACKET)
[   45.167182][ T6890] warning: `syz.4.87' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   45.219091][ T6532] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   45.411480][ T6904] loop4: detected capacity change from 0 to 512
[   45.414647][ T6904] EXT4-fs: Ignoring removed nobh option
[   45.428079][ T6906] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   45.440474][ T6904] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   45.441062][ T6904] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.93: invalid indirect mapped block 2683928664 (level 1)
[   45.449171][ T6904] EXT4-fs (loop4): 1 truncate cleaned up
[   45.450360][ T6904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.548176][ T6904] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.93: Invalid block bitmap block 3 in block_group 0
[   45.548616][ T6913] loop1: detected capacity change from 0 to 1024
[   45.550487][ T6904] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   45.551110][ T6904] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.93: invalid indirect mapped block 480848489 (level 1)
[   45.586069][ T6913] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.652015][ T6535] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.700343][ T6532] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.918226][ T6936] loop3: detected capacity change from 0 to 16
[   45.921030][ T6936] MTD: Attempt to mount non-MTD device "/dev/loop3"
[   46.095595][ T6948] loop1: detected capacity change from 0 to 512
[   46.098940][ T6948] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   46.121952][ T6948] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.148057][ T6948] EXT4-fs error (device loop1): ext4_get_verity_descriptor_location:335: inode #15: comm syz.1.112: verity file corrupted; can't find descriptor
[   46.149096][ T6948] EXT4-fs (loop1): Remounting filesystem read-only
[   46.149250][ T6948] fs-verity (loop1, inode 15): Error -117 getting verity descriptor size
[   46.151244][ T6948] fs-verity (loop1, inode 15): Error -117 getting verity descriptor size
[   46.189196][ T6532] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.376782][ T6962] netlink: 236 bytes leftover after parsing attributes in process `syz.3.116'.
[   46.604637][ T6964] Falling back ldisc for ttyS3.
[   46.985476][ T6991] loop4: detected capacity change from 0 to 256
[   46.999488][ T6991] FAT-fs (loop4): Directory bread(block 1285) failed
[   47.000791][ T6994] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   47.039574][ T6991] FAT-fs (loop4): FAT read failed (blocknr 1281)
[   47.223521][ T7001] netlink: 232 bytes leftover after parsing attributes in process `syz.4.129'.
[   47.223721][ T7001] NCSI netlink: No device for ifindex 0
[   47.291276][ T6986] loop2: detected capacity change from 0 to 32768
[   47.296564][ T6986] btrfs: Unknown parameter 'check_int_print_mask'
[   47.517740][ T7011] loop4: detected capacity change from 0 to 64
[   47.565723][ T7012] loop1: detected capacity change from 0 to 1024
[   47.568478][ T7012] EXT4-fs: Ignoring removed oldalloc option
[   47.570598][ T7012] EXT4-fs: Ignoring removed bh option
[   47.625772][ T7012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.803800][ T6532] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.858442][ T6996] loop0: detected capacity change from 0 to 32768
[   47.907610][ T7032] netlink: 'syz.4.139': attribute type 1 has an invalid length.
[   47.907686][ T7032] netlink: 144 bytes leftover after parsing attributes in process `syz.4.139'.
[   47.907710][ T7032] netlink: 36 bytes leftover after parsing attributes in process `syz.4.139'.
[   48.029056][ T6996] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   48.029111][ T6996]   allowing incompatible features above 0.0: (unknown version)
[   48.029147][ T6996]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   48.029208][ T6996] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   48.029256][ T6996] bcachefs (loop0): initializing new filesystem
[   48.055048][ T6996] bcachefs (loop0): going read-write
[   48.153944][ T6996] bcachefs (loop0): marking superblocks
[   48.188665][ T6996] bcachefs (loop0): initializing freespace
[   48.193908][ T6996] bcachefs (loop0): done initializing freespace
[   48.197331][ T6996] bcachefs (loop0): reading snapshots table
[   48.199180][ T6996] bcachefs (loop0): reading snapshots done
[   48.309600][ T6996] bcachefs (loop0): done starting filesystem
[   48.346117][ T7066] sp0: Synchronizing with TNC
[   48.426728][ T7068] sp0: Synchronizing with TNC
[   48.458752][ T7072] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.519130][ T6529] bcachefs (loop0): shutting down
[   48.519196][ T6529] bcachefs (loop0): going read-only
[   48.519226][ T6529] bcachefs (loop0): finished waiting for writes to stop
[   48.535275][ T6529] bcachefs (loop0): flushing journal and stopping allocators, journal seq 2
[   48.618296][ T6529] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3
[   48.627677][ T6529] bcachefs (loop0): clean shutdown complete, journal seq 4
[   48.628420][ T6529] bcachefs (loop0): marking filesystem clean
[   48.694143][ T6529] bcachefs (loop0): shutdown complete
[   48.824831][ T7085] Illegal XDP return value 4294967294 on prog  (id 9) dev N/A, expect packet loss!
[   49.040242][ T7091] loop2: detected capacity change from 0 to 512
[   49.052116][ T7091] EXT4-fs error (device loop2): ext4_orphan_get:1419: comm syz.2.159: bad orphan inode 15
[   49.052969][ T7091] ext4_test_bit(bit=14, block=18) = 1
[   49.053003][ T7091] is_bad_inode(inode)=0
[   49.053021][ T7091] NEXT_ORPHAN(inode)=1023
[   49.053038][ T7091] max_ino=32
[   49.053055][ T7091] i_nlink=0
[   49.057961][ T7091] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2962: inode #15: comm syz.2.159: corrupted xattr block 19: invalid header
[   49.088762][ T7087] loop4: detected capacity change from 0 to 32768
[   49.090214][ T7077] loop1: detected capacity change from 0 to 40427
[   49.091368][ T7091] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   49.092470][ T7091] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[   49.111910][ T7077] F2FS-fs (loop1): Wrong segment_count / block_count (31 > 0)
[   49.111977][ T7077] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[   49.121049][ T7077] F2FS-fs (loop1): invalid crc value
[   49.193596][ T6095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   49.194692][ T6095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   49.195223][ T6095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   49.195889][ T6095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   49.196304][ T6095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   49.207371][ T7087] XFS (loop4): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[   49.228347][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[   49.232381][ T7077] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[   49.232453][ T7077] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   49.265510][ T1996] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.287752][ T7077] syz.1.153: attempt to access beyond end of device
[   49.287752][ T7077] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   49.297543][ T7087] XFS (loop4): Ending clean mount
[   49.300596][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz.1.153 Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   49.300626][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.300634][ T7077] Call trace:
[   49.300638][ T7077]  show_stack+0x2c/0x3c (C)
[   49.300657][ T7077]  __dump_stack+0x30/0x40
[   49.300674][ T7077]  dump_stack_lvl+0xd8/0x12c
[   49.300688][ T7077]  dump_stack+0x1c/0x28
[   49.300703][ T7077]  f2fs_handle_critical_error+0x34c/0x4b8
[   49.300716][ T7077]  f2fs_stop_checkpoint+0x5c/0x70
[   49.300731][ T7077]  f2fs_write_end_io+0x58c/0x818
[   49.300744][ T7077]  bio_endio+0x804/0x840
[   49.300757][ T7077]  submit_bio_noacct+0x158/0x176c
[   49.300772][ T7077]  submit_bio+0x354/0x4d4
[   49.300786][ T7077]  f2fs_submit_write_bio+0x13c/0x324
[   49.300798][ T7077]  __submit_merged_bio+0x254/0x704
[   49.300810][ T7077]  f2fs_submit_page_write+0x9bc/0x182c
[   49.300822][ T7077]  do_write_page+0x4ac/0x6d8
[   49.300834][ T7077]  f2fs_outplace_write_data+0x114/0x210
[   49.300846][ T7077]  f2fs_do_write_data_page+0xf98/0x14f0
[   49.300859][ T7077]  f2fs_write_single_data_page+0x6c0/0x10b0
[   49.300872][ T7077]  f2fs_write_data_pages+0x134c/0x2634
[   49.300885][ T7077]  do_writepages+0x270/0x468
[   49.300901][ T7077]  filemap_fdatawrite+0x144/0x1e8
[   49.300912][ T7077]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   49.300927][ T7077]  f2fs_write_checkpoint+0x684/0x1694
[   49.300943][ T7077]  f2fs_issue_checkpoint+0x2e8/0x420
[   49.300958][ T7077]  f2fs_sync_fs+0x1e0/0x4f4
[   49.300969][ T7077]  f2fs_do_sync_file+0x974/0x14f0
[   49.300983][ T7077]  f2fs_sync_file+0x110/0x15c
[   49.300997][ T7077]  vfs_fsync_range+0x160/0x19c
[   49.301009][ T7077]  f2fs_file_write_iter+0x5c0/0x1d10
[   49.301023][ T7077]  vfs_write+0x62c/0x97c
[   49.301038][ T7077]  ksys_write+0x120/0x210
[   49.301052][ T7077]  __arm64_sys_write+0x7c/0x90
[   49.301066][ T7077]  invoke_syscall+0x98/0x2b8
[   49.301077][ T7077]  el0_svc_common+0x130/0x23c
[   49.301088][ T7077]  do_el0_svc+0x48/0x58
[   49.301098][ T7077]  el0_svc+0x58/0x180
[   49.301110][ T7077]  el0t_64_sync_handler+0x84/0x12c
[   49.301122][ T7077]  el0t_64_sync+0x198/0x19c
[   49.331755][ T7077] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   49.331973][ T7077] syz.1.153: attempt to access beyond end of device
[   49.331973][ T7077] loop1: rw=2049, sector=45136, nr_sectors = 8 limit=40427
[   49.332037][ T7077] CPU: 1 UID: 0 PID: 7077 Comm: syz.1.153 Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   49.332052][ T7077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.332059][ T7077] Call trace:
[   49.332063][ T7077]  show_stack+0x2c/0x3c (C)
[   49.332081][ T7077]  __dump_stack+0x30/0x40
[   49.332098][ T7077]  dump_stack_lvl+0xd8/0x12c
[   49.332112][ T7077]  dump_stack+0x1c/0x28
[   49.332127][ T7077]  f2fs_handle_critical_error+0x34c/0x4b8
[   49.332140][ T7077]  f2fs_stop_checkpoint+0x5c/0x70
[   49.332155][ T7077]  f2fs_write_end_io+0x58c/0x818
[   49.332168][ T7077]  bio_endio+0x804/0x840
[   49.332181][ T7077]  submit_bio_noacct+0x158/0x176c
[   49.332196][ T7077]  submit_bio+0x354/0x4d4
[   49.332210][ T7077]  f2fs_submit_write_bio+0x13c/0x324
[   49.332222][ T7077]  __submit_merged_bio+0x254/0x704
[   49.332233][ T7077]  __submit_merged_write_cond+0x23c/0x4ac
[   49.332245][ T7077]  f2fs_write_single_data_page+0xc00/0x10b0
[   49.332258][ T7077]  f2fs_write_data_pages+0x134c/0x2634
[   49.332271][ T7077]  do_writepages+0x270/0x468
[   49.332287][ T7077]  filemap_fdatawrite+0x144/0x1e8
[   49.332299][ T7077]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   49.332314][ T7077]  f2fs_write_checkpoint+0x684/0x1694
[   49.332329][ T7077]  f2fs_issue_checkpoint+0x2e8/0x420
[   49.332344][ T7077]  f2fs_sync_fs+0x1e0/0x4f4
[   49.332355][ T7077]  f2fs_do_sync_file+0x974/0x14f0
[   49.332369][ T7077]  f2fs_sync_file+0x110/0x15c
[   49.332381][ T7077]  vfs_fsync_range+0x160/0x19c
[   49.332393][ T7077]  f2fs_file_write_iter+0x5c0/0x1d10
[   49.332407][ T7077]  vfs_write+0x62c/0x97c
[   49.332422][ T7077]  ksys_write+0x120/0x210
[   49.332435][ T7077]  __arm64_sys_write+0x7c/0x90
[   49.332449][ T7077]  invoke_syscall+0x98/0x2b8
[   49.332460][ T7077]  el0_svc_common+0x130/0x23c
[   49.332470][ T7077]  do_el0_svc+0x48/0x58
[   49.332480][ T7077]  el0_svc+0x58/0x180
[   49.332493][ T7077]  el0t_64_sync_handler+0x84/0x12c
[   49.332520][ T7077]  el0t_64_sync+0x198/0x19c
[   49.332535][ T7077] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   49.543074][ T6535] XFS (loop4): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[   49.594075][ T1996] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.727737][ T1996] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.924817][ T1996] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.033904][ T7098] chnl_net:caif_netlink_parms(): no params data found
[   50.192763][ T7141] netlink: 1080 bytes leftover after parsing attributes in process `syz.4.171'.
