last executing test programs:

2m38.245366174s ago: executing program 3 (id=343):
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x46, 0x0, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x46, 0x0, &(0x7f0000000280))

2m38.100018129s ago: executing program 3 (id=345):
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRES16, @ANYRES8, @ANYRES32, @ANYRESDEC, @ANYRES8=0x0], 0x2, 0x1c2, &(0x7f0000000640)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40880, 0x20)
getdents(r0, &(0x7f0000000440)=""/31, 0x1f)
getdents64(r0, 0x0, 0x47)

2m37.838343387s ago: executing program 3 (id=348):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c00000010000104fcfffffffbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="431f07000b02000008000a00", @ANYRES32=r1, @ANYBLOB="08000500", @ANYRES32=r1, @ANYBLOB="1c0012800b0001006970766c616e"], 0x4c}, 0x1, 0x0, 0x0, 0x2004d808}, 0x40050)
syz_emit_ethernet(0x2a, &(0x7f0000000140)=ANY=[@ANYBLOB="0180c2000001ffffffffffff81004400080045"], 0x0)

2m37.400654601s ago: executing program 3 (id=349):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000700)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000680)="76389e6a65585578f830e9000000", 0x0, 0x10001, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m37.083617641s ago: executing program 3 (id=351):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="011100000000000000008100000008000300", @ANYRES32=r2, @ANYBLOB="04006700060066008e8800000a000600ffffffffffff0000220033"], 0x58}}, 0x0)

2m36.826235139s ago: executing program 3 (id=353):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x577, &(0x7f0000000640)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sync()
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

2m21.755498375s ago: executing program 32 (id=353):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x577, &(0x7f0000000640)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sync()
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

28.11868513s ago: executing program 4 (id=1329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x3, 0x8, 0x22}, 0x50)
r1 = socket(0x1, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r0, &(0x7f0000000240), &(0x7f0000000180)=@tcp=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={r0, &(0x7f0000000440), &(0x7f0000000380)=@udp=r1, 0x1}, 0x20)

28.058177812s ago: executing program 4 (id=1330):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000001c0)='syz_tun\x00', 0x10)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0xf434, 0x0, @remote}, 0x1c)
syz_emit_ethernet(0x6a, &(0x7f0000000040)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private2}}}}}}}, 0x0)

27.956689295s ago: executing program 4 (id=1331):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="6e6f626172726965722c747970653de6c0539c2c6e6c733d63703933322c706172743d3078303030303030303030303030303030332c63726561746f723d84913b122c706172743d3078303030303030303030303030303030362c6769643d", @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x5f9, &(0x7f0000000680)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

27.784598081s ago: executing program 4 (id=1332):
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000c40)='./file0\x00', 0x808080, &(0x7f0000000280)={[{@nogrpid}, {@bh}, {@bsdgroups}]}, 0x0, 0x52c, &(0x7f0000000640)="$eJzs3d9rY1kdAPBvMv2Rdjrbru7DKuqO6+oowyRtZrcs+6DriyDLssK6TyKzpc2U0qQpTbpua8EO+Oar4IBP+if4IPggzJPvvumbLyMojDo4TAWRyE1uOm2adMq0aWaazwcuOefc2/s9J3DP6T1J7glgaF2NiN2IGIuIjyNiOi3PpFu829qS4x4/3Fnce7izmIlG48N/jqRH7iy2j2+7nJ4zF/FBkh/vEre2tb26UC6XNtJ8oV5ZL9S2tm+sVBaWS8ultWJxfm5+9u2bbxXPrK2vVX7z4Dsr7330+9998f4fd7/x46TO32rtGkvadmaBDmi9L6MxdaAseefe60ewAbiUtmds0BXhmWQj4jMR8Xqa3pcbXJ0AgP5qNKajMX0w31vmBMcAAM+/5J5/KjLZfHr/PxXZbD7fnMPLvRKT2XK1Vr9+u7q5thTNOayZGM3eXimXZtO5wpkYzST5uWb6Sb7Ykb8ZES9HxM/HJ5r5/GK1vDSof3oAYMhd7hj/H423xv8T8AkBALzIjOQAMHyOjv+jA6kHAHB+3P8DwPA5MP53+60uAHAB5Tp++w8AXHwH7v9Huh7wavzkh+dXHQDgHPj8HwCGyvfefz/ZGnvp86+XPtnaXK1+cmOpVFvNVzYX84vVjfX8crW63HxmT+Vp5ytXq+tzb8bmp4V6qVYv1La2b1Wqm2v1W83net8q+WEBAAzey6/d+3MmInbfmWhu0V7LwRcC4MJzmcPwujToCgAD0/37PsAwMB8PZJ6yv+dXhO72/puJU9QH6L9rn+sx/9/tf4M7+6n/Nc6vikCfmP+H4XW6+X+zB/AiM/8Pw6vRyFjPHwCGzAnu4H1FEC64Z/78HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIbYVHPLZPPpWuBTkc3m8xFXImJmYjRze6Vcmo2IlyLiT+Oj40l+btCVBgBOKfv3TLr+17XpN6Y6945l/jPefI2IH/3yw198ulCvb8wl5f/aL6/fTcuLXQOM978NAMABI50F7XG6PY631/d9/HBnsb2dZwUffLu1uGgSdy/d2lVvVT4XoxEx+e/MocZkzmhh4t07EfFqZ/uz+/tn0pVPO+Mnsa/0LX40Wzh1KH72UPxsc1/rNXkvPnsGdYFhcy/pf97tdv1l42rzNb3+Moc701z87Gjn+gza/d9eo7P/a13vH1zJNfuabv3f1ZPGePMP3+25786lxudHIvaO9L/tFaFzzdSR+CMRb3Q74U+/+Wizo+gvX/jS673iN34VcS2Oi99KFeqV9UJta/vGSmVhubRcWisW5+fmZ9+++Vax0JyjLrRnqo/6xzvXX+rd/ojJHvFzx7U/Ir7a66Qdfv3fj3/w5WPif/0r3eJn45Vj4idj4tdOGH9h8rc9l+9O4i/1aP/Iofhjh/4uKbt+wvj3/7q9dMJDAYBzUNvaXl0ol0sbEqdN5Pp15svPSQMleiT+9tGha2rg9TmTxMC6JOCcPLnoB10TAAAAAAAAAAAAAACgl9r300f+9fHHcINuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABfX/wMAAP//OkHLZw==")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
move_mount(r0, &(0x7f00000004c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', 0x220)

27.563747888s ago: executing program 4 (id=1333):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1, 0xfffffffffffffffd, {0x0, 0x0, 0x3}}, 0x18)
sendmmsg(r0, &(0x7f0000000280)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x31, @empty, 0x4, 0x3}, 0x80, 0x0}}], 0x1, 0x8005)

27.129568732s ago: executing program 4 (id=1337):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f00000000c0)={0x1, {{0xa, 0x4e20, 0x5, @mcast2, 0x6}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000640)=ANY=[@ANYBLOB="00000000000000000a004e2000000001ff"], 0x90)

26.962441297s ago: executing program 33 (id=1337):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f00000000c0)={0x1, {{0xa, 0x4e20, 0x5, @mcast2, 0x6}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000640)=ANY=[@ANYBLOB="00000000000000000a004e2000000001ff"], 0x90)

3.608792966s ago: executing program 1 (id=1522):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f00000000c0)=0x80000000, 0x12)

3.48034445s ago: executing program 2 (id=1524):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000840)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000004380)=@newqdisc={0x108, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0xd8, 0x2, {{0x0, 0x0, 0xe, 0x0, 0x0, 0xfffffffe}, [@TCA_NETEM_LOSS={0x9c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x4, 0x1, {0x1000, 0x3ff, 0x1, 0x6, 0x5ea8}}, @NETEM_LOSS_GE={0x14, 0x2, {0x8020, 0xfe, 0x9, 0xffffffff}}, @NETEM_LOSS_GE={0xb, 0x2, {0xf6af, 0x1ff, 0x2, 0x10}}, @NETEM_LOSS_GI={0x18, 0x1, {0x3, 0xc2, 0xed8, 0x7d1, 0xffffffff}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x0, 0x6, 0x88, 0x9}}, @NETEM_LOSS_GE={0x14, 0x2, {0x586, 0xfffff74f, 0x8001, 0x102b5e26}}, @NETEM_LOSS_GE={0x14, 0x2, {0x80000001, 0x9, 0x1, 0x79}}]}, @TCA_NETEM_RATE={0x14, 0xd, {0x2000000}}, @TCA_NETEM_JITTER64={0x0, 0xb, 0x10}]}}}]}, 0x108}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

3.360631094s ago: executing program 1 (id=1525):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)={0x84, 0x0, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x10}, [@CTA_EXPECT_NAT={0x70, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x54, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x2c}}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000c40)="120000001200e7ef007b0000000000faffa0", 0x12, 0x8800, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x69}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400})

3.271222556s ago: executing program 1 (id=1526):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x0, &(0x7f0000000340)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@discard}, {@errors_remount}, {@mblk_io_submit}, {@quota}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@nombcache}, {}]}, 0x45, 0x7b6, &(0x7f0000001140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
renameat2(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x4)

3.201498479s ago: executing program 2 (id=1527):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x8, &(0x7f0000000180)={[{@noauto_da_alloc}, {@errors_remount}]}, 0x21, 0x509, &(0x7f0000000700)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xfc778000)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000001f40)=ANY=[@ANYBLOB="000000004c900200060000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000020000000000000ffffffffffd9ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

2.708619684s ago: executing program 1 (id=1531):
ioperm(0x40, 0x9, 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

2.700321425s ago: executing program 2 (id=1532):
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x8488, &(0x7f0000000780), 0xfe, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x14d142, 0x88)
truncate(&(0x7f0000000180)='./file1\x00', 0x1)
sendfile(r0, r0, 0x0, 0x80000001)

2.388725124s ago: executing program 1 (id=1534):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002dc0)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"], 0xfd, 0x29a, &(0x7f0000000ec0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file2\x00', 0xc4042, 0x1ff)
rename(&(0x7f0000000b40)='./file2\x00', &(0x7f0000000b00)='./file1\x00')

2.300725037s ago: executing program 0 (id=1535):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)

2.094454924s ago: executing program 5 (id=1537):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x4001, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, 'ip6gre0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x850)

1.848578072s ago: executing program 1 (id=1538):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./bus\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x445a, &(0x7f0000004480)="$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")
r0 = open(&(0x7f00000000c0)='./file2\x00', 0x24842, 0x80)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4808, 0x0, 0x0, 0x0, &(0x7f0000000000))
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xfffffdd6}], 0x1, 0x9c00, 0x0, 0x3)

1.740922335s ago: executing program 2 (id=1539):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x3, &(0x7f0000002480))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x702)

1.557049931s ago: executing program 5 (id=1540):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0xa, {0x0, 0x0, 0x10}}}}}, @RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}}, 0x0)

1.372753317s ago: executing program 0 (id=1541):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r0)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x48, r2, 0x3, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x40004881}, 0x84)

1.310665329s ago: executing program 5 (id=1542):
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, &(0x7f0000000100)="1ce0", 0xffeb, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10)
recvfrom$inet(r0, &(0x7f0000000500)=""/164, 0xfffffffffffffccd, 0x120, 0x0, 0x0)

1.200890862s ago: executing program 0 (id=1543):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.113483745s ago: executing program 5 (id=1544):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000006000000450000000010"], 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0xb5, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xc}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
unshare(0x400)
bpf$MAP_CREATE_TAIL_CALL(0x9, &(0x7f0000000380), 0xc)

972.821989ms ago: executing program 0 (id=1545):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000200)='dctcp', 0x5)

898.414251ms ago: executing program 5 (id=1546):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e21, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000700)={r1}, &(0x7f0000000180)=0x8)

873.352103ms ago: executing program 0 (id=1547):
syz_mount_image$udf(&(0x7f0000000100), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[], 0x1, 0x100c, &(0x7f0000004100)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/42, 0x2a)
getdents64(r0, 0xfffffffffffffffe, 0xff80)

634.63101ms ago: executing program 2 (id=1548):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x2a082)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x12, r0, 0x80000000)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/notes', 0x101000, 0x20)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0x0)

536.725893ms ago: executing program 5 (id=1549):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0xa}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

416.926637ms ago: executing program 2 (id=1550):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0x8000, &(0x7f0000000600)={[{@fat=@quiet}, {@uni_xlate}, {@fat=@errors_remount}, {@fat=@nfs}, {@uni_xlate}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@fat=@debug}, {@shortname_lower}, {@shortname_mixed}, {@utf8}, {@shortname_winnt}, {@utf8no}]}, 0x2a, 0x35b, &(0x7f0000000280)="$eJzs3U1oHOUbAPBnO5tsGug/Ofyh6Gn1JkhpIh7US0KpUMxBK4tfFxeb+pFdC1lcSA7Z5qJ4VLwIigdvPejBQ8/iQcSbB69WkKp4sbdAiyO7Mzv7GRstSS3+fofw8LzvM+87My/ZZNh99+WV2LgwExdv3Lgec3OlKK+cWYm9UizGsUgiczmmKE9LAgD3gr00jd/TzO17vz/fj2YPeV4AwOHpvf6/emKQqNzN2QAAR+GA//8/PTV76dCmBQAcor3ovv5vzhSJB0eaxx7zl4v3BAAA965nX3jxqdW1iPPV6lxE8512rV2Lxwftqxfj9WjEepyOhbgVkT0oyJ4WdH8+eW7t7Olq18+LUetWtGsRzU67lv2lsJr06iuxFAuxmNen/fpIuvVLvfpqRFzu9MaPZqldm4n5fPwf5mM9lmMh/j9en0acWzu7XM0PUGv26zsRuzHXP4nu/E/FQnz3SlyKRlyI3tjF/HeWqtUz6dpIfftKpddvP594/yMAAAAAAAAAAAAAAAAAAAAAAHfgVLWwWOx/kzY77bfPj3dYHNkfp5Y15/sD7Wb7A6WV/u487ybj+wON7s/TrpXj2F09cwAAAAAAAAAAAAAAAAAAAPj3aG3NRr3RWN9sbW1vDAedocyb33z21fEY7/NGMshEOTvcSJ88F0NVSRTlaVGeJiN98iCJGHS+crWY8XCfSnEW2/3NBIaPU8mahjKlfE71RuPEAz99NDHo1vbGH4NMEhOXZTQoTQ7a/F+W+ouq/YPl2/S5lqbpfuU7H05WRSmiPHHj7iSYzYOvr7923yOtk4/2mr7MN3146OGF56598OmvG/VG5Jem0ZjdbN1K/8lYkd2Cwdoo5de5NGUlTA92B5ndzdZWPfn+t+fvf+/bsc5JTCvvLp5B5q39x/p8PDObBd1pHuRMZ6Ys/inBE1/UX7pZrN6/fwdPfrxSv7rz4y8HrRr6JWGjDgAAAAAAAAAAAAAAAAAAOBJDH7c+kOyz1489c7izAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICjNfj+/6FgdyJzkOBmJyabKuubrX0HP36kpwoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwH/YnwEAAP//CORriw==")
r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xfc778000)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