[   50.228274][ T7098] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.231000][ T7098] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.231218][ T7098] bridge_slave_0: entered allmulticast mode
[   50.232276][ T7098] bridge_slave_0: entered promiscuous mode
[   50.261149][ T7098] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.261228][ T7098] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.261385][ T7098] bridge_slave_1: entered allmulticast mode
[   50.283030][ T7098] bridge_slave_1: entered promiscuous mode
[   50.396554][ T7098] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.423196][ T7098] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.464365][ T7098] team0: Port device team_slave_0 added
[   50.469208][ T7098] team0: Port device team_slave_1 added
[   50.472113][ T1996] bridge_slave_1: left allmulticast mode
[   50.477435][ T1996] bridge_slave_1: left promiscuous mode
[   50.479007][ T1996] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.488617][ T1996] bridge_slave_0: left allmulticast mode
[   50.488681][ T1996] bridge_slave_0: left promiscuous mode
[   50.488832][ T1996] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.677094][ T7149] loop2: detected capacity change from 0 to 512
[   50.680094][ T7149] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   50.680130][ T7149] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   50.711093][ T7149] EXT4-fs (loop2): 1 orphan inode deleted
[   50.711160][ T7149] EXT4-fs (loop2): 1 truncate cleaned up
[   50.712255][ T7149] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.793402][ T7149] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   50.810789][ T7149] EXT4-fs (loop2): Remounting filesystem read-only
[   50.811095][ T7149] EXT4-fs (loop2): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[   50.868956][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.000861][ T7154] loop0: detected capacity change from 0 to 32768
[   51.190686][ T7154] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[   51.212967][ T7154]   allowing incompatible features above 0.0: (unknown version)
[   51.213022][ T7154]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   51.213084][ T7154] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   51.213628][ T7154] bcachefs (loop0): invalid bkey in superblock btree=snapshots level=1: u64s 11 type inode SPOS_MAX len 0 ver 0: (unpack error)
[   51.213673][ T7154]   invalid key type for btree internal btree node (inode), deleting
[   51.213852][ T7154] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   51.213989][ T7154] bcachefs (loop0): Version upgrade required:
[   51.213989][ T7154] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   51.213989][ T7154] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   51.213989][ T7154]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   51.214192][ T7154] bcachefs (loop0): dropping and reconstructing all alloc info
[   51.216954][ T7156] loop1: detected capacity change from 0 to 32768
[   51.281672][ T6095] Bluetooth: hci0: command tx timeout
[   51.285870][ T7156] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   51.290485][ T7154] bcachefs (loop0): accounting_read...
[   51.323048][ T7156] XFS (loop1): Ending clean mount
[   51.328491][ T7154]  done
[   51.329389][ T7154] bcachefs (loop0): alloc_read... done
[   51.331337][ T7154] bcachefs (loop0): snapshots_read... done
[   51.333414][ T7154] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   51.336258][ T7154] bcachefs (loop0): done starting filesystem
[   51.347157][ T7156] XFS (loop1): Quotacheck needed: Please wait.
[   51.364382][ T7154] bcachefs (loop0): shutdown by ioctl type 1emergency read only at seq 10
[   51.378005][ T6529] bcachefs (loop0): shutting down
[   51.419420][ T7156] XFS (loop1): Quotacheck: Done.
[   51.434954][ T6529] bcachefs (loop0): shutdown complete
[   51.805378][ T6532] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   52.644342][ T1996] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   52.706738][ T1996] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   52.760489][ T1996] bond0 (unregistering): Released all slaves
[   52.881440][ T7205] netlink: 'syz.4.192': attribute type 10 has an invalid length.
[   53.269387][ T7205] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   53.270033][ T7098] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.270090][ T7098] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.270154][ T7098] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.271351][ T7098] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.271379][ T7098] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.271424][ T7098] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.361818][ T6538] Bluetooth: hci0: command tx timeout
[   53.370144][ T7203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   53.447636][ T7227] loop1: detected capacity change from 0 to 4096
[   53.469126][ T7227] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[   53.560076][ T7227] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   53.565473][ T7227] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[   53.568133][ T7227] ntfs3(loop1): ino=5, mi_enum_attr
[   53.569899][ T7227] ntfs3(loop1): Failed to load root (-22).
[   53.678096][ T7098] hsr_slave_0: entered promiscuous mode
[   53.680191][ T7098] hsr_slave_1: entered promiscuous mode
[   53.686466][ T7098] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   53.686550][ T7098] Cannot create hsr debugfs directory
[   53.874885][ T7256] loop1: detected capacity change from 0 to 4096
[   53.887631][ T1996] hsr_slave_0: left promiscuous mode
[   53.890622][ T7256] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.896961][ T1996] hsr_slave_1: left promiscuous mode
[   53.897551][ T1996] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   53.897631][ T1996] batman_adv: batadv0: Removing interface: batadv_slave_0
[   53.914912][ T1996] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   53.914993][ T1996] batman_adv: batadv0: Removing interface: batadv_slave_1
[   53.921364][ T7256] EXT4-fs (loop1): shut down requested (1)
[   53.988003][ T1996] veth1_macvtap: left promiscuous mode
[   53.993245][ T1996] veth0_macvtap: left promiscuous mode
[   53.997051][ T1996] veth1_vlan: left promiscuous mode
[   53.997263][ T1996] veth0_vlan: left promiscuous mode
[   54.001321][ T6532] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.350881][ T7264] loop0: detected capacity change from 0 to 32768
[   54.643353][ T7280] loop4: detected capacity change from 0 to 40427
[   54.659052][ T7280] F2FS-fs (loop4): invalid crc value
[   54.702940][ T7280] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   54.742763][ T6535] syz-executor: attempt to access beyond end of device
[   54.742763][ T6535] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   54.743128][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   54.743147][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.743158][ T6535] Call trace:
[   54.743163][ T6535]  show_stack+0x2c/0x3c (C)
[   54.743180][ T6535]  __dump_stack+0x30/0x40
[   54.743194][ T6535]  dump_stack_lvl+0xd8/0x12c
[   54.743207][ T6535]  dump_stack+0x1c/0x28
[   54.743219][ T6535]  f2fs_handle_critical_error+0x34c/0x4b8
[   54.743233][ T6535]  f2fs_stop_checkpoint+0x5c/0x70
[   54.743246][ T6535]  f2fs_write_end_io+0x58c/0x818
[   54.743258][ T6535]  bio_endio+0x804/0x840
[   54.743270][ T6535]  submit_bio_noacct+0x158/0x176c
[   54.743283][ T6535]  submit_bio+0x354/0x4d4
[   54.743295][ T6535]  f2fs_submit_write_bio+0x13c/0x324
[   54.743306][ T6535]  __submit_merged_bio+0x254/0x704
[   54.743317][ T6535]  __submit_merged_write_cond+0x23c/0x4ac
[   54.743328][ T6535]  f2fs_write_data_pages+0x1d28/0x2634
[   54.743340][ T6535]  do_writepages+0x270/0x468
[   54.743354][ T6535]  filemap_fdatawrite+0x144/0x1e8
[   54.743365][ T6535]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   54.743378][ T6535]  f2fs_write_checkpoint+0x684/0x1694
[   54.743391][ T6535]  kill_f2fs_super+0x21c/0x584
[   54.743403][ T6535]  deactivate_locked_super+0xc4/0x12c
[   54.743415][ T6535]  deactivate_super+0xe0/0x100
[   54.743425][ T6535]  cleanup_mnt+0x31c/0x3ac
[   54.743446][ T6535]  __cleanup_mnt+0x20/0x30
[   54.743458][ T6535]  task_work_run+0x1dc/0x260
[   54.743469][ T6535]  do_notify_resume+0x174/0x1f4
[   54.743481][ T6535]  el0_svc+0xb8/0x180
[   54.743493][ T6535]  el0t_64_sync_handler+0x84/0x12c
[   54.743516][ T6535]  el0t_64_sync+0x198/0x19c
[   54.744826][ T6535] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[   54.897569][ T7283] loop1: detected capacity change from 0 to 32768
[   54.900480][ T7283] XFS: attr2 mount option is deprecated.
[   54.936572][ T7283] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   55.001353][ T7283] XFS (loop1): Ending clean mount
[   55.019593][ T7283] XFS (loop1): Quotacheck needed: Please wait.
[   55.040731][ T7283] XFS (loop1): Quotacheck: Done.
[   55.096937][ T6532] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   55.441763][ T6538] Bluetooth: hci0: command 0x040f tx timeout
[   55.995586][ T1996] team0 (unregistering): Port device team_slave_1 removed
[   56.189493][ T1996] team0 (unregistering): Port device team_slave_0 removed
[   56.490616][ T7324] loop4: detected capacity change from 0 to 32768
[   56.510364][ T7324] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   56.540304][ T7324] XFS (loop4): Ending clean mount
[   56.597026][ T6535] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   56.915992][ T7334] loop4: detected capacity change from 0 to 40427
[   56.919837][ T7334] F2FS-fs (loop4): build fault injection rate: 690
[   56.922008][ T7334] F2FS-fs (loop4): build fault injection type: 0x2
[   56.923862][ T7334] F2FS-fs (loop4): Image doesn't support compression
[   56.925960][ T7334] F2FS-fs (loop4): Image doesn't support compression
[   56.929419][ T7334] F2FS-fs (loop4): invalid crc value
[   56.957025][ T7334] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   57.027301][ T6535] syz-executor: attempt to access beyond end of device
[   57.027301][ T6535] loop4: rw=2051, sector=77824, nr_sectors = 16 limit=40427
[   57.027750][ T6535] F2FS-fs (loop4): Issue discard(9728, 9728, 2) failed, ret: -5
[   57.383445][ T7339] loop4: detected capacity change from 0 to 32768
[   57.474098][ T7339] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[   57.474318][ T7339]   allowing incompatible features above 0.0: (unknown version)
[   57.474331][ T7339]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   57.474382][ T7339] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[   57.474479][ T7339] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[   57.474614][ T7339] bcachefs (loop4): Version upgrade required:
[   57.474614][ T7339] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   57.474614][ T7339] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   57.474614][ T7339]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   57.474808][ T7339] bcachefs (loop4): dropping and reconstructing all alloc info
[   57.491184][ T7339] bcachefs (loop4): accounting_read...
[   57.521714][ T6095] Bluetooth: hci0: command 0x040f tx timeout
[   57.532131][ T7339]  done
[   57.533276][ T7339] bcachefs (loop4): alloc_read... done
[   57.533708][ T7339] bcachefs (loop4): snapshots_read... done
[   57.534196][ T7339] bcachefs (loop4): done starting filesystem
[   57.583287][ T6535] bcachefs (loop4): shutting down
[   57.606016][ T6535] bcachefs (loop4): shutdown complete
[   58.603426][ T7355] loop2: detected capacity change from 0 to 512
[   58.726352][ T7355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.829966][ T7355] EXT4-fs error (device loop2): ext4_get_first_dir_block:3525: inode #12: comm syz.2.238: Attempting to read directory block (0) that is past i_size (3)
[   58.963991][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.170106][ T7379] Bluetooth: MGMT ver 1.23
[   59.267618][ T7384] netlink: 'syz.4.234': attribute type 11 has an invalid length.
[   59.267694][ T7384] netlink: 36 bytes leftover after parsing attributes in process `syz.4.234'.
[   59.316928][ T7350] loop0: detected capacity change from 0 to 65536
[   59.327539][ T7350] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   59.408211][ T7350] XFS (loop0): Ending clean mount
[   59.430629][ T7350] XFS (loop0): Quotacheck needed: Please wait.
[   59.550099][ T7350] XFS (loop0): Quotacheck: Done.
[   59.574477][ T7098] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   59.599562][ T7098] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   59.602720][ T6095] Bluetooth: hci0: command 0x040f tx timeout
[   59.643999][ T7098] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   59.663750][ T7098] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   59.859329][ T6529] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   59.877642][ T7376] loop2: detected capacity change from 0 to 40427
[   59.881990][ T7098] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.906024][ T7098] 8021q: adding VLAN 0 to HW filter on device team0
[   59.919468][   T84] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.920161][   T84] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.923914][ T7376] F2FS-fs (loop2): heap/no_heap options were deprecated
[   59.923993][ T7376] F2FS-fs (loop2): build fault injection rate: 19
[   59.924042][ T7376] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[   59.939495][   T84] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.939600][   T84] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.958008][ T7418] vxcan1: tx address claim with dest, not broadcast
[   59.987880][ T7376] F2FS-fs (loop2): invalid crc value
[   60.041335][ T7376] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac
[   60.135648][ T7376] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0
[   60.179579][ T7376] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   60.281611][ T7376] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x19c/0x9ac
[   60.292624][ T7376] F2FS-fs (loop2): inject no more block in inc_valid_block_count of f2fs_reserve_new_blocks+0xe4/0x6d0
[   60.398169][ T6534] syz-executor: attempt to access beyond end of device
[   60.398169][ T6534] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   60.399060][ T6534] CPU: 0 UID: 0 PID: 6534 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   60.399090][ T6534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.399098][ T6534] Call trace:
[   60.399102][ T6534]  show_stack+0x2c/0x3c (C)
[   60.399121][ T6534]  __dump_stack+0x30/0x40
[   60.399135][ T6534]  dump_stack_lvl+0xd8/0x12c
[   60.399148][ T6534]  dump_stack+0x1c/0x28
[   60.399161][ T6534]  f2fs_handle_critical_error+0x34c/0x4b8
[   60.399174][ T6534]  f2fs_stop_checkpoint+0x5c/0x70
[   60.399187][ T6534]  f2fs_write_end_io+0x58c/0x818
[   60.399199][ T6534]  bio_endio+0x804/0x840
[   60.399210][ T6534]  submit_bio_noacct+0x158/0x176c
[   60.399224][ T6534]  submit_bio+0x354/0x4d4
[   60.399236][ T6534]  f2fs_submit_write_bio+0x13c/0x324
[   60.399247][ T6534]  __submit_merged_bio+0x254/0x704
[   60.399258][ T6534]  __submit_merged_write_cond+0x23c/0x4ac
[   60.399269][ T6534]  f2fs_write_data_pages+0x1d28/0x2634
[   60.399281][ T6534]  do_writepages+0x270/0x468
[   60.399295][ T6534]  filemap_fdatawrite+0x144/0x1e8
[   60.399305][ T6534]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   60.399319][ T6534]  f2fs_write_checkpoint+0x684/0x1694
[   60.399332][ T6534]  kill_f2fs_super+0x21c/0x584
[   60.399344][ T6534]  deactivate_locked_super+0xc4/0x12c
[   60.399355][ T6534]  deactivate_super+0xe0/0x100
[   60.399365][ T6534]  cleanup_mnt+0x31c/0x3ac
[   60.399377][ T6534]  __cleanup_mnt+0x20/0x30
[   60.399387][ T6534]  task_work_run+0x1dc/0x260
[   60.399399][ T6534]  do_notify_resume+0x174/0x1f4
[   60.399411][ T6534]  el0_svc+0xb8/0x180
[   60.399423][ T6534]  el0t_64_sync_handler+0x84/0x12c
[   60.399434][ T6534]  el0t_64_sync+0x198/0x19c
[   60.399657][ T6534] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   60.489628][ T7415] loop1: detected capacity change from 0 to 40427
[   60.502109][ T7415] F2FS-fs (loop1): heap/no_heap options were deprecated
[   60.506610][ T7098] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.521758][ T7415] F2FS-fs (loop1): invalid crc value
[   60.521838][ T7415] F2FS-fs (loop1): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[   60.580294][ T7098] veth0_vlan: entered promiscuous mode
[   60.585535][ T7098] veth1_vlan: entered promiscuous mode
[   60.665390][ T7415] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   60.669040][ T7098] veth0_macvtap: entered promiscuous mode
[   60.671262][ T7098] veth1_macvtap: entered promiscuous mode
[   60.714056][ T7415] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[   60.744490][ T7098] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.764132][ T7098] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.765850][ T7098] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.765894][ T7098] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.765925][ T7098] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.765954][ T7098] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.017526][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.017587][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.040534][ T1996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.040594][ T1996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.330564][ T7476] netlink: 24 bytes leftover after parsing attributes in process `syz.3.158'.
[   61.520956][ T7486] loop2: detected capacity change from 0 to 16
[   61.584627][ T7486] erofs (device loop2): mounted with root inode @ nid 36.
[   61.743875][ T7464] loop1: detected capacity change from 0 to 32768
[   61.745491][ T7464] BTRFS warning: excessive commit interval 2147483649, use with care
[   61.745554][ T7464] btrfs: Deprecated parameter 'usebackuproot'
[   61.745578][ T7464] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[   61.746763][ T7464] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.259 (7464)
[   61.796806][ T7464] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   61.796913][ T7464] BTRFS info (device loop1): using crc32c (crc32c-arm64) checksum algorithm
[   61.796968][ T7464] BTRFS info (device loop1): using free-space-tree
[   61.838321][ T7472] loop4: detected capacity change from 0 to 32768
[   61.889786][   T84] BTRFS warning (device loop1): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[   61.890253][ T7464] BTRFS error (device loop1): failed to load root extent
[   61.890303][ T7464] BTRFS warning (device loop1): try to load backup roots slot 1
[   61.890582][   T13] BTRFS warning (device loop1): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[   61.891070][ T7464] BTRFS warning (device loop1): couldn't read tree root
[   61.891102][ T7464] BTRFS warning (device loop1): try to load backup roots slot 2
[   61.891365][   T13] BTRFS error (device loop1): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[   61.891458][ T7464] BTRFS warning (device loop1): couldn't read tree root
[   61.891484][ T7464] BTRFS warning (device loop1): try to load backup roots slot 3
[   61.912120][ T7458] loop0: detected capacity change from 0 to 65536
[   61.927553][ T7464] BTRFS info (device loop1): rebuilding free space tree
[   61.938643][ T7472] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   61.938945][ T7458] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[   61.955815][ T7458] XFS (loop0): Ending clean mount
[   61.958366][ T7458] XFS (loop0): Quotacheck needed: Please wait.
[   61.961387][ T7524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.267'.
[   62.009620][ T7458] XFS (loop0): Quotacheck: Done.
[   62.046278][ T7464] BTRFS info (device loop1): checking UUID tree
[   62.205391][ T6529] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[   62.219178][ T7481] loop3: detected capacity change from 0 to 32768
[   62.281698][ T7472] XFS (loop4): Ending clean mount
[   62.352162][ T6532] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   62.381082][ T7481] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[   62.387977][ T7481]   allowing incompatible features above 0.0: (unknown version)
[   62.388054][ T7481]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   62.388118][ T7481] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[   62.388223][ T7481] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[   62.388358][ T7481] bcachefs (loop3): Version upgrade required:
[   62.388358][ T7481] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   62.388358][ T7481] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   62.388358][ T7481]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   62.475371][ T7481] bcachefs (loop3): dropping and reconstructing all alloc info
[   62.502129][ T6535] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   62.506648][ T7551] IPVS: persistence engine module ip_vs_pe_
[   62.506648][ T7551]  not found
[   62.529674][ T7481] bcachefs (loop3): accounting_read...
[   62.555744][ T7554] xt_hashlimit: size too large, truncated to 1048576
[   62.584242][ T7481]  done
[   62.584315][ T7481] bcachefs (loop3): alloc_read... done
[   62.585216][ T7481] bcachefs (loop3): snapshots_read... done
[   62.585855][ T7481] bcachefs (loop3): check_allocations... done
[   62.656535][ T7481] bcachefs (loop3): going read-write
[   62.712928][ T7481] bcachefs (loop3): done starting filesystem
[   62.945783][ T7098] bcachefs (loop3): shutting down
[   62.948762][ T7098] bcachefs (loop3): going read-only
[   62.948833][ T7098] bcachefs (loop3): finished waiting for writes to stop
[   62.969323][ T7098] bcachefs (loop3): flushing journal and stopping allocators, journal seq 11
[   62.974656][ T7098] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 11
[   62.997223][ T7098] bcachefs (loop3): unclean shutdown complete, journal seq 12
[   62.998489][ T7098] bcachefs (loop3): done going read-only, filesystem not clean
[   63.018745][ T7098] bcachefs (loop3): shutdown complete
[   63.101745][ T7575] loop4: detected capacity change from 0 to 4096
[   63.161388][ T7575] ntfs3(loop4): ino=1a, mi_enum_attr
[   63.161483][ T7575] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[   63.341864][ T7581] loop1: detected capacity change from 0 to 16384
[   63.416429][ T7592] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   63.562081][   T31] audit: type=1326 audit(63.540:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7597 comm="syz.4.294" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff7eb5af28 code=0x0
[   63.775481][ T7589] loop0: detected capacity change from 0 to 32768
[   63.777694][ T7589] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.290 (7589)
[   63.824417][ T7589] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   63.824539][ T7589] BTRFS info (device loop0): using crc32c (crc32c-arm64) checksum algorithm
[   63.824575][ T7589] BTRFS info (device loop0): using free-space-tree
[   64.011050][ T6529] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   64.468410][ T7638] netlink: 4 bytes leftover after parsing attributes in process `syz.4.304'.
[   64.485204][ T2405] ieee802154 phy0 wpan0: encryption failed: -22
[   64.485447][ T2405] ieee802154 phy1 wpan1: encryption failed: -22
[   64.629512][ T7648] netlink: 24 bytes leftover after parsing attributes in process `syz.4.309'.
[   64.649256][ T7648] netlink: 24 bytes leftover after parsing attributes in process `syz.4.309'.
[   64.795301][ T6593] kernel write not supported for file /uhid (pid: 6593 comm: kworker/1:4)
[   64.870849][ T7658] loop3: detected capacity change from 0 to 1024
[   64.872759][ T7658] EXT4-fs: inline encryption not supported
[   64.872801][ T7658] EXT4-fs: Ignoring removed i_version option
[   64.876143][ T7658] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   64.938930][ T7658] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.284: lblock 2 mapped to illegal pblock 2 (length 1)
[   64.940150][ T7658] Quota error (device loop3): qtree_write_dquot: dquota write failed
[   64.940206][ T7658] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.284: lblock 0 mapped to illegal pblock 48 (length 1)
[   64.940375][ T7658] Quota error (device loop3): v2_write_file_info: Can't write info structure
[   64.940546][ T7658] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.284: Failed to acquire dquot type 0
[   64.940820][ T7658] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   64.941011][ T7658] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.284: mark_inode_dirty error
[   64.941156][ T7658] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   64.941219][ T7658] EXT4-fs (loop3): 1 orphan inode deleted
[   64.942667][ T7658] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.963117][   T12] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   65.001949][   T12] Quota error (device loop3): remove_tree: Can't read quota data block 1
[   65.002029][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 0
[   65.065549][ T7658] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[   65.074872][ T7658] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.284: Invalid inode table block 1 in block_group 0
[   65.079405][ T7658] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   65.085810][ T7658] EXT4-fs error (device loop3): ext4_setattr:5828: inode #2: comm syz.3.284: mark_inode_dirty error
[   65.105603][ T7653] loop0: detected capacity change from 0 to 32768
[   65.184804][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.190610][   T84] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1)
[   65.195453][   T84] Quota error (device loop3): remove_tree: Can't read quota data block 1
[   65.195534][   T84] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 0
[   65.210230][ T7666] netlink: 12 bytes leftover after parsing attributes in process `syz.2.315'.
[   65.211283][ T7098] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   65.214541][ T7098] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   65.221891][ T7653] JBD2: Ignoring recovery information on journal
[   65.223548][ T7098] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   65.232929][ T7666] netlink: 12 bytes leftover after parsing attributes in process `syz.2.315'.
[   65.288409][ T7653] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   65.327395][ T7650] loop4: detected capacity change from 0 to 32768
[   65.351102][ T7650] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   65.431765][ T7650] XFS (loop4): Ending clean mount
[   65.437514][ T7650] XFS (loop4): Quotacheck needed: Please wait.
[   65.481256][ T6529] ocfs2: Unmounting device (7,0) on (node local)
[   65.509108][ T7650] XFS (loop4): Quotacheck: Done.