0s ago: executing program 0 (id=1551):
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0xb6, 0x0, &(0x7f00000007c0)="e3ef7f670000ec6789b4241544940000000000000000000000040033a42c9550f5810011e0f0544b00aab05450dc72ff6e8f62d070e87f2c73d153bf01de50151803c474719193467201bd7c0b9cad1d390aec6d1531001128afc5bbfcc20d431c6f04aa6846a184d8f21d2eed601ffcf943ac714f9b3e40dec9355bed06b122adb3a923a73e056f745b132d0f57b0041e37a646fe0cd27f108a4ec2338e16fe123fb981532a0bd4b31bbcf191c2ceab6e7cfc58aa0a", 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9}, 0x50)
r0 = syz_open_dev$sg(&(0x7f0000000140), 0xa, 0x0)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85)

kernel console output (not intermixed with test programs):

] loop4: detected capacity change from 0 to 512
[  176.698503][ T8161] XFS (loop1): Quotacheck: Done.
[  176.710700][ T8180] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  176.751229][ T8180] EXT4-fs (loop4): Test dummy encryption mode enabled
[  176.796759][ T8180] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.950571][ T5771] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  177.063820][ T8180] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  177.074407][ T8180] EXT4-fs error (device loop4): ext4_add_entry:2486: inode #2: comm syz.4.858: Directory hole found for htree leaf block 0
[  177.132113][ T8180] EXT4-fs (loop4): Remounting filesystem read-only
[  177.257352][ T7117] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  177.337192][ T8191] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  177.456969][ T8192] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  177.473640][ T8198] netlink: 27 bytes leftover after parsing attributes in process `syz.1.859'.
[  177.851900][   T28] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  178.016820][ T8217] loop0: detected capacity change from 0 to 256
[  178.034397][ T8217] exfat: Deprecated parameter 'namecase'
[  178.040102][ T8217] exfat: Deprecated parameter 'utf8'
[  178.052847][   T28] usb 3-1: Using ep0 maxpacket: 16
[  178.060528][   T28] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.080319][ T8217] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xea424414, utbl_chksum : 0xe619d30d)
[  178.080945][   T28] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  178.125918][   T28] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.148780][   T28] usb 3-1: config 0 descriptor??
[  178.160804][   T28] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input12
[  178.417435][ T5127] bcm5974 3-1:0.0: could not read from device
[  178.505277][ T8202] bcm5974 3-1:0.0: could not read from device
[  178.522230][   T28] usb 3-1: USB disconnect, device number 12
[  179.232497][ T5780] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.302805][ T8225] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  179.392105][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.421120][ T8228] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  179.591972][ T5780] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.939032][ T8238] loop4: detected capacity change from 0 to 32768
[  179.952263][ T8246] netlink: 12 bytes leftover after parsing attributes in process `syz.1.885'.
[  179.974564][ T8238] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 10
[  179.992118][ T8248] loop2: detected capacity change from 0 to 256
[  180.003413][ T8246] netlink: 64 bytes leftover after parsing attributes in process `syz.1.885'.
[  180.013483][ T8248] exfat: Deprecated parameter 'namecase'
[  180.019191][ T8248] exfat: Deprecated parameter 'utf8'
[  180.123294][ T8248] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xea424414, utbl_chksum : 0xe619d30d)
[  180.281023][ T5879] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 10
[  180.441850][ T5780] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  180.522483][ T8259] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.529841][ T8259] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.605835][ T8259] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  180.657086][ T5780] usb 1-1: Using ep0 maxpacket: 8
[  180.671874][ T5780] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  180.707410][ T5780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.765577][ T5780] pvrusb2: Hardware description: Terratec Grabster AV400
[  180.784361][ T5780] pvrusb2: **********
[  180.788348][ T5780] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  180.788362][ T5780] pvrusb2: Important functionality might not be entirely working.
[  180.788372][ T5780] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  180.788383][ T5780] pvrusb2: **********
[  180.828098][ T8260] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  180.992318][ T2317] pvrusb2: Invalid write control endpoint
[  181.071526][ T8269] loop4: detected capacity change from 0 to 512
[  181.092245][ T8269] EXT4-fs: Ignoring removed oldalloc option
[  181.108983][ T8269] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  181.127383][ T2317] pvrusb2: Invalid write control endpoint
[  181.134651][ T2317] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  181.143328][ T8271] netlink: 104 bytes leftover after parsing attributes in process `syz.1.897'.
[  181.145287][ T2317] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  181.162703][ T2317] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  181.209543][ T2317] pvrusb2: Device being rendered inoperable
[  181.215715][ T2317] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  181.218359][ T8269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.222818][ T2317] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[  181.223727][ T2317] pvrusb2: Attached sub-driver cx25840
[  181.250190][ T2317] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  181.260606][ T2317] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  181.270415][ T8269] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.280024][ T5834] usb 1-1: USB disconnect, device number 12
[  181.331772][ T5780] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  181.357842][ T7117] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.531865][ T5780] usb 3-1: Using ep0 maxpacket: 32
[  181.538868][ T5780] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  181.548185][ T5780] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.566081][ T5780] usb 3-1: config 0 descriptor??
[  181.776156][ T5780] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  181.789848][ T5780] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  181.800359][ T5780] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  181.807876][ T5780] usb 3-1: media controller created
[  181.833807][ T5780] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  182.018541][ T5780] az6027: usb out operation failed. (-71)
[  182.044164][ T5780] az6027: usb out operation failed. (-71)
[  182.057477][ T5780] stb0899_attach: Driver disabled by Kconfig
[  182.081788][ T5780] az6027: no front-end attached
[  182.081788][ T5780] 
[  182.099372][ T5780] az6027: usb out operation failed. (-71)
[  182.120917][ T5780] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  182.143638][ T5780] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input13
[  182.159500][ T5780] dvb-usb: schedule remote query interval to 400 msecs.
[  182.179822][ T5780] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  182.218386][ T5780] usb 3-1: USB disconnect, device number 13
[  182.337736][ T8289] loop1: detected capacity change from 0 to 1024
[  182.347267][ T5780] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  182.657617][ T8279] loop0: detected capacity change from 0 to 32768
[  182.668123][ T8279] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 10
[  182.679317][ T5815] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.753597][ T8300] program syz.1.907 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  182.776572][ T8295] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  182.902098][ T5834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.938354][ T8296] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  182.970435][ T8303] netlink: 80 bytes leftover after parsing attributes in process `syz.1.909'.
[  183.248353][ T8309] netlink: 27 bytes leftover after parsing attributes in process `syz.0.911'.
[  183.281247][ T8312] loop4: detected capacity change from 0 to 1024
[  183.321346][   T27] audit: type=1804 audit(1781054820.281:28): pid=8312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.914" name="/newroot/83/file0/file1" dev="loop4" ino=20 res=1 errno=0
[  183.495778][ T8319] loop4: detected capacity change from 0 to 64
[  183.511672][ T5834] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  183.519421][ T8319] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  183.705522][ T8325] loop4: detected capacity change from 0 to 16
[  183.705843][ T5834] usb 2-1: Using ep0 maxpacket: 32
[  183.735006][ T8325] erofs: (device loop4): mounted with root inode @ nid 36.
[  183.752447][ T5815] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.768232][ T2132] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  183.777337][ T5834] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  183.793552][ T5834] usb 2-1: config 0 has no interface number 0
[  183.809328][ T5834] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  183.818540][ T5834] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.827153][ T5834] usb 2-1: Product: syz
[  183.831343][ T5834] usb 2-1: Manufacturer: syz
[  183.836457][ T5834] usb 2-1: SerialNumber: syz
[  183.848920][ T5834] usb 2-1: config 0 descriptor??
[  183.866665][ T5834] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  183.991392][ T2132] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  184.035109][ T2132] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  184.051755][ T2132] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  184.078666][ T5834] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  184.092189][ T2132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.119567][ T8317] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  184.127396][ T5834] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  184.154047][ T2132] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  184.466699][ T5780] usb 3-1: USB disconnect, device number 14
[  184.500813][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  184.502250][    T8] usb 2-1: USB disconnect, device number 11
[  184.563198][    T8] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  184.603736][    T8] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  184.633537][    T8] quatech2 2-1:0.51: device disconnected
[  185.489381][ T8365] batadv_slave_1: entered allmulticast mode
[  185.525501][ T8365] batadv_slave_1: left allmulticast mode
[  185.665253][ T8373] netlink: 24 bytes leftover after parsing attributes in process `syz.1.942'.
[  185.961858][ T5780] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  186.153866][ T5780] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  186.189107][ T5780] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  186.209474][ T5780] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  186.229978][ T8395] netlink: 12 bytes leftover after parsing attributes in process `syz.2.954'.
[  186.238989][ T5780] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.271451][ T8377] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  186.283594][ T5780] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  186.322650][ T8395] netlink: 64 bytes leftover after parsing attributes in process `syz.2.954'.
[  186.618550][ T5834] usb 5-1: USB disconnect, device number 4
[  186.816938][ T8391] loop0: detected capacity change from 0 to 32768
[  186.856217][ T8391] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  186.929200][ T8391] XFS (loop0): Ending clean mount
[  186.952934][ T8391] XFS (loop0): Quotacheck needed: Please wait.
[  187.053165][ T8391] XFS (loop0): Quotacheck: Done.
[  187.060080][ T8399] loop2: detected capacity change from 0 to 32768
[  187.073679][ T5775] Bluetooth: hci3: command tx timeout
[  187.091715][ T2132] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  187.194152][ T5772] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  187.242808][   T10] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 90 seconds
[  187.253516][   T10] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,1024B). Runtime 90 seconds
[  187.275136][   T10] block nbd0: Possible stuck request ffff888021f48400: control (read@2048,1024B). Runtime 90 seconds
[  187.286579][   T10] block nbd0: Possible stuck request ffff888021f48600: control (read@3072,1024B). Runtime 90 seconds
[  187.311764][ T2132] usb 2-1: Using ep0 maxpacket: 32
[  187.325489][ T2132] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  187.364603][ T2132] usb 2-1: config 0 has no interface number 0
[  187.429701][ T2132] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  187.451846][ T2132] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.476514][ T8421] netlink: 12 bytes leftover after parsing attributes in process `syz.4.964'.
[  187.487839][ T8421] netlink: 64 bytes leftover after parsing attributes in process `syz.4.964'.
[  187.501799][ T2132] usb 2-1: Product: syz
[  187.505984][ T2132] usb 2-1: Manufacturer: syz
[  187.510592][ T2132] usb 2-1: SerialNumber: syz
[  187.559623][ T2132] usb 2-1: config 0 descriptor??
[  187.579636][ T2132] smsc95xx v2.0.0
[  187.640109][ T8424] loop2: detected capacity change from 0 to 1024
[  187.753238][   T27] audit: type=1804 audit(1781054824.721:29): pid=8424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.966" name="/newroot/257/file0/file1" dev="loop2" ino=20 res=1 errno=0
[  187.936614][ T8431] loop2: detected capacity change from 0 to 16
[  187.959141][ T8431] erofs: (device loop2): mounted with root inode @ nid 36.
[  188.390551][ T2132] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  188.396472][ T8435] loop4: detected capacity change from 0 to 32768
[  188.414360][ T2132] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  188.426668][ T2132] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  188.435360][ T8435] syz.4.977: attempt to access beyond end of device
[  188.435360][ T8435] loop4: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  188.438728][ T2132] smsc95xx: probe of 2-1:0.67 failed with error -71
[  188.458439][ T8435] metapage_write_end_io: I/O error
[  188.465030][ T8435] ERROR: (device loop4): diWrite: ixpxd invalid
[  188.465030][ T8435] 
[  188.476902][ T8435] ERROR: (device loop4): remounting filesystem as read-only
[  188.481260][ T2132] usb 2-1: USB disconnect, device number 12
[  188.497075][ T8435] ERROR: (device loop4): txCommit: 
[  188.497075][ T8435] 
[  188.533520][ T8435] blkno = 8ed2c, nblocks = 1
[  188.549697][ T8435] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  188.549697][ T8435] 
[  188.583405][  T113] blkno = 8ed23, nblocks = 1
[  188.588259][  T113] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  188.588259][  T113] 
[  188.599167][  T113] blkno = 8ed2c, nblocks = 4
[  188.604556][  T113] ERROR: (device loop4): dbUpdatePMap: blocks are outside the map
[  188.604556][  T113] 
[  188.617468][ T7117] syz-executor: attempt to access beyond end of device
[  188.617468][ T7117] loop4: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  188.637563][ T7117] metapage_write_end_io: I/O error
[  188.643299][ T7117] JFS: metapage_get_blocks failed
[  188.648711][ T7117] JFS: metapage_get_blocks failed
[  188.659712][ T7117] JFS: metapage_get_blocks failed
[  188.679419][ T7117] JFS: metapage_get_blocks failed
[  188.686044][ T7117] JFS: metapage_get_blocks failed
[  188.798152][ T8443] netlink: 12 bytes leftover after parsing attributes in process `syz.2.983'.
[  189.061717][ T2132] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  189.118233][ T8447] loop4: detected capacity change from 0 to 32768
[  189.139357][ T8447] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.195401][ T8447] XFS (loop4): Ending clean mount
[  189.204148][ T8447] XFS (loop4): Quotacheck needed: Please wait.
[  189.242966][ T8447] XFS (loop4): Quotacheck: Done.
[  189.248804][ T2132] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  189.284707][ T2132] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  189.296461][ T2132] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  189.306867][ T2132] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.325784][ T8445] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  189.352455][ T2132] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  189.368440][ T7117] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.576566][ T2132] usb 1-1: USB disconnect, device number 13
[  190.420209][ T8461] netlink: 12 bytes leftover after parsing attributes in process `syz.0.974'.
[  190.467205][ T8461] netlink: 64 bytes leftover after parsing attributes in process `syz.0.974'.
[  191.112589][ T8482] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[8483] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[8482]