[   65.659349][ T6535] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   65.729037][ T7698] loop3: detected capacity change from 0 to 256
[   65.969644][ T7706] loop1: detected capacity change from 0 to 256
[   65.972571][ T7706] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   65.972636][ T7706] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[   65.976465][ T7706] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   66.379931][ T7699] loop0: detected capacity change from 0 to 40427
[   66.387890][ T7699] F2FS-fs (loop0): build fault injection rate: 19
[   66.390200][ T7699] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[   66.400060][ T7699] F2FS-fs (loop0): invalid crc value
[   66.422280][ T7699] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac
[   66.468412][ T7699] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0
[   66.493720][ T7699] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   66.574123][ T7699] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x19c/0x9ac
[   66.584384][ T7699] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of __f2fs_get_acl+0x70/0xa4c
[   66.703273][ T6529] syz-executor: attempt to access beyond end of device
[   66.703273][ T6529] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   66.703371][ T6529] CPU: 0 UID: 0 PID: 6529 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   66.703387][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   66.703395][ T6529] Call trace:
[   66.703399][ T6529]  show_stack+0x2c/0x3c (C)
[   66.703416][ T6529]  __dump_stack+0x30/0x40
[   66.703431][ T6529]  dump_stack_lvl+0xd8/0x12c
[   66.703444][ T6529]  dump_stack+0x1c/0x28
[   66.703457][ T6529]  f2fs_handle_critical_error+0x34c/0x4b8
[   66.703470][ T6529]  f2fs_stop_checkpoint+0x5c/0x70
[   66.703483][ T6529]  f2fs_write_end_io+0x58c/0x818
[   66.703495][ T6529]  bio_endio+0x804/0x840
[   66.703518][ T6529]  submit_bio_noacct+0x158/0x176c
[   66.703531][ T6529]  submit_bio+0x354/0x4d4
[   66.703543][ T6529]  f2fs_submit_write_bio+0x13c/0x324
[   66.703554][ T6529]  __submit_merged_bio+0x254/0x704
[   66.703572][ T6529]  __submit_merged_write_cond+0x23c/0x4ac
[   66.703584][ T6529]  f2fs_write_data_pages+0x1d28/0x2634
[   66.703596][ T6529]  do_writepages+0x270/0x468
[   66.703610][ T6529]  filemap_fdatawrite+0x144/0x1e8
[   66.703621][ T6529]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   66.703634][ T6529]  f2fs_write_checkpoint+0x684/0x1694
[   66.703648][ T6529]  kill_f2fs_super+0x21c/0x584
[   66.703659][ T6529]  deactivate_locked_super+0xc4/0x12c
[   66.703670][ T6529]  deactivate_super+0xe0/0x100
[   66.703680][ T6529]  cleanup_mnt+0x31c/0x3ac
[   66.703692][ T6529]  __cleanup_mnt+0x20/0x30
[   66.703702][ T6529]  task_work_run+0x1dc/0x260
[   66.703714][ T6529]  do_notify_resume+0x174/0x1f4
[   66.703726][ T6529]  el0_svc+0xb8/0x180
[   66.703738][ T6529]  el0t_64_sync_handler+0x84/0x12c
[   66.703749][ T6529]  el0t_64_sync+0x198/0x19c
[   66.703937][ T6529] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   66.856130][ T7745] netlink: 48 bytes leftover after parsing attributes in process `syz.4.346'.
[   66.884447][ T7728] loop2: detected capacity change from 0 to 32768
[   66.887219][ T7728] XFS: noikeep mount option is deprecated.
[   66.945373][ T7728] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   67.074429][ T7728] XFS (loop2): Ending clean mount
[   67.078903][ T7728] XFS (loop2): Quotacheck needed: Please wait.
[   67.175514][ T7728] XFS (loop2): Quotacheck: Done.
[   67.324119][ T7739] loop1: detected capacity change from 0 to 40427
[   67.347970][ T6534] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   67.348164][ T7739] F2FS-fs (loop1): build fault injection rate: 771
[   67.351181][ T7739] F2FS-fs (loop1): invalid crc value
[   67.412626][ T7779] loop9: detected capacity change from 0 to 8
[   67.430806][ T7779] Dev loop9: unable to read RDB block 8
[   67.431060][ T7779]  loop9: unable to read partition table
[   67.431299][ T7779] loop9: partition table beyond EOD, truncated
[   67.431359][ T7779] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5)
[   67.466861][ T7739] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   67.612603][ T6532] syz-executor: attempt to access beyond end of device
[   67.612603][ T6532] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   67.612706][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   67.612723][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.612731][ T6532] Call trace:
[   67.612735][ T6532]  show_stack+0x2c/0x3c (C)
[   67.612761][ T6532]  __dump_stack+0x30/0x40
[   67.612776][ T6532]  dump_stack_lvl+0xd8/0x12c
[   67.612789][ T6532]  dump_stack+0x1c/0x28
[   67.612802][ T6532]  f2fs_handle_critical_error+0x34c/0x4b8
[   67.612815][ T6532]  f2fs_stop_checkpoint+0x5c/0x70
[   67.612828][ T6532]  f2fs_write_end_io+0x58c/0x818
[   67.612840][ T6532]  bio_endio+0x804/0x840
[   67.612852][ T6532]  submit_bio_noacct+0x158/0x176c
[   67.612865][ T6532]  submit_bio+0x354/0x4d4
[   67.612877][ T6532]  f2fs_submit_write_bio+0x13c/0x324
[   67.612888][ T6532]  __submit_merged_bio+0x254/0x704
[   67.612899][ T6532]  __submit_merged_write_cond+0x23c/0x4ac
[   67.612910][ T6532]  f2fs_write_data_pages+0x1d28/0x2634
[   67.612922][ T6532]  do_writepages+0x270/0x468
[   67.612936][ T6532]  filemap_fdatawrite+0x144/0x1e8
[   67.612947][ T6532]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   67.612960][ T6532]  f2fs_write_checkpoint+0x684/0x1694
[   67.612974][ T6532]  kill_f2fs_super+0x21c/0x584
[   67.612985][ T6532]  deactivate_locked_super+0xc4/0x12c
[   67.612997][ T6532]  deactivate_super+0xe0/0x100
[   67.613007][ T6532]  cleanup_mnt+0x31c/0x3ac
[   67.613019][ T6532]  __cleanup_mnt+0x20/0x30
[   67.613029][ T6532]  task_work_run+0x1dc/0x260
[   67.613040][ T6532]  do_notify_resume+0x174/0x1f4
[   67.613052][ T6532]  el0_svc+0xb8/0x180
[   67.613064][ T6532]  el0t_64_sync_handler+0x84/0x12c
[   67.613074][ T6532]  el0t_64_sync+0x198/0x19c
[   67.613259][ T6532] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   67.852575][   T31] audit: type=1326 audit(67.840:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7796 comm="syz.0.364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff84d5af28 code=0x7ffc0000
[   67.863214][   T31] audit: type=1326 audit(67.850:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7796 comm="syz.0.364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=21 compat=0 ip=0xffff84d5af28 code=0x7ffc0000
[   67.870488][   T31] audit: type=1326 audit(67.850:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7796 comm="syz.0.364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff84d5af28 code=0x7ffc0000
[   67.993911][ T7802] loop3: detected capacity change from 0 to 8192
[   68.424689][ T7803] loop2: detected capacity change from 0 to 32768
[   68.442301][ T7803] XFS: ikeep mount option is deprecated.
[   68.473113][ T7803] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.484294][ T7831] loop3: detected capacity change from 0 to 256
[   68.509869][ T7831] exFAT-fs (loop3): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[   68.554112][ T7815] loop4: detected capacity change from 0 to 32768
[   68.556835][ T7815] XFS: noikeep mount option is deprecated.
[   68.558770][ T7815] XFS (loop4): invalid logbufsize: 34816 [not 16k,32k,64k,128k or 256k]
[   68.572006][ T7831] exFAT-fs (loop3): valid_size(10) is greater than size(0)
[   68.605585][ T7803] XFS (loop2): Ending clean mount
[   68.607784][ T7831] exFAT-fs (loop3): error, in sector 160, dentry 11 should be unused, but 0xc1
[   68.608159][ T7831] exFAT-fs (loop3): Filesystem has been set read-only
[   68.615391][ T7803] XFS (loop2): Quotacheck needed: Please wait.
[   68.636288][ T7815] netlink: 72 bytes leftover after parsing attributes in process `syz.4.372'.
[   68.681408][ T7803] XFS (loop2): Quotacheck: Done.
[   68.852517][ T6534] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.986336][ T7844] netlink: 8 bytes leftover after parsing attributes in process `syz.3.381'.
[   69.048703][ T7846] input: syz1 as /devices/virtual/input/input2
[   69.281282][ T7865] loop3: detected capacity change from 0 to 1024
[   69.300897][ T7865] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   69.371785][ T7865] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: comm syz.3.391: lblock 0 mapped to illegal pblock 0 (length 1)
[   69.391892][ T7865] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #15: comm syz.3.391: lblock 0 mapped to illegal pblock 0 (length 1)
[   69.433772][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   69.642353][    T9] cfg80211: failed to load regulatory.db
[   69.903202][ T7873] loop1: detected capacity change from 0 to 32768
[   69.912676][ T7873] (syz.1.395,7873,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   69.912961][ T7873] (syz.1.395,7873,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   69.945174][ T7873] JBD2: Ignoring recovery information on journal
[   70.019004][ T7888] loop4: detected capacity change from 0 to 32768
[   70.027660][ T7873] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   70.056259][ T7888] JBD2: Ignoring recovery information on journal
[   70.105295][ T7888] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[   70.179832][ T7907] loop0: detected capacity change from 0 to 512
[   70.197167][ T7907] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   70.197249][ T7907] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   70.206893][ T7907] EXT4-fs (loop0): 1 truncate cleaned up
[   70.209556][ T7907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.304046][ T7907] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[   70.323367][ T7907] EXT4-fs (loop0): Remounting filesystem read-only
[   70.469425][ T6529] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.555163][ T6532] ocfs2: Unmounting device (7,1) on (node local)
[   70.656851][ T6535] ocfs2: Unmounting device (7,4) on (node local)
[   70.896845][ T7924] loop0: detected capacity change from 0 to 4096
[   70.922776][ T7924] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   70.999272][ T7924] ntfs3(loop0): ino=19, mi_enum_attr
[   70.999361][ T7924] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   71.105436][ T7915] loop3: detected capacity change from 0 to 40427
[   71.112650][ T7915] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   71.115080][ T7915] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   71.133785][ T7935] tap0: tun_chr_ioctl cmd 1074025677
[   71.135665][ T7935] tap0: linktype set to 778
[   71.206784][ T7915] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   71.206858][ T7915] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   71.347728][ T7943] netlink: 8 bytes leftover after parsing attributes in process `syz.0.422'.
[   71.356744][ T7914] loop2: detected capacity change from 0 to 32768
[   71.417114][ T7914] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   71.511450][ T7914] XFS (loop2): Ending clean mount
[   71.697149][ T6534] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   71.880134][ T7931] loop1: detected capacity change from 0 to 32768
[   71.943216][ T7931] ERROR: (device loop1): xtSearch: XT_GETPAGE: xtree page corrupt
[   71.943216][ T7931] 
[   71.961952][ T7967] netpci0: tun_chr_ioctl cmd 1074025672
[   71.963714][ T7967] netpci0: ignored: set checksum disabled
[   71.966461][ T7931] ERROR: (device loop1): remounting filesystem as read-only
[   71.966535][ T7931] xtLookup: xtSearch returned -5
[   71.969712][ T7931] ERROR: (device loop1): xtSearch: XT_GETPAGE: xtree page corrupt
[   71.969712][ T7931] 
[   71.969896][ T7931] xtLookup: xtSearch returned -5
[   71.981915][ T7931] ERROR: (device loop1): xtSearch: XT_GETPAGE: xtree page corrupt
[   71.981915][ T7931] 
[   71.982321][ T7931] ERROR: (device loop1): xtSearch: XT_GETPAGE: xtree page corrupt
[   71.982321][ T7931] 
[   71.982408][ T7931] xtLookup: xtSearch returned -5
[   71.982447][ T7931] ERROR: (device loop1): xtSearch: XT_GETPAGE: xtree page corrupt
[   71.982447][ T7931] 
[   72.017147][ T6538] Bluetooth: hci0: unexpected event for opcode 0x203b
[   72.151086][ T7955] loop0: detected capacity change from 0 to 32768
[   72.221441][ T7976] netlink: 4 bytes leftover after parsing attributes in process `syz.2.436'.
[   72.230270][ T7955] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   72.357010][ T7955] XFS (loop0): Ending clean mount
[   72.555998][ T6529] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   73.039022][ T7991] loop2: detected capacity change from 0 to 32768
[   73.041029][ T7991] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.439 (7991)
[   73.055773][ T8016] netdevsim netdevsim4: Firmware load for 'nel/address_bits0/../file0' refused, path contains '..' component
[   73.059676][ T7991] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.059760][ T7991] BTRFS info (device loop2): using crc32c (crc32c-arm64) checksum algorithm
[   73.059795][ T7991] BTRFS info (device loop2): disk space caching is enabled
[   73.059819][ T7991] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   73.146453][ T7991] BTRFS info (device loop2): rebuilding free space tree
[   73.183787][ T7991] BTRFS info (device loop2): disabling free space tree
[   73.183894][ T7991] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   73.184258][ T7991] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   73.251298][ T8037] loop4: detected capacity change from 0 to 2048
[   73.272102][ T8022] loop0: detected capacity change from 0 to 32768
[   73.292598][ T8037] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   73.370713][ T8022] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 255,nocow
[   73.377215][ T8022]   allowing incompatible features above 0.0: (unknown version)
[   73.379681][ T8022]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   73.385146][ T8022] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   73.387500][ T8022] bcachefs (loop0): initializing new filesystem
[   73.389679][ T8037] overlayfs: upper fs needs to support d_type.
[   73.404931][ T8022] bcachefs (loop0): going read-write
[   73.407565][ T6534] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.409587][ T8037] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   73.409658][ T8037] overlayfs: failed to set xattr on upper
[   73.409677][ T8037] overlayfs: ...falling back to redirect_dir=nofollow.
[   73.409694][ T8037] overlayfs: ...falling back to index=off.
[   73.409711][ T8037] overlayfs: ...falling back to uuid=null.
[   73.445463][ T8022] bcachefs (loop0): marking superblocks
[   73.473757][ T8022] bcachefs (loop0): initializing freespace
[   73.485618][ T8022] bcachefs (loop0): done initializing freespace
[   73.498457][ T8022] bcachefs (loop0): reading snapshots table
[   73.498570][ T8022] bcachefs (loop0): reading snapshots done
[   73.557987][ T8022] bcachefs (loop0):  loop0: Superblock write was silently dropped! (seq 0 expected 42)
[   73.559957][ T8022] bcachefs (loop0): done starting filesystem
[   73.581674][ T8055] loop3: detected capacity change from 0 to 1024
[   73.913951][ T6529] bcachefs (loop0): shutting down
[   73.914025][ T6529] bcachefs (loop0): going read-only
[   73.915354][ T6529] bcachefs (loop0): finished waiting for writes to stop
[   73.942262][ T6529] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3
[   73.954154][ T8066] loop2: detected capacity change from 0 to 512
[   73.954828][ T8066] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.049457][ T2236] hfsplus: b-tree write err: -5, ino 4
[   74.070739][ T8066] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.078091][ T6529] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 4
[   74.081323][ T6529] bcachefs (loop0): clean shutdown complete, journal seq 5
[   74.089037][ T6529] bcachefs (loop0): marking filesystem clean
[   74.231977][ T6534] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.233222][ T8078] input: syz1 as /devices/virtual/input/input3
[   74.234379][ T6529] bcachefs (loop0): shutdown complete
[   74.254549][ T8079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.467'.
[   74.254632][ T8079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.467'.
[   74.311499][ T8083] netlink: 4 bytes leftover after parsing attributes in process `syz.3.470'.
[   74.323024][ T8085] loop2: detected capacity change from 0 to 512
[   74.325436][ T8085] vfat: Unknown parameter '01777777777777777777777'
[   74.361421][ T8085] loop2: detected capacity change from 0 to 1024
[   74.751004][ T8105] loop3: detected capacity change from 0 to 1024
[   74.908953][ T2091] hfsplus: b-tree write err: -5, ino 8
[   75.044728][ T8115] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[   75.177365][ T8107] loop2: detected capacity change from 0 to 32768
[   75.247283][ T8125] loop3: detected capacity change from 0 to 1024
[   75.322712][ T8125] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   75.354947][ T8125] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   75.404497][ T8136] loop1: detected capacity change from 0 to 2048
[   75.449006][ T8136] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[   75.449078][ T8136] UDF-fs: Scanning with blocksize 512 failed
[   75.477855][ T8136] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   75.524641][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   75.649388][ T8146] process 'syz.1.497' launched './file2' with NULL argv: empty string added
[   75.943827][ T8164] vxcan0: tx address claim with dlc 0
[   75.950826][ T8140] loop4: detected capacity change from 0 to 32768
[   76.009083][ T8107] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc32c,metadata_target=invalid label 2047,noinodes_use_key_cache,no_splitbrain_check,journal_flush_disabled,noexcl,reconstruct_alloc
[   76.009149][ T8107]   allowing incompatible features above 0.0: (unknown version)
[   76.009179][ T8107]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   76.009231][ T8107] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   76.009323][ T8107] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[   76.009445][ T8107] bcachefs (loop2): Version upgrade required:
[   76.009445][ T8107] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   76.009445][ T8107] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   76.009445][ T8107]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   76.010754][ T8107] bcachefs (loop2): dropping and reconstructing all alloc info
[   76.072065][ T8107] bcachefs (loop2): accounting_read... done
[   76.131766][ T8107] bcachefs (loop2): alloc_read... done
[   76.132435][ T8107] bcachefs (loop2): snapshots_read... done
[   76.136396][ T8107] bcachefs (loop2): check_allocations...
[   76.137139][ T8107] bcachefs (loop2): pointer to nonexistent device 237
[   76.137840][ T8107] bcachefs (loop2): pointer to missing device 237
[   76.137878][ T8107]   while marking u64s 7 type extent 536870913:24:U32_MAX len 24 ver 0: durability: 0 crc: c_size 8 size 24 offset 0 nonce 0 csum none 0:0  compress lz4 ptr: 237:893353206280 gen 0, fixing
[   76.138119][ T8107] bcachefs (loop2): pointer to nonexistent device 237
[   76.170084][ T8178] loop3: detected capacity change from 0 to 16
[   76.170696][ T8178] MTD: Attempt to mount non-MTD device "/dev/loop3"
[   76.184758][ T8140] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[   76.184821][ T8140]   allowing incompatible features above 0.0: (unknown version)
[   76.201832][ T8140]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   76.201937][ T8140] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[   76.202030][ T8140] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[   76.202157][ T8140] bcachefs (loop4): Version upgrade required:
[   76.202157][ T8140] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   76.202157][ T8140] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   76.202157][ T8140]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   76.202342][ T8140] bcachefs (loop4): dropping and reconstructing all alloc info
[   76.205584][ T8107]  done
[   76.217419][ T8107] bcachefs (loop2): going read-write
[   76.220454][ T8178] cramfs: Error -3 while decompressing!
[   76.220699][ T8178] cramfs: 0000000041f612a6(27)->00000000790a795e(4096)
[   76.220743][ T8178] cramfs: Error -3 while decompressing!
[   76.220762][ T8178] cramfs: 000000000757827d(16)->00000000cf788e39(4096)
[   76.220809][ T8178] cramfs: Error -3 while decompressing!
[   76.220828][ T8178] cramfs: 0000000041f612a6(27)->00000000790a795e(4096)
[   76.229176][ T8107] bcachefs (loop2): journal_replay...
[   76.264000][ T8140] bcachefs (loop4): accounting_read...
[   76.309072][ T6700] udevd[6700]: incorrect cramfs checksum on /dev/loop3
[   76.334168][ T8140]  done
[   76.334240][ T8140] bcachefs (loop4): alloc_read... done
[   76.334411][ T8140] bcachefs (loop4): snapshots_read... done
[   76.334868][ T8140] bcachefs (loop4): done starting filesystem
[   76.429343][ T8107]  done
[   76.459267][ T8107] bcachefs (loop2): check_alloc_info... done
[   76.487562][ T8107] bcachefs (loop2): check_lrus... done
[   76.489466][ T8107] bcachefs (loop2): check_btree_backpointers... done
[   76.492105][ T8107] bcachefs (loop2): check_backpointers_to_extents... done
[   76.494952][ T8107] bcachefs (loop2): check_extents_to_backpointers...
[   76.495635][ T8107] bcachefs (loop2): scanning for missing backpointers in 9/128 buckets
[   76.497206][ T8192] tipc: Started in network mode
[   76.497453][ T8192] tipc: Node identity ac14140f, cluster identity 4711
[   76.497858][ T8192] tipc: New replicast peer: 255.255.255.255
[   76.498833][ T8192] tipc: Enabled bearer <udp:syz2>, priority 10
[   76.502266][ T8107]  done
[   76.507060][ T8107] bcachefs (loop2): check_alloc_to_lru_refs... done
[   76.514995][ T8107] bcachefs (loop2): bucket_gens_init... done
[   76.533379][ T8107] bcachefs (loop2): check_snapshot_trees... done
[   76.533443][ T8107] bcachefs (loop2): check_snapshots...
[   76.533955][ T8107] bcachefs (loop2): snapshot points to missing/incorrect tree:
[   76.533988][ T8107]   u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: subvol parent          0 children          0          0 subvol 1 tree 0, fixing
[   76.546203][ T8195] loop1: detected capacity change from 0 to 4096
[   76.551448][ T8107]  done
[   76.555344][ T8107] bcachefs (loop2): check_subvols... done
[   76.556564][ T8107] bcachefs (loop2): check_subvol_children... done
[   76.556638][ T8107] bcachefs (loop2): delete_dead_snapshots... done
[   76.556859][ T8107] bcachefs (loop2): check_inodes... done
[   76.567372][ T6535] bcachefs (loop4): shutting down
[   76.573067][ T8107] bcachefs (loop2): check_extents... done
[   76.573595][ T8107] bcachefs (loop2): check_indirect_extents... done
[   76.573648][ T8107] bcachefs (loop2): check_dirents... done
[   76.585838][ T8107] bcachefs (loop2): check_xattrs... done
[   76.586301][ T8107] bcachefs (loop2): check_root... done
[   76.586421][ T8107] bcachefs (loop2): check_unreachable_inodes... done
[   76.586542][ T8107] bcachefs (loop2): check_subvolume_structure... done
[   76.586603][ T8107] bcachefs (loop2): check_directory_structure... done
[   76.586662][ T8107] bcachefs (loop2): check_nlinks...
[   76.586945][ T8107] bcachefs (loop2): inode 536870914 type reg has wrong i_nlink (2780562353, should be 1), fixing
[   76.587161][ T8107]  done
[   76.587924][ T8107] bcachefs (loop2): check_rebalance_work... done
[   76.588151][ T8107] bcachefs (loop2): resume_logged_ops... done
[   76.588196][ T8107] bcachefs (loop2): delete_dead_inodes... done
[   76.659108][ T8107] bcachefs (loop2): set_fs_needs_rebalance... done
[   76.697607][ T8198] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   76.708694][ T6535] bcachefs (loop4): shutdown complete
[   76.840936][ T8107] bcachefs (loop2): done starting filesystem
[   77.060446][ T6534] bcachefs (loop2): shutting down
[   77.060518][ T6534] bcachefs (loop2): going read-only
[   77.060571][ T6534] bcachefs (loop2): finished waiting for writes to stop
[   77.092063][ T6534] bcachefs (loop2): flushing journal and stopping allocators, journal seq 29
[   77.111061][ T6534] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 29
[   77.134906][ T6534] bcachefs (loop2): clean shutdown complete, journal seq 30
[   77.142851][ T6534] bcachefs (loop2): done going read-only, filesystem not clean
[   77.230017][ T6534] bcachefs (loop2): shutdown complete
[   77.613336][ T6593] tipc: Node number set to 2886997007
[   77.625626][ T8207] loop0: detected capacity change from 0 to 32768
[   77.626244][ T8207] XFS: ikeep mount option is deprecated.
[   77.646419][ T8207] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.757112][ T8207] XFS (loop0): Ending clean mount
[   77.828993][ T8224] loop3: detected capacity change from 0 to 32768
[   77.887909][ T8224] ERROR: (device loop3): dbAllocAG: allocation request is larger than the allocation group size
[   77.887909][ T8224] 
[   77.890218][ T8224] ERROR: (device loop3): dbDiscardAG: -EIO
[   77.890218][ T8224] 
[   77.953927][ T6529] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   78.188935][ T8259] netlink: 'syz.1.543': attribute type 1 has an invalid length.
[   78.194059][ T8259] netlink: 'syz.1.543': attribute type 4 has an invalid length.
[   78.196641][ T8259] netlink: 188 bytes leftover after parsing attributes in process `syz.1.543'.