[  191.242656][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  191.252232][ T5781] Bluetooth: hci1: command 0x0406 tx timeout
[  191.261901][ T5787] Bluetooth: hci0: command 0x0406 tx timeout
[  191.268951][ T5783] Bluetooth: hci2: command 0x0406 tx timeout
[  191.282123][ T2132] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  191.329349][ T8485] syzkaller1: tun_chr_ioctl cmd 1074025677
[  191.335532][ T8485] syzkaller1: linktype set to 769
[  191.457038][ T8474] loop1: detected capacity change from 0 to 32768
[  191.471746][ T2132] usb 1-1: Using ep0 maxpacket: 32
[  191.478879][ T2132] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  191.491715][ T2132] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.512610][ T2132] usb 1-1: config 0 descriptor??
[  191.529317][ T8474] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  191.603962][ T8495] loop4: detected capacity change from 0 to 256
[  191.619320][ T8474] XFS (loop1): Ending clean mount
[  191.658761][ T8474] XFS (loop1): Quotacheck needed: Please wait.
[  191.742299][ T2132] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  191.743761][ T8495] FAT-fs (loop4): Directory bread(block 64) failed
[  191.765294][ T8474] XFS (loop1): Quotacheck: Done.
[  191.791356][ T2132] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  191.823496][ T2132] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  191.829810][ T8495] FAT-fs (loop4): Directory bread(block 65) failed
[  191.830653][ T2132] usb 1-1: media controller created
[  191.860233][ T8495] FAT-fs (loop4): Directory bread(block 66) failed
[  191.880786][ T8478] loop2: detected capacity change from 0 to 32768
[  191.881217][ T8495] FAT-fs (loop4): Directory bread(block 67) failed
[  191.940421][ T2132] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  191.964234][ T8495] FAT-fs (loop4): Directory bread(block 68) failed
[  191.970822][ T8495] FAT-fs (loop4): Directory bread(block 69) failed
[  192.020465][ T8478] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  192.031765][ T5771] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  192.044768][ T2132] az6027: usb out operation failed. (-71)
[  192.062875][ T2132] az6027: usb out operation failed. (-71)
[  192.089045][ T8495] FAT-fs (loop4): Directory bread(block 70) failed
[  192.097407][ T2132] stb0899_attach: Driver disabled by Kconfig
[  192.132429][ T2132] az6027: no front-end attached
[  192.132429][ T2132] 
[  192.148417][ T8495] FAT-fs (loop4): Directory bread(block 71) failed
[  192.156744][ T2132] az6027: usb out operation failed. (-71)
[  192.170000][ T8495] FAT-fs (loop4): Directory bread(block 72) failed
[  192.177762][ T2132] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  192.185174][ T8495] FAT-fs (loop4): Directory bread(block 73) failed
[  192.195440][ T2132] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input14
[  192.227302][ T2132] dvb-usb: schedule remote query interval to 400 msecs.
[  192.259147][ T2132] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  192.288344][ T2132] usb 1-1: USB disconnect, device number 14
[  192.352724][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  192.424568][ T2132] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  192.470466][ T8478] XFS (loop2): Ending clean mount
[  192.502114][ T8478] XFS (loop2): Quotacheck needed: Please wait.
[  192.625881][ T8478] XFS (loop2): Quotacheck: Done.
[  192.798418][ T8508] batadv_slave_1: entered allmulticast mode
[  192.826903][ T8508] batadv_slave_1: left allmulticast mode
[  192.931775][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  192.968071][ T8513] loop1: detected capacity change from 0 to 512
[  193.015780][ T8513] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  193.057043][ T8513] EXT4-fs (loop1): Test dummy encryption mode enabled
[  193.153040][ T8513] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.294631][ T8513] EXT4-fs error (device loop1): ext4_add_entry:2486: inode #2: comm syz.1.998: Directory hole found for htree leaf block 0
[  193.318089][ T5785] Bluetooth: hci1: command 0x0406 tx timeout
[  193.375773][ T8513] EXT4-fs (loop1): Remounting filesystem read-only
[  193.520753][ T5771] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  193.886413][ T8541] batadv_slave_1: entered allmulticast mode
[  193.893897][ T8541] batadv_slave_1: left allmulticast mode
[  194.032014][ T5780] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  194.041785][  T788] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  194.211682][ T5780] usb 5-1: Using ep0 maxpacket: 32
[  194.218949][ T5780] usb 5-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  194.231660][  T788] usb 3-1: Using ep0 maxpacket: 32
[  194.237343][ T5780] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.252511][  T788] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  194.270574][  T788] usb 3-1: config 0 has no interface number 0
[  194.286197][ T5780] usb 5-1: config 0 descriptor??
[  194.292099][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  194.298836][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  194.327133][  T788] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  194.344160][  T788] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.356338][  T788] usb 3-1: Product: syz
[  194.360554][  T788] usb 3-1: Manufacturer: syz
[  194.368197][  T788] usb 3-1: SerialNumber: syz
[  194.387023][  T788] usb 3-1: config 0 descriptor??
[  194.399834][  T788] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  194.521062][ T5780] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  194.533584][ T5780] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  194.556751][ T5780] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  194.565369][ T5780] usb 5-1: media controller created
[  194.612713][ T5780] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  194.628025][  T788] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  194.660661][  T788] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  194.730377][ T5780] az6027: usb out operation failed. (-71)
[  194.740524][ T5780] az6027: usb out operation failed. (-71)
[  194.747533][ T5780] stb0899_attach: Driver disabled by Kconfig
[  194.753654][ T5780] az6027: no front-end attached
[  194.753654][ T5780] 
[  194.760921][ T5780] az6027: usb out operation failed. (-71)
[  194.766748][ T5780] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  194.777929][ T5780] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input15
[  194.794214][ T5780] dvb-usb: schedule remote query interval to 400 msecs.
[  194.801216][ T5780] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  194.822822][ T5780] usb 5-1: USB disconnect, device number 5
[  194.893250][ T5780] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  195.060876][    C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  195.062016][ T2132] usb 3-1: USB disconnect, device number 15
[  195.080410][ T2132] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  195.100395][ T2132] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  195.115758][ T2132] quatech2 3-1:0.51: device disconnected
[  195.458462][ T8548] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  195.480322][ T8548] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.488021][ T8548] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.025332][ T8568] loop4: detected capacity change from 0 to 512
[  196.057926][ T8568] EXT4-fs error (device loop4): ext4_orphan_get:1404: inode #15: comm syz.4.1020: inode has both inline data and extents flags
[  196.082061][ T8568] EXT4-fs error (device loop4): ext4_orphan_get:1409: comm syz.4.1020: couldn't read orphan inode 15 (err -117)
[  196.107392][ T8568] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000400000000 r/w without journal. Quota mode: writeback.
[  196.211270][ T8573] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  196.243603][ T8568] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  196.280002][ T8573] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.395239][ T7117] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000400000000.
[  196.627345][ T8571] loop0: detected capacity change from 0 to 32768
[  198.425760][ T8580] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1026'.
[  198.513051][ T8583] loop0: detected capacity change from 0 to 64
[  198.691910][ T5780] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  198.786930][ T8593] program syz.2.1031 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.902263][ T5780] usb 2-1: Using ep0 maxpacket: 32
[  198.933173][ T5780] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  198.951672][ T5780] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.981112][ T5780] usb 2-1: config 0 descriptor??
[  199.017553][ T8603] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  199.030892][ T8603] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.038571][ T8603] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.219340][ T5780] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  199.240707][ T5834] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  199.249887][ T5780] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  199.277396][ T5780] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  199.290039][ T5780] usb 2-1: media controller created
[  199.319822][ T5780] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  199.395274][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.431656][ T5834] usb 1-1: Using ep0 maxpacket: 32
[  199.434017][ T5780] az6027: usb out operation failed. (-71)
[  199.444165][ T5834] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[  199.453114][ T5780] az6027: usb out operation failed. (-71)
[  199.459574][ T5780] stb0899_attach: Driver disabled by Kconfig
[  199.460169][ T5834] usb 1-1: config 0 has no interface number 0
[  199.481467][ T5834] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  199.490939][ T5834] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.501705][ T5780] az6027: no front-end attached
[  199.501705][ T5780] 
[  199.504566][ T5834] usb 1-1: Product: syz
[  199.511694][ T5780] az6027: usb out operation failed. (-71)
[  199.514457][ T5834] usb 1-1: Manufacturer: syz
[  199.518599][ T5780] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  199.520260][ T5780] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input16
[  199.551173][ T5834] usb 1-1: SerialNumber: syz
[  199.576981][ T5834] usb 1-1: config 0 descriptor??
[  199.602038][ T5780] dvb-usb: schedule remote query interval to 400 msecs.
[  199.602647][ T5834] smsc95xx v2.0.0
[  199.621985][ T5780] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  199.655471][ T5780] usb 2-1: USB disconnect, device number 13
[  199.822494][ T5780] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  200.351373][ T8610] syzkaller1: tun_chr_ioctl cmd 1074025677
[  200.395387][ T8610] syzkaller1: linktype set to 769
[  200.414565][ T5834] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  200.432270][ T5834] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  200.439866][ T8613] loop4: detected capacity change from 0 to 64
[  200.451021][ T5834] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  200.478654][ T5834] smsc95xx: probe of 1-1:0.67 failed with error -71
[  200.532014][ T5834] usb 1-1: USB disconnect, device number 15
[  200.715232][ T8617] loop4: detected capacity change from 0 to 256
[  200.766773][ T8617] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5e9a16ef, utbl_chksum : 0xe619d30d)
[  201.201659][ T5834] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  201.402086][ T5834] usb 2-1: Using ep0 maxpacket: 16
[  201.410538][ T8632] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1051'.
[  201.435912][ T5834] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  201.444489][ T5834] usb 2-1: config 0 has no interface number 0
[  201.463423][ T8632] ipvlan2: entered allmulticast mode
[  201.471110][ T5834] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  201.480260][ T8632] syz_tun: entered allmulticast mode
[  201.496017][ T5834] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.513949][ T5834] usb 2-1: Product: syz
[  201.522657][ T5834] usb 2-1: Manufacturer: syz
[  201.536428][ T5834] usb 2-1: SerialNumber: syz
[  201.563695][ T5834] usb 2-1: config 0 descriptor??
[  201.570827][ T5834] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  201.754057][ T8640] loop0: detected capacity change from 0 to 8
[  201.801816][ T8642] bridge0: entered allmulticast mode
[  201.826096][ T8642] bridge0: port 1(bridge_slave_0) entered forwarding state
[  202.382301][ T5834] gspca_spca1528: reg_w err -71
[  202.426330][ T5834] spca1528: probe of 2-1:0.1 failed with error -71
[  202.452690][ T5834] usb 2-1: USB disconnect, device number 14
[  202.998881][ T8659] loop4: detected capacity change from 0 to 128
[  203.068252][ T8659] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.114006][ T8659] ext4 filesystem being mounted at /130/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  203.221000][ T8659] fscrypt (loop4, inode 12): Direct key flag not allowed with different contents and filenames modes
[  203.300127][ T7117] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  203.413857][ T8664] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1062'.
[  203.459632][ T8664] ipvlan3: entered allmulticast mode
[  203.519660][ T8666] loop4: detected capacity change from 0 to 4096
[  203.533945][ T8653] loop0: detected capacity change from 0 to 32768
[  203.590554][ T8653] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  203.689529][ T8653] XFS (loop0): Ending clean mount
[  203.706843][ T8666] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  203.926390][ T5772] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  204.497127][ T8690] loop1: detected capacity change from 0 to 64
[  204.626161][ T8690] syz.1.1067: attempt to access beyond end of device
[  204.626161][ T8690] loop1: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[  204.681874][ T8690] Buffer I/O error on dev loop1, logical block 134217734, lost async page write
[  204.870621][ T8680] loop4: detected capacity change from 0 to 32768
[  204.921779][ T8680] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.1064 (8680)
[  204.974786][ T8680] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  204.996888][ T8680] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  205.003115][ T8694] loop0: detected capacity change from 0 to 1024
[  205.018765][ T8680] BTRFS info (device loop4): setting nodatacow, compression disabled
[  205.032317][ T8694] EXT4-fs: Ignoring removed bh option
[  205.047960][ T8694] EXT4-fs: Ignoring removed bh option
[  205.056039][ T8680] BTRFS info (device loop4): turning on flush-on-commit
[  205.101721][ T8680] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  205.117568][ T8694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.146113][ T8680] BTRFS info (device loop4): use lzo compression, level 0
[  205.170001][ T8680] BTRFS info (device loop4): setting nodatasum
[  205.213754][ T8680] BTRFS info (device loop4): use no compression
[  205.220061][ T8680] BTRFS info (device loop4): trying to use backup root at mount time
[  205.237350][   T27] audit: type=1800 audit(1781054842.201:30): pid=8694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1070" name="file1" dev="loop0" ino=15 res=0 errno=0
[  205.277265][ T8680] BTRFS info (device loop4): max_inline at 0
[  205.304651][ T8680] BTRFS info (device loop4): using free space tree
[  205.390766][ T7858] BTRFS warning (device loop4): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xcee3a718 level 0
[  205.446274][ T8721] loop1: detected capacity change from 0 to 512
[  205.454322][ T8680] BTRFS warning (device loop4): couldn't read tree root
[  205.466373][ T8680] BTRFS warning (device loop4): try to load backup roots slot 1
[  205.491739][ T8721] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #12: comm syz.1.1075: missing EA_INODE flag
[  205.506853][  T141] BTRFS warning (device loop4): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0xe06dfc66 level 0
[  205.557610][ T8680] BTRFS warning (device loop4): couldn't read tree root
[  205.565190][ T8680] BTRFS warning (device loop4): try to load backup roots slot 2
[  205.579047][ T7857] BTRFS error (device loop4): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  205.589794][ T8721] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.1075: error while reading EA inode 12 err=-117
[  205.604692][ T8680] BTRFS warning (device loop4): couldn't read tree root
[  205.612358][ T8721] EXT4-fs (loop1): 1 orphan inode deleted
[  205.612811][  T788] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  205.619240][ T8721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.628436][ T8680] BTRFS warning (device loop4): try to load backup roots slot 3
[  205.673733][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.699378][ T8680] BTRFS info (device loop4): enabling ssd optimizations
[  205.748943][ T8680] BTRFS info (device loop4): auto enabling async discard
[  205.769968][ T8680] BTRFS info (device loop4): rebuilding free space tree