[   78.199555][ T8259] NCSI netlink: No device for ifindex 0
[   78.752919][ T8269] loop0: detected capacity change from 0 to 32768
[   78.753539][ T8281] loop3: detected capacity change from 0 to 1024
[   78.771387][ T8269] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.546 (8269)
[   78.777448][ T8269] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   78.780472][ T8269] BTRFS info (device loop0): using sha256 (sha256-arm64) checksum algorithm
[   78.783676][ T8269] BTRFS info (device loop0): using free-space-tree
[   78.847102][ T8281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.056342][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.105783][ T8272] loop1: detected capacity change from 0 to 32768
[   79.110135][ T8272] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.544 (8272)
[   79.129820][ T8272] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   79.129923][ T8272] BTRFS info (device loop1): using sha256 (sha256-arm64) checksum algorithm
[   79.129983][ T8272] BTRFS info (device loop1): using free-space-tree
[   79.181081][ T6529] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   79.212450][ T8272] BTRFS info (device loop1): rebuilding free space tree
[   79.351156][ T8279] loop4: detected capacity change from 0 to 40427
[   79.376686][ T8279] F2FS-fs (loop4): build fault injection rate: 771
[   79.401648][ T8279] F2FS-fs (loop4): invalid crc value
[   79.478641][ T8279] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   79.483344][ T6532] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   79.673148][ T6535] syz-executor: attempt to access beyond end of device
[   79.673148][ T6535] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   79.674214][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   79.674245][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.674253][ T6535] Call trace:
[   79.674257][ T6535]  show_stack+0x2c/0x3c (C)
[   79.674275][ T6535]  __dump_stack+0x30/0x40
[   79.674289][ T6535]  dump_stack_lvl+0xd8/0x12c
[   79.674302][ T6535]  dump_stack+0x1c/0x28
[   79.674315][ T6535]  f2fs_handle_critical_error+0x34c/0x4b8
[   79.674328][ T6535]  f2fs_stop_checkpoint+0x5c/0x70
[   79.674341][ T6535]  f2fs_write_end_io+0x58c/0x818
[   79.674353][ T6535]  bio_endio+0x804/0x840
[   79.674365][ T6535]  submit_bio_noacct+0x158/0x176c
[   79.674378][ T6535]  submit_bio+0x354/0x4d4
[   79.674391][ T6535]  f2fs_submit_write_bio+0x13c/0x324
[   79.674402][ T6535]  __submit_merged_bio+0x254/0x704
[   79.674413][ T6535]  __submit_merged_write_cond+0x23c/0x4ac
[   79.674424][ T6535]  f2fs_write_data_pages+0x1d28/0x2634
[   79.674435][ T6535]  do_writepages+0x270/0x468
[   79.674450][ T6535]  filemap_fdatawrite+0x144/0x1e8
[   79.674460][ T6535]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   79.674474][ T6535]  f2fs_write_checkpoint+0x684/0x1694
[   79.674487][ T6535]  kill_f2fs_super+0x21c/0x584
[   79.674499][ T6535]  deactivate_locked_super+0xc4/0x12c
[   79.674518][ T6535]  deactivate_super+0xe0/0x100
[   79.674528][ T6535]  cleanup_mnt+0x31c/0x3ac
[   79.674540][ T6535]  __cleanup_mnt+0x20/0x30
[   79.674551][ T6535]  task_work_run+0x1dc/0x260
[   79.674562][ T6535]  do_notify_resume+0x174/0x1f4
[   79.674574][ T6535]  el0_svc+0xb8/0x180
[   79.674586][ T6535]  el0t_64_sync_handler+0x84/0x12c
[   79.674597][ T6535]  el0t_64_sync+0x198/0x19c
[   79.677894][ T6535] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[   79.788491][ T8336] netlink: 27 bytes leftover after parsing attributes in process `syz.2.521'.
[   80.005646][ T8327] loop0: detected capacity change from 0 to 32768
[   80.042422][ T8327] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   80.065750][ T8327] XFS (loop0): Ending clean mount
[   80.267404][ T6529] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   80.339644][ T8362] loop1: detected capacity change from 0 to 64
[   80.755989][ T8385] loop2: detected capacity change from 0 to 4096
[   80.828472][ T8359] loop4: detected capacity change from 0 to 32768
[   80.839876][ T8391] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   81.020798][ T8359] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=nojournal_transaction_names
[   81.020853][ T8359]   allowing incompatible features above 0.0: (unknown version)
[   81.021692][ T8359]   features: new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   81.021752][ T8359] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[   81.021849][ T8359] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[   81.021932][ T8359] bcachefs (loop4): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[   81.021932][ T8359]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[   81.077611][ T8359] bcachefs (loop4): accounting_read... done
[   81.154612][ T8359] bcachefs (loop4): alloc_read... done
[   81.156172][ T8359] bcachefs (loop4): snapshots_read... done
[   81.171733][ T8359] bcachefs (loop4): check_allocations...
[   81.172824][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.172840][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq cddfaeeca0a7d1e5 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[   81.174301][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.174318][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 6f77d90a6678a8d9 written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[   81.177026][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.177043][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1be24db0106cff76 written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[   81.177878][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.177892][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 592c28c0a83be2c9 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[   81.178802][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.178817][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1a83a7e47ef9f6aa written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing
[   81.180681][ T8359] bcachefs (loop4): btree ptr not marked in member info btree allocated bitmap
[   81.180697][ T8359]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 11da0ed3864cee54 written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[   81.266121][ T8387] loop1: detected capacity change from 0 to 40427
[   81.272069][ T8359]  done
[   81.277525][ T8387] F2FS-fs (loop1): invalid crc value
[   81.279491][ T8359] bcachefs (loop4): going read-write
[   81.310726][ T8359] bcachefs (loop4): journal_replay...
[   81.402172][ T8387] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   81.460050][ T8359]  done
[   81.464703][ T8359] bcachefs (loop4): check_extents_to_backpointers...
[   81.465484][ T8359] bcachefs (loop4): scanning for missing backpointers in 6/128 buckets
[   81.466919][ T8359]  done
[   81.474364][ T8359] bcachefs (loop4): check_inodes... done
[   81.480007][ T8359] bcachefs (loop4): resume_logged_ops... done
[   81.484982][ T8359] bcachefs (loop4): delete_dead_inodes... done
[   81.489863][ T8359] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[   81.489933][ T8359] bcachefs (loop4): check_extents_to_backpointers... done
[   81.497849][ T8359] bcachefs (loop4): check_inodes... done
[   81.498816][ T8359] bcachefs (loop4): resume_logged_ops... done
[   81.499369][ T8359] bcachefs (loop4): delete_dead_inodes... done
[   81.556815][ T8359] bcachefs (loop4): done starting filesystem
[   81.596457][ T8403] loop0: detected capacity change from 0 to 32768
[   81.655047][ T6532] syz-executor: attempt to access beyond end of device
[   81.655047][ T6532] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   81.655156][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   81.655170][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   81.655177][ T6532] Call trace:
[   81.655181][ T6532]  show_stack+0x2c/0x3c (C)
[   81.655198][ T6532]  __dump_stack+0x30/0x40
[   81.655213][ T6532]  dump_stack_lvl+0xd8/0x12c
[   81.655226][ T6532]  dump_stack+0x1c/0x28
[   81.655238][ T6532]  f2fs_handle_critical_error+0x34c/0x4b8
[   81.655251][ T6532]  f2fs_stop_checkpoint+0x5c/0x70
[   81.655265][ T6532]  f2fs_write_end_io+0x58c/0x818
[   81.655277][ T6532]  bio_endio+0x804/0x840
[   81.655288][ T6532]  submit_bio_noacct+0x158/0x176c
[   81.655302][ T6532]  submit_bio+0x354/0x4d4
[   81.655314][ T6532]  f2fs_submit_write_bio+0x13c/0x324
[   81.655325][ T6532]  __submit_merged_bio+0x254/0x704
[   81.655336][ T6532]  __submit_merged_write_cond+0x23c/0x4ac
[   81.655347][ T6532]  f2fs_write_data_pages+0x1d28/0x2634
[   81.655359][ T6532]  do_writepages+0x270/0x468
[   81.655373][ T6532]  filemap_fdatawrite+0x144/0x1e8
[   81.655384][ T6532]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   81.655397][ T6532]  f2fs_write_checkpoint+0x684/0x1694
[   81.655411][ T6532]  kill_f2fs_super+0x21c/0x584
[   81.655422][ T6532]  deactivate_locked_super+0xc4/0x12c
[   81.655433][ T6532]  deactivate_super+0xe0/0x100
[   81.655443][ T6532]  cleanup_mnt+0x31c/0x3ac
[   81.655455][ T6532]  __cleanup_mnt+0x20/0x30
[   81.655465][ T6532]  task_work_run+0x1dc/0x260
[   81.655477][ T6532]  do_notify_resume+0x174/0x1f4
[   81.655489][ T6532]  el0_svc+0xb8/0x180
[   81.655500][ T6532]  el0t_64_sync_handler+0x84/0x12c
[   81.655520][ T6532]  el0t_64_sync+0x198/0x19c
[   81.655534][ T6532] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   81.809189][ T6535] bcachefs (loop4): shutting down
[   81.809250][ T6535] bcachefs (loop4): going read-only
[   81.809307][ T6535] bcachefs (loop4): finished waiting for writes to stop
[   81.816872][ T8434] loop3: detected capacity change from 0 to 2048
[   81.838918][ T8403] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 255,nocow
[   81.844434][ T8403]   allowing incompatible features above 0.0: (unknown version)
[   81.846677][ T8403]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   81.850884][ T8434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.854641][ T8403] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   81.857087][ T8403] bcachefs (loop0): initializing new filesystem
[   81.862881][ T8403] bcachefs (loop0): going read-write
[   81.868830][ T6535] bcachefs (loop4): flushing journal and stopping allocators, journal seq 18
[   81.871616][ T6535] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 18
[   81.876649][ T6535] bcachefs (loop4): clean shutdown complete, journal seq 19
[   81.879522][ T6535] bcachefs (loop4): marking filesystem clean
[   81.901799][ T8403] bcachefs (loop0): marking superblocks
[   81.941235][ T8434] fs-verity (loop3, inode 13): Unknown hash algorithm number: 0
[   81.948187][ T8403] bcachefs (loop0): initializing freespace
[   81.963065][ T6535] bcachefs (loop4): shutdown complete
[   81.967377][ T8403] bcachefs (loop0): done initializing freespace
[   81.977672][ T8403] bcachefs (loop0): reading snapshots table
[   81.977767][ T8403] bcachefs (loop0): reading snapshots done
[   82.029159][ T8403] bcachefs (loop0):  loop0: Superblock write was silently dropped! (seq 0 expected 42)
[   82.030011][ T8403] bcachefs (loop0): done starting filesystem
[   82.068944][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.226555][ T6529] bcachefs (loop0): shutting down
[   82.226617][ T6529] bcachefs (loop0): going read-only
[   82.226677][ T6529] bcachefs (loop0): finished waiting for writes to stop
[   82.266204][ T6529] bcachefs (loop0): flushing journal and stopping allocators, journal seq 2
[   82.319707][ T8451] netlink: 'syz.4.590': attribute type 1 has an invalid length.
[   82.319783][ T8451] netlink: 'syz.4.590': attribute type 4 has an invalid length.
[   82.319806][ T8451] netlink: 188 bytes leftover after parsing attributes in process `syz.4.590'.
[   82.319829][ T8451] NCSI netlink: No device for ifindex 0
[   82.433278][ T6529] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3
[   82.436917][ T6529] bcachefs (loop0): clean shutdown complete, journal seq 4
[   82.437738][ T6529] bcachefs (loop0): marking filesystem clean
[   82.527132][ T6529] bcachefs (loop0): shutdown complete
[   82.864891][ T8449] loop1: detected capacity change from 0 to 32768
[   82.879323][ T8464] netlink: 27 bytes leftover after parsing attributes in process `syz.4.600'.
[   83.188598][ T8453] loop3: detected capacity change from 0 to 32768
[   83.189207][ T8453] XFS: ikeep mount option is deprecated.
[   83.250787][ T8473] netlink: 12 bytes leftover after parsing attributes in process `syz.4.604'.
[   83.253895][ T8473] netlink: 12 bytes leftover after parsing attributes in process `syz.4.604'.
[   83.260649][ T8453] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.310450][ T8479] netlink: 4 bytes leftover after parsing attributes in process `syz.1.603'.
[   83.328450][ T8453] XFS (loop3): Ending clean mount
[   83.357523][ T8482] loop4: detected capacity change from 0 to 256
[   83.389474][ T8482] exfat: Deprecated parameter 'namecase'
[   83.389589][ T8482] exfat: Deprecated parameter 'utf8'
[   83.392524][ T8462] loop2: detected capacity change from 0 to 40427
[   83.403546][ T8482] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   83.459388][ T8462] F2FS-fs (loop2): invalid crc value
[   83.520582][ T8462] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   83.556897][ T7098] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.663064][ T6534] syz-executor: attempt to access beyond end of device
[   83.663064][ T6534] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   83.663168][ T6534] CPU: 1 UID: 0 PID: 6534 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   83.663183][ T6534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.663190][ T6534] Call trace:
[   83.663195][ T6534]  show_stack+0x2c/0x3c (C)
[   83.663211][ T6534]  __dump_stack+0x30/0x40
[   83.663226][ T6534]  dump_stack_lvl+0xd8/0x12c
[   83.663239][ T6534]  dump_stack+0x1c/0x28
[   83.663252][ T6534]  f2fs_handle_critical_error+0x34c/0x4b8
[   83.663265][ T6534]  f2fs_stop_checkpoint+0x5c/0x70
[   83.663278][ T6534]  f2fs_write_end_io+0x58c/0x818
[   83.663290][ T6534]  bio_endio+0x804/0x840
[   83.663302][ T6534]  submit_bio_noacct+0x158/0x176c
[   83.663315][ T6534]  submit_bio+0x354/0x4d4
[   83.663328][ T6534]  f2fs_submit_write_bio+0x13c/0x324
[   83.663339][ T6534]  __submit_merged_bio+0x254/0x704
[   83.663350][ T6534]  __submit_merged_write_cond+0x23c/0x4ac
[   83.663361][ T6534]  f2fs_write_data_pages+0x1d28/0x2634
[   83.663373][ T6534]  do_writepages+0x270/0x468
[   83.663387][ T6534]  filemap_fdatawrite+0x144/0x1e8
[   83.663398][ T6534]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   83.663411][ T6534]  f2fs_write_checkpoint+0x684/0x1694
[   83.663425][ T6534]  kill_f2fs_super+0x21c/0x584
[   83.663436][ T6534]  deactivate_locked_super+0xc4/0x12c
[   83.663448][ T6534]  deactivate_super+0xe0/0x100
[   83.663458][ T6534]  cleanup_mnt+0x31c/0x3ac
[   83.663469][ T6534]  __cleanup_mnt+0x20/0x30
[   83.663480][ T6534]  task_work_run+0x1dc/0x260
[   83.663491][ T6534]  do_notify_resume+0x174/0x1f4
[   83.663514][ T6534]  el0_svc+0xb8/0x180
[   83.663527][ T6534]  el0t_64_sync_handler+0x84/0x12c
[   83.663538][ T6534]  el0t_64_sync+0x198/0x19c
[   83.665849][ T6534] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   83.825346][ T8487] loop1: detected capacity change from 0 to 32768
[   83.863698][ T8487] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.890428][ T8487] XFS (loop1): Ending clean mount
[   84.055012][ T6532] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   84.308582][ T8504] loop3: detected capacity change from 0 to 32768
[   84.355266][ T8504] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   84.459419][ T8504] XFS (loop3): Ending clean mount
[   84.474782][ T8504] XFS (loop3): Quotacheck needed: Please wait.
[   84.500650][ T8504] XFS (loop3): Quotacheck: Done.
[   84.580252][ T8510] loop1: detected capacity change from 0 to 32768
[   84.604358][ T7098] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   84.805318][ T8510] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[   84.815914][ T8510]   allowing incompatible features above 0.0: (unknown version)
[   84.818192][ T8510]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   84.822836][ T8510] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   84.825379][ T8510] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[   84.827898][ T8510] bcachefs (loop1): Version upgrade required:
[   84.827898][ T8510] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   84.827898][ T8510] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   84.827898][ T8510]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   84.837891][ T8510] bcachefs (loop1): dropping and reconstructing all alloc info
[   84.875712][ T8510] bcachefs (loop1): accounting_read... done
[   84.914634][ T8510] bcachefs (loop1): alloc_read... done
[   84.914818][ T8510] bcachefs (loop1): snapshots_read... done
[   84.915250][ T8510] bcachefs (loop1): done starting filesystem
[   85.020971][ T6532] bcachefs (loop1): shutting down
[   85.103113][ T6532] bcachefs (loop1): shutdown complete
[   85.165046][ T8547] loop4: detected capacity change from 0 to 1024
[   85.184642][ T8529] loop3: detected capacity change from 0 to 32768
[   85.240615][   T13] hfsplus: b-tree write err: -5, ino 8
[   85.734981][ T8529] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[   85.747791][ T8529]   allowing incompatible features above 0.0: (unknown version)
[   85.750117][ T8529]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   85.754412][ T8529] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[   85.756891][ T8529] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[   85.759355][ T8529] bcachefs (loop3): Version upgrade required:
[   85.759355][ T8529] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   85.759355][ T8529] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   85.759355][ T8529]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   85.787389][ T8529] bcachefs (loop3): dropping and reconstructing all alloc info
[   85.797984][ T8529] bcachefs (loop3): accounting_read... done
[   85.826102][ T8529] bcachefs (loop3): alloc_read... done
[   85.827954][ T8529] bcachefs (loop3): snapshots_read... done
[   85.831251][ T8529] bcachefs (loop3): done starting filesystem
[   85.902559][ T7098] bcachefs (loop3): shutting down
[   85.948654][ T7098] bcachefs (loop3): shutdown complete
[   86.067253][ T8584] netlink: 'syz.2.637': attribute type 11 has an invalid length.
[   86.067325][ T8584] netlink: 36 bytes leftover after parsing attributes in process `syz.2.637'.
[   86.121306][ T8586] loop1: detected capacity change from 0 to 256
[   86.155761][ T8586] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[   86.310901][ T8595] vxcan1: tx address claim with dest, not broadcast
[   86.372386][ T8599] loop0: detected capacity change from 0 to 1024
[   86.894786][ T8596] loop2: detected capacity change from 0 to 40427
[   86.926973][ T8596] F2FS-fs (loop2): heap/no_heap options were deprecated
[   86.934311][ T8596] F2FS-fs (loop2): invalid crc value
[   86.934391][ T8596] F2FS-fs (loop2): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[   86.983090][ T8596] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   87.013877][ T8600] loop4: detected capacity change from 0 to 65536
[   87.099272][ T8600] XFS (loop4): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   87.099886][ T8596] F2FS-fs (loop2): Stopped filesystem due to reason: 0
[   87.145132][ T8600] XFS (loop4): Ending clean mount
[   87.150011][ T8600] XFS (loop4): Quotacheck needed: Please wait.
[   87.198188][ T8600] XFS (loop4): Quotacheck: Done.
[   87.354032][ T6535] XFS (loop4): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   88.142371][ T8638] loop4: detected capacity change from 0 to 32768
[   88.158119][ T8638] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.225346][ T8638] XFS (loop4): Ending clean mount
[   88.388591][ T6535] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.779303][ T8675] loop4: detected capacity change from 0 to 4096
[   88.792000][ T8675] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[   88.832573][ T8675] ntfs3(loop4): ino=19, mi_enum_attr
[   88.832655][ T8675] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[   88.876848][ T8662] loop2: detected capacity change from 0 to 40427
[   88.879058][ T8662] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   88.879135][ T8662] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   88.950113][ T8662] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   88.950204][ T8662] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   89.173663][ T8691] loop3: detected capacity change from 0 to 16384
[   89.221065][ T8695] loop1: detected capacity change from 0 to 8192
[   89.269848][ T8698] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   89.411077][   T31] audit: type=1326 audit(89.390:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8700 comm="syz.1.681" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215af28 code=0x0
[   89.588012][    T9] kernel write not supported for file /uhid (pid: 9 comm: kworker/0:0)
[   89.970166][ T8709] loop3: detected capacity change from 0 to 32768
[   89.971331][ T8709] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.683 (8709)
[   89.999277][ T8709] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   89.999388][ T8709] BTRFS info (device loop3): using crc32c (crc32c-arm64) checksum algorithm
[   89.999425][ T8709] BTRFS info (device loop3): using free-space-tree
[   90.154708][ T7098] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   90.539768][ T8713] loop2: detected capacity change from 0 to 65536
[   90.585514][ T8713] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   90.620722][ T8713] XFS (loop2): Ending clean mount
[   90.624227][ T8713] XFS (loop2): Quotacheck needed: Please wait.
[   90.738971][ T8713] XFS (loop2): Quotacheck: Done.
[   90.973588][ T6534] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[   91.698136][ T8777] loop4: detected capacity change from 0 to 16
[   91.710388][ T8777] erofs (device loop4): mounted with root inode @ nid 36.
[   91.793528][ T8781] loop0: detected capacity change from 0 to 256
[   91.823718][ T8762] loop3: detected capacity change from 0 to 32768
[   91.824321][ T8762] XFS: noikeep mount option is deprecated.
[   92.076102][ T8762] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   92.086563][ T8789] loop4: detected capacity change from 0 to 256
[   92.110330][ T8789] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   92.114796][ T8789] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[   92.135642][ T8789] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   92.259944][ T8762] XFS (loop3): Ending clean mount
[   92.261668][ T8762] XFS (loop3): Quotacheck needed: Please wait.
[   92.311743][ T8762] XFS (loop3): Quotacheck: Done.
[   92.597904][ T7098] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   92.804858][ T8783] loop1: detected capacity change from 0 to 40427
[   92.831781][ T8783] F2FS-fs (loop1): build fault injection rate: 19
[   92.831879][ T8783] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[   92.849919][ T8783] F2FS-fs (loop1): invalid crc value
[   92.885755][ T8783] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x4e8/0x7ac
[   92.981812][ T8783] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1b0/0x3b0
[   93.012154][ T8783] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   93.133712][ T8783] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x19c/0x9ac
[   93.167015][ T8783] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of __f2fs_get_acl+0x70/0xa4c
[   93.372742][ T6532] syz-executor: attempt to access beyond end of device
[   93.372742][ T6532] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   93.372844][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   93.372860][ T6532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   93.372867][ T6532] Call trace:
[   93.372871][ T6532]  show_stack+0x2c/0x3c (C)
[   93.372888][ T6532]  __dump_stack+0x30/0x40
[   93.372903][ T6532]  dump_stack_lvl+0xd8/0x12c
[   93.372916][ T6532]  dump_stack+0x1c/0x28
[   93.372928][ T6532]  f2fs_handle_critical_error+0x34c/0x4b8
[   93.372942][ T6532]  f2fs_stop_checkpoint+0x5c/0x70
[   93.372955][ T6532]  f2fs_write_end_io+0x58c/0x818
[   93.372967][ T6532]  bio_endio+0x804/0x840
[   93.372979][ T6532]  submit_bio_noacct+0x158/0x176c
[   93.372993][ T6532]  submit_bio+0x354/0x4d4
[   93.373005][ T6532]  f2fs_submit_write_bio+0x13c/0x324
[   93.373016][ T6532]  __submit_merged_bio+0x254/0x704
[   93.373027][ T6532]  __submit_merged_write_cond+0x23c/0x4ac
[   93.373038][ T6532]  f2fs_write_data_pages+0x1d28/0x2634
[   93.373050][ T6532]  do_writepages+0x270/0x468
[   93.373064][ T6532]  filemap_fdatawrite+0x144/0x1e8
[   93.373074][ T6532]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   93.373087][ T6532]  f2fs_write_checkpoint+0x684/0x1694
[   93.373101][ T6532]  kill_f2fs_super+0x21c/0x584
[   93.373113][ T6532]  deactivate_locked_super+0xc4/0x12c
[   93.373124][ T6532]  deactivate_super+0xe0/0x100
[   93.373134][ T6532]  cleanup_mnt+0x31c/0x3ac
[   93.373146][ T6532]  __cleanup_mnt+0x20/0x30
[   93.373157][ T6532]  task_work_run+0x1dc/0x260
[   93.373168][ T6532]  do_notify_resume+0x174/0x1f4
[   93.373180][ T6532]  el0_svc+0xb8/0x180
[   93.373191][ T6532]  el0t_64_sync_handler+0x84/0x12c
[   93.373202][ T6532]  el0t_64_sync+0x198/0x19c
[   93.373384][ T6532] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   93.665454][ T8797] loop2: detected capacity change from 0 to 32768
[   93.666075][ T8797] BTRFS warning: excessive commit interval 2147483649, use with care
[   93.670950][ T8797] btrfs: Deprecated parameter 'usebackuproot'
[   93.671004][ T8797] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[   93.680645][ T8797] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.709 (8797)
[   93.821593][ T8797] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   93.821707][ T8797] BTRFS info (device loop2): using crc32c (crc32c-arm64) checksum algorithm
[   93.821767][ T8797] BTRFS info (device loop2): using free-space-tree
[   93.890667][   T84] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[   93.900173][ T8797] BTRFS error (device loop2): failed to load root extent
[   93.900242][ T8797] BTRFS warning (device loop2): try to load backup roots slot 1
[   93.920474][   T84] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[   93.931610][ T8797] BTRFS warning (device loop2): couldn't read tree root
[   93.931681][ T8797] BTRFS warning (device loop2): try to load backup roots slot 2
[   93.953512][   T84] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[   93.962852][ T8797] BTRFS warning (device loop2): couldn't read tree root
[   93.965072][ T8797] BTRFS warning (device loop2): try to load backup roots slot 3
[   94.151228][ T8797] BTRFS info (device loop2): rebuilding free space tree
[   94.195099][ T8797] BTRFS info (device loop2): checking UUID tree
[   94.411206][ T8799] loop4: detected capacity change from 0 to 40427
[   94.452137][ T8799] F2FS-fs (loop4): build fault injection rate: 771
[   94.460536][ T8799] F2FS-fs (loop4): invalid crc value
[   94.491898][ T6534] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   94.561596][ T8799] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   94.590319][ T8817] loop0: detected capacity change from 0 to 32768
[   94.664526][ T8817] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt
[   94.664526][ T8817] 
[   94.668877][ T8817] ERROR: (device loop0): remounting filesystem as read-only
[   94.672627][ T8817] xtLookup: xtSearch returned -5
[   94.682804][ T8817] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt
[   94.682804][ T8817] 
[   94.686828][ T8817] xtLookup: xtSearch returned -5
[   94.689442][ T8817] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt
[   94.689442][ T8817] 
[   94.689555][ T8817] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt
[   94.689555][ T8817] 
[   94.689587][ T8817] xtLookup: xtSearch returned -5
[   94.689627][ T8817] ERROR: (device loop0): xtSearch: XT_GETPAGE: xtree page corrupt
[   94.689627][ T8817] 
[   94.838347][ T6535] syz-executor: attempt to access beyond end of device
[   94.838347][ T6535] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   94.838455][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT 
[   94.838471][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   94.838478][ T6535] Call trace:
[   94.838482][ T6535]  show_stack+0x2c/0x3c (C)
[   94.838499][ T6535]  __dump_stack+0x30/0x40
[   94.838523][ T6535]  dump_stack_lvl+0xd8/0x12c
[   94.838536][ T6535]  dump_stack+0x1c/0x28
[   94.838549][ T6535]  f2fs_handle_critical_error+0x34c/0x4b8
[   94.838562][ T6535]  f2fs_stop_checkpoint+0x5c/0x70
[   94.838576][ T6535]  f2fs_write_end_io+0x58c/0x818
[   94.838588][ T6535]  bio_endio+0x804/0x840
[   94.838599][ T6535]  submit_bio_noacct+0x158/0x176c
[   94.838613][ T6535]  submit_bio+0x354/0x4d4
[   94.838625][ T6535]  f2fs_submit_write_bio+0x13c/0x324
[   94.838636][ T6535]  __submit_merged_bio+0x254/0x704
[   94.838647][ T6535]  __submit_merged_write_cond+0x23c/0x4ac
[   94.838658][ T6535]  f2fs_write_data_pages+0x1d28/0x2634
[   94.838670][ T6535]  do_writepages+0x270/0x468
[   94.838684][ T6535]  filemap_fdatawrite+0x144/0x1e8
[   94.838694][ T6535]  f2fs_sync_dirty_inodes+0x2b8/0x788
[   94.838715][ T6535]  f2fs_write_checkpoint+0x684/0x1694
[   94.838729][ T6535]  kill_f2fs_super+0x21c/0x584
[   94.838740][ T6535]  deactivate_locked_super+0xc4/0x12c
[   94.838751][ T6535]  deactivate_super+0xe0/0x100
[   94.838761][ T6535]  cleanup_mnt+0x31c/0x3ac
[   94.838773][ T6535]  __cleanup_mnt+0x20/0x30
[   94.838783][ T6535]  task_work_run+0x1dc/0x260
[   94.838795][ T6535]  do_notify_resume+0x174/0x1f4
[   94.838807][ T6535]  el0_svc+0xb8/0x180
[   94.838818][ T6535]  el0t_64_sync_handler+0x84/0x12c
[   94.838829][ T6535]  el0t_64_sync+0x198/0x19c
[   94.839015][ T6535] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[   95.849905][ T8857] loop3: detected capacity change from 0 to 32768
[   96.060455][ T8873] loop0: detected capacity change from 0 to 128
[   96.122578][ T8873] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   96.184987][ T8873] fscrypt (loop0, inode 12): Unsupported encryption flags (0x08)
[   96.240396][ T6529] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.293289][ T8878] netlink: 64 bytes leftover after parsing attributes in process `syz.3.733'.