[  205.798008][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.813714][ T8680] BTRFS info (device loop4): checking UUID tree
[  205.857091][  T788] usb 3-1: Using ep0 maxpacket: 8
[  205.864928][  T788] usb 3-1: unable to get BOS descriptor or descriptor too short
[  205.884051][  T788] usb 3-1: config 117 has an invalid interface number: 163 but max is 0
[  205.892845][  T788] usb 3-1: config 117 has no interface number 0
[  205.909302][  T788] usb 3-1: config 117 interface 163 has no altsetting 0
[  205.916445][   T27] audit: type=1800 audit(1781054842.871:31): pid=8680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1064" name="file1" dev="loop4" ino=257 res=0 errno=0
[  205.954205][  T788] usb 3-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=5d.24
[  205.971635][  T788] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.981709][  T788] usb 3-1: Product: syz
[  205.985943][  T788] usb 3-1: Manufacturer: syz
[  206.011231][  T788] usb 3-1: SerialNumber: syz
[  206.136908][ T7117] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  206.564101][ T8735] can0: slcan on ttyS3.
[  206.623871][ T8735] can0 (unregistered): slcan off ttyS3.
[  206.662318][ T5780] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  206.853758][  T788] f81534a_ctrl 3-1:117.163: failed to enable ports: -71
[  206.874357][  T788] f81534a_ctrl: probe of 3-1:117.163 failed with error -71
[  206.890632][ T5780] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  206.895738][ T8747] loop4: detected capacity change from 0 to 4096
[  206.918638][ T5780] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.927927][  T788] usb 3-1: USB disconnect, device number 16
[  206.953188][ T5780] usb 1-1: Product: syz
[  206.971807][ T5780] usb 1-1: Manufacturer: syz
[  206.981785][ T5780] usb 1-1: SerialNumber: syz
[  206.983896][ T8747] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  206.997969][ T5780] usb 1-1: config 0 descriptor??
[  207.030178][ T8747] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  207.164119][ T8747] ntfs: volume version 3.1.
[  207.439170][ T5780] usb 1-1: Firmware: major: 0, minor: 0, hardware type: ATUSB (0)
[  207.468016][ T5780] usb 1-1: Firmware version (0.0) predates our first public release.
[  207.492300][ T5780] usb 1-1: Please update to version 0.2 or newer
[  207.740431][ T5780] usb 1-1: USB disconnect, device number 16
[  208.178055][ T8766] loop2: detected capacity change from 0 to 32768
[  208.206333][ T8766] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.1087 (8766)
[  208.241164][ T8766] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  208.258067][ T8766] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  208.272324][ T8766] BTRFS info (device loop2): setting nodatacow, compression disabled
[  208.281127][ T8766] BTRFS info (device loop2): turning on flush-on-commit
[  208.314410][ T8766] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  208.331636][ T8766] BTRFS info (device loop2): use lzo compression, level 0
[  208.338794][ T8766] BTRFS info (device loop2): setting nodatasum
[  208.362570][ T8766] BTRFS info (device loop2): use no compression
[  208.369132][ T8766] BTRFS info (device loop2): trying to use backup root at mount time
[  208.391696][ T8766] BTRFS info (device loop2): max_inline at 0
[  208.397736][ T8766] BTRFS info (device loop2): using free space tree
[  208.523511][  T141] BTRFS warning (device loop2): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xcee3a718 level 0
[  208.537466][ T8766] BTRFS warning (device loop2): couldn't read tree root
[  208.545631][ T8766] BTRFS warning (device loop2): try to load backup roots slot 1
[  208.553896][  T141] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0xe06dfc66 level 0
[  208.567708][ T8766] BTRFS warning (device loop2): couldn't read tree root
[  208.574998][ T8766] BTRFS warning (device loop2): try to load backup roots slot 2
[  208.584051][ T7857] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  208.596460][ T8766] BTRFS warning (device loop2): couldn't read tree root
[  208.604034][ T8766] BTRFS warning (device loop2): try to load backup roots slot 3
[  208.616491][ T8766] BTRFS info (device loop2): enabling ssd optimizations
[  208.623648][ T8766] BTRFS info (device loop2): auto enabling async discard
[  208.631118][ T8766] BTRFS info (device loop2): rebuilding free space tree
[  208.649431][ T8766] BTRFS info (device loop2): checking UUID tree
[  208.717586][   T27] audit: type=1800 audit(1781054845.681:32): pid=8766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1087" name="file1" dev="loop2" ino=257 res=0 errno=0
[  208.967267][ T5774] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  209.028835][ T8811] loop1: detected capacity change from 0 to 256
[  209.089054][ T8811] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5e9a16ef, utbl_chksum : 0xe619d30d)
[  209.609047][ T8819] can0: slcan on ttyS3.
[  209.649709][ T8823] loop1: detected capacity change from 0 to 256
[  209.714876][ T8819] can0 (unregistered): slcan off ttyS3.
[  209.745012][   T27] audit: type=1800 audit(1781054846.701:33): pid=8823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1095" name="file1" dev="loop1" ino=1048650 res=0 errno=0
[  209.779964][ T8823] FAT-fs (loop1): error, clusters badly computed (0 != 128)
[  209.816189][ T8823] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  209.957135][ T8825] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  210.229422][ T8837] loop1: detected capacity change from 0 to 512
[  210.349771][ T8837] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.420898][ T8837] ext4 filesystem being mounted at /298/file3 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.462034][ T8843] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  210.492121][   T27] audit: type=1800 audit(1781054847.461:34): pid=8837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1099" name="file1" dev="loop1" ino=15 res=0 errno=0
[  210.511716][ T8843] EXT4-fs (loop1): Remounting filesystem read-only
[  210.598220][ T8850] loop0: detected capacity change from 0 to 1024
[  210.666797][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.682142][ T8850] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.014299][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.339918][ T8867] loop0: detected capacity change from 0 to 4096
[  211.361829][ T5890] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  211.410618][ T8867] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  211.458292][ T8867] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  211.522555][ T8867] ntfs: volume version 3.1.
[  211.571798][ T5890] usb 3-1: Using ep0 maxpacket: 16
[  211.593657][ T5890] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  211.631641][ T5890] usb 3-1: config 0 has no interface number 0
[  211.644620][ T5890] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  211.679297][ T5890] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.718692][ T5890] usb 3-1: Product: syz
[  211.728829][ T5890] usb 3-1: Manufacturer: syz
[  211.739270][ T5890] usb 3-1: SerialNumber: syz
[  211.772459][ T5890] usb 3-1: config 0 descriptor??
[  211.782806][ T8879] loop1: detected capacity change from 0 to 2048
[  211.799092][ T5890] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  211.843052][ T8879] EXT4-fs: Ignoring removed bh option
[  211.857395][ T8879] EXT4-fs: Ignoring removed mblk_io_submit option
[  211.926289][ T8879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.012285][ T8879] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1109: bg 0: block 234: padding at end of block bitmap is not set
[  212.031328][ T8879] EXT4-fs (loop1): Remounting filesystem read-only
[  212.179684][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.225589][  T788] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  212.444815][  T788] usb 1-1: config 0 interface 0 altsetting 251 bulk endpoint 0x9 has invalid maxpacket 99
[  212.462188][  T788] usb 1-1: config 0 interface 0 has no altsetting 0
[  212.484848][  T788] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  212.494186][  T788] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  212.512347][  T788] usb 1-1: Product: syz
[  212.516557][  T788] usb 1-1: Manufacturer: syz
[  212.521190][  T788] usb 1-1: SerialNumber: syz
[  212.530911][  T788] usb 1-1: config 0 descriptor??
[  212.537071][ T8886] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  212.550363][  T788] usb 1-1: selecting invalid altsetting 0
[  212.637472][ T5890] gspca_spca1528: reg_w err -71
[  212.674922][ T5890] spca1528: probe of 3-1:0.1 failed with error -71
[  212.728339][ T5890] usb 3-1: USB disconnect, device number 17
[  212.840143][ T5780] usb 1-1: USB disconnect, device number 17
[  213.867238][ T8919] __sock_release: fasync list not empty!
[  214.313478][ T8931] loop1: detected capacity change from 0 to 128
[  214.348204][ T8931] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  214.362093][ T8931] ext4 filesystem being mounted at /307/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  214.523827][ T8931] fscrypt (loop1, inode 12): Can't use IV_INO_LBLK_32 policy with contents mode other than AES-256-XTS
[  214.639825][ T5771] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.649509][ T8938] loop0: detected capacity change from 0 to 256
[  214.657151][ T8923] loop2: detected capacity change from 0 to 32768
[  214.675396][ T8923] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.1132 (8923)
[  214.712102][ T8923] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  214.743457][   T27] audit: type=1800 audit(1781054851.711:35): pid=8938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1130" name="file1" dev="loop0" ino=1048651 res=0 errno=0
[  214.755237][ T8923] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  214.769702][ T8938] FAT-fs (loop0): error, clusters badly computed (0 != 128)
[  214.791934][ T8938] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  214.816038][ T8923] BTRFS info (device loop2): setting nodatacow, compression disabled
[  214.828349][ T8923] BTRFS info (device loop2): turning on flush-on-commit
[  214.851630][ T8923] BTRFS info (device loop2): using free space tree
[  214.872444][ T8939] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  214.919227][ T8923] BTRFS info (device loop2): enabling ssd optimizations
[  214.932559][ T8958] loop1: detected capacity change from 0 to 128
[  214.943473][ T8958] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  214.962752][ T8923] BTRFS info (device loop2): auto enabling async discard
[  215.010054][ T8958] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  215.524207][ T5774] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  215.792447][ T8965] netlink: 'syz.1.1135': attribute type 16 has an invalid length.
[  215.821654][ T8965] netlink: 'syz.1.1135': attribute type 3 has an invalid length.
[  215.850084][ T8965] netlink: 'syz.1.1135': attribute type 1 has an invalid length.
[  215.879918][ T8965] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1135'.
[  216.239623][ T8976] loop0: detected capacity change from 0 to 256
[  216.356644][ T8976] FAT-fs (loop0): Directory bread(block 64) failed
[  216.364697][ T8976] FAT-fs (loop0): Directory bread(block 65) failed
[  216.403493][ T8976] FAT-fs (loop0): Directory bread(block 66) failed
[  216.431367][ T8976] FAT-fs (loop0): Directory bread(block 67) failed
[  216.452072][ T8976] FAT-fs (loop0): Directory bread(block 68) failed
[  216.464960][ T8976] FAT-fs (loop0): Directory bread(block 69) failed
[  216.485952][ T8976] FAT-fs (loop0): Directory bread(block 70) failed
[  216.521505][ T8976] FAT-fs (loop0): Directory bread(block 71) failed
[  216.529776][ T8976] FAT-fs (loop0): Directory bread(block 72) failed
[  216.539062][ T8976] FAT-fs (loop0): Directory bread(block 73) failed
[  216.948062][ T8999] loop0: detected capacity change from 0 to 128
[  216.983720][ T8981] loop1: detected capacity change from 0 to 32768
[  216.999650][ T8999] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  217.026696][ T8999] ext4 filesystem being mounted at /304/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  217.049495][ T8981] JBD2: Ignoring recovery information on journal
[  217.112321][ T8999] fscrypt (loop0, inode 12): Can't use IV_INO_LBLK_32 policy with contents mode other than AES-256-XTS
[  217.209199][ T8981] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  217.215956][ T5772] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  217.316401][   T10] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 120 seconds
[  217.331688][   T10] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,1024B). Runtime 120 seconds
[  217.351711][   T10] block nbd0: Possible stuck request ffff888021f48400: control (read@2048,1024B). Runtime 120 seconds
[  217.362812][   T10] block nbd0: Possible stuck request ffff888021f48600: control (read@3072,1024B). Runtime 120 seconds
[  217.467635][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  217.956240][ T9006] loop4: detected capacity change from 0 to 32768
[  217.977313][ T9017] loop1: detected capacity change from 0 to 4096
[  217.994580][ T9006] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.1153 (9006)
[  218.029925][ T9006] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  218.058693][ T9006] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  218.074742][ T9006] BTRFS info (device loop4): setting nodatacow, compression disabled
[  218.092721][ T9006] BTRFS info (device loop4): setting datasum, datacow enabled
[  218.110916][ T9006] BTRFS info (device loop4): force clearing of disk cache
[  218.141301][ T9006] BTRFS info (device loop4): enabling ssd optimizations
[  218.149338][ T9006] BTRFS info (device loop4): using spread ssd allocation scheme
[  218.167990][ T9009] loop0: detected capacity change from 0 to 32768
[  218.177519][ T9006] BTRFS info (device loop4): turning on sync discard
[  218.212646][ T9006] BTRFS info (device loop4): turning off barriers
[  218.219115][ T9006] BTRFS info (device loop4): setting nodatacow, compression disabled
[  218.237772][ T9009] 
[  218.237772][ T9009]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.237772][ T9009] 
[  218.262494][ T9006] BTRFS info (device loop4): not using ssd optimizations
[  218.290757][ T9006] BTRFS info (device loop4): not using spread ssd allocation scheme
[  218.329629][ T9009] 
[  218.329629][ T9009]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.329629][ T9009] 
[  218.341243][ T9006] BTRFS info (device loop4): using free space tree
[  218.377828][ T9009] 
[  218.377828][ T9009]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.377828][ T9009] 
[  218.426626][ T9009] 
[  218.426626][ T9009]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.426626][ T9009] 
[  218.442174][  T113] 
[  218.442174][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.442174][  T113] 
[  218.482516][ T9032] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1159'.
[  218.501824][ T9022] 
[  218.501824][ T9022]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.501824][ T9022] 
[  218.528063][ T9022] 
[  218.528063][ T9022]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.528063][ T9022] 
[  218.644618][ T9006] BTRFS info (device loop4): rebuilding free space tree
[  218.748923][ T5772] 
[  218.748923][ T5772]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.748923][ T5772] 
[  218.789740][ T5772] 
[  218.789740][ T5772]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  218.789740][ T5772] 
[  218.820985][   T27] audit: type=1800 audit(1781054855.781:36): pid=9006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1153" name="file1" dev="loop4" ino=260 res=0 errno=0
[  218.987442][ T9006] BTRFS info (device loop4): balance: start -sconvert=raid0,soft
[  219.099973][ T9006] BTRFS info (device loop4): relocating block group 1048576 flags system
[  219.140073][ T9046] __sock_release: fasync list not empty!
[  219.148455][ T9006] BTRFS info (device loop4): balance: canceled
[  219.324196][ T7117] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  219.471472][ T9054] loop2: detected capacity change from 0 to 512
[  219.600508][ T9054] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.653401][ T9054] ext4 filesystem being mounted at /298/file3 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.753927][ T9054] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  219.857623][ T9054] EXT4-fs (loop2): Remounting filesystem read-only
[  219.869543][ T9061] loop4: detected capacity change from 0 to 128
[  219.922740][ T9061] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  219.950477][ T9050] loop0: detected capacity change from 0 to 32768
[  219.970680][ T9050] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1161 (9050)
[  219.981976][ T9061] ext4 filesystem being mounted at /156/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  220.033242][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.048093][ T9050] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  220.073180][ T7117] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  220.096005][ T9050] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  220.135470][ T9050] BTRFS info (device loop0): setting nodatacow, compression disabled
[  220.151813][ T9050] BTRFS info (device loop0): setting datasum, datacow enabled
[  220.159306][ T9050] BTRFS info (device loop0): force clearing of disk cache
[  220.167546][  T788] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  220.186546][ T9050] BTRFS info (device loop0): enabling ssd optimizations
[  220.259247][ T9050] BTRFS info (device loop0): using spread ssd allocation scheme
[  220.276470][ T9069] loop4: detected capacity change from 0 to 64
[  220.303803][ T9050] BTRFS info (device loop0): turning on sync discard
[  220.313509][ T9050] BTRFS info (device loop0): turning off barriers
[  220.319973][ T9050] BTRFS info (device loop0): setting nodatacow, compression disabled
[  220.341787][   T27] audit: type=1800 audit(1781054857.301:37): pid=9069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1170" name="file1" dev="loop4" ino=21 res=0 errno=0
[  220.372405][ T9066] loop2: detected capacity change from 0 to 4096
[  220.391990][ T9050] BTRFS info (device loop0): not using ssd optimizations
[  220.403028][  T788] usb 2-1: Using ep0 maxpacket: 16
[  220.414353][ T9050] BTRFS info (device loop0): not using spread ssd allocation scheme
[  220.435242][  T788] usb 2-1: unable to get BOS descriptor or descriptor too short
[  220.438605][ T9070] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  220.470372][  T788] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  220.471725][ T9050] BTRFS info (device loop0): using free space tree
[  220.531331][  T788] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  220.581871][  T788] usb 2-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40
[  220.590956][  T788] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.612695][  T788] usb 2-1: Product: syz
[  220.616888][  T788] usb 2-1: Manufacturer: syz
[  220.631689][  T788] usb 2-1: SerialNumber: syz
[  220.679753][ T9050] BTRFS info (device loop0): rebuilding free space tree
[  220.887250][  T788] usb 2-1: Audio class v2/v3 interfaces need an interface association
[  220.900787][  T788] snd-usb-audio: probe of 2-1:1.0 failed with error -22
[  221.039241][ T5772] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  221.289687][  T788] usb 2-1: 2:1 : can't get Cluster Descriptor
[  221.301897][ T5890] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  221.504562][ T9080] loop4: detected capacity change from 0 to 40427
[  221.532031][ T5890] usb 3-1: Using ep0 maxpacket: 8
[  221.551010][ T5890] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  221.565980][ T5890] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  221.579480][ T9080] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  221.590575][ T9080] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  221.592327][ T5834] usb 2-1: USB disconnect, device number 15
[  221.598923][ T5890] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.630218][ T9080] F2FS-fs (loop4): invalid crc value
[  221.657984][ T5890] usb 3-1: config 0 descriptor??
[  221.763230][ T9103] loop0: detected capacity change from 0 to 256
[  221.842910][ T9080] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  221.860244][ T9080] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  221.940033][ T5890] iowarrior 3-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  221.978718][ T9080] F2FS-fs (loop4): Stopped filesystem due to reason: 0
[  222.159655][ T5890] usb 3-1: USB disconnect, device number 18
[  222.546061][ T9120] loop0: detected capacity change from 0 to 512
[  222.568153][ T9120] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  222.603885][ T9120] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  222.694952][ T9120] EXT4-fs (loop0): 1 truncate cleaned up
[  222.726087][ T9120] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.017684][ T9136] loop2: detected capacity change from 0 to 256
[  223.033214][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.120395][ T9134] loop1: detected capacity change from 0 to 4096
[  223.250734][ T9138] EXT4-fs error (device loop0): ext4_iget_extra_inode:4739: inode #15: comm syz.0.1191: corrupted in-inode xattr: invalid ea_ino
[  223.293666][ T9138] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.1191: couldn't read orphan inode 15 (err -117)
[  223.311453][ T9138] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.366821][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.624784][ T9121] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  223.718382][ T9157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1194'.
[  223.907692][ T9121] XFS (loop4): Ending clean mount
[  224.022770][ T9166] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  224.073948][ T9166] ext4 filesystem being mounted at /305/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  224.324374][ T7117] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  224.341073][ T5774] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  224.403905][ T9174] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  224.430328][ T9174] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  224.442439][ T9174] REISERFS (device loop0): using journaled data mode
[  224.449138][ T9174] reiserfs: using flush barriers
[  224.470281][ T9174] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  224.502259][ T9174] REISERFS (device loop0): checking transaction log (loop0)
[  224.559979][ T9174] REISERFS (device loop0): Using r5 hash to sort names
[  224.600924][ T9174] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  224.666509][ T9174] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  225.388678][ T9197] set_capacity_and_notify: 4 callbacks suppressed
[  225.388695][ T9197] loop0: detected capacity change from 0 to 128
[  225.421163][ T9197] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  225.444757][ T9197] ext4 filesystem being mounted at /323/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  225.685306][ T9191] loop1: detected capacity change from 0 to 32768
[  225.741102][ T5772] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  225.754526][ T9191] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  225.964020][ T9195] loop4: detected capacity change from 0 to 32768
[  226.007913][ T9195] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.1212 (9195)
[  226.057696][ T9195] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  226.061873][ T9191] XFS (loop1): Ending clean mount
[  226.100763][ T9195] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  226.114938][ T9195] BTRFS info (device loop4): setting nodatacow, compression disabled
[  226.118012][ T9191] XFS (loop1): Quotacheck needed: Please wait.
[  226.149318][ T9195] BTRFS info (device loop4): setting datasum, datacow enabled
[  226.159652][ T9195] BTRFS info (device loop4): force clearing of disk cache
[  226.184359][ T9195] BTRFS info (device loop4): enabling ssd optimizations
[  226.217151][ T9195] BTRFS info (device loop4): using spread ssd allocation scheme
[  226.225613][ T9191] XFS (loop1): Quotacheck: Done.
[  226.236942][ T9195] BTRFS info (device loop4): turning on sync discard
[  226.285302][ T9195] BTRFS info (device loop4): turning off barriers
[  226.323433][ T9195] BTRFS info (device loop4): setting nodatacow, compression disabled
[  226.361850][ T9195] BTRFS info (device loop4): not using ssd optimizations
[  226.368926][ T9195] BTRFS info (device loop4): not using spread ssd allocation scheme
[  226.427956][ T5771] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  226.436635][ T9195] BTRFS info (device loop4): using free space tree
[  226.631664][ T9195] BTRFS info (device loop4): rebuilding free space tree
[  226.721735][ T5834] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  226.730026][ T9241] loop1: detected capacity change from 0 to 256
[  226.903436][ T5834] usb 3-1: Using ep0 maxpacket: 16
[  226.910665][ T5834] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.938428][ T5834] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.960017][ T5834] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  227.000825][ T5834] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  227.010749][ T5834] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.044054][ T5834] usb 3-1: config 0 descriptor??
[  227.053195][ T7117] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  227.113835][ T9246] loop1: detected capacity change from 0 to 512
[  227.124416][ T9246] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  227.147206][ T9246] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  227.164461][ T9246] EXT4-fs (loop1): 1 truncate cleaned up
[  227.176486][ T9246] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.380419][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.500226][ T5834] microsoft 0003:045E:07DA.0006: ignoring exceeding usage max
[  227.512119][ T9251] loop4: detected capacity change from 0 to 512
[  227.562865][ T5834] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  227.590915][ T5834] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  227.605862][ T5834] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  227.638640][ T5834] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  227.675906][ T5834] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0
[  227.694126][ T5834] microsoft 0003:045E:07DA.0006: No inputs registered, leaving
[  227.709648][ T5834] microsoft 0003:045E:07DA.0006: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  227.765115][ T5834] microsoft 0003:045E:07DA.0006: no inputs found
[  227.771491][ T5834] microsoft 0003:045E:07DA.0006: could not initialize ff, continuing anyway
[  227.826169][ T5834] usb 3-1: USB disconnect, device number 19
[  227.903801][ T9261] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1228'.
[  227.977063][ T9260] fido_id[9260]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  228.093481][ T9268] loop0: detected capacity change from 0 to 8
[  228.112716][ T9268] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  228.139511][ T5879] udevd[5879]: incorrect cramfs checksum on /dev/loop0
[  228.147047][ T9268] cramfs: empty filesystem
[  228.169686][ T5879] udevd[5879]: incorrect cramfs checksum on /dev/loop0
[  228.738565][ T9265] loop4: detected capacity change from 0 to 32768
[  228.768323][ T9265] 
[  228.768323][ T9265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.768323][ T9265] 
[  228.835096][ T9265] 
[  228.835096][ T9265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.835096][ T9265] 
[  228.873621][ T9291] 
[  228.873621][ T9291]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.873621][ T9291] 
[  228.885986][ T9265] 
[  228.885986][ T9265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.885986][ T9265] 
[  228.909402][ T9265] 
[  228.909402][ T9265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.909402][ T9265] 
[  228.925032][  T112] 
[  228.925032][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.925032][  T112] 
[  228.946841][ T9291] 
[  228.946841][ T9291]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  228.946841][ T9291] 
[  228.998294][ T9288] loop1: detected capacity change from 0 to 4096
[  229.068042][ T7117] 
[  229.068042][ T7117]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  229.068042][ T7117] 
[  229.109667][ T7117] 
[  229.109667][ T7117]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  229.109667][ T7117] 
[  229.137019][ T9294] loop2: detected capacity change from 0 to 512
[  229.233980][ T9294] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1243: invalid indirect mapped block 4294967295 (level 1)
[  229.295512][ T9294] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1243: invalid indirect mapped block 4294967295 (level 1)
[  229.317436][ T9294] EXT4-fs (loop2): 2 truncates cleaned up
[  229.325563][ T9294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.446728][ T9294] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1430: inode #12: block 7: comm syz.2.1243: path /315/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  229.521913][ T9301] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  229.579860][ T9301] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  229.614796][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.193054][ T9319] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  230.212531][ T9319] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  230.257433][ T9319] REISERFS (device loop2): using journaled data mode
[  230.291252][ T9308] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.1249 (9308)
[  230.295717][ T9319] reiserfs: using flush barriers
[  230.321862][ T9308] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  230.343284][ T9308] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  230.347299][ T9319] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  230.370815][ T9319] REISERFS (device loop2): checking transaction log (loop2)
[  230.371395][ T9308] BTRFS info (device loop1): setting nodatacow, compression disabled
[  230.384832][ T9319] REISERFS (device loop2): Using r5 hash to sort names
[  230.395905][ T9319] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  230.409785][ T9308] BTRFS info (device loop1): setting datasum, datacow enabled
[  230.423193][ T9319] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  230.438200][ T9308] BTRFS info (device loop1): force clearing of disk cache
[  230.461675][ T9308] BTRFS info (device loop1): enabling ssd optimizations
[  230.489075][ T9308] BTRFS info (device loop1): using spread ssd allocation scheme
[  230.521697][ T9308] BTRFS info (device loop1): turning on sync discard
[  230.535977][ T9308] BTRFS info (device loop1): turning off barriers
[  230.552034][ T9308] BTRFS info (device loop1): setting nodatacow, compression disabled
[  230.570346][ T9308] BTRFS info (device loop1): not using ssd optimizations
[  230.580677][ T9308] BTRFS info (device loop1): not using spread ssd allocation scheme
[  230.603369][ T9308] BTRFS info (device loop1): using free space tree
[  230.817668][ T9308] BTRFS info (device loop1): rebuilding free space tree
[  231.011636][   T27] audit: type=1800 audit(1781054867.971:38): pid=9308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1249" name="file1" dev="loop1" ino=260 res=0 errno=0
[  231.078744][ T9308] BTRFS info (device loop1): balance: start -sconvert=raid0,soft
[  231.091683][ T5834] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  231.100705][ T9308] BTRFS info (device loop1): relocating block group 1048576 flags system
[  231.311642][ T5834] usb 1-1: Using ep0 maxpacket: 8
[  231.327107][ T5834] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  231.344574][ T5834] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  231.370359][ T5834] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.407058][ T5834] usb 1-1: config 0 descriptor??
[  231.421113][ T9308] BTRFS info (device loop1): balance: ended with status: 0
[  231.476560][ T5771] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  231.502696][ T9349] set_capacity_and_notify: 4 callbacks suppressed
[  231.502710][ T9349] loop2: detected capacity change from 0 to 32768
[  231.548853][ T9349] 
[  231.548853][ T9349]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.548853][ T9349] 
[  231.626726][ T9349] 
[  231.626726][ T9349]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.626726][ T9349] 
[  231.639476][ T5834] iowarrior 1-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  231.653189][ T9349] 
[  231.653189][ T9349]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.653189][ T9349] 
[  231.690998][ T9349] 
[  231.690998][ T9349]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.690998][ T9349] 
[  231.705247][ T9355] 
[  231.705247][ T9355]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.705247][ T9355] 
[  231.750948][ T9355] 
[  231.750948][ T9355]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.750948][ T9355] 
[  231.787879][  T113] 
[  231.787879][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.787879][  T113] 
[  231.851719][ T2132] usb 1-1: USB disconnect, device number 18
[  231.924019][ T5774] 
[  231.924019][ T5774]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.924019][ T5774] 
[  231.943674][ T5774] 
[  231.943674][ T5774]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  231.943674][ T5774] 
[  232.010683][ T9357] loop1: detected capacity change from 0 to 2048
[  232.039533][ T9357] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  232.056458][ T9357] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  232.219604][ T9359] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1263'.
[  232.251028][ T9359] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1263'.
[  232.264435][ T9359] netlink: 'syz.1.1263': attribute type 15 has an invalid length.
[  232.264959][ T9363] loop2: detected capacity change from 0 to 256
[  232.302602][ T9363] exfat: Deprecated parameter 'utf8'
[  232.378885][ T9363] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  232.585714][ T9371] 9p: Unknown uid 00000000004294967295
[  232.687997][   T27] audit: type=1326 audit(1781054869.651:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  232.729332][   T27] audit: type=1326 audit(1781054869.651:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  232.807326][   T27] audit: type=1326 audit(1781054869.651:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  232.870585][   T27] audit: type=1326 audit(1781054869.691:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  232.935343][   T27] audit: type=1326 audit(1781054869.691:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  232.975545][ T9384] loop4: detected capacity change from 0 to 256
[  232.983195][   T27] audit: type=1326 audit(1781054869.691:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  233.016739][   T27] audit: type=1326 audit(1781054869.691:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  233.047259][   T27] audit: type=1326 audit(1781054869.691:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  233.129133][   T27] audit: type=1326 audit(1781054869.691:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9372 comm="syz.2.1269" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d6d59ce59 code=0x7ffc0000
[  233.213573][ T9390] loop4: detected capacity change from 0 to 8
[  233.246583][ T9390] SQUASHFS error: Unknown LZ4 version
[  233.264594][ T9390] squashfs image failed sanity check
[  233.323535][ T5879] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  233.584493][ T9401] loop4: detected capacity change from 0 to 512
[  233.642230][ T9401] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1280: invalid indirect mapped block 4294967295 (level 1)
[  233.746455][ T9401] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1280: invalid indirect mapped block 4294967295 (level 1)
[  233.784847][ T9409] loop2: detected capacity change from 0 to 128
[  233.798607][ T9401] EXT4-fs (loop4): 2 truncates cleaned up
[  233.826210][ T9401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.854489][ T9409] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  233.904103][ T9401] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1430: inode #12: block 7: comm syz.4.1280: path /178/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  233.930362][ T9409] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  233.990815][ T7117] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.206921][ T9407] loop0: detected capacity change from 0 to 32768
[  234.581792][ T9423] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1290'.
[  234.590796][ T9423] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1290'.
[  234.605318][ T9423] netlink: 'syz.4.1290': attribute type 15 has an invalid length.
[  234.724054][ T9421] loop2: detected capacity change from 0 to 32768
[  234.787274][ T9421] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  234.970181][ T9421] XFS (loop2): Ending clean mount
[  235.037368][ T9438] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1289'.
[  235.108225][ T9439] 9p: Unknown uid 00000000004294967295
[  235.137103][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  235.389127][ T5890] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  235.596080][ T5890] usb 5-1: Using ep0 maxpacket: 16
[  235.607130][ T5890] usb 5-1: New USB device found, idVendor=041e, idProduct=3000, bcdDevice= 0.40
[  235.621658][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  235.629659][ T5890] usb 5-1: Product: syz
[  235.641751][ T5890] usb 5-1: Manufacturer: syz
[  235.646374][ T5890] usb 5-1: SerialNumber: syz
[  235.661792][ T2132] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  235.900484][ T2132] usb 1-1: unable to get BOS descriptor or descriptor too short
[  235.902187][ T5890] usb 5-1: USB disconnect, device number 6
[  235.909635][ T2132] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  235.933265][ T2132] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  235.943914][ T2132] usb 1-1: too many endpoints for config 1 interface 1 altsetting 76: 188, using maximum allowed: 30
[  235.957998][ T2132] usb 1-1: config 1 interface 1 altsetting 76 has 0 endpoint descriptors, different from the interface descriptor's value: 188
[  235.971886][ T2132] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  235.983082][ T2132] usb 1-1: config 1 interface 1 has no altsetting 0
[  235.994022][ T2132] usb 1-1: string descriptor 0 read error: -22
[  235.996972][ T8894] udevd[8894]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  236.000453][ T2132] usb 1-1: New USB device found, idVendor=21b4, idProduct=0081, bcdDevice= 0.40
[  236.053607][ T2132] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.344023][ T9472] loop2: detected capacity change from 0 to 2048
[  236.406907][ T9472] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  236.420186][ T9472] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  236.695812][   T27] kauditd_printk_skb: 65 callbacks suppressed
[  236.695825][   T27] audit: type=1326 audit(1781054873.661:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  236.743524][   T27] audit: type=1326 audit(1781054873.681:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  236.805650][   T27] audit: type=1326 audit(1781054873.701:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  236.881699][   T27] audit: type=1326 audit(1781054873.701:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  236.960565][ T2132] usb 1-1: USB disconnect, device number 19
[  236.971638][   T27] audit: type=1326 audit(1781054873.721:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.056676][   T27] audit: type=1326 audit(1781054873.721:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.110193][ T9494] loop2: detected capacity change from 0 to 256
[  237.129386][   T27] audit: type=1326 audit(1781054873.721:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.221669][   T27] audit: type=1326 audit(1781054873.731:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.255516][   T27] audit: type=1326 audit(1781054873.731:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.311901][   T27] audit: type=1326 audit(1781054873.731:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.1.1311" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fe69d39ce59 code=0x7ffc0000
[  237.560563][ T9489] loop1: detected capacity change from 0 to 32768
[  237.851951][ T9509] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1322'.
[  238.021644][ T5834] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  238.221680][ T5834] usb 2-1: Using ep0 maxpacket: 16
[  238.243393][ T5834] usb 2-1: New USB device found, idVendor=041e, idProduct=3000, bcdDevice= 0.40
[  238.253386][ T5834] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.263228][ T5834] usb 2-1: Product: syz
[  238.267628][ T5834] usb 2-1: Manufacturer: syz
[  238.273553][ T5834] usb 2-1: SerialNumber: syz
[  238.311812][ T2132] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  238.508730][ T9527] loop4: detected capacity change from 0 to 1024
[  238.522412][ T2132] usb 3-1: Using ep0 maxpacket: 8
[  238.535883][ T5834] usb 2-1: USB disconnect, device number 16
[  238.547597][ T2132] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  238.576288][ T2132] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  238.594872][ T2132] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  238.632972][ T2132] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  238.654847][ T2132] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  238.669656][ T2132] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  238.711841][ T2132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.753089][ T9529] loop4: detected capacity change from 0 to 512
[  238.760330][ T9529] EXT4-fs: Ignoring removed bh option
[  238.785509][ T9529] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  238.796808][ T9529] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  238.810083][ T9529] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  238.820103][ T9529] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  238.835377][ T9529] System zones: 0-2, 18-18, 34-35
[  238.845578][ T9529] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.928675][ T7117] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.966116][ T2132] usb 3-1: GET_CAPABILITIES returned 0
[  238.980982][ T2132] usbtmc 3-1:16.0: can't read capabilities
[  239.195071][ T5780] usb 3-1: USB disconnect, device number 20
[  239.396707][   T42] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.485214][   T42] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.587554][   T42] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.752375][   T42] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.884482][ T9550] loop1: detected capacity change from 0 to 512
[  239.915507][ T9550] EXT4-fs (loop1): Test dummy encryption mode enabled
[  239.978400][ T9550] EXT4-fs error (device loop1): ext4_iget_extra_inode:4739: inode #15: comm syz.1.1341: corrupted in-inode xattr: invalid ea_ino
[  240.034428][ T5775] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  240.050008][ T9550] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.1341: couldn't read orphan inode 15 (err -117)
[  240.062099][ T5775] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  240.072680][ T5775] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  240.081768][ T5775] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  240.090519][ T5775] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  240.095864][ T5775] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  240.108704][ T9550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.368236][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.711658][ T5815] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  240.907886][ T5815] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  240.944876][ T5815] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.963146][ T9552] chnl_net:caif_netlink_parms(): no params data found
[  240.978771][ T5815] usb 1-1: config 0 descriptor??
[  240.998804][ T5815] gspca_main: cpia1-2.14.0 probing 0813:0001
[  241.102060][ T5834] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  241.171875][ T9552] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.179261][ T9552] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.186558][ T9552] bridge_slave_0: entered allmulticast mode
[  241.194846][ T9552] bridge_slave_0: entered promiscuous mode
[  241.227041][ T9552] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.237082][ T9552] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.244450][ T9552] bridge_slave_1: entered allmulticast mode
[  241.251361][ T9552] bridge_slave_1: entered promiscuous mode
[  241.301713][ T9552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  241.310122][ T5834] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  241.331948][ T5834] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  241.348208][ T9552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  241.352737][ T5834] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.389302][ T5834] usb 2-1: config 0 descriptor??
[  241.399454][ T5815] cpia1 1-1:0.0: unexpected state after lo power cmd: 00
[  241.419009][ T5834] pwc: Askey VC010 type 2 USB webcam detected.
[  241.441160][ T9552] team0: Port device team_slave_0 added
[  241.479485][ T9552] team0: Port device team_slave_1 added
[  241.594293][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_0
[  241.601273][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.639385][ T9552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  241.717607][   T42] hsr_slave_0: left promiscuous mode
[  241.733305][   T42] hsr_slave_1: left promiscuous mode
[  241.749683][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  241.761619][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  241.771083][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  241.789998][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  241.799943][   T42] bridge_slave_1: left allmulticast mode
[  241.810900][ T5815] gspca_cpia1: usb_control_msg 02, error -71
[  241.819199][   T42] bridge_slave_1: left promiscuous mode
[  241.825209][ T5815] gspca_cpia1: usb_control_msg 05, error -71
[  241.832596][ T5834] pwc: recv_control_msg error -32 req 02 val 2b00
[  241.839164][ T5815] cpia1 1-1:0.0: unexpected systemstate: 00
[  241.847740][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.860101][ T5815] usb 1-1: USB disconnect, device number 20
[  241.892824][   T42] bridge_slave_0: left allmulticast mode
[  241.907632][   T42] bridge_slave_0: left promiscuous mode
[  241.913847][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.996215][   T42] veth1_macvtap: left promiscuous mode
[  242.002515][   T42] veth0_macvtap: left promiscuous mode
[  242.010337][   T42] veth1_vlan: left promiscuous mode
[  242.016634][   T42] veth0_vlan: left promiscuous mode
[  242.063557][ T5834] pwc: recv_control_msg error -71 req 02 val 2c00
[  242.080333][ T5834] pwc: recv_control_msg error -71 req 04 val 1000
[  242.092398][ T5834] pwc: recv_control_msg error -71 req 04 val 1300
[  242.099423][ T5834] pwc: recv_control_msg error -71 req 04 val 1400
[  242.108599][ T5834] pwc: recv_control_msg error -71 req 02 val 2000
[  242.130487][ T5834] pwc: recv_control_msg error -71 req 02 val 2100
[  242.138433][ T5834] pwc: recv_control_msg error -71 req 04 val 1500
[  242.146575][ T5834] pwc: recv_control_msg error -71 req 02 val 2500
[  242.156033][ T5834] pwc: recv_control_msg error -71 req 02 val 2400
[  242.173089][ T5834] pwc: recv_control_msg error -71 req 02 val 2600
[  242.180050][ T5834] pwc: recv_control_msg error -71 req 02 val 2900
[  242.187258][ T5834] pwc: recv_control_msg error -71 req 02 val 2800
[  242.191840][ T5775] Bluetooth: hci4: command tx timeout
[  242.195417][ T5834] pwc: recv_control_msg error -71 req 04 val 1100
[  242.209455][ T5834] pwc: recv_control_msg error -71 req 04 val 1200
[  242.238423][ T5834] pwc: Registered as video103.
[  242.254792][ T5834] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input18
[  242.312012][   T28] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  242.342316][ T5834] usb 2-1: USB disconnect, device number 17
[  242.396451][ T8894] udevd[8894]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  242.498641][ T9609] loop0: detected capacity change from 0 to 2048
[  242.520968][ T9609] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  242.533374][   T28] usb 3-1: Using ep0 maxpacket: 32
[  242.561210][   T28] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  242.587053][   T28] usb 3-1: config 0 has no interface number 0
[  242.605245][   T28] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  242.617337][   T28] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.631314][   T28] usb 3-1: Product: syz
[  242.649729][   T28] usb 3-1: Manufacturer: syz
[  242.667136][   T28] usb 3-1: SerialNumber: syz
[  242.689573][   T28] usb 3-1: config 0 descriptor??
[  242.708499][   T28] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  242.916623][   T28] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  242.940088][   T28] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  243.229597][   T42] team0 (unregistering): Port device team_slave_1 removed
[  243.288574][   T42] team0 (unregistering): Port device team_slave_0 removed
[  243.327261][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  243.343467][ T5815] usb 3-1: USB disconnect, device number 21
[  243.349764][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  243.366648][ T5815] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  243.383042][ T5815] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  243.396546][ T5815] quatech2 3-1:0.51: device disconnected
[  243.461511][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  243.807471][   T42] bond0 (unregistering): Released all slaves
[  243.933567][ T9552] batman_adv: batadv0: Adding interface: batadv_slave_1
[  243.940593][ T9552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  243.977578][ T9552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  244.187230][ T9552] hsr_slave_0: entered promiscuous mode
[  244.215837][ T9621] loop2: detected capacity change from 0 to 512
[  244.228922][ T9552] hsr_slave_1: entered promiscuous mode
[  244.241805][ T9621] EXT4-fs (loop2): Test dummy encryption mode enabled
[  244.253878][ T9552] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  244.261454][ T9552] Cannot create hsr debugfs directory
[  244.271623][ T5775] Bluetooth: hci4: command tx timeout
[  244.314755][ T9621] EXT4-fs error (device loop2): ext4_iget_extra_inode:4739: inode #15: comm syz.2.1358: corrupted in-inode xattr: invalid ea_ino
[  244.377985][ T9628] loop0: detected capacity change from 0 to 1024
[  244.385231][ T9628] EXT4-fs: Ignoring removed oldalloc option
[  244.391164][ T9628] EXT4-fs: inline encryption not supported
[  244.399933][ T9621] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.1358: couldn't read orphan inode 15 (err -117)
[  244.412547][ T9628] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  244.493389][ T9621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.604947][ T9628] EXT4-fs error (device loop0): ext4_map_blocks:610: inode #3: block 2: comm syz.0.1359: lblock 2 mapped to illegal pblock 2 (length 1)
[  244.653232][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.743079][ T9628] __quota_error: 8 callbacks suppressed
[  244.743097][ T9628] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  244.834011][ T9628] EXT4-fs error (device loop0): ext4_map_blocks:610: inode #3: block 48: comm syz.0.1359: lblock 0 mapped to illegal pblock 48 (length 1)
[  244.912688][ T9628] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  244.927898][ T9628] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.1359: Failed to acquire dquot type 0
[  244.952139][ T9628] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5939: Corrupt filesystem
[  244.988442][ T9628] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.1359: mark_inode_dirty error
[  245.029583][ T9552] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  245.041611][ T9628] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  245.072513][ T9628] EXT4-fs (loop0): 1 orphan inode deleted
[  245.079544][ T9628] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.102420][ T7859] EXT4-fs error (device loop0): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  245.132991][ T9649] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1364'.
[  245.172837][ T9552] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  245.192281][ T7859] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  245.212201][ T7859] EXT4-fs error (device loop0): ext4_release_dquot:6989: comm kworker/u4:17: Failed to release dquot type 0
[  245.252699][ T9552] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  245.320930][ T9552] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  245.380031][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.427312][ T5772] EXT4-fs error (device loop0): __ext4_get_inode_loc:4496: comm syz-executor: Invalid inode table block 1 in block_group 0
[  245.459955][ T5772] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5939: Corrupt filesystem
[  245.489982][ T5772] EXT4-fs error (device loop0): ext4_quota_off:7237: inode #3: comm syz-executor: mark_inode_dirty error
[  245.639333][ T9552] 8021q: adding VLAN 0 to HW filter on device bond0
[  245.697633][ T9552] 8021q: adding VLAN 0 to HW filter on device team0
[  245.777157][ T7859] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.784343][ T7859] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.834852][ T7857] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.842089][ T7857] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.862210][ T9666] loop1: detected capacity change from 0 to 512
[  245.889587][ T9666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.906104][ T9666] ext4 filesystem being mounted at /374/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.021905][ T9666] EXT4-fs error (device loop1): ext4_validate_inode_bitmap:106: comm syz.1.1378: Corrupt inode bitmap - block_group = 0, inode_bitmap = 20
[  246.049301][ T9552] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  246.114462][ T9552] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  246.214432][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.352011][ T5775] Bluetooth: hci4: command tx timeout
[  246.617429][ T9691] loop2: detected capacity change from 0 to 4096
[  246.673162][ T9552] 8021q: adding VLAN 0 to HW filter on device batadv0
[  246.713751][ T9696] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  247.039322][ T9671] loop0: detected capacity change from 0 to 32768
[  247.117105][ T9671] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1371 (9671)
[  247.238233][ T9671] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  247.264839][ T9671] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  247.301400][ T9687] loop1: detected capacity change from 0 to 32768
[  247.341740][ T9671] BTRFS info (device loop0): using free space tree
[  247.390680][ T9687] JBD2: Ignoring recovery information on journal
[  247.410790][   T10] block nbd0: Possible stuck request ffff888021f48000: control (read@0,1024B). Runtime 150 seconds
[  247.421808][   T10] block nbd0: Possible stuck request ffff888021f48200: control (read@1024,1024B). Runtime 150 seconds
[  247.432994][   T10] block nbd0: Possible stuck request ffff888021f48400: control (read@2048,1024B). Runtime 150 seconds
[  247.444130][   T10] block nbd0: Possible stuck request ffff888021f48600: control (read@3072,1024B). Runtime 150 seconds
[  247.444777][ T9687] jbd2_journal_bmap: journal block not found at offset 32 on loop1-75
[  247.517879][ T9552] veth0_vlan: entered promiscuous mode
[  247.538094][ T9552] veth1_vlan: entered promiscuous mode
[  247.538367][ T9687] JBD2: bad block at offset 32
[  247.566865][ T9552] veth0_macvtap: entered promiscuous mode
[  247.579741][ T9552] veth1_macvtap: entered promiscuous mode
[  247.633074][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.677011][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.677395][ T9671] BTRFS info (device loop0): enabling ssd optimizations
[  247.712772][ T9671] BTRFS info (device loop0): auto enabling async discard
[  247.713336][ T9687] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  247.729406][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.759075][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.798557][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.820448][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.832091][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.849418][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.875349][ T9552] batman_adv: batadv0: Interface activated: batadv_slave_0
[  247.910069][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.985535][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.004188][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.031925][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.051997][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.069434][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.086751][ T9552] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  248.099056][ T9552] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  248.111490][ T5772] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  248.114314][ T9552] batman_adv: batadv0: Interface activated: batadv_slave_1
[  248.156217][ T9552] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  248.165047][ T9552] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  248.174241][ T9552] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  248.186316][ T9552] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  248.211763][ T5776] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  248.221094][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  248.431909][ T5775] Bluetooth: hci4: command tx timeout
[  248.437908][ T5776] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  248.478286][ T5776] usb 3-1: config 220 has an invalid descriptor of length 69, skipping remainder of the config
[  248.500406][  T141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.543168][ T5776] usb 3-1: config 220 has no interface number 2
[  248.549503][ T5776] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  248.565475][  T141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.601986][ T5776] usb 3-1: config 220 interface 0 has no altsetting 0
[  248.609111][ T5776] usb 3-1: config 220 interface 76 has no altsetting 0
[  248.641417][ T5776] usb 3-1: config 220 interface 1 has no altsetting 0
[  248.665819][ T7859] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.688852][ T5776] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  248.708525][ T7859] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.716560][ T5776] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.751799][ T5776] usb 3-1: Product: syz
[  248.756054][ T5776] usb 3-1: Manufacturer: syz
[  248.783697][ T5776] usb 3-1: SerialNumber: syz
[  249.022471][ T5776] uvcvideo 3-1:220.1: Unknown video format 448b07f5-fe05-ffff-ffff-030000ffffff
[  249.066614][ T5776] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  249.091690][ T5776] usb 3-1: No valid video chain found.
[  249.110462][ T9757] netlink: 'syz.5.1338': attribute type 30 has an invalid length.
[  249.111768][ T5776] usb 3-1: selecting invalid altsetting 0
[  249.167077][ T5776] usb 3-1: selecting invalid altsetting 0
[  249.173067][ T5776] usbtest: probe of 3-1:220.1 failed with error -22
[  249.194250][ T5776] usb 3-1: USB disconnect, device number 22
[  249.197066][ T9757] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  249.209187][ T9757] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  249.217966][ T9757] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  249.227213][ T9757] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  249.315982][ T9757] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  249.326301][ T9757] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  249.335837][ T9757] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  249.345137][ T9757] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  249.451298][ T9761] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1387'.
[  249.576087][   T27] audit: type=1326 audit(1781054886.541:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9764 comm="syz.0.1389" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f233419ce59 code=0x0
[  250.461260][ T9802] loop1: detected capacity change from 0 to 256
[  250.794849][ T9812] loop1: detected capacity change from 0 to 128
[  250.828256][ T9812] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  250.884910][ T9812] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  250.977716][ T9791] loop2: detected capacity change from 0 to 40427
[  251.012901][ T9791] F2FS-fs (loop2): Invalid SB checksum offset: 0
[  251.030366][ T9791] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  251.074079][ T9791] F2FS-fs (loop2): invalid crc value
[  251.081649][ T9817] bridge0: port 2(bridge_slave_1) entered listening state
[  251.422895][   T27] audit: type=1326 audit(1781054888.391:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9827 comm="syz.0.1407" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f233419ce59 code=0x0
[  251.472001][ T9791] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  251.479645][ T9791] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  251.585516][ T9791] syz.2.1398: attempt to access beyond end of device
[  251.585516][ T9791] loop2: rw=2049, sector=53248, nr_sectors = 16 limit=40427
[  251.770803][ T5774] syz-executor: attempt to access beyond end of device
[  251.770803][ T5774] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  251.814269][ T5774] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  252.628117][ T9859] tmpfs: Too small a size for current use
[  252.861720][ T9874] loop2: detected capacity change from 0 to 1024
[  254.849358][ T9938] loop5: detected capacity change from 0 to 2048
[  254.934838][ T9938] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  254.993390][   T27] audit: type=1800 audit(1781054891.951:133): pid=9938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1443" name="file1" dev="loop5" ino=1415 res=0 errno=0
[  255.066592][ T5780] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  255.287672][ T5780] usb 3-1: Using ep0 maxpacket: 32
[  255.306711][ T5780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  255.337067][ T5780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  255.384195][ T5780] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  255.416490][ T5780] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.449307][ T5780] usb 3-1: config 0 descriptor??
[  255.537035][ T5780] hub 3-1:0.0: USB hub found
[  255.708069][ T5780] hub 3-1:0.0: 26 ports detected
[  255.727519][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  255.733919][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  255.742991][ T5780] hub 3-1:0.0: insufficient power available to use all downstream ports
[  255.923392][ T5780] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  255.930478][ T5780] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  255.992743][ T5780] usbhid 3-1:0.0: can't add hid device: -71
[  255.998779][ T5780] usbhid: probe of 3-1:0.0 failed with error -71
[  256.072688][ T5780] usb 3-1: USB disconnect, device number 23
[  256.391916][ T9955] loop5: detected capacity change from 0 to 40427
[  256.417556][ T9955] F2FS-fs (loop5): Invalid log blocks per segment (1)
[  256.443253][ T9955] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  256.472276][ T9955] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x35f7
[  256.480440][ T9955] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x7ffff
[  256.529417][ T9955] F2FS-fs (loop5): Image doesn't support compression
[  256.558851][ T9955] F2FS-fs (loop5): invalid crc value
[  256.596274][ T9955] F2FS-fs (loop5): Found nat_bits in checkpoint
[  256.783675][ T9955] F2FS-fs (loop5): Start checkpoint disabled!
[  256.858696][ T9955] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  256.868374][ T9974] input: syz1 as /devices/virtual/input/input19
[  256.875699][ T9955] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  257.067773][ T9963] loop1: detected capacity change from 0 to 40427
[  257.142366][ T9963] F2FS-fs (loop1): build fault injection attr: rate: 16, type: 0x7ffff
[  257.150768][ T9963] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x7698c
[  257.199849][ T9963] F2FS-fs (loop1): invalid crc value
[  257.222312][ T9963] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0
[  257.222900][   T12] kworker/u4:1: attempt to access beyond end of device
[  257.222900][   T12] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  257.238140][ T9963] F2FS-fs (loop1): Found nat_bits in checkpoint
[  257.297681][   T12] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  257.321062][   T12] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  257.332958][ T5776] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  257.377416][ T9963] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0
[  257.529959][ T9963] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  257.661633][ T5776] usb 1-1: config 0 has no interfaces?
[  257.667968][ T9963] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  257.716717][ T5776] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  257.727082][ T5776] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.740499][ T5776] usb 1-1: Product: syz
[  257.744717][ T5776] usb 1-1: Manufacturer: syz
[  257.749323][ T5776] usb 1-1: SerialNumber: syz
[  257.758224][ T9963] F2FS-fs (loop1): inject page get in f2fs_pagecache_get_page of generic_perform_write+0x2fe/0x5c0
[  257.758927][ T5776] usb 1-1: config 0 descriptor??
[  257.933413][ T5771] syz-executor: attempt to access beyond end of device
[  257.933413][ T5771] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  257.986485][ T5771] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  258.253345][ T9978] netlink: 'syz.0.1455': attribute type 15 has an invalid length.
[  258.292850][ T9999] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1471'.
[  258.326080][ T9978] netlink: 'syz.0.1455': attribute type 7 has an invalid length.
[  258.372049][ T9978] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1455'.
[  258.400712][T10001] bridge0: port 2(bridge_slave_1) entered listening state
[  258.411014][ T5813] usb 1-1: USB disconnect, device number 21
[  258.441284][T10001] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.463935][T10003] netlink: 'syz.2.1464': attribute type 1 has an invalid length.
[  258.476686][T10003] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1464'.
[  258.610159][T10005] netlink: 'syz.1.1462': attribute type 11 has an invalid length.
[  258.646323][T10005] netlink: 184116 bytes leftover after parsing attributes in process `syz.1.1462'.
[  258.866278][T10010] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1466'.
[  259.680442][T10039] pim6reg0: tun_chr_ioctl cmd 1074025677
[  259.686382][T10039] pim6reg0: linktype set to 1
[  260.079454][T10054] loop1: detected capacity change from 0 to 512
[  260.112320][T10054] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  260.137519][T10054] EXT4-fs (loop1): inodes count not valid: 32 vs 800
[  260.212175][ T5879] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  260.379941][T10054] loop1: detected capacity change from 0 to 4096
[  260.413711][T10054] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[  261.075070][T10085] loop5: detected capacity change from 0 to 512
[  261.142974][T10085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.563005][ T9552] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.771070][T10103] netlink: 'syz.5.1500': attribute type 11 has an invalid length.
[  261.789493][T10103] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1500'.
[  262.278062][T10127] program syz.1.1514 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.746564][T10144] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  262.761479][T10144] pim6reg: entered allmulticast mode
[  262.777633][T10125] loop0: detected capacity change from 0 to 32768
[  262.796162][T10125] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.1512 (10125)
[  262.819264][T10125] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  262.830645][T10125] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  262.855185][T10125] BTRFS info (device loop0): force zlib compression, level 3
[  262.875136][T10125] BTRFS info (device loop0): turning on flush-on-commit
[  262.891720][T10125] BTRFS info (device loop0): max_inline at 4096
[  262.907137][T10125] BTRFS info (device loop0): using free space tree
[  262.913966][T10146] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1521'.
[  263.068288][T10163] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1524'.
[  263.079882][T10163] netem: incorrect gi model size
[  263.093080][T10125] BTRFS info (device loop0): enabling ssd optimizations
[  263.100055][T10125] BTRFS info (device loop0): auto enabling async discard
[  263.107898][T10163] netem: change failed
[  263.225564][T10172] loop1: detected capacity change from 0 to 2048
[  263.233162][T10172] EXT4-fs: Ignoring removed mblk_io_submit option
[  263.239723][T10172] EXT4-fs: Ignoring removed mblk_io_submit option
[  263.341048][T10176] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1528'.
[  263.367836][T10172] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.404181][T10179] loop2: detected capacity change from 0 to 512
[  263.440645][T10172] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1526: bg 0: block 234: padding at end of block bitmap is not set
[  263.532292][T10179] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.539256][T10172] EXT4-fs (loop1): Remounting filesystem read-only
[  263.563062][T10179] ext4 filesystem being mounted at /389/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  263.648963][ T5772] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  263.700459][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.760175][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.139087][T10187] loop2: detected capacity change from 0 to 8192
[  264.185076][T10187] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  264.204970][T10198] loop1: detected capacity change from 0 to 64
[  264.210257][T10187] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  264.220690][T10187] REISERFS (device loop2): using ordered data mode
[  264.228169][T10187] reiserfs: using flush barriers
[  264.259311][T10187] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  264.282381][   T27] audit: type=1800 audit(1781054901.251:134): pid=10198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1534" name="file2" dev="loop1" ino=22 res=0 errno=0
[  264.317342][T10187] REISERFS (device loop2): checking transaction log (loop2)
[  264.406203][T10187] REISERFS (device loop2): Using r5 hash to sort names
[  264.438226][T10187] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  264.499493][   T27] audit: type=1800 audit(1781054901.451:135): pid=10187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1532" name="file1" dev="loop2" ino=2 res=0 errno=0
[  265.012287][T10217] netlink: 'syz.5.1540': attribute type 1 has an invalid length.
[  265.236016][T10224] raw_sendmsg: syz.5.1542 forgot to set AF_INET. Fix it!
[  265.589757][T10209] loop1: detected capacity change from 0 to 32768
[  265.646599][T10209] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  265.727601][T10209] JBD2: Ignoring recovery information on journal
[  265.900113][T10209] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  265.924821][T10240] loop0: detected capacity change from 0 to 4096
[  266.016554][T10240] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  266.073453][T10240] UDF-fs: Scanning with blocksize 512 failed
[  266.118128][T10249] loop2: detected capacity change from 0 to 256
[  266.143823][T10240] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  266.146030][   T27] audit: type=1800 audit(1781054903.111:136): pid=10209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1538" name="file2" dev="loop1" ino=17058 res=0 errno=0
[  266.246362][T10249] FAT-fs (loop2): Directory bread(block 64) failed
[  266.253928][T10240] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328)
[  266.259994][T10209] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #32 has an invalid fs_generation of #1
[  266.279173][T10249] FAT-fs (loop2): Directory bread(block 65) failed
[  266.305052][T10240] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328)
[  266.327957][T10249] FAT-fs (loop2): Directory bread(block 66) failed
[  266.353935][T10209] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  266.355820][T10249] FAT-fs (loop2): Directory bread(block 67) failed
[  266.363797][T10209] OCFS2: File system is now read-only.
[  266.363815][T10209] (syz.1.1538,10209,1):ocfs2_search_chain:1761 ERROR: status = -30
[  266.400998][T10249] FAT-fs (loop2): Directory bread(block 68) failed
[  266.429578][T10249] FAT-fs (loop2): Directory bread(block 69) failed
[  266.431616][T10209] (syz.1.1538,10209,1):ocfs2_search_chain:1871 ERROR: status = -30
[  266.471062][T10209] (syz.1.1538,10209,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  266.476254][T10249] FAT-fs (loop2): Directory bread(block 70) failed
[  266.508239][T10249] FAT-fs (loop2): Directory bread(block 71) failed
[  266.511585][T10209] (syz.1.1538,10209,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  266.526789][T10249] FAT-fs (loop2): Directory bread(block 72) failed
[  266.548865][T10249] FAT-fs (loop2): Directory bread(block 73) failed
[  266.556539][T10255] program syz.0.1551 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  266.573694][T10209] (syz.1.1538,10209,1):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  266.591966][   T29] INFO: task syz.3.353:6752 blocked for more than 143 seconds.
[  266.609876][   T29]       Not tainted syzkaller #0
[  266.611668][T10209] (syz.1.1538,10209,1):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  266.640362][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  266.661637][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_new_window:1203 ERROR: status = -30
[  266.693646][   T29] task:syz.3.353       state:D stack:23688 pid:6752  ppid:5773   flags:0x00004006
[  266.693849][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_new_window:1228 ERROR: status = -30
[  266.732273][   T29] Call Trace:
[  266.746233][   T29]  <TASK>
[  266.753687][   T29]  __schedule+0x1553/0x45a0
[  266.761570][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30
[  266.768058][   T29]  ? asan.module_dtor+0x20/0x20
[  266.779903][   T29]  ? __mutex_lock+0x6a4/0xcc0
[  266.786565][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30
[  266.790453][   T29]  ? __mutex_trylock_common+0x8a/0x260
[  266.805500][T10209] (syz.1.1538,10209,1):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30
[  266.813286][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  266.820582][   T29]  schedule+0xbd/0x170
[  266.823289][T10209] (syz.1.1538,10209,1):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  266.842589][T10209] (syz.1.1538,10209,1):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  266.860753][   T29]  schedule_preempt_disabled+0x13/0x20
[  266.861734][T10209] (syz.1.1538,10209,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  266.870861][   T29]  __mutex_lock+0x6a9/0xcc0
[  266.880971][   T29]  ? __mutex_lock+0x4f9/0xcc0
[  266.889112][T10209] (syz.1.1538,10209,1):ocfs2_mknod:357 ERROR: status = -30
[  266.891085][   T29]  ? sync_bdevs+0x1af/0x330
[  266.905129][T10209] (syz.1.1538,10209,1):ocfs2_mknod:502 ERROR: status = -30
[  266.921902][T10209] (syz.1.1538,10209,1):ocfs2_mkdir:659 ERROR: status = -30
[  266.931784][   T29]  ? mutex_lock_nested+0x20/0x20
[  266.936768][   T29]  ? _atomic_dec_and_lock+0x93/0x120
[  266.955702][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  266.960945][   T29]  sync_bdevs+0x1af/0x330
[  266.978343][   T29]  ksys_sync+0xc6/0x170
[  266.983670][T10209] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #32 has an invalid fs_generation of #1
[  266.993823][   T29]  ? sync_filesystem+0x220/0x220
[  267.013184][   T29]  ? syscall_enter_from_user_mode+0x25/0x80
[  267.018715][T10209] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  267.019104][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  267.057889][T10209] (syz.1.1538,10209,1):ocfs2_search_chain:1761 ERROR: status = -30
[  267.068747][   T29]  __ia32_sys_sync+0xe/0x20
[  267.072325][T10209] (syz.1.1538,10209,1):ocfs2_search_chain:1871 ERROR: status = -30
[  267.073369][   T29]  do_syscall_64+0x55/0xb0
[  267.100259][T10209] (syz.1.1538,10209,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[  267.101787][   T29]  ? clear_bhb_loop+0x40/0x90
[  267.109260][T10209] (syz.1.1538,10209,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  267.122971][T10209] (syz.1.1538,10209,1):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  267.131393][T10209] (syz.1.1538,10209,1):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  267.132812][   T29]  ? clear_bhb_loop+0x40/0x90
[  267.142209][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_new_window:1203 ERROR: status = -30
[  267.163429][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  267.169373][   T29] RIP: 0033:0x7f4e7759ce59
[  267.186571][   T29] RSP: 002b:00007f4e78543028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  267.188152][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_new_window:1228 ERROR: status = -30
[  267.204318][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30
[  267.206450][   T29] RAX: ffffffffffffffda RBX: 00007f4e77815fa0 RCX: 00007f4e7759ce59
[  267.214041][T10209] (syz.1.1538,10209,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30
[  267.231347][T10209] (syz.1.1538,10209,1):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30
[  267.239636][   T29] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  267.255977][T10209] (syz.1.1538,10209,1):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  267.261641][   T29] RBP: 00007f4e77815fa0 R08: 0000000000000000 R09: 0000000000000000
[  267.268344][T10209] (syz.1.1538,10209,1):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  267.281629][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  267.289574][T10209] (syz.1.1538,10209,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  267.290723][   T29] R13: 00007f4e77816038 R14: 00007f4e77815fa0 R15: 00007ffc7610d288
[  267.290755][   T29]  </TASK>
[  267.300392][T10209] (syz.1.1538,10209,1):ocfs2_lock_allocators:2682 ERROR: status = -30
[  267.328896][T10209] (syz.1.1538,10209,1):ocfs2_extend_allocation:592 ERROR: status = -30
[  267.337748][T10209] (syz.1.1538,10209,1):ocfs2_extend_no_holes:1029 ERROR: status = -30
[  267.346610][T10209] (syz.1.1538,10209,1):ocfs2_expand_nonsparse_inode:1625 ERROR: status = -30
[  267.356087][   T29] 
[  267.356087][   T29] Showing all locks held in the system:
[  267.356932][T10209] (syz.1.1538,10209,1):ocfs2_write_begin_nolock:1692 ERROR: status = -30
[  267.374807][T10209] (syz.1.1538,10209,1):ocfs2_write_begin:1909 ERROR: status = -30
[  267.399806][   T29] 1 lock held by khungtaskd/29:
[  267.419352][T10209] syz.1.1538 (10209) used greatest stack depth: 19632 bytes left
[  267.434894][   T29]  #0: ffffffff8d132160 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  267.460572][   T29] 2 locks held by getty/5531:
[  267.465596][   T29]  #0: ffff88802cc3e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  267.475795][   T29]  #1: ffffc900015c02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390
[  267.486177][   T29] 1 lock held by udevd/5766:
[  267.490784][   T29]  #0: ffff8881417fe4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  267.501135][   T29] 1 lock held by syz-executor/5771:
[  267.508556][   T29]  #0: ffffffff8d137b38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x306/0x880
[  267.519673][   T29] 1 lock held by syz.3.353/6752:
[  267.524880][   T29]  #0: ffff8881417fe4c8 (&disk->open_mutex){+.+.}-{3:3}, at: sync_bdevs+0x1af/0x330
[  267.536003][   T29] 1 lock held by dhcpcd-run-hook/10268:
[  267.545150][   T29] 
[  267.547683][   T29] =============================================
[  267.547683][   T29] 
[  267.560432][   T29] NMI backtrace for cpu 0
[  267.564800][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  267.572009][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  267.582088][   T29] Call Trace:
[  267.585381][   T29]  <TASK>
[  267.588360][   T29]  dump_stack_lvl+0x18c/0x250
[  267.593067][   T29]  ? show_regs_print_info+0x20/0x20
[  267.598287][   T29]  ? load_image+0x420/0x420
[  267.602816][   T29]  nmi_cpu_backtrace+0x3a6/0x3e0
[  267.607777][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  267.613947][   T29]  ? _printk+0xde/0x130
[  267.618117][   T29]  ? load_image+0x420/0x420
[  267.622637][   T29]  ? load_image+0x420/0x420
[  267.627162][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  267.633251][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  267.639251][   T29]  watchdog+0xf3d/0xf80
[  267.643429][   T29]  ? watchdog+0x1e1/0xf80
[  267.647782][   T29]  kthread+0x2fa/0x390
[  267.651864][   T29]  ? hungtask_pm_notify+0x90/0x90
[  267.656907][   T29]  ? kthread_blkcg+0xd0/0xd0
[  267.661510][   T29]  ret_from_fork+0x48/0x80
[  267.665944][   T29]  ? kthread_blkcg+0xd0/0xd0
[  267.670549][   T29]  ret_from_fork_asm+0x11/0x20
[  267.675351][   T29]  </TASK>
[  267.679362][   T29] Sending NMI from CPU 0 to CPUs 1:
[  267.684696][    C1] NMI backtrace for cpu 1
[  267.684705][    C1] CPU: 1 PID: 7857 Comm: kworker/u4:15 Not tainted syzkaller #0
[  267.684719][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  267.684728][    C1] Workqueue: events_unbound nsim_dev_trap_report_work
[  267.684750][    C1] RIP: 0010:trace_irq_disable+0x5/0xe0
[  267.684771][    C1] Code: 85 c0 74 01 c3 65 c7 05 5d a9 75 7e 01 00 00 00 48 8b 3c 24 eb 0f 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 56 53 66 90 <65> 8b 05 10 17 76 7e 83 f8 08 73 2e 89 c3 c1 e8 06 48 8d 3c c5 68
[  267.684783][    C1] RSP: 0018:ffffc9001ccf7868 EFLAGS: 00000046
[  267.684794][    C1] RAX: 0000000000000000 RBX: 1ffff9200399ef18 RCX: b4523ec33b71b500
[  267.684804][    C1] RDX: 0000000000000000 RSI: ffffffff8acacbe0 RDI: ffffffff84ac05ee
[  267.684813][    C1] RBP: ffffc9001ccf7970 R08: ffffc9001ccf7a3f R09: 0000000000000000
[  267.684823][    C1] R10: ffffc9001ccf7a00 R11: fffff5200399ef48 R12: 1ffff9200399ef30
[  267.684833][    C1] R13: 0000000000000002 R14: 0000000000000200 R15: dffffc0000000000
[  267.684842][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  267.684854][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  267.684864][    C1] CR2: 00007f637b442eb8 CR3: 000000007583b000 CR4: 00000000003506e0
[  267.684876][    C1] Call Trace:
[  267.684881][    C1]  <TASK>
[  267.684887][    C1]  crng_make_state+0xee/0x700
[  267.684904][    C1]  ? crng_make_state+0x142/0x700
[  267.684917][    C1]  ? urandom_read_iter+0x140/0x140
[  267.684936][    C1]  _get_random_bytes+0x100/0x250
[  267.684955][    C1]  ? get_random_bytes+0x20/0x20
[  267.684986][    C1]  nsim_dev_trap_report_work+0x663/0xb10
[  267.685011][    C1]  ? process_scheduled_works+0x96f/0x15d0
[  267.685029][    C1]  process_scheduled_works+0xa5d/0x15d0
[  267.685058][    C1]  ? worker_attach_to_pool+0x380/0x380
[  267.685077][    C1]  ? assign_work+0x3d2/0x5d0
[  267.685096][    C1]  worker_thread+0xa55/0xfc0
[  267.685123][    C1]  kthread+0x2fa/0x390
[  267.685136][    C1]  ? pr_cont_work+0x560/0x560
[  267.685151][    C1]  ? kthread_blkcg+0xd0/0xd0
[  267.685165][    C1]  ret_from_fork+0x48/0x80
[  267.685180][    C1]  ? kthread_blkcg+0xd0/0xd0
[  267.685193][    C1]  ret_from_fork_asm+0x11/0x20
[  267.685217][    C1]  </TASK>
[  267.705271][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  267.705283][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  267.705299][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  267.705308][   T29] Call Trace:
[  267.705314][   T29]  <TASK>
[  267.705321][   T29]  dump_stack_lvl+0x18c/0x250
[  267.705345][   T29]  ? show_regs_print_info+0x20/0x20
[  267.705364][   T29]  ? load_image+0x420/0x420
[  267.705389][   T29]  panic+0x2dc/0x730
[  267.705409][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  267.705431][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  267.705450][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  267.705472][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  267.705497][   T29]  watchdog+0xf7c/0xf80
[  267.705517][   T29]  ? watchdog+0x1e1/0xf80
[  267.705541][   T29]  kthread+0x2fa/0x390
[  267.705557][   T29]  ? hungtask_pm_notify+0x90/0x90
[  267.705576][   T29]  ? kthread_blkcg+0xd0/0xd0
[  267.705591][   T29]  ret_from_fork+0x48/0x80
[  267.705608][   T29]  ? kthread_blkcg+0xd0/0xd0
[  267.705624][   T29]  ret_from_fork_asm+0x11/0x20
[  267.705655][   T29]  </TASK>
[  267.708748][   T29] Kernel Offset: disabled
[  268.014173][   T29] Rebooting in 86400 seconds..