[   96.336991][ T8880] loop4: detected capacity change from 0 to 1024
[   96.367611][ T8880] hfsplus: bad catalog entry type
[   96.412137][   T41] hfsplus: b-tree write err: -5, ino 4
[   96.837691][ T8884] netlink: 36 bytes leftover after parsing attributes in process `syz.0.738'.
[   97.324850][ T8901] netlink: 12 bytes leftover after parsing attributes in process `syz.1.747'.
[   97.471554][    C0] sched: DL replenish lagged too much
[   98.094150][ T8891] loop4: detected capacity change from 0 to 32768
[   98.170813][ T8891] JBD2: Ignoring recovery information on journal
[   98.251608][ T8891] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[   98.454306][ T6535] ocfs2: Unmounting device (7,4) on (node local)
[   98.898251][ T8937] netlink: 12 bytes leftover after parsing attributes in process `syz.3.762'.
[   99.200315][ T8950] loop3: detected capacity change from 0 to 1024
[   99.210970][ T8950] EXT4-fs: Ignoring removed orlov option
[   99.211057][ T8950] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.239437][ T8950] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.377467][ T7098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.800156][ T8960] loop4: detected capacity change from 0 to 32768
[   99.807541][ T8960] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   99.816452][ T8960] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.844923][ T8960] XFS (loop4): Ending clean mount
[   99.849469][ T8960] XFS (loop4): Quotacheck needed: Please wait.
[   99.887041][ T8960] XFS (loop4): Quotacheck: Done.
[   99.995957][ T6535] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  100.675523][ T8972] netlink: 'syz.4.775': attribute type 1 has an invalid length.
[  100.678355][ T8972] netlink: 172 bytes leftover after parsing attributes in process `syz.4.775'.
[  100.789321][ T8974] loop4: detected capacity change from 0 to 16
[  100.795183][ T8974] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  100.826732][ T8974] cramfs: Error -3 while decompressing!
[  100.835471][ T8974] cramfs: 00000000477cd46d(453)->000000008eff9f26(4096)
[  101.097579][ T8952] netlink: 8 bytes leftover after parsing attributes in process `syz.0.770'.
[  101.099418][ T8956] netlink: 80 bytes leftover after parsing attributes in process `syz.2.772'.
[  101.306009][ T8983] loop0: detected capacity change from 0 to 512
[  101.333640][ T8983] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  101.400813][ T8983] EXT4-fs (loop0): 1 truncate cleaned up
[  101.401972][ T8983] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.479808][ T8988] loop4: detected capacity change from 0 to 1024
[  101.537489][ T8988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  101.628255][ T8988] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: comm syz.4.783: lblock 0 mapped to illegal pblock 0 (length 1)
[  101.638428][ T8988] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: comm syz.4.783: lblock 0 mapped to illegal pblock 0 (length 1)
[  101.663522][ T8992] loop1: detected capacity change from 0 to 1024
[  101.804889][ T6535] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  101.812425][ T6529] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.221030][ T9005] bridge0: entered promiscuous mode
[  102.235655][ T9005] macvlan2: entered promiscuous mode
[  102.456610][ T9013] loop1: detected capacity change from 0 to 8
[  102.495792][ T8970] loop3: detected capacity change from 0 to 65536
[  102.554353][ T8970] XFS (loop3): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  102.815122][ T8970] XFS (loop3): Ending clean mount
[  102.855197][ T9027] bridge: RTM_NEWNEIGH with invalid state 0x20
[  124.839621][ T7098] XFS (loop3): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  126.632429][ T2405] ieee802154 phy0 wpan0: encryption failed: -22
[  126.642537][ T2405] ieee802154 phy1 wpan1: encryption failed: -22
[  170.222254][   T52] Bluetooth: hci1: command tx timeout
[  170.233319][   T52] Bluetooth: hci2: command tx timeout
[  170.244101][   T52] Bluetooth: hci3: command tx timeout
[  170.254874][   T52] Bluetooth: hci4: command tx timeout
[  188.261975][ T2405] ieee802154 phy0 wpan0: encryption failed: -22
[  188.279086][ T2405] ieee802154 phy1 wpan1: encryption failed: -22
[  195.774367][ T6528] Bluetooth: hci0: command 0x040f tx timeout
[  249.093258][ T2405] ieee802154 phy0 wpan0: encryption failed: -22
[  249.104822][ T2405] ieee802154 phy1 wpan1: encryption failed: -22
[  261.172344][   T32] INFO: task kworker/1:0:24 blocked for more than 144 seconds.
[  261.184440][   T32]       Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0
[  261.192337][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  261.204300][   T32] task:kworker/1:0     state:D stack:0     pid:24    tgid:24    ppid:2      task_flags:0x4208060 flags:0x00000010
[  261.224358][   T32] Workqueue: events reg_todo
[  261.245025][   T32] Call trace:
[  261.252984][   T32]  __switch_to+0x418/0x87c (T)
[  261.264831][   T32]  __schedule+0x141c/0x2a14
[  261.273071][   T32]  schedule+0xb4/0x230
[  261.285001][   T32]  schedule_preempt_disabled+0x18/0x2c
[  261.293048][   T32]  __mutex_lock_common+0xbd0/0x2190
[  261.305244][   T32]  mutex_lock_nested+0x2c/0x38
[  261.313214][   T32]  reg_process_self_managed_hints+0xc4/0x1c0
[  261.325131][   T32]  reg_todo+0x834/0x968
[  262.728131][   T32]  process_one_work+0x7e8/0x155c
[  262.732085][   T32]  worker_thread+0x958/0xed8
[  262.744296][   T32]  kthread+0x5fc/0x75c
[  262.752298][   T32]  ret_from_fork+0x10/0x20
[  262.764102][   T32] INFO: task kworker/R-ipv6_:4173 blocked for more than 146 seconds.
[  262.771890][   T32]       Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0
[  262.784430][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  262.792276][   T32] task:kworker/R-ipv6_ state:D stack:0     pid:4173  tgid:4173  ppid:2      task_flags:0x4208060 flags:0x00000010
[  262.812002][   T32] Workqueue: ipv6_addrconf addrconf_dad_work
[  262.831748][   T32] Call trace:
[  262.843800][   T32]  __switch_to+0x418/0x87c (T)
[  262.851790][   T32]  __schedule+0x141c/0x2a14
[  262.863818][   T32]  schedule+0xb4/0x230
[  262.871906][   T32]  schedule_preempt_disabled+0x18/0x2c
[  262.884644][   T32]  __mutex_lock_common+0xbd0/0x2190
[  262.892610][   T32]  mutex_lock_nested+0x2c/0x38
[  262.904719][   T32]  rtnl_lock+0x20/0x2c
[  262.912794][   T32]  addrconf_dad_work+0x100/0x10cc
[  262.924624][   T32]  process_one_work+0x7e8/0x155c
[  262.932847][   T32]  rescuer_thread+0x504/0xec8
[  262.944760][   T32]  kthread+0x5fc/0x75c
[  262.952665][   T32]  ret_from_fork+0x10/0x20
[  262.964828][   T32] INFO: task syz.4.797:9028 blocked for more than 146 seconds.
[  265.706826][   T32]       Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0
[  265.712927][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  265.723549][   T32] task:syz.4.797       state:D stack:0     pid:9028  tgid:9028  ppid:6535   task_flags:0x400040 flags:0x00000011
[  265.745152][   T32] Call trace:
[  265.755988][   T32]  __switch_to+0x418/0x87c (T)
[  265.766561][   T32]  __schedule+0x141c/0x2a14
[  265.772024][   T32]  schedule+0xb4/0x230
[  265.782901][   T32]  schedule_preempt_disabled+0x18/0x2c
[  265.793468][   T32]  __mutex_lock_common+0xbd0/0x2190
[  265.804233][   T32]  mutex_lock_nested+0x2c/0x38
[  265.815013][   T32]  rtnl_lock+0x20/0x2c
[  265.825548][   T32]  rtnl_net_dev_lock+0x254/0x314
[  265.836228][   T32]  unregister_netdev+0x80/0x1f8
[  265.841872][   T32]  slip_close+0x128/0x160
[  265.852741][   T32]  tty_ldisc_kill+0x184/0x2ec
[  265.863803][   T32]  tty_ldisc_release+0x188/0x238
[  265.874476][   T32]  tty_release_struct+0x34/0xd4
[  267.690284][   T32]  tty_release+0xa0c/0x1208
[  267.695842][   T32]  __fput+0x340/0x75c
[  267.706722][   T32]  ____fput+0x20/0x58
[  267.712379][   T32]  task_work_run+0x1dc/0x260
[  267.723240][   T32]  do_notify_resume+0x174/0x1f4
[  267.734076][   T32]  el0_svc+0xb8/0x180
[  267.744983][   T32]  el0t_64_sync_handler+0x84/0x12c
[  267.755833][   T32]  el0t_64_sync+0x198/0x19c
[  267.766555][   T32] 
[  267.766555][   T32] Showing all locks held in the system:
[  267.772223][   T32] 1 lock held by kworker/R-kvfre/6: