last executing test programs:

14.86196236s ago: executing program 3 (id=1035):
r0 = io_uring_setup(0x664c, &(0x7f0000000480)={0x0, 0x0, 0x1880, 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_usb_connect(0x5, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb768405e0483020b9901e4020109021b000100000000090400fb015c291d00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000080), 0x3, 0x800)
close_range(r0, 0xffffffffffffffff, 0x0)

11.470912119s ago: executing program 4 (id=1045):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

11.04045989s ago: executing program 3 (id=1047):
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x437, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x5120b}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)

10.105833691s ago: executing program 1 (id=1049):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x3, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000140)={r2, 0x10000}, 0x8)

8.155330986s ago: executing program 2 (id=1051):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fdf, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = dup2(r1, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
ioprio_get$uid(0x0, 0x0)

7.731075805s ago: executing program 1 (id=1053):
r0 = getpgid(0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0xbfa35000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_pidfd_open(r0, 0x0)

7.563677742s ago: executing program 3 (id=1054):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="4dc07f947163300c", 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$inet(r1, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f00000018c0)=[{&(0x7f0000001840)="582e5ed9b7f29f60d773eced96d4bc751fa057650064e4810bf89b4d8e", 0x1d}], 0x1}}], 0x1, 0x20000854)

6.832681577s ago: executing program 2 (id=1055):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000140), 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x11a, 0x4, 0x0, 0x0)

5.015947601s ago: executing program 3 (id=1057):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)

4.504444558s ago: executing program 2 (id=1058):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000080)={0x28, 0x5, r1, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x800})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000000)={0x28, 0x7, r1, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x80000002})
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000040)={0x28, 0x5, r1, r1, 0x3, 0xfffffffffefffff8, 0x17ff})

4.020099611s ago: executing program 0 (id=1059):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$inet(r1, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000cc0)="af0ca5", 0x3f}, {&(0x7f0000000140)='0', 0x1}], 0x2}}], 0x1, 0x0)

3.859313507s ago: executing program 4 (id=1060):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffd, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="672d6a44b036", 0x0, 0x0, 0x0, 0x0, 0x0})
read$usbfs(r1, 0x0, 0x0)
write$tun(r1, &(0x7f0000000400)=ANY=[], 0xa2)

3.821207029s ago: executing program 2 (id=1061):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
open_by_handle_at(r2, &(0x7f0000000100)=@ocfs2={0xc, 0x300fe, {0x7, 0x0, 0x2}}, 0x88800)

3.240843112s ago: executing program 3 (id=1062):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x400000000000000, 0x0, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000000c0))

3.161885229s ago: executing program 0 (id=1063):
mprotect(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x1})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ff2000/0xe000)=nil, 0xe000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa08, &(0x7f0000000100)={{&(0x7f0000ffb000/0x4000)=nil, 0x4000}, 0x1})

3.142842015s ago: executing program 2 (id=1064):
r0 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello')

2.900790214s ago: executing program 4 (id=1065):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x24, r1, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0xb}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x80d0}, 0x20000000)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}}, 0x28}}, 0x0)

2.784117083s ago: executing program 1 (id=1066):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000001440)=""/126, 0x7e, 0x0)
flock(r0, 0x5)
flock(r0, 0x5)

2.56560116s ago: executing program 0 (id=1067):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000300)=0x4, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)

2.053869339s ago: executing program 1 (id=1068):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0)

2.001538847s ago: executing program 0 (id=1069):
r0 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r1, r1, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000940)="89000000120081ae08060cdc030000007f1be3f74002000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00122800014007682800029bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff3a01f8", 0x89}], 0x1}, 0x24000082)

1.954824432s ago: executing program 4 (id=1070):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050026bd7000000000000f00000008000300", @ANYRES32=r2, @ANYBLOB="35000e00800000000802110000010802110000005050505050500000000000000000000064000100250301040e7206030303030303000000080026006c090000080027000100000008000c"], 0x74}}, 0x20000014)

1.28403788s ago: executing program 3 (id=1071):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)={0x1, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a5976ac6acd41fd8"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)={0x2, 0x130, 0x40000001, {0x0, 0x2710}, {}, {}, 0x1, @can={{0x2}, 0x2, 0x3, 0x0, 0x0, "ae771958a0cf06cc"}}, 0x48}, 0x1, 0x0, 0x0, 0x40884}, 0x20000000)

1.239053286s ago: executing program 4 (id=1072):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000e80)={@val={0x0, 0xf7}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @local, @val={@val={0x88a8, 0x0, 0x0, 0xa}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @local, @remote, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}, 0x36)

1.10917794s ago: executing program 0 (id=1073):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

1.056100759s ago: executing program 1 (id=1074):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket(0x1e, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000f00000008000300", @ANYRES32=r3, @ANYBLOB="0800320000000000050033"], 0x2c}}, 0x0)

328.386931ms ago: executing program 0 (id=1075):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}, {&(0x7f00000003c0)="439e9c06fc666cabc8569d63a866b31ff3", 0x11}], 0x2}}], 0x1, 0x0)

195.064444ms ago: executing program 4 (id=1076):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x4}, 0x1c)
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

72.560604ms ago: executing program 1 (id=1077):
prlimit64(0x0, 0x2, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x33)

0s ago: executing program 2 (id=1078):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x9, 0x4, 0x2, 0x4}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20)

kernel console output (not intermixed with test programs):

 activated: batadv_slave_0
[  288.391304][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  288.464304][ T5827] veth0_vlan: entered promiscuous mode
[  288.506753][ T5835] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  288.516219][ T5835] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  288.525459][ T5835] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  288.535053][ T5835] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  288.701609][ T5827] veth1_vlan: entered promiscuous mode
[  288.732885][ T5819] veth0_macvtap: entered promiscuous mode
[  288.842334][ T5819] veth1_macvtap: entered promiscuous mode
[  289.121453][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0
[  289.211931][ T5827] veth0_macvtap: entered promiscuous mode
[  289.316116][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1
[  289.332804][ T5827] veth1_macvtap: entered promiscuous mode
[  289.477658][ T5819] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  289.487001][ T5819] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  289.496604][ T5819] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  289.505858][ T5819] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  289.695345][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  289.807238][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  290.020855][ T5827] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  290.037391][ T5827] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  290.047793][ T5827] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  290.057067][ T5827] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  290.278747][ T5825] veth0_vlan: entered promiscuous mode
[  290.483565][ T5825] veth1_vlan: entered promiscuous mode
[  290.896560][ T5825] veth0_macvtap: entered promiscuous mode
[  290.996158][ T5825] veth1_macvtap: entered promiscuous mode
[  291.190061][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  291.198089][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  291.262726][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[  291.312716][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[  291.422468][ T5825] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  291.434196][ T5825] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  291.443316][ T5825] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  291.452667][ T5825] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  296.216319][ T3972] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.225692][ T3972] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  296.463663][ T3972] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.472127][ T3972] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.035258][ T5818] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  297.094281][ T1869] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.102384][ T1869] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.377232][ T3607] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.387876][ T3607] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.309502][ T3841] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.319962][ T3841] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.715701][ T3841] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.724259][ T3841] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.205651][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.214156][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.410187][ T3841] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.419335][ T3841] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.233146][ T3972] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.243037][ T3972] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.398260][ T3972] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.407724][ T3972] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.649807][ T6020] loop2: detected capacity change from 0 to 128
[  300.828362][ T6020] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  300.935287][ T6020] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.116815][ T6020] EXT4-fs warning (device loop2): __ext4_ioctl:1259: Setting inode version is not supported with metadata_csum enabled.
[  301.319081][ T6027] loop1: detected capacity change from 0 to 256
[  301.541385][ T6027] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d)
[  301.737515][ T5827] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  302.226048][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12'.
[  302.235449][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12'.
[  302.244753][ T6032] netlink: 'syz.0.12': attribute type 18 has an invalid length.
[  302.442517][ T6034] loop4: detected capacity change from 0 to 256
[  302.745161][ T6030] loop3: detected capacity change from 0 to 32768
[  302.758384][ T6030] =======================================================
[  302.758384][ T6030] WARNING: The mand mount option has been deprecated and
[  302.758384][ T6030]          and is ignored by this kernel. Remove the mand
[  302.758384][ T6030]          option from the mount to silence this warning.
[  302.758384][ T6030] =======================================================
[  302.888350][ T6030] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  303.384834][ T6034] FAT-fs (loop4): Directory bread(block 64) failed
[  303.391734][ T6034] FAT-fs (loop4): Directory bread(block 65) failed
[  303.398975][ T6034] FAT-fs (loop4): Directory bread(block 66) failed
[  303.406934][ T6034] FAT-fs (loop4): Directory bread(block 67) failed
[  303.414168][ T6034] FAT-fs (loop4): Directory bread(block 68) failed
[  303.421084][ T6034] FAT-fs (loop4): Directory bread(block 69) failed
[  303.428408][ T6034] FAT-fs (loop4): Directory bread(block 70) failed
[  303.435482][ T6034] FAT-fs (loop4): Directory bread(block 71) failed
[  303.447241][ T6034] FAT-fs (loop4): Directory bread(block 72) failed
[  303.455633][ T6034] FAT-fs (loop4): Directory bread(block 73) failed
[  303.628073][ T6030] XFS (loop3): Ending clean mount
[  303.764740][ T5835] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  303.827593][ T6049] process 'syz.2.13' launched './file1' with NULL argv: empty string added
[  304.699206][ T6054] netlink: 2 bytes leftover after parsing attributes in process `syz.3.17'.
[  305.211717][ T6061] loop0: detected capacity change from 0 to 64
[  305.309938][ T6061] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  305.813021][ T6066] warning: `syz.3.23' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  307.133848][ T6078] loop3: detected capacity change from 0 to 1024
[  307.206831][ T6078] EXT4-fs (loop3): filesystem is read-only
[  307.599969][ T6074] loop0: detected capacity change from 0 to 4096
[  307.737428][ T6074] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  310.180600][ T6102] loop3: detected capacity change from 0 to 256
[  311.486981][ T6118] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  312.891057][ T6133] loop4: detected capacity change from 0 to 64
[  313.009041][ T6137] Cannot find add_set index 1 as target
[  313.872387][ T6142] netlink: 830 bytes leftover after parsing attributes in process `syz.1.58'.
[  313.911263][ T6143] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[  314.900289][ T6154] loop1: detected capacity change from 0 to 256
[  315.365865][ T6154] FAT-fs (loop1): Directory bread(block 64) failed
[  315.372903][ T6154] FAT-fs (loop1): Directory bread(block 65) failed
[  315.380769][ T6154] FAT-fs (loop1): Directory bread(block 66) failed
[  315.387803][ T6154] FAT-fs (loop1): Directory bread(block 67) failed
[  315.394974][ T6154] FAT-fs (loop1): Directory bread(block 68) failed
[  315.401787][ T6154] FAT-fs (loop1): Directory bread(block 69) failed
[  315.409050][ T6154] FAT-fs (loop1): Directory bread(block 70) failed
[  315.416063][ T6154] FAT-fs (loop1): Directory bread(block 71) failed
[  315.428824][ T6154] FAT-fs (loop1): Directory bread(block 72) failed
[  315.437597][ T6154] FAT-fs (loop1): Directory bread(block 73) failed
[  316.399470][ T6171] use of bytesused == 0 is deprecated and will be removed in the future,
[  316.409111][ T6171] use the actual size instead.
[  318.566857][ T6183] loop3: detected capacity change from 0 to 2048
[  318.779645][ T6183] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  319.052748][ T6177] loop0: detected capacity change from 0 to 65536
[  319.188433][ T6177] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  319.221480][ T6187] loop4: detected capacity change from 0 to 512
[  319.253090][ T6194] tun0: tun_chr_ioctl cmd 1074025675
[  319.258949][ T6194] tun0: persist enabled
[  319.274697][ T6187] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  319.288379][ T6187] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  319.528204][ T6187] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  319.599743][ T6177] XFS (loop0): Ending clean mount
[  319.635684][ T6177] XFS (loop0): Quotacheck needed: Please wait.
[  319.636074][ T6187] EXT4-fs (loop4): 1 truncate cleaned up
[  319.651081][ T6187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.755820][ T6177] XFS (loop0): Quotacheck: Done.
[  319.902201][ T5818] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  320.628540][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.006535][ T5873] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  324.259150][ T6240] loop3: detected capacity change from 0 to 128
[  324.291065][ T6236] loop1: detected capacity change from 0 to 32768
[  324.302869][ T6236] XFS: noikeep mount option is deprecated.
[  324.305831][ T5873] usb 3-1: Using ep0 maxpacket: 8
[  324.319777][ T6240] EXT4-fs: Ignoring removed nobh option
[  324.415137][ T5873] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  324.432647][ T5873] usb 3-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.449332][ T5873] usb 3-1: config 0 interface 0 altsetting 252 endpoint 0x81 has invalid wMaxPacketSize 0
[  324.460855][ T5873] usb 3-1: config 0 interface 0 altsetting 252 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  324.475301][ T5873] usb 3-1: config 0 interface 0 has no altsetting 0
[  324.482300][ T5873] usb 3-1: New USB device found, idVendor=1e7d, idProduct=3232, bcdDevice= 0.00
[  324.491972][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.537096][ T6236] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  324.569904][ T6240] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  324.628255][ T6240] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  324.714661][ T5873] usb 3-1: config 0 descriptor??
[  325.269019][ T6254] netlink: 36 bytes leftover after parsing attributes in process `syz.4.100'.
[  325.297754][ T5873] ryos 0003:1E7D:3232.0001: hidraw0: USB HID vff.ff Device [HID 1e7d:3232] on usb-dummy_hcd.2-1/input0
[  325.493119][   T32] usb 3-1: USB disconnect, device number 2
[  325.684402][ T5835] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  326.054845][ T6236] XFS (loop1): Ending clean mount
[  326.078697][ T6236] XFS (loop1): Quotacheck needed: Please wait.
[  326.348663][ T6236] XFS (loop1): Quotacheck: Done.
[  326.439193][ T5819] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  327.460709][ T6260] loop4: detected capacity change from 0 to 32768
[  327.466019][ T6260] XFS: attr2 mount option is deprecated.
[  327.558469][ T6260] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  328.156074][ T6258] fido_id[6258]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  328.535243][ T6260] XFS (loop4): Ending clean mount
[  328.556994][ T6260] XFS (loop4): Quotacheck needed: Please wait.
[  328.686855][ T6260] XFS (loop4): Quotacheck: Done.
[  328.924751][ T5825] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  330.643897][ T6296] Bluetooth: MGMT ver 1.23
[  331.998888][ T6303] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.050047][ T6313] overlay: Unknown parameter 'subj_type'
[  332.357466][ T6306] sctp: failed to load transform for md5: -2
[  333.106215][ T6318] loop2: detected capacity change from 0 to 2048
[  333.296521][ T6325] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  334.046130][ T6325] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  334.061332][ T6325] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4)
[  334.125364][ T6325] Remounting filesystem read-only
[  334.136285][ T5827] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  335.535538][ T6341] loop2: detected capacity change from 0 to 4096
[  335.809497][ T6346] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  336.995169][ T6358] loop4: detected capacity change from 0 to 1024
[  337.005227][ T6359] loop0: detected capacity change from 0 to 1024
[  337.080053][ T6363] capability: warning: `syz.3.139' uses deprecated v2 capabilities in a way that may be insecure
[  337.080753][ T6359] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  337.101435][ T6359] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  337.157585][ T6359] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #32: comm syz.0.138: iget: special inode unallocated
[  337.204438][ T6358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.209895][ T6363] overlayfs: upper fs does not support tmpfile.
[  337.221414][ T6365] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 73: padding at end of block bitmap is not set
[  337.295005][ T6359] EXT4-fs (loop0): Remounting filesystem read-only
[  337.302074][ T6359] EXT4-fs (loop0): no journal found
[  337.309432][ T6359] EXT4-fs (loop0): can't get journal size
[  337.445871][ T6359] EXT4-fs (loop0): filesystem is read-only
[  337.454798][ T6359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  337.793831][ T6368] 9p: Unknown access argument 18446744073709551615: -34
[  337.973517][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.098050][ T5818] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.844773][ T6376] loop3: detected capacity change from 0 to 512
[  338.860885][ T6373] loop4: detected capacity change from 0 to 2048
[  338.876899][ T6376] EXT4-fs: Ignoring removed orlov option
[  339.115447][ T6376] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.129745][ T6376] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.255808][ T6373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  339.339708][ T6383] binder: 6381:6383 ioctl c018620c 200000000000 returned -22
[  339.535321][   T30] audit: type=1800 audit(1752119921.885:2): pid=6373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.142" name="file1" dev="loop4" ino=15 res=0 errno=0
[  340.047977][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.238751][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.629501][ T6394] loop1: detected capacity change from 0 to 1024
[  340.737697][ T6394] hfsplus: trying to free free bnode 0(1)
[  340.821218][ T6394] hfsplus: catalog searching failed
[  341.251021][ T3972] hfsplus: b-tree write err: -5, ino 4
[  341.559825][ T6401] loop4: detected capacity change from 0 to 2048
[  341.701261][ T6401] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  341.951320][ T6409] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  342.835940][ T6403] loop0: detected capacity change from 0 to 32768
[  342.906514][ T6403] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  342.915103][ T6403] gfs2: fsid=syz:syz: Now mounting FS (format 1802)...
[  342.999730][ T6403] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 0 19, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 403
[  343.014677][ T6403] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqobnN t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1
[  343.024836][ T6403] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510
[  343.034896][ T6403] gfs2: fsid=syz:syz.0:  I: n:0/19 t:4 f:0x00 d:0x00000000 s:0 p:0
[  343.043165][ T6403] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  343.092218][ T6403] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  343.101559][ T6403] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  343.109728][ T6403] gfs2: fsid=syz:syz.0: File system withdrawn
[  343.116266][ T6403] CPU: 1 UID: 0 PID: 6403 Comm: syz.0.153 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  343.116442][ T6403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  343.116543][ T6403] Call Trace:
[  343.116602][ T6403]  <TASK>
[  343.116668][ T6403]  __dump_stack+0x26/0x30
[  343.116883][ T6403]  dump_stack_lvl+0x1df/0x270
[  343.117109][ T6403]  dump_stack+0x1e/0x25
[  343.117308][ T6403]  gfs2_withdraw+0x1d26/0x22e0
[  343.117622][ T6403]  gfs2_consist_inode_i+0x1b2/0x250
[  343.117894][ T6403]  inode_go_instantiate+0x12a7/0x1cf0
[  343.118198][ T6403]  ? __pfx_inode_go_instantiate+0x10/0x10
[  343.118433][ T6403]  gfs2_instantiate+0x24f/0x4b0
[  343.118635][ T6403]  gfs2_glock_wait+0x26a/0x3b0
[  343.118837][ T6403]  gfs2_glock_nq+0x28cf/0x34a0
[  343.119088][ T6403]  init_journal+0x13e8/0x3a30
[  343.119302][ T6403]  ? init_inodes+0x124/0x510
[  343.119472][ T6403]  ? init_inodes+0x124/0x510
[  343.119636][ T6403]  ? kmsan_get_metadata+0xfb/0x160
[  343.119868][ T6403]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  343.120118][ T6403]  init_inodes+0x124/0x510
[  343.120299][ T6403]  gfs2_fill_super+0x384a/0x3f50
[  343.120477][ T6403]  ? init_locking+0xed/0x500
[  343.120700][ T6403]  get_tree_bdev_flags+0x6e6/0x920
[  343.120936][ T6403]  ? __pfx_gfs2_fill_super+0x10/0x10
[  343.121111][ T6403]  ? __pfx_gfs2_fill_super+0x10/0x10
[  343.121278][ T6403]  ? __pfx_gfs2_get_tree+0x10/0x10
[  343.121521][ T6403]  get_tree_bdev+0x38/0x50
[  343.121752][ T6403]  gfs2_get_tree+0x57/0x350
[  343.121926][ T6403]  ? __pfx_gfs2_get_tree+0x10/0x10
[  343.122169][ T6403]  vfs_get_tree+0xb3/0x5c0
[  343.122396][ T6403]  ? mount_capable+0x99/0x100
[  343.122602][ T6403]  do_new_mount+0x738/0x1610
[  343.122839][ T6403]  ? kmsan_get_metadata+0xfb/0x160
[  343.123068][ T6403]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  343.123335][ T6403]  path_mount+0x6db/0x1e90
[  343.123569][ T6403]  ? user_path_at+0x32d/0x3d0
[  343.123794][ T6403]  __se_sys_mount+0x6eb/0x7d0
[  343.124024][ T6403]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  343.124265][ T6403]  __x64_sys_mount+0xe4/0x150
[  343.124510][ T6403]  x64_sys_call+0xfa7/0x3db0
[  343.124747][ T6403]  do_syscall_64+0xd9/0x210
[  343.124978][ T6403]  ? irqentry_exit+0x16/0x60
[  343.125183][ T6403]  ? clear_bhb_loop+0x40/0x90
[  343.125375][ T6403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.125563][ T6403] RIP: 0033:0x7f4d375900ca
[  343.125706][ T6403] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.125843][ T6403] RSP: 002b:00007f4d38463e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  343.126003][ T6403] RAX: ffffffffffffffda RBX: 00007f4d38463ef0 RCX: 00007f4d375900ca
[  343.126121][ T6403] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007f4d38463eb0
[  343.126235][ T6403] RBP: 0000200000000400 R08: 00007f4d38463ef0 R09: 0000000001000004
[  343.126346][ T6403] R10: 0000000001000004 R11: 0000000000000246 R12: 0000200000012500
[  343.126451][ T6403] R13: 00007f4d38463eb0 R14: 00000000000126ae R15: 0000200000000000
[  343.126603][ T6403]  </TASK>
[  343.439253][ T6403] gfs2: fsid=syz:syz.0: can't acquire journal inode glock: -5
[  345.746401][ T6416] loop2: detected capacity change from 0 to 65536
[  345.790008][ T6429] netlink: 60 bytes leftover after parsing attributes in process `syz.0.163'.
[  345.887601][ T6433] netlink: 60 bytes leftover after parsing attributes in process `syz.0.163'.
[  345.940399][ T6429] netlink: 60 bytes leftover after parsing attributes in process `syz.0.163'.
[  345.960989][ T6416] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  346.162551][ T6428] loop3: detected capacity change from 0 to 2048
[  346.422310][ T6441] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  346.461444][ T6416] XFS (loop2): Ending clean mount
[  346.612977][ T5827] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  347.977370][ T6453] Invalid/unusable pipe
[  349.306871][ T6463] loop0: detected capacity change from 0 to 128
[  349.397731][ T6463] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  349.617577][ T6463] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  349.746550][ T6463] ext2 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.844514][   T30] audit: type=1800 audit(1752119932.185:3): pid=6463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.176" name="file1" dev="loop0" ino=12 res=0 errno=0
[  350.390267][ T5818] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  351.204556][   T32] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  351.435641][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  351.447337][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  351.457703][   T32] usb 1-1: New USB device found, idVendor=258a, idProduct=0036, bcdDevice= 0.00
[  351.472164][   T32] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.626380][   T32] usb 1-1: config 0 descriptor??
[  352.195268][   T32] glorious 0003:258A:0036.0002: unknown main item tag 0x4
[  352.203064][   T32] glorious 0003:258A:0036.0002: item fetching failed at offset 2/5
[  352.306160][   T32] glorious 0003:258A:0036.0002: probe with driver glorious failed with error -22
[  352.409797][   T32] usb 1-1: USB disconnect, device number 2
[  352.623839][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  352.630957][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  352.634799][ T6489] netlink: 20 bytes leftover after parsing attributes in process `syz.2.186'.
[  353.468723][ T6497] loop2: detected capacity change from 0 to 128
[  353.585466][ T6497] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  353.655275][ T6497] System zones: 1-3, 19-19, 35-36
[  353.664756][ T6497] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  353.679958][ T6497] ext4 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  354.540267][ T5827] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  356.394888][   T32] hid-generic 0005:0B57:A002.0003: collection stack underflow
[  356.402951][   T32] hid-generic 0005:0B57:A002.0003: item 0 0 0 12 parsing failed
[  356.491374][   T32] hid-generic 0005:0B57:A002.0003: probe with driver hid-generic failed with error -22
[  356.596746][ T6534] loop4: detected capacity change from 0 to 256
[  356.676142][ T6534] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  358.755657][ T6548] loop4: detected capacity change from 0 to 40427
[  358.775500][ T6548] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  358.782589][ T6548] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  358.977049][ T6549] loop2: detected capacity change from 0 to 4096
[  359.151054][ T6549] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  359.321048][ T6548] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  359.328793][ T6548] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  359.605857][ T5825] syz-executor: attempt to access beyond end of device
[  359.605857][ T5825] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  359.621675][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  359.621851][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  359.621951][ T5825] Call Trace:
[  359.622007][ T5825]  <TASK>
[  359.622064][ T5825]  __dump_stack+0x26/0x30
[  359.622274][ T5825]  dump_stack_lvl+0x1df/0x270
[  359.622500][ T5825]  dump_stack+0x1e/0x25
[  359.622694][ T5825]  f2fs_handle_critical_error+0xa6f/0xc20
[  359.622980][ T5825]  f2fs_stop_checkpoint+0x65/0x80
[  359.623219][ T5825]  f2fs_write_end_io+0xb4b/0x1920
[  359.623409][ T5825]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.623676][ T5825]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  359.623924][ T5825]  bio_endio+0xe27/0xf80
[  359.624136][ T5825]  submit_bio_noacct+0x214/0x2710
[  359.624401][ T5825]  submit_bio+0x5a9/0x5d0
[  359.624625][ T5825]  f2fs_submit_write_bio+0x92/0x250
[  359.624853][ T5825]  __submit_merged_bio+0x16f/0x6a0
[  359.625073][ T5825]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.625317][ T5825]  __submit_merged_write_cond+0x458/0x9a0
[  359.625578][ T5825]  f2fs_write_data_pages+0x4bb2/0x5480
[  359.625975][ T5825]  ? kmsan_get_metadata+0xfb/0x160
[  359.626203][ T5825]  ? kmsan_get_metadata+0xfb/0x160
[  359.626428][ T5825]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.626673][ T5825]  ? folios_put_refs+0x21/0xb10
[  359.626841][ T5825]  ? filter_irq_stacks+0x49/0x190
[  359.627024][ T5825]  ? stack_depot_save_flags+0x35/0x7b0
[  359.627234][ T5825]  ? kmsan_get_metadata+0xfb/0x160
[  359.627484][ T5825]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.627717][ T5825]  ? kmsan_get_metadata+0xfb/0x160
[  359.627941][ T5825]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  359.628174][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  359.628414][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  359.628663][ T5825]  do_writepages+0x3ef/0x860
[  359.628874][ T5825]  ? _raw_spin_unlock+0x30/0x50
[  359.629063][ T5825]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  359.629349][ T5825]  filemap_fdatawrite+0x207/0x260
[  359.629685][ T5825]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  359.629907][ T5825]  f2fs_write_checkpoint+0xfe2/0x2b00
[  359.630251][ T5825]  kill_f2fs_super+0x2ff/0x970
[  359.630459][ T5825]  ? __pfx_kill_f2fs_super+0x10/0x10
[  359.630652][ T5825]  deactivate_locked_super+0xcb/0x3c0
[  359.630880][ T5825]  deactivate_super+0x12f/0x140
[  359.631088][ T5825]  cleanup_mnt+0x6fb/0x780
[  359.631254][ T5825]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  359.631496][ T5825]  ? __pfx___cleanup_mnt+0x10/0x10
[  359.631676][ T5825]  __cleanup_mnt+0x22/0x30
[  359.631846][ T5825]  task_work_run+0x206/0x2b0
[  359.632057][ T5825]  exit_to_user_mode_loop+0x2a6/0x330
[  359.632278][ T5825]  do_syscall_64+0x1e3/0x210
[  359.632512][ T5825]  ? irqentry_exit+0x16/0x60
[  359.632714][ T5825]  ? clear_bhb_loop+0x40/0x90
[  359.632905][ T5825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.633091][ T5825] RIP: 0033:0x7f5ac4b8fc57
[  359.633227][ T5825] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  359.633369][ T5825] RSP: 002b:00007ffecac08ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  359.633529][ T5825] RAX: 0000000000000000 RBX: 00007f5ac4c10925 RCX: 00007f5ac4b8fc57
[  359.633637][ T5825] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecac08b70
[  359.633737][ T5825] RBP: 00007ffecac08b70 R08: 0000000000000000 R09: 0000000000000000
[  359.633836][ T5825] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecac09c00
[  359.633940][ T5825] R13: 00007f5ac4c10925 R14: 0000000000057c38 R15: 00007ffecac09c40
[  359.634088][ T5825]  </TASK>
[  360.002224][ T5825] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  360.242705][ T6563] loop3: detected capacity change from 0 to 1024
[  360.765935][ T6563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  361.047349][ T6563] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.215: error while reading EA inode 20 err=-116
[  361.140067][ T6563] EXT4-fs (loop3): Remounting filesystem read-only
[  361.148113][ T6563] EXT4-fs warning (device loop3): ext4_xattr_block_set:2190: inode #19: comm syz.3.215: dec ref error=-30
[  361.645542][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.478179][ T6585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.224'.
[  362.713003][ T6587] netlink: 104 bytes leftover after parsing attributes in process `syz.2.225'.
[  363.400025][ T6591] bridge0: entered allmulticast mode
[  363.689275][ T6593] loop1: detected capacity change from 0 to 512
[  363.844697][ T6593] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.227: casefold flag without casefold feature
[  363.964723][ T6593] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.227: couldn't read orphan inode 15 (err -117)
[  363.999273][ T6593] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.372387][ T6600] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073072017407)
[  364.383099][ T6600] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  364.838358][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.038261][ T6604] loop2: detected capacity change from 0 to 2048
[  365.735960][ T6606] loop4: detected capacity change from 0 to 32768
[  365.821968][ T6606] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.232 (6606)
[  365.854836][ T6604] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  365.857963][ T6606] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  365.862801][ T6604] UDF-fs: Scanning with blocksize 512 failed
[  365.873204][ T6606] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  365.889623][ T6606] BTRFS info (device loop4): using free-space-tree
[  366.090634][ T6604] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  366.368949][   T30] audit: type=1800 audit(1752119948.735:4): pid=6604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.231" name="file2" dev="loop2" ino=819 res=0 errno=0
[  366.429485][ T6606] BTRFS info (device loop4): balance: start -susage=34359738372,drange=7..526332,limit=0..6
[  366.444314][ T6606] ------------[ cut here ]------------
[  366.450045][ T6606] BTRFS: Transaction aborted (error -28)
[  366.457842][ T6606] WARNING: CPU: 0 PID: 6606 at fs/btrfs/block-group.c:2781 btrfs_create_pending_block_groups+0x1497/0x2720
[  366.469902][ T6606] Modules linked in:
[  366.474370][ T6606] CPU: 0 UID: 0 PID: 6606 Comm: syz.4.232 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  366.486787][ T6606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  366.497314][ T6606] RIP: 0010:btrfs_create_pending_block_groups+0x1497/0x2720
[  366.505262][ T6606] Code: 44 89 a0 68 09 00 00 48 c7 80 80 0c 00 00 00 00 00 00 45 85 ed 0f 85 6d 11 00 00 48 c7 c7 bb 55 00 92 89 de e8 9a 8d c7 fb 90 <0f> 0b 90 90 e9 2c ff ff ff 8b 7d d4 e8 68 50 3e fd 48 8b 45 b8 e9
[  366.531087][ T6606] RSP: 0018:ffff8881274534e8 EFLAGS: 00010283
[  366.537958][ T6606] RAX: ffffffff81207e15 RBX: 00000000ffffffe4 RCX: 0000000000080000
[  366.546387][ T6606] RDX: ffffc90009c06000 RSI: 0000000000008ce9 RDI: 0000000000008cea
[  366.554917][ T6606] RBP: ffff888127453698 R08: ffffea000000000f R09: 0000000000000000
[  366.563229][ T6606] R10: ffff888237bae028 R11: ffff88823f271480 R12: 0000000000000000
[  366.571768][ T6606] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[  366.580195][ T6606] FS:  00007f5ac5acd6c0(0000) GS:ffff8881aa85d000(0000) knlGS:0000000000000000
[  366.589661][ T6606] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  366.596759][ T6606] CR2: 00007f7ff985ef40 CR3: 000000013dcbe000 CR4: 00000000003526f0
[  366.605200][ T6606] Call Trace:
[  366.608721][ T6606]  <TASK>
[  366.612069][ T6606]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  366.623245][ T6606]  ? btrfs_chunk_alloc_add_chunk_item+0x1583/0x18e0
[  366.631474][ T6606]  ? kmsan_report+0x320/0x320
[  366.636702][ T6606]  ? btrfs_trans_release_metadata+0x2e6/0xaa0
[  366.643202][ T6606]  __btrfs_end_transaction+0x1a1/0xb40
[  366.649194][ T6606]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  366.655906][ T6606]  btrfs_end_transaction+0x30/0x40
[  366.661447][ T6606]  btrfs_inc_block_group_ro+0xf96/0x10e0
[  366.667812][ T6606]  btrfs_relocate_block_group+0x589/0x1b30
[  366.674218][ T6606]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  366.680525][ T6606]  btrfs_relocate_chunk+0xe0/0x660
[  366.686187][ T6606]  ? kmsan_get_metadata+0xfb/0x160
[  366.691729][ T6606]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  366.698165][ T6606]  __btrfs_balance+0x3507/0x3a00
[  366.703648][ T6606]  btrfs_balance+0x14fa/0x1e50
[  366.708966][ T6606]  btrfs_ioctl_balance+0x79d/0xdd0
[  366.714735][ T6606]  btrfs_ioctl+0xe6a/0x1340
[  366.719667][ T6606]  ? __pfx_btrfs_ioctl+0x10/0x10
[  366.729598][ T6606]  __se_sys_ioctl+0x23c/0x400
[  366.735939][ T6606]  __x64_sys_ioctl+0x97/0xe0
[  366.740949][ T6606]  x64_sys_call+0x1ebe/0x3db0
[  366.746289][ T6606]  do_syscall_64+0xd9/0x210
[  366.751229][ T6606]  ? irqentry_exit+0x16/0x60
[  366.756357][ T6606]  ? clear_bhb_loop+0x40/0x90
[  366.761413][ T6606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.767934][ T6606] RIP: 0033:0x7f5ac4b8e929
[  366.772673][ T6606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.793079][ T6606] RSP: 002b:00007f5ac5acd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  366.802028][ T6606] RAX: ffffffffffffffda RBX: 00007f5ac4db5fa0 RCX: 00007f5ac4b8e929
[  366.810444][ T6606] RDX: 0000200000000440 RSI: 00000000c4009420 RDI: 0000000000000003
[  366.818913][ T6606] RBP: 00007f5ac4c10b39 R08: 0000000000000000 R09: 0000000000000000
[  366.832077][ T6606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.841633][ T6606] R13: 0000000000000000 R14: 00007f5ac4db5fa0 R15: 00007ffecac09828
[  366.850209][ T6606]  </TASK>
[  366.853505][ T6606] ---[ end trace 0000000000000000 ]---
[  366.859412][ T6606] BTRFS info (device loop4 state A): dumping space info:
[  366.867097][ T6606] BTRFS info (device loop4 state A): space_info DATA+METADATA (sub-group id 0) has 1769472 free, is full
[  366.878975][ T6606] BTRFS info (device loop4 state A): space_info total=3276800, used=61440, pinned=0, reserved=0, may_use=1445888, readonly=0 zone_unusable=0
[  366.893892][ T6606] BTRFS info (device loop4 state A): space_info SYSTEM (sub-group id 0) has 8253440 free, is not full
[  366.905746][ T6606] BTRFS info (device loop4 state A): space_info total=12451840, used=4096, pinned=0, reserved=4096, may_use=0, readonly=4190208 zone_unusable=0
[  366.920967][ T6606] BTRFS info (device loop4 state A): global_block_rsv: size 1441792 reserved 1441792
[  366.935385][ T6606] BTRFS info (device loop4 state A): trans_block_rsv: size 0 reserved 0
[  366.945335][ T6606] BTRFS info (device loop4 state A): chunk_block_rsv: size 0 reserved 0
[  366.954229][ T6606] BTRFS info (device loop4 state A): delayed_block_rsv: size 0 reserved 0
[  366.963078][ T6606] BTRFS info (device loop4 state A): delayed_refs_rsv: size 327680 reserved 4096
[  366.973075][ T6606] BTRFS: error (device loop4 state A) in btrfs_create_pending_block_groups:2781: errno=-28 No space left
[  366.984899][ T6606] BTRFS info (device loop4 state EA): forced readonly
[  366.992330][ T6606] BTRFS: error (device loop4 state EA) in btrfs_create_pending_block_groups:2793: errno=-28 No space left
[  367.004430][ T6606] BTRFS: error (device loop4 state EA) in add_block_group_free_space:1468: errno=-28 No space left
[  367.016105][ T6606] BTRFS info (device loop4 state EA): balance: ended with status: -30
[  367.135738][ T5825] BTRFS info (device loop4 state EA): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  368.511617][ T6641] loop2: detected capacity change from 0 to 4096
[  368.599784][ T6641] nilfs2: Unknown parameter 'ÿÿÿÿÿÿÿÿ0xffffffffffffffff'
[  368.916302][ T6652] netlink: 8 bytes leftover after parsing attributes in process `syz.1.244'.
[  369.018944][ T6652] netlink: 'syz.1.244': attribute type 2 has an invalid length.
[  370.031895][ T6663] netlink: 36 bytes leftover after parsing attributes in process `syz.0.249'.
[  371.425107][ T4288] Bluetooth: hci5: Frame reassembly failed (-84)
[  371.505767][ T6677] Bluetooth: hci5: Frame reassembly failed (-84)
[  373.348147][ T6691] loop1: detected capacity change from 0 to 4096
[  373.432065][ T6691] ntfs3(loop1): ino=3, Correct links count -> 2.
[  373.465152][ T5111] Bluetooth: hci5: command 0x1003 tx timeout
[  373.465595][ T5822] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  373.496614][ T6687] loop2: detected capacity change from 0 to 8192
[  374.510023][ T6698] loop3: detected capacity change from 0 to 512
[  374.589626][ T6698] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  374.909042][ T6698] EXT4-fs (loop3): 1 truncate cleaned up
[  374.926797][ T6698] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.751873][ T6702] loop0: detected capacity change from 0 to 40427
[  375.884262][ T6702] F2FS-fs (loop0): invalid crc value
[  376.197638][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.304835][ T6702] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  376.754550][ T6715] support for cryptoloop has been removed.  Use dm-crypt instead.
[  378.930071][ T6732] netlink: 'syz.1.279': attribute type 3 has an invalid length.
[  378.938438][ T6732] netlink: 32 bytes leftover after parsing attributes in process `syz.1.279'.
[  379.594560][ T5873] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  380.660504][ T6742] loop1: detected capacity change from 0 to 32768
[  380.702274][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  380.713718][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  380.724300][ T5873] usb 5-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  380.733675][ T5873] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.754926][ T5873] usb 5-1: config 0 descriptor??
[  381.248502][ T5873] sony 0003:054C:024B.0004: unknown main item tag 0x0
[  381.256978][ T5873] sony 0003:054C:024B.0004: unknown main item tag 0x0
[  381.270192][ T5873] sony 0003:054C:024B.0004: unexpected long global item
[  381.463634][ T5873] sony 0003:054C:024B.0004: parse failed
[  381.476225][ T5873] sony 0003:054C:024B.0004: probe with driver sony failed with error -22
[  381.549423][ T5873] usb 5-1: USB disconnect, device number 2
[  382.693401][ T6753] loop3: detected capacity change from 0 to 4096
[  382.835005][ T6753] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  383.158838][ T6765] loop6: detected capacity change from 0 to 63
[  383.178004][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.186433][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.194897][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.203127][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.218891][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.229487][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.238340][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.246835][ T6765] Buffer I/O error on dev loop6, logical block 0, async page read
[  383.255273][ T6765] ldm_validate_partition_table(): Disk read failed.
[  383.258171][ T6767] Buffer I/O error on dev loop6, logical block 0, lost async page write
[  383.262516][ T6765]  loop6: unable to read partition table
[  383.271008][ T6767] Buffer I/O error on dev loop6, logical block 1, lost async page write
[  383.371461][ T6765] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  384.497335][ T6776] netlink: 28 bytes leftover after parsing attributes in process `syz.2.299'.
[  384.674320][ T6772] loop4: detected capacity change from 0 to 4096
[  384.700619][ T6772] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  385.423035][ T6772] ntfs3(loop4): ino=19, mi_enum_attr
[  385.429520][ T6772] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  385.616443][ T6772] ntfs3(loop4): failed to convert "076c" to cp949
[  385.648353][ T6772] ntfs3(loop4): ino=20, mi_enum_attr
[  386.221311][ T6788] loop0: detected capacity change from 0 to 2048
[  386.525608][ T6794] netlink: 64 bytes leftover after parsing attributes in process `syz.3.307'.
[  386.864716][ T5873] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  387.084538][ T5873] usb 3-1: Using ep0 maxpacket: 16
[  387.126318][ T5873] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  387.137846][ T5873] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  387.148220][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.193292][ T5873] usb 3-1: config 0 descriptor??
[  387.876034][ T5873] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  387.883646][ T5873] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  387.891533][ T5873] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  387.899206][ T5873] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  387.908005][ T5873] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  388.239607][ T5873] mcp2221 0003:04D8:00DD.0005: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  388.596446][ T5873] usb 3-1: USB disconnect, device number 3
[  388.624821][ T6805] loop3: detected capacity change from 0 to 32768
[  388.885566][ T6810] loop4: detected capacity change from 0 to 512
[  389.035580][ T6810] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  389.117739][ T6820] loop0: detected capacity change from 0 to 256
[  389.332179][ T6805] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  389.332363][ T6805]   allowing incompatible features above 0.0: (unknown version)
[  389.332470][ T6805]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  389.392860][ T6805] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  389.403750][ T6805] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  389.414148][ T6805] bcachefs (loop3): Version upgrade required:
[  389.414148][ T6805] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  389.414148][ T6805] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  389.414148][ T6805]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  389.497541][ T6805] bcachefs (loop3): dropping and reconstructing all alloc info
[  389.531507][ T6818] loop1: detected capacity change from 0 to 1024
[  389.584402][ T6805] bcachefs (loop3): accounting_read... done
[  389.595710][ T6805] bcachefs (loop3): alloc_read... done
[  389.604729][ T6805] bcachefs (loop3): snapshots_read...
[  389.606557][ T6810] EXT4-fs error (device loop4): xattr_find_entry:333: inode #15: comm syz.4.313: corrupted xattr entries
[  389.607658][ T6805]  done
[  389.632417][ T6805] bcachefs (loop3): done starting filesystem
[  389.716677][ T6810] EXT4-fs (loop4): 1 truncate cleaned up
[  389.725646][ T6810] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.854631][ T5835] bcachefs (loop3): shutting down
[  389.997645][ T5835] bcachefs (loop3): shutdown complete
[  390.176046][ T3874] hfsplus: b-tree write err: -5, ino 4
[  390.652405][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.436740][ T6837] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  391.849002][ T6840] netlink: 48 bytes leftover after parsing attributes in process `syz.1.324'.
[  392.575752][   T32] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  392.822654][   T32] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  392.839089][   T32] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[  392.850895][   T32] usb 5-1: config 0 interface 0 has no altsetting 0
[  392.858068][   T32] usb 5-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[  392.867734][   T32] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.950301][   T32] usb 5-1: config 0 descriptor??
[  393.521313][   T32] input: HID 054c:03d5 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:054C:03D5.0006/input/input5
[  393.566821][ T6854] loop2: detected capacity change from 0 to 16
[  393.640203][ T6854] erofs (device loop2): mounted with root inode @ nid 36.
[  393.837473][   T32] sony 0003:054C:03D5.0006: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.4-1/input0
[  393.940401][   T32] usb 5-1: USB disconnect, device number 3
[  394.634327][ T6861] loop0: detected capacity change from 0 to 1024
[  394.929339][ T6861] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.131629][   T30] audit: type=1800 audit(1752119977.495:5): pid=6861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.331" name="file1" dev="loop0" ino=15 res=0 errno=0
[  395.422948][ T6862] fido_id[6862]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  395.514871][ T6864] loop1: detected capacity change from 0 to 4096
[  395.604770][ T6864] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  395.730134][ T5831] Bluetooth: hci0: command 0x0406 tx timeout
[  395.730383][ T5826] Bluetooth: hci2: command 0x0406 tx timeout
[  395.737649][ T5831] Bluetooth: hci1: command 0x0406 tx timeout
[  395.742698][ T5111] Bluetooth: hci3: command 0x0406 tx timeout
[  396.135670][ T5818] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.206696][ T6864] ntfs3(loop1): ino=1a, mi_enum_attr
[  396.218859][ T6864] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  396.571051][ T6864] ntfs3(loop1): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22.
[  396.975340][ T6877] veth1_to_bond: entered allmulticast mode
[  397.008832][ T6877] veth1_to_bond: left allmulticast mode
[  397.146874][ T6864] syz.1.333 (6864) used greatest stack depth: 4808 bytes left
[  397.196045][ T3607] ntfs3(loop1): ino=1e, ntfs3_write_inode failed, -22.
[  397.320150][ T6873] loop4: detected capacity change from 0 to 4096
[  397.390016][ T6879] loop3: detected capacity change from 0 to 256
[  397.486146][ T6873] NILFS (loop4): invalid segment: Checksum error in segment payload
[  397.496258][ T6873] NILFS (loop4): trying rollback from an earlier position
[  397.694432][ T6873] NILFS (loop4): recovery complete
[  397.777099][ T6884] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  397.865566][ T6881] netlink: 28 bytes leftover after parsing attributes in process `syz.2.340'.
[  401.834981][ T6940] loop0: detected capacity change from 0 to 128
[  402.006646][ T6940] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  402.160902][ T6940] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  403.259558][ T5818] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  403.608054][ T6955] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.370'.
[  404.030282][ T6948] loop1: detected capacity change from 0 to 32768
[  404.306424][ T6948] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc32c,noacl,usrquota,grpquota,nojournal_transaction_names,allocator_stuck_timeout=256
[  404.306597][ T6948]   allowing incompatible features above 0.0: (unknown version)
[  404.306702][ T6948]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  404.352788][ T6948] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  404.361547][ T6948] bcachefs (loop1): initializing new filesystem
[  404.385258][ T6948] bcachefs (loop1): going read-write
[  404.456002][ T6948] bcachefs (loop1): marking superblocks
[  404.525178][ T6948] bcachefs (loop1): initializing freespace
[  404.556875][ T6948] bcachefs (loop1): done initializing freespace
[  404.579065][ T6948] bcachefs (loop1): reading snapshots table
[  404.585641][ T6948] bcachefs (loop1): reading snapshots done
[  404.797501][ T6948] bcachefs (loop1): done starting filesystem
[  405.197305][ T6948] syz.1.366 (6948) used greatest stack depth: 1216 bytes left
[  405.299760][ T5819] bcachefs (loop1): shutting down
[  405.305564][ T5819] bcachefs (loop1): going read-only
[  405.311067][ T5819] bcachefs (loop1): finished waiting for writes to stop
[  405.419438][ T5819] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3
[  405.697933][ T5819] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[  405.761369][ T5819] bcachefs (loop1): clean shutdown complete, journal seq 4
[  405.835343][ T5819] bcachefs (loop1): marking filesystem clean
[  406.066309][ T5819] bcachefs (loop1): shutdown complete
[  408.550988][ T6995] netlink: 8 bytes leftover after parsing attributes in process `syz.2.384'.
[  409.276035][ T7001] loop4: detected capacity change from 0 to 256
[  409.287989][ T7000] netlink: 'syz.0.386': attribute type 6 has an invalid length.
[  409.357066][ T7001] exfat: Deprecated parameter 'namecase'
[  409.363661][ T7001] exfat: Deprecated parameter 'utf8'
[  409.543653][ T7001] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  410.814425][ T7013] loop4: detected capacity change from 0 to 256
[  410.859654][ T7013] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  410.871463][ T7013] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  411.174435][ T7013] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  411.284353][   T32] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  411.396857][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.403286][ T7013] exFAT-fs (loop4): Filesystem has been set read-only
[  411.410903][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 8, err : -5)
[  411.421502][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.428086][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 8, err : -5)
[  411.439608][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.446775][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 9, err : -5)
[  411.457276][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.463541][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 10, err : -5)
[  411.479237][   T32] usb 1-1: Using ep0 maxpacket: 32
[  411.486258][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.487040][   T32] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[  411.492408][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 11, err : -5)
[  411.492575][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.492663][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 12, err : -5)
[  411.504561][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  411.504739][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  411.504896][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11
[  411.515257][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.521190][   T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024
[  411.531671][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 13, err : -5)
[  411.599606][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.606133][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 14, err : -5)
[  411.616999][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.623248][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 15, err : -5)
[  411.634098][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.640347][ T7013] exFAT-fs (loop4): error, failed to bmap (inode : ffff888013d90730 iblock : 16, err : -5)
[  411.650969][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.657425][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.663709][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.670164][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.681468][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.689528][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.695982][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.702258][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.708825][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.715494][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.721810][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.728244][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.734674][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.740961][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.747410][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.753689][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.760125][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.766551][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.772922][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.784680][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.790984][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.798744][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.805412][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.811698][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.818376][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.824923][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.831235][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.831229][   T32] usb 1-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  411.831397][   T32] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.837583][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.837703][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.837826][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.837935][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.838045][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.838160][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.847573][   T32] usb 1-1: Product: syz
[  411.855681][ T7013] exFAT-fs (loop4): error, broken FAT chain.
[  411.861753][   T32] usb 1-1: Manufacturer: syz
[  411.918129][   T32] usb 1-1: SerialNumber: syz
[  411.939285][   T30] audit: type=1800 audit(1752119994.245:6): pid=7013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.392" name="file1" dev="loop4" ino=1048613 res=0 errno=0
[  411.963532][   T32] usb 1-1: config 0 descriptor??
[  412.432849][   T32] iforce 1-1:0.0: usb_submit_urb failed: -32
[  412.439447][   T32] input input6: Device does not respond to id packet M
[  412.487556][   T32] input input6: Device does not respond to id packet P
[  412.665306][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.671760][   T32] input input6: Device does not respond to id packet B
[  412.693829][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.708460][   T32] input input6: Device does not respond to id packet N
[  412.752847][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.830354][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.854576][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.880978][   T32] iforce 1-1:0.0: usb_submit_urb failed: -71
[  412.957217][   T32] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input6
[  413.019787][ T7023] loop1: detected capacity change from 0 to 256
[  413.029971][ T7023] exfat: Deprecated parameter 'utf8'
[  413.036038][ T7023] exfat: Deprecated parameter 'utf8'
[  413.042311][ T7023] exfat: Deprecated parameter 'utf8'
[  413.101914][   T32] usb 1-1: USB disconnect, device number 3
[  413.152090][ T7023] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  413.222456][ T7023] exFAT-fs (loop1): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[  413.231948][ T7023] exFAT-fs (loop1): Filesystem has been set read-only
[  413.257849][ T7026] exFAT-fs (nullb0): invalid boot record signature
[  413.266480][ T7026] exFAT-fs (nullb0): failed to read boot sector
[  413.272976][ T7026] exFAT-fs (nullb0): failed to recognize exfat type
[  413.396101][ T7027] netlink: 4 bytes leftover after parsing attributes in process `syz.2.398'.
[  414.122424][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  414.130724][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  414.695564][ T7029] loop1: detected capacity change from 0 to 32768
[  415.046595][ T7029] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  415.046772][ T7029]   allowing incompatible features above 0.0: (unknown version)
[  415.046876][ T7029]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  415.099065][ T7029] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  415.108768][ T7029] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  415.118823][ T7029] bcachefs (loop1): Version upgrade required:
[  415.118823][ T7029] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  415.118823][ T7029] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  415.118823][ T7029]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  415.200327][ T7029] bcachefs (loop1): dropping and reconstructing all alloc info
[  415.434733][ T7029] bcachefs (loop1): accounting_read... done
[  415.445851][ T7029] bcachefs (loop1): alloc_read... done
[  415.454548][ T7029] bcachefs (loop1): snapshots_read... done
[  415.479833][ T7029] bcachefs (loop1): done starting filesystem
[  415.654584][ T7029] overlay: case-insensitive capable filesystem on ./file0 not supported
[  415.757464][ T5819] bcachefs (loop1): shutting down
[  415.935137][ T5819] bcachefs (loop1): shutdown complete
[  416.020614][ T7049] Zero length message leads to an empty skb
[  416.259715][ T7051] overlayfs: failed to clone lowerpath
[  416.463301][ T7053] loop2: detected capacity change from 0 to 256
[  416.554147][ T7053] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  416.566529][ T7053] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  416.760834][ T7053] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  416.884414][   T32] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  417.133251][   T32] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  417.144233][   T32] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.247369][   T32] usb 1-1: config 0 descriptor??
[  417.564891][   T32] udl 1-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  417.910980][   T32] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2
[  417.919931][   T32] [drm] Initialized udl on minor 2
[  418.016555][   T32] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed
[  418.032948][   T32] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  418.087751][ T7063] loop2: detected capacity change from 0 to 512
[  418.185423][ T7063] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  418.239955][ T5875] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  418.245938][ T5873] usb 1-1: USB disconnect, device number 4
[  418.249762][ T5875] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed
[  418.263230][ T5875] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  418.429419][ T7063] EXT4-fs (loop2): 1 truncate cleaned up
[  418.442135][ T7063] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.468725][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.618581][ T7083] loop1: detected capacity change from 0 to 256
[  421.314984][ T7083] FAT-fs (loop1): Directory bread(block 64) failed
[  421.321876][ T7083] FAT-fs (loop1): Directory bread(block 65) failed
[  421.329120][ T7083] FAT-fs (loop1): Directory bread(block 66) failed
[  421.336195][ T7083] FAT-fs (loop1): Directory bread(block 67) failed
[  421.343301][ T7083] FAT-fs (loop1): Directory bread(block 68) failed
[  421.350632][ T7083] FAT-fs (loop1): Directory bread(block 69) failed
[  421.357792][ T7083] FAT-fs (loop1): Directory bread(block 70) failed
[  421.365268][ T7083] FAT-fs (loop1): Directory bread(block 71) failed
[  421.372269][ T7083] FAT-fs (loop1): Directory bread(block 72) failed
[  421.379280][ T7083] FAT-fs (loop1): Directory bread(block 73) failed
[  421.996239][ T7102] netlink: 8 bytes leftover after parsing attributes in process `syz.2.426'.
[  422.044112][ T7105] loop3: detected capacity change from 0 to 128
[  422.271896][   T30] audit: type=1800 audit(1752120004.645:7): pid=7105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.427" name="file1" dev="loop3" ino=1048616 res=0 errno=0
[  422.697605][ T7107] syz.3.427: attempt to access beyond end of device
[  422.697605][ T7107] loop3: rw=0, sector=121, nr_sectors = 120 limit=128
[  423.393346][   T58] kworker/u8:4: attempt to access beyond end of device
[  423.393346][   T58] loop3: rw=1, sector=241, nr_sectors = 800 limit=128
[  423.696034][ T7118] netlink: 'syz.1.431': attribute type 10 has an invalid length.
[  423.705428][ T7118] netlink: 40 bytes leftover after parsing attributes in process `syz.1.431'.
[  423.772036][ T7118] team0: Port device netdevsim1 added
[  424.055416][ T7122] block nbd4: not configured, cannot reconfigure
[  426.592284][ T7154] loop4: detected capacity change from 0 to 128
[  426.644812][ T7154] EXT4-fs: Ignoring removed nobh option
[  426.695784][ T7154] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  426.776227][ T7154] ext4 filesystem being mounted at /84/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  427.186656][ T5825] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  428.116374][ T7175] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  428.661509][ T7178] loop3: detected capacity change from 0 to 1024
[  428.966534][ T7178] hfsplus: bad catalog entry type
[  429.008376][ T7171] loop0: detected capacity change from 0 to 32768
[  429.158810][ T7171] JBD2: Ignoring recovery information on journal
[  429.292430][ T7171] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  429.665091][ T5818] ocfs2: Unmounting device (7,0) on (node local)
[  429.703621][ T4288] hfsplus: b-tree write err: -5, ino 4
[  431.559726][ T7196] loop1: detected capacity change from 0 to 32768
[  432.952279][ T7202] loop4: detected capacity change from 0 to 32768
[  433.105324][ T7202] 
[  433.105324][ T7202]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.105324][ T7202] 
[  433.175019][ T7202] 
[  433.175019][ T7202]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.175019][ T7202] 
[  433.190888][ T7202] 
[  433.190888][ T7202]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.190888][ T7202] 
[  433.201875][ T7202] 
[  433.201875][ T7202]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.201875][ T7202] 
[  433.227221][  T112] 
[  433.227221][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.227221][  T112] 
[  433.336228][ T5825] 
[  433.336228][ T5825]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.336228][ T5825] 
[  433.424219][ T5825] 
[  433.424219][ T5825]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  433.424219][ T5825] 
[  434.877609][ T7211] loop3: detected capacity change from 0 to 4096
[  435.411029][ T7223] loop2: detected capacity change from 0 to 512
[  435.486356][ T7223] EXT4-fs: Ignoring removed nomblk_io_submit option
[  435.582855][ T7223] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  435.591558][ T7223] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  435.621797][ T7223] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  435.632108][ T7223] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  435.649772][ T7223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  435.981861][ T7223] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  436.490702][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.650406][ T7235] netlink: 40 bytes leftover after parsing attributes in process `syz.4.471'.
[  437.427923][ T7243] loop1: detected capacity change from 0 to 1024
[  437.971129][ T7250] loop4: detected capacity change from 0 to 1024
[  438.180443][ T7250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.373865][ T7242] loop2: detected capacity change from 0 to 4096
[  438.425234][ T7242] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  438.856218][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.330764][ T7262] netlink: 12 bytes leftover after parsing attributes in process `syz.1.483'.
[  440.472634][ T7275] loop2: detected capacity change from 0 to 256
[  440.567054][ T7275] exfat: Deprecated parameter 'utf8'
[  440.857831][ T7275] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  441.148754][ T7279] xt_CT: No such helper "snmp"
[  441.665656][ T7292] tipc: Started in network mode
[  441.670817][ T7292] tipc: Node identity , cluster identity 4711
[  441.685655][ T7292] tipc: Failed to set node id, please configure manually
[  441.693112][ T7292] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  442.198503][ T7299] ip6_vti0: entered promiscuous mode
[  444.326241][ T7320] loop4: detected capacity change from 0 to 2048
[  444.550855][ T7330] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  444.595587][ T7329] netlink: 4 bytes leftover after parsing attributes in process `syz.3.506'.
[  445.198058][ T7334] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  445.298660][ T5825] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 256
[  445.307780][ T5825] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=15)
[  445.392509][ T5825] Remounting filesystem read-only
[  445.398466][ T5825] NILFS (loop4): error -5 truncating bmap (ino=15)
[  445.575444][ T5825] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  447.039637][ T7360] netlink: 300 bytes leftover after parsing attributes in process `syz.0.516'.
[  447.157768][ T7361] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  447.350800][ T7367] loop1: detected capacity change from 0 to 128
[  447.407123][ T7367] EXT4-fs: Ignoring removed nobh option
[  447.587357][ T7367] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  447.710821][ T7367] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  448.619039][ T5819] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  449.684930][   T30] audit: type=1800 audit(1752120032.045:8): pid=7396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.528" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  452.610898][ T7427] loop2: detected capacity change from 0 to 512
[  452.731091][ T7427] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  452.871323][ T7427] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a000c028, mo2=0002]
[  452.952428][ T7427] System zones: 1-12
[  453.064427][ T7427] EXT4-fs (loop2): 1 truncate cleaned up
[  453.073094][ T7427] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  453.595059][ T7432] loop4: detected capacity change from 0 to 32768
[  453.800827][ T7432] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  454.115766][ T5825] ocfs2: Unmounting device (7,4) on (node local)
[  454.191650][ T7443] loop3: detected capacity change from 0 to 764
[  454.230341][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.332508][ T7443] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  458.240051][ T7483] loop4: detected capacity change from 0 to 16
[  458.380098][ T7483] erofs (device loop4): mounted with root inode @ nid 36.
[  458.620719][ T7491] loop3: detected capacity change from 0 to 256
[  459.157318][ T5825] erofs (device loop4): bogus dirent @ nid 46
[  459.247785][ T5825] erofs (device loop4): invalid de[0].nameoff 0 @ nid 89
[  459.285051][ T7491] FAT-fs (loop3): Directory bread(block 64) failed
[  459.296505][ T7491] FAT-fs (loop3): Directory bread(block 65) failed
[  459.303541][ T7491] FAT-fs (loop3): Directory bread(block 66) failed
[  459.311764][ T7491] FAT-fs (loop3): Directory bread(block 67) failed
[  459.318947][ T7491] FAT-fs (loop3): Directory bread(block 68) failed
[  459.325959][ T7491] FAT-fs (loop3): Directory bread(block 69) failed
[  459.332941][ T7491] FAT-fs (loop3): Directory bread(block 70) failed
[  459.339992][ T7491] FAT-fs (loop3): Directory bread(block 71) failed
[  459.346829][ T5825] erofs (device loop4): invalid de[0].nameoff 0 @ nid 89
[  459.354871][ T7491] FAT-fs (loop3): Directory bread(block 72) failed
[  459.361693][ T7491] FAT-fs (loop3): Directory bread(block 73) failed
[  460.134936][ T7502] loop1: detected capacity change from 0 to 1024
[  460.304187][ T7501] loop2: detected capacity change from 0 to 2048
[  460.474308][ T7501] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  460.496902][ T7502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.756245][ T7508] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  460.796177][ T7504] loop4: detected capacity change from 0 to 32768
[  460.892929][   T30] audit: type=1800 audit(1752120043.265:9): pid=7502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.565" name="file1" dev="loop1" ino=15 res=0 errno=0
[  460.987991][ T7504] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  461.291163][ T5825] ocfs2: Unmounting device (7,4) on (node local)
[  461.785612][ T7507] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  461.938363][ T3841] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 52 with error 28
[  461.951315][ T3841] EXT4-fs (loop1): This should not happen!! Data will be lost
[  461.951315][ T3841] 
[  461.966640][ T3841] EXT4-fs (loop1): Total free blocks count 0
[  461.972916][ T3841] EXT4-fs (loop1): Free/Dirty block details
[  461.980931][ T3841] EXT4-fs (loop1): free_blocks=68451041280
[  461.992123][ T3841] EXT4-fs (loop1): dirty_blocks=64
[  461.997777][ T3841] EXT4-fs (loop1): Block reservation details
[  462.004353][ T3841] EXT4-fs (loop1): i_reserved_data_blocks=4
[  462.369541][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.269826][ T7535] loop4: detected capacity change from 0 to 256
[  463.349448][ T7533] loop1: detected capacity change from 0 to 2048
[  463.436594][ T7533] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  463.607197][ T7539] 8021q: adding VLAN 0 to HW filter on device batadv1
[  463.622427][ T7539] team0: Port device batadv1 added
[  463.705619][ T7541] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  464.834344][ T7547] loop4: detected capacity change from 0 to 512
[  465.136680][ T7547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.150439][ T7547] ext4 filesystem being mounted at /109/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  465.518514][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.3.579'.
[  465.791668][ T7559] loop2: detected capacity change from 0 to 64
[  466.340323][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.596081][ T7596] netlink: 12 bytes leftover after parsing attributes in process `syz.4.596'.
[  469.605684][ T7596] netlink: 36 bytes leftover after parsing attributes in process `syz.4.596'.
[  469.641273][ T7596] vlan2: entered allmulticast mode
[  469.646948][ T7596] macvtap0: entered allmulticast mode
[  469.652606][ T7596] veth0_macvtap: entered allmulticast mode
[  470.267239][ T7606] ref_ctr_offset mismatch. inode: 0x272 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  472.325727][   T30] audit: type=1326 audit(1752120054.675:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.348793][   T30] audit: type=1326 audit(1752120054.675:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.564395][   T30] audit: type=1326 audit(1752120054.795:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.587930][   T30] audit: type=1326 audit(1752120054.795:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.615183][   T30] audit: type=1326 audit(1752120054.795:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.637999][   T30] audit: type=1326 audit(1752120054.795:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.660769][   T30] audit: type=1326 audit(1752120054.795:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.683749][   T30] audit: type=1326 audit(1752120054.795:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.709928][   T30] audit: type=1326 audit(1752120054.805:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.733536][   T30] audit: type=1326 audit(1752120054.805:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7626 comm="syz.3.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f498e929 code=0x7ffc0000
[  472.828981][ T7635] netlink: 4 bytes leftover after parsing attributes in process `syz.2.614'.
[  474.091092][ T7649] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  474.101850][ T7649] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  474.111372][ T7649] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  474.120669][ T7649] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  475.518434][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  475.525636][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  475.606933][ T7658] sctp: failed to load transform for md5: -2
[  479.137875][ T7711] loop1: detected capacity change from 0 to 22
[  479.224440][ T7711] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  479.553057][ T7714] loop2: detected capacity change from 0 to 1024
[  479.721064][ T7714] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.033630][ T7723] loop1: detected capacity change from 0 to 32768
[  481.100858][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.132520][ T7723] JBD2: Ignoring recovery information on journal
[  481.149933][ T5111] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  481.238199][ T7723] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  481.498246][ T5819] ocfs2: Unmounting device (7,1) on (node local)
[  482.794860][ T7744] sctp: [Deprecated]: syz.3.659 (pid 7744) Use of int in maxseg socket option.
[  482.794860][ T7744] Use struct sctp_assoc_value instead
[  483.075862][ T7749] netlink: 312 bytes leftover after parsing attributes in process `syz.4.662'.
[  483.836408][ T7754] netlink: 'syz.3.664': attribute type 10 has an invalid length.
[  483.844884][ T7754] netlink: 40 bytes leftover after parsing attributes in process `syz.3.664'.
[  483.854308][ T7754] dummy0: entered promiscuous mode
[  483.862843][ T7754] bridge0: port 3(dummy0) entered blocking state
[  483.877684][ T7754] bridge0: port 3(dummy0) entered disabled state
[  483.885251][ T7754] dummy0: entered allmulticast mode
[  483.897779][ T7754] bridge0: port 3(dummy0) entered blocking state
[  483.904916][ T7754] bridge0: port 3(dummy0) entered forwarding state
[  484.714474][ T7764] loop1: detected capacity change from 0 to 64
[  484.926096][ T7766] could not allocate digest TFM handle _!5Á’›ã(ìÛiÀ£ïÕHP,ƒomñ«xúÄ™í©*Ô71U"~Âß‘�2.Ë>£~e’…ñŠ>/yµ™
[  485.888686][ T7773] loop3: detected capacity change from 0 to 512
[  486.317801][ T7773] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.336592][ T7773] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  486.772368][ T7773] EXT4-fs error (device loop3): ext4_get_first_dir_block:3536: inode #12: comm syz.3.673: directory missing '.'
[  486.794777][ T7773] EXT4-fs (loop3): Remounting filesystem read-only
[  487.459087][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.623242][ T7796] loop2: detected capacity change from 0 to 16
[  488.844912][ T7806] loop4: detected capacity change from 0 to 1024
[  488.992111][ T7810] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  489.063762][ T7806] hfsplus: bad catalog entry type
[  489.496381][ T3874] hfsplus: b-tree write err: -5, ino 4
[  491.439507][ T7834] loop4: detected capacity change from 0 to 24
[  494.321339][ T7849] loop4: detected capacity change from 0 to 32768
[  494.830313][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  495.407121][ T7866] netlink: 52 bytes leftover after parsing attributes in process `syz.3.713'.
[  496.599153][ T7877] batadv_slave_0: entered promiscuous mode
[  496.629388][ T7876] batadv_slave_0: left promiscuous mode
[  497.321567][ T7881] ------------[ cut here ]------------
[  497.327773][ T7881] WARNING: CPU: 1 PID: 7881 at fs/exec.c:119 path_noexec+0x2ac/0x310
[  497.337210][ T7881] Modules linked in:
[  497.341484][ T7881] CPU: 1 UID: 0 PID: 7881 Comm: syz.1.719 Tainted: G        W           6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  497.355674][ T7881] Tainted: [W]=WARN
[  497.359862][ T7881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  497.370553][ T7881] RIP: 0010:path_noexec+0x2ac/0x310
[  497.376429][ T7881] Code: 49 89 ff 8b 7d d4 e8 53 b2 e1 ff 4c 89 ff e9 c8 fe ff ff 44 89 e7 e8 43 b2 e1 ff 4d 85 ed 0f 85 a3 fe ff ff e8 85 bc 3e ff 90 <0f> 0b 90 48 8b 7d c0 4c 8b 37 e8 05 a7 e1 ff 48 8b 00 48 89 45 c8
[  497.403510][ T7881] RSP: 0018:ffff8881187c3bc0 EFLAGS: 00010283
[  497.411627][ T7881] RAX: ffffffff82b58a6b RBX: ffff888104134cd8 RCX: 0000000000080000
[  497.420072][ T7881] RDX: ffffc90008c02000 RSI: 000000000000006c RDI: 000000000000006d
[  497.428647][ T7881] RBP: ffff8881187c3c00 R08: ffffea000000000f R09: 0000000000000003
[  497.437105][ T7881] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000
[  497.445648][ T7881] R13: 0000000000000000 R14: ffff88814084cda0 R15: 0000000000000000
[  497.454093][ T7881] FS:  00007f7ffa89e6c0(0000) GS:ffff8881aa95d000(0000) knlGS:0000000000000000
[  497.463366][ T7881] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  497.470442][ T7881] CR2: 0000555594c38588 CR3: 000000012ca50000 CR4: 00000000003526f0
[  497.478878][ T7881] Call Trace:
[  497.482389][ T7881]  <TASK>
[  497.491907][ T7881]  do_mmap+0x1570/0x1d70
[  497.498275][ T7881]  vm_mmap_pgoff+0x48e/0x770
[  497.503329][ T7881]  ksys_mmap_pgoff+0x51b/0x7c0
[  497.508618][ T7881]  __x64_sys_mmap+0x19c/0x260
[  497.513675][ T7881]  x64_sys_call+0x1a6e/0x3db0
[  497.519078][ T7881]  do_syscall_64+0xd9/0x210
[  497.524087][ T7881]  ? irqentry_exit+0x16/0x60
[  497.529150][ T7881]  ? clear_bhb_loop+0x40/0x90
[  497.534390][ T7881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.540638][ T7881] RIP: 0033:0x7f7ff998e929
[  497.548972][ T7881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.569274][ T7881] RSP: 002b:00007f7ffa89e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  497.578696][ T7881] RAX: ffffffffffffffda RBX: 00007f7ff9bb5fa0 RCX: 00007f7ff998e929
[  497.587194][ T7881] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000ffd000
[  497.601234][ T7881] RBP: 00007f7ff9a10b39 R08: 0000000000000004 R09: 0000000000002000
[  497.611447][ T7881] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[  497.619856][ T7881] R13: 0000000000000000 R14: 00007f7ff9bb5fa0 R15: 00007ffe9a3b0fc8
[  497.628404][ T7881]  </TASK>
[  497.631664][ T7881] ---[ end trace 0000000000000000 ]---
[  497.663686][ T7886] loop3: detected capacity change from 0 to 256
[  498.013005][ T7886] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  499.590454][ T7899] loop1: detected capacity change from 0 to 512
[  499.774489][ T7899] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  499.854968][ T7899] EXT4-fs (loop1): invalid journal inode
[  499.861136][ T7899] EXT4-fs (loop1): can't get journal size
[  500.000078][ T7899] EXT4-fs (loop1): 1 truncate cleaned up
[  500.012238][ T7899] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  500.738179][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.861957][ T7915] loop4: detected capacity change from 0 to 128
[  501.549617][ T7918] loop2: detected capacity change from 0 to 256
[  502.145108][ T7918] FAT-fs (loop2): Directory bread(block 64) failed
[  502.152104][ T7918] FAT-fs (loop2): Directory bread(block 65) failed
[  502.160368][ T7918] FAT-fs (loop2): Directory bread(block 66) failed
[  502.167449][ T7918] FAT-fs (loop2): Directory bread(block 67) failed
[  502.174925][ T7918] FAT-fs (loop2): Directory bread(block 68) failed
[  502.181743][ T7918] FAT-fs (loop2): Directory bread(block 69) failed
[  502.189053][ T7918] FAT-fs (loop2): Directory bread(block 70) failed
[  502.200548][ T7918] FAT-fs (loop2): Directory bread(block 71) failed
[  502.208656][ T7918] FAT-fs (loop2): Directory bread(block 72) failed
[  502.215656][ T7918] FAT-fs (loop2): Directory bread(block 73) failed
[  502.646018][ T7929] netlink: 'syz.0.737': attribute type 83 has an invalid length.
[  504.433246][ T7944] loop1: detected capacity change from 0 to 128
[  504.524453][ T5875] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  504.544779][ T7944] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  504.725036][ T5875] usb 1-1: Using ep0 maxpacket: 32
[  504.752495][ T5875] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  504.767117][ T5875] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.835169][ T7944] FAT-fs (loop1): FAT read failed (blocknr 128)
[  504.836471][ T5875] usb 1-1: config 0 descriptor??
[  505.140812][ T5875] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  505.181210][ T5875] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  505.252780][ T5875] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  505.260562][ T5875] usb 1-1: media controller created
[  505.392699][ T5875] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  505.871501][ T5875] az6027: usb out operation failed. (-71)
[  505.879464][ T5875] az6027: usb out operation failed. (-71)
[  505.894583][ T5875] stb0899_attach: Driver disabled by Kconfig
[  505.902851][ T5875] az6027: no front-end attached
[  505.902851][ T5875] 
[  505.926811][ T5875] az6027: usb out operation failed. (-71)
[  505.932957][ T5875] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  505.944647][ T5875] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input9
[  506.136059][ T7956] program syz.1.749 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  506.167186][ T5875] dvb-usb: schedule remote query interval to 400 msecs.
[  506.174579][ T5875] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  506.252377][ T5875] usb 1-1: USB disconnect, device number 5
[  506.960411][ T5875] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  509.564099][ T7997] netlink: 12 bytes leftover after parsing attributes in process `syz.1.768'.
[  509.600125][ T7995] loop4: detected capacity change from 0 to 1024
[  509.769844][ T7995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.427140][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.041655][ T8029] ntfs3(nullb0): Primary boot signature is not NTFS.
[  512.084280][ T8029] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  512.392099][ T8032] netlink: 20 bytes leftover after parsing attributes in process `syz.1.782'.
[  513.185056][ T8035] loop3: detected capacity change from 0 to 8192
[  514.393678][ T8040] loop2: detected capacity change from 0 to 4096
[  515.064868][ T8054] loop3: detected capacity change from 0 to 32768
[  515.327118][ T8054] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names
[  515.327279][ T8054]   allowing incompatible features above 0.0: (unknown version)
[  515.327383][ T8054]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  515.370459][ T8054] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  515.380012][ T8054] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  515.390016][ T8054] bcachefs (loop3): Version upgrade required:
[  515.390016][ T8054] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  515.390016][ T8054] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  515.390016][ T8054]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  515.599919][ T8054] bcachefs (loop3): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  515.665390][ T8054] bcachefs (loop3): btree node read error at btree backpointers level 0/0
[  515.665511][ T8054]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0
[  515.665640][ T8054]   loop3 node offset 16/24 bset u64s 7: checksum error, type crc32c: got 876642eb should be 00000000
[  515.665748][ T8054]   flagging btree backpointers lost data
[  515.665845][ T8054]   ret fsck_errors_not_fixed
[  515.717706][ T8054] bcachefs (loop3): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing
[  515.742915][ T8054] bcachefs (loop3): check_topology... done
[  515.757150][ T8054] bcachefs (loop3): accounting_read... done
[  515.767103][ T8054] bcachefs (loop3): alloc_read... done
[  515.776104][ T8054] bcachefs (loop3): snapshots_read... done
[  515.785606][ T8054] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean
[  515.800529][ T8054] bcachefs (loop3): done starting filesystem
[  515.958489][ T5835] bcachefs (loop3): shutting down
[  515.973730][ T8040] ntfs3(loop2): Failed to read $UpCase (-4).
[  516.163574][ T5835] bcachefs (loop3): shutdown complete
[  517.816000][ T8086] loop1: detected capacity change from 0 to 256
[  518.129359][ T8086] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  520.034913][ T5875] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  520.284770][ T5875] usb 5-1: Using ep0 maxpacket: 32
[  520.339660][ T5875] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  520.351434][ T5875] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  520.361982][ T5875] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  520.371585][ T5875] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  520.476663][ T5875] usb 5-1: config 0 descriptor??
[  520.570144][ T5875] hub 5-1:0.0: USB hub found
[  520.746166][ T5875] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  520.958747][ T8099] loop2: detected capacity change from 0 to 4096
[  520.982308][ T8099] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  521.197081][ T5875] usbhid 5-1:0.0: can't add hid device: -71
[  521.204446][ T5875] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  521.317007][ T5875] usb 5-1: USB disconnect, device number 4
[  521.389473][ T8099] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  521.428428][ T8099] ntfs3(loop2): ino=1a, mi_enum_attr
[  521.435194][ T8099] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  521.647760][ T8105] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  521.692959][   T30] audit: type=1800 audit(1752120104.055:20): pid=8099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.807" name="file1" dev="loop2" ino=24 res=0 errno=0
[  522.598828][ T8114] netlink: 140 bytes leftover after parsing attributes in process `syz.0.814'.
[  522.650651][ T8116] netlink: 8 bytes leftover after parsing attributes in process `syz.2.812'.
[  523.637577][ T8124] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  524.021556][ T5873] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  524.292594][ T5873] usb 5-1: Using ep0 maxpacket: 32
[  524.386183][ T5873] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  524.395076][ T5873] usb 5-1: config 0 has no interface number 0
[  524.502474][ T8128] loop2: detected capacity change from 0 to 512
[  524.600222][ T5873] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  524.610127][ T5873] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  524.619157][ T5873] usb 5-1: Product: syz
[  524.627339][ T5873] usb 5-1: Manufacturer: syz
[  524.632256][ T5873] usb 5-1: SerialNumber: syz
[  524.958360][ T5873] usb 5-1: config 0 descriptor??
[  525.013675][ T8128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  525.027445][ T8128] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  525.067999][ T5873] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  525.331306][ T5873] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  525.425798][ T5873] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  525.580650][ T8135] loop3: detected capacity change from 0 to 2048
[  525.719739][ T8135] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=3932051, location=3932051
[  525.744984][    C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  525.764437][ T5875] usb 5-1: USB disconnect, device number 5
[  525.846500][ T5875] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  525.886857][ T8135] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  525.977177][ T5875] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  525.993648][ T5875] quatech2 5-1:0.51: device disconnected
[  526.143079][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.642004][ T8152] loop4: detected capacity change from 0 to 1024
[  527.957126][ T8148] loop3: detected capacity change from 0 to 4096
[  528.532984][   T30] audit: type=1326 audit(1752120110.905:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.634428][ T8148] ntfs3(loop3): ino=18, mi_enum_attr
[  528.640340][ T8148] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  528.654549][   T30] audit: type=1326 audit(1752120110.975:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.712867][ T8148] ntfs3(loop3): ino=1a, mi_enum_attr
[  528.815474][   T30] audit: type=1326 audit(1752120111.065:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.842438][   T30] audit: type=1326 audit(1752120111.065:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.866793][   T30] audit: type=1326 audit(1752120111.085:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.889643][   T30] audit: type=1326 audit(1752120111.085:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1239d8e929 code=0x7ffc0000
[  528.912605][   T30] audit: type=1326 audit(1752120111.115:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1239d858e7 code=0x7ffc0000
[  528.938671][   T30] audit: type=1326 audit(1752120111.115:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1239d2ab19 code=0x7ffc0000
[  528.962644][   T30] audit: type=1326 audit(1752120111.115:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1239d858e7 code=0x7ffc0000
[  528.985471][   T30] audit: type=1326 audit(1752120111.115:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8157 comm="syz.2.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1239d2ab19 code=0x7ffc0000
[  528.999847][ T5171] udevd[5171]: worker [6004] terminated by signal 33 (Unknown signal 33)
[  529.046607][ T8152] netlink: zone id is out of range
[  529.052015][ T8152] netlink: zone id is out of range
[  529.057685][ T8152] netlink: zone id is out of range
[  529.063032][ T8152] netlink: zone id is out of range
[  529.068544][ T8152] netlink: zone id is out of range
[  529.074919][ T8152] netlink: zone id is out of range
[  529.080273][ T8152] netlink: zone id is out of range
[  529.088278][ T8152] netlink: zone id is out of range
[  529.093651][ T8152] netlink: zone id is out of range
[  529.099324][ T8152] netlink: zone id is out of range
[  529.124687][ T5171] udevd[5171]: worker [6004] failed while handling '/devices/virtual/block/loop4'
[  529.158430][ T5171] udevd[5171]: worker [6045] terminated by signal 33 (Unknown signal 33)
[  529.184144][ T5171] udevd[5171]: worker [6045] failed while handling '/devices/virtual/block/loop1'
[  529.210402][ T5171] udevd[5171]: worker [6944] terminated by signal 33 (Unknown signal 33)
[  529.269755][ T5171] udevd[5171]: worker [6944] failed while handling '/devices/virtual/block/loop3'
[  529.295558][ T8148] overlayfs: upper fs does not support tmpfile.
[  529.318408][ T8148] overlayfs: workdir/#9 already exists
[  529.636546][ T7728] hfsplus: b-tree write err: -5, ino 4
[  530.150019][ T8171] netlink: 'syz.4.839': attribute type 29 has an invalid length.
[  530.772927][ T8182] netlink: 24 bytes leftover after parsing attributes in process `syz.4.844'.
[  530.906593][ T8182] netlink: 24 bytes leftover after parsing attributes in process `syz.4.844'.
[  531.320371][ T5873] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  531.328943][ T5873] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  531.337052][ T5873] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  531.496736][ T5873] hid-generic 0003:0004:0000.0007: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  532.673319][ T8196] fido_id[8196]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  533.709589][ T8218] netlink: 8 bytes leftover after parsing attributes in process `syz.3.860'.
[  533.719152][ T8218] netlink: 12 bytes leftover after parsing attributes in process `syz.3.860'.
[  534.744334][ T5826] Bluetooth: hci4: command tx timeout
[  535.028260][ T8221] loop4: detected capacity change from 0 to 32768
[  535.063460][ T8221] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  535.082072][ T8221] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  535.654951][ T8221] XFS (loop4): Ending clean mount
[  535.671486][ T8221] XFS (loop4): Quotacheck needed: Please wait.
[  535.723672][ T3841] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0xaf/0x2d0, xfs_cntbt block 0x10 
[  535.738142][ T3841] XFS (loop4): Unmount and run xfs_repair
[  535.744362][ T3841] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  535.752062][ T3841] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff  AB3C............
[  535.761681][ T3841] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10  ................
[  535.771012][ T3841] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  535.780511][ T3841] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02  .... ......N....
[  535.795342][ T3841] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00  ...`............
[  535.806018][ T3841] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00  ................
[  535.815383][ T3841] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  535.824764][ T3841] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  535.834242][ T3841] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x10 len 8 error 74
[  536.204880][ T8221] XFS (loop4): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  536.338745][ T5825] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  536.386048][ T5825] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair.
[  536.944193][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  536.951079][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  536.971706][ T8251] netlink: 40 bytes leftover after parsing attributes in process `syz.0.872'.
[  537.989329][ T8266] netlink: 8 bytes leftover after parsing attributes in process `syz.0.878'.
[  538.906102][ T5873] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  539.105340][ T5873] usb 5-1: Using ep0 maxpacket: 32
[  539.172225][ T5873] usb 5-1: config 0 interface 0 has no altsetting 0
[  539.228804][ T5873] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  539.238586][ T5873] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.247555][ T5873] usb 5-1: Product: syz
[  539.252102][ T5873] usb 5-1: Manufacturer: syz
[  539.257192][ T5873] usb 5-1: SerialNumber: syz
[  539.387413][ T5873] usb 5-1: config 0 descriptor??
[  539.896869][ T5873] gs_usb 5-1:0.0: Configuring for 1 interfaces
[  540.316440][ T5873] gs_usb 5-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  540.354494][ T5873] gs_usb 5-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  540.366639][ T5873] gs_usb 5-1:0.0: probe with driver gs_usb failed with error -71
[  540.502747][ T5873] usb 5-1: USB disconnect, device number 6
[  542.716125][ T8308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.899'.
[  542.807288][ T8310] loop3: detected capacity change from 0 to 128
[  543.329025][ T8306] loop4: detected capacity change from 0 to 32768
[  543.423518][ T8306] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  543.436484][ T8310] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  543.510511][ T8310] ext4 filesystem being mounted at /187/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  543.713012][ T8310] EXT4-fs error (device loop3): dx_make_map:1296: inode #2: block 18: comm syz.3.900: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  543.808947][ T8310] EXT4-fs (loop3): Remounting filesystem read-only
[  544.069783][ T8306] XFS (loop4): Ending clean mount
[  544.254749][ T5825] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  544.325569][ T5835] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  544.744948][ T8333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.904'.
[  548.035482][ T8354] loop2: detected capacity change from 0 to 32768
[  548.046105][ T8354] btrfs: Deprecated parameter 'usebackuproot'
[  548.052510][ T8354] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  548.067433][ T8354] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.913 (8354)
[  548.154931][ T8354] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  548.165863][ T8354] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  548.468866][ T3841] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  548.486852][ T8354] BTRFS error (device loop2): failed to load root extent
[  548.496087][ T8354] BTRFS warning (device loop2): try to load backup roots slot 1
[  548.604316][ T3841] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  548.623234][ T8354] BTRFS warning (device loop2): couldn't read tree root
[  548.630910][ T8354] BTRFS warning (device loop2): try to load backup roots slot 2
[  548.726777][ T3841] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  548.738141][ T8354] BTRFS warning (device loop2): couldn't read tree root
[  548.746908][ T8354] BTRFS warning (device loop2): try to load backup roots slot 3
[  548.869200][ T8354] BTRFS info (device loop2): rebuilding free space tree
[  548.929218][ T8354] BTRFS info (device loop2): disabling free space tree
[  548.937145][ T8354] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  548.947978][ T8354] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  549.380385][ T5827] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  550.340731][ T8398] input: syz1 as /devices/virtual/input/input10
[  553.624795][   T32] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  553.883010][   T32] usb 2-1: Using ep0 maxpacket: 8
[  553.974421][   T32] usb 2-1: config 0 has no interfaces?
[  554.057324][   T32] usb 2-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[  554.067120][   T32] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.075723][   T32] usb 2-1: Product: syz
[  554.080180][   T32] usb 2-1: Manufacturer: syz
[  554.085501][   T32] usb 2-1: SerialNumber: syz
[  554.338690][   T32] usb 2-1: config 0 descriptor??
[  554.828939][ T8421] netlink: 8 bytes leftover after parsing attributes in process `syz.1.933'.
[  554.842532][ T8421] netlink: 4 bytes leftover after parsing attributes in process `syz.1.933'.
[  555.184877][   T32] usb 2-1: USB disconnect, device number 2
[  555.685468][ T8431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.938'.
[  555.695356][ T8431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.938'.
[  555.765402][ T8431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.938'.
[  555.775578][ T8431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.938'.
[  557.676025][ T8454] gretap0: entered promiscuous mode
[  557.692239][ T8454] batman_adv: batadv0: Adding interface: macvlan2
[  557.703114][ T8454] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1462) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  557.725447][ T8454] batman_adv: batadv0: Interface activated: macvlan2
[  558.304489][ T8459] loop2: detected capacity change from 0 to 128
[  558.394966][ T8459] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  558.578097][ T8459] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  559.084550][ T8466] loop1: detected capacity change from 0 to 256
[  559.500958][ T8466] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  559.515863][ T8466] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  560.475123][ T8474] program syz.4.957 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  560.488829][ T8475] input: syz1 as /devices/virtual/input/input11
[  560.901822][ T8479] loop1: detected capacity change from 0 to 1024
[  561.352972][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  561.353060][   T30] audit: type=1800 audit(1752120143.725:35): pid=8479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.961" name="file2" dev="loop1" ino=20 res=0 errno=0
[  561.475171][ T8479] hfsplus: request for non-existent node 33554434 in B*Tree
[  561.483045][ T8479] hfsplus: request for non-existent node 33554434 in B*Tree
[  561.567242][ T8487] syz.2.963 uses obsolete (PF_INET,SOCK_PACKET)
[  561.585703][ T8481] loop3: detected capacity change from 0 to 2048
[  561.969062][ T8481] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  562.533461][ T8492] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  562.989190][ T3874] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  563.002098][ T3874] EXT4-fs (loop3): This should not happen!! Data will be lost
[  563.002098][ T3874] 
[  563.013532][ T3874] EXT4-fs (loop3): Total free blocks count 0
[  563.020913][ T3874] EXT4-fs (loop3): Free/Dirty block details
[  563.030066][ T3874] EXT4-fs (loop3): free_blocks=4096
[  563.036380][ T3874] EXT4-fs (loop3): dirty_blocks=512
[  563.041855][ T3874] EXT4-fs (loop3): Block reservation details
[  563.048268][ T3874] EXT4-fs (loop3): i_reserved_data_blocks=32
[  563.185297][ T8502] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.969' sets config #9
[  563.253614][ T7728] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[  564.793782][ T8516] loop1: detected capacity change from 0 to 1024
[  564.827551][ T8516] EXT4-fs: Ignoring removed oldalloc option
[  564.834261][ T8516] EXT4-fs: Ignoring removed bh option
[  564.989509][ T8516] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.261186][ T8516] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.977: Allocating blocks 465-513 which overlap fs metadata
[  565.379802][ T8514] EXT4-fs (loop1): pa ffff88812521f3f0: logic 1, phys. 145, len 23
[  565.388398][ T8514] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 3
[  565.920068][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.548338][ T5873] IPVS: starting estimator thread 0...
[  566.556510][ T8535] net_ratelimit: 31 callbacks suppressed
[  566.556601][ T8535] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  566.655510][ T8541] IPVS: using max 144 ests per chain, 7200 per kthread
[  566.704410][   T32] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  566.931405][   T32] usb 2-1: config 0 has an invalid interface number: 251 but max is 0
[  566.940377][   T32] usb 2-1: config 0 has no interface number 0
[  567.036121][   T32] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  567.045879][   T32] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  567.054448][   T32] usb 2-1: Product: syz
[  567.058896][   T32] usb 2-1: Manufacturer: syz
[  567.063774][   T32] usb 2-1: SerialNumber: syz
[  567.163062][   T32] usb 2-1: config 0 descriptor??
[  567.294684][ T5873] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  567.506285][ T5873] usb 1-1: Using ep0 maxpacket: 8
[  567.613225][ T5873] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  567.623196][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  567.644864][ T5873] usb 1-1: Product: syz
[  567.649350][ T5873] usb 1-1: Manufacturer: syz
[  567.660697][ T5873] usb 1-1: SerialNumber: syz
[  567.767395][ T5873] usb 1-1: config 0 descriptor??
[  567.831765][ T5873] gspca_main: se401-2.14.0 probing 047d:5003
[  568.115082][   T32] asix 2-1:0.251 (unnamed net_device) (uninitialized): Invalid PHY address 0xd7
[  568.310108][ T5873] gspca_se401: ExtraFeatures: 3
[  568.386120][   T32] usb 2-1: USB disconnect, device number 3
[  568.567228][ T5873] input: se401 as /devices/platform/dummy_hcd.0/usb1/1-1/input/input12
[  568.841638][ T5873] usb 1-1: USB disconnect, device number 6
[  571.146374][ T8565] loop3: detected capacity change from 0 to 40427
[  571.165556][ T8565] F2FS-fs (loop3): invalid crc value
[  571.602735][ T8565] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  571.682744][ T8577] loop4: detected capacity change from 0 to 256
[  571.959746][ T8577] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  571.971126][ T5835] syz-executor: attempt to access beyond end of device
[  571.971126][ T5835] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  571.971425][ T5835] CPU: 1 UID: 0 PID: 5835 Comm: syz-executor Tainted: G        W           6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  571.971640][ T5835] Tainted: [W]=WARN
[  571.971707][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  571.971801][ T5835] Call Trace:
[  571.971862][ T5835]  <TASK>
[  571.971918][ T5835]  __dump_stack+0x26/0x30
[  571.972113][ T5835]  dump_stack_lvl+0x1df/0x270
[  571.972302][ T5835]  dump_stack+0x1e/0x25
[  571.972470][ T5835]  f2fs_handle_critical_error+0xa6f/0xc20
[  571.972731][ T5835]  f2fs_stop_checkpoint+0x65/0x80
[  571.972943][ T5835]  f2fs_write_end_io+0xb4b/0x1920
[  571.973101][ T5835]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  571.973332][ T5835]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  571.973555][ T5835]  bio_endio+0xe27/0xf80
[  571.973740][ T5835]  submit_bio_noacct+0x214/0x2710
[  571.973985][ T5835]  submit_bio+0x5a9/0x5d0
[  571.974196][ T5835]  f2fs_submit_write_bio+0x92/0x250
[  571.974393][ T5835]  __submit_merged_bio+0x16f/0x6a0
[  571.974601][ T5835]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  571.974825][ T5835]  __submit_merged_write_cond+0x458/0x9a0
[  571.975057][ T5835]  f2fs_write_data_pages+0x4bb2/0x5480
[  571.975365][ T5835]  ? kmsan_get_metadata+0xfb/0x160
[  571.975607][ T5835]  ? blk_add_trace_getrq+0x30/0x290
[  571.975782][ T5835]  ? kmsan_get_metadata+0xfb/0x160
[  571.975996][ T5835]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  571.976209][ T5835]  ? free_unref_folios+0x2a2b/0x2aa0
[  571.976386][ T5835]  ? kmsan_get_metadata+0xfb/0x160
[  571.976627][ T5835]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  571.976823][ T5835]  ? kmsan_get_metadata+0xfb/0x160
[  571.977019][ T5835]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  571.977219][ T5835]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  571.977428][ T5835]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  571.977646][ T5835]  do_writepages+0x3ef/0x860
[  571.977837][ T5835]  ? _raw_spin_unlock+0x30/0x50
[  571.978002][ T5835]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  571.978257][ T5835]  filemap_fdatawrite+0x207/0x260
[  571.978553][ T5835]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  571.978753][ T5835]  f2fs_write_checkpoint+0xfe2/0x2b00
[  571.979058][ T5835]  kill_f2fs_super+0x2ff/0x970
[  571.979236][ T5835]  ? __pfx_kill_f2fs_super+0x10/0x10
[  571.979393][ T5835]  deactivate_locked_super+0xcb/0x3c0
[  571.979634][ T5835]  deactivate_super+0x12f/0x140
[  571.979813][ T5835]  cleanup_mnt+0x6fb/0x780
[  571.979958][ T5835]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  571.980164][ T5835]  ? __pfx___cleanup_mnt+0x10/0x10
[  571.980318][ T5835]  __cleanup_mnt+0x22/0x30
[  571.980461][ T5835]  task_work_run+0x206/0x2b0
[  571.980652][ T5835]  exit_to_user_mode_loop+0x2a6/0x330
[  571.980846][ T5835]  do_syscall_64+0x1e3/0x210
[  571.981052][ T5835]  ? irqentry_exit+0x16/0x60
[  571.981228][ T5835]  ? clear_bhb_loop+0x40/0x90
[  571.981389][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.981559][ T5835] RIP: 0033:0x7fd4f498fc57
[  571.981672][ T5835] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  571.981804][ T5835] RSP: 002b:00007ffe189cafa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  571.981948][ T5835] RAX: 0000000000000000 RBX: 00007fd4f4a10925 RCX: 00007fd4f498fc57
[  571.982044][ T5835] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe189cb060
[  571.982139][ T5835] RBP: 00007ffe189cb060 R08: 0000000000000000 R09: 0000000000000000
[  571.982233][ T5835] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe189cc0f0
[  571.982333][ T5835] R13: 00007fd4f4a10925 R14: 000000000008b95b R15: 00007ffe189cc130
[  571.982472][ T5835]  </TASK>
[  571.982873][ T5835] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  572.902340][ T8585] loop2: detected capacity change from 0 to 64
[  573.930130][ T8587] loop1: detected capacity change from 0 to 4096
[  574.135255][ T8587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.380609][ T8587] EXT4-fs (loop1): shut down requested (1)
[  574.423802][ T8595] loop3: detected capacity change from 0 to 1024
[  574.531610][ T8587] EXT4-fs warning (device loop1): ext4_empty_dir:3095: inode #12: comm syz.1.1004: directory missing '..'
[  574.851524][ T8600] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  574.865063][ T5873] IPVS: starting estimator thread 0...
[  574.925620][ T8602] loop4: detected capacity change from 0 to 256
[  574.985239][ T8604] IPVS: using max 192 ests per chain, 9600 per kthread
[  575.158545][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.917071][ T8610] netlink: 'syz.0.1012': attribute type 21 has an invalid length.
[  575.928682][ T8610] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1012'.
[  575.939218][ T8610] netlink: 'syz.0.1012': attribute type 5 has an invalid length.
[  575.947586][ T8610] netlink: 'syz.0.1012': attribute type 6 has an invalid length.
[  575.955855][ T8610] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1012'.
[  576.105027][ T8610] netlink: 'syz.0.1012': attribute type 21 has an invalid length.
[  576.113195][ T8610] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1012'.
[  576.122967][ T8610] netlink: 'syz.0.1012': attribute type 5 has an invalid length.
[  576.134802][ T8610] netlink: 'syz.0.1012': attribute type 6 has an invalid length.
[  576.142817][ T8610] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1012'.
[  579.653773][ T8646] loop3: detected capacity change from 0 to 1024
[  580.086677][ T8646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.099905][ T8646] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  580.529787][ T8658] EXT4-fs (loop3): shut down requested (2)
[  580.968059][ T8661] loop1: detected capacity change from 0 to 1024
[  581.157563][ T8661] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  581.433224][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.516677][   T30] audit: type=1800 audit(1752120163.845:36): pid=8661 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1032" name="bus" dev="loop1" ino=18 res=0 errno=0
[  582.035636][ T5819] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.593040][ T8678] loop1: detected capacity change from 0 to 128
[  582.880136][   T32] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  583.119804][   T32] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  583.130452][   T32] usb 4-1: config 0 interface 0 has no altsetting 0
[  583.307576][   T32] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  583.317405][   T32] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  583.326102][   T32] usb 4-1: Product: syz
[  583.330549][   T32] usb 4-1: Manufacturer: syz
[  583.335670][   T32] usb 4-1: SerialNumber: syz
[  583.389039][   T32] usb 4-1: config 0 descriptor??
[  583.515710][   T32] usb 4-1: selecting invalid altsetting 0
[  583.827480][   T32] usb 4-1: USB disconnect, device number 2
[  584.206528][ T8688] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  584.326076][ T6230] udevd[6230]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  585.850121][ T8697] input input13: cannot allocate more than FF_MAX_EFFECTS effects
[  586.347727][ T8700] bridge1: entered allmulticast mode
[  590.626832][ T8718] loop5: detected capacity change from 0 to 535
[  590.829788][ T8718]  loop5: [CUMANA/ADFS] p1 [ADFS] p1
[  591.477615][ T8693] Set syz1 is full, maxelem 65536 reached
[  593.585359][   T32] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  593.754963][ T8740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1065'.
[  593.808286][   T32] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  593.858942][   T32] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  593.868842][   T32] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  593.877558][   T32] usb 3-1: SerialNumber: syz
[  594.708948][ T8749] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1070'.
[  594.740742][   T32] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  595.178852][    T9] usb 3-1: USB disconnect, device number 4
[  595.217771][    T9] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  596.284320][ T8760] =====================================================
[  596.291756][ T8760] BUG: KMSAN: uninit-value in sctp_assoc_bh_rcv+0x34e/0xbc0
[  596.299685][ T8760]  sctp_assoc_bh_rcv+0x34e/0xbc0
[  596.306927][ T8760]  sctp_inq_push+0x2a3/0x350
[  596.312273][ T8760]  sctp_backlog_rcv+0x3c7/0xda0
[  596.317534][ T8760]  sk_backlog_rcv+0x142/0x420
[  596.322491][ T8760]  __release_sock+0x1d3/0x330
[  596.327750][ T8760]  release_sock+0x6b/0x270
[  596.332418][ T8760]  sctp_wait_for_connect+0x458/0x820
[  596.338235][ T8760]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  596.345131][ T8760]  sctp_sendmsg+0x3910/0x49f0
[  596.350117][ T8760]  inet_sendmsg+0x26c/0x2a0
[  596.355135][ T8760]  __sock_sendmsg+0x278/0x3d0
[  596.360077][ T8760]  __sys_sendto+0x593/0x720
[  596.364986][ T8760]  __x64_sys_sendto+0x130/0x200
[  596.370115][ T8760]  x64_sys_call+0x3c0b/0x3db0
[  596.375294][ T8760]  do_syscall_64+0xd9/0x210
[  596.380085][ T8760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.387334][ T8760] 
[  596.389802][ T8760] Uninit was created at:
[  596.396371][ T8760]  __kmalloc_node_track_caller_noprof+0x96d/0x12f0
[  596.403219][ T8760]  kmalloc_reserve+0x22f/0x4b0
[  596.410596][ T8760]  __alloc_skb+0x347/0x7d0
[  596.416002][ T8760]  sctp_packet_transmit+0x18a1/0x46d0
[  596.421700][ T8760]  sctp_outq_flush+0x1c7d/0x67c0
[  596.427083][ T8760]  sctp_outq_uncork+0x9e/0xc0
[  596.432010][ T8760]  sctp_do_sm+0x8c8e/0x9720
[  596.436951][ T8760]  sctp_assoc_bh_rcv+0x88b/0xbc0
[  596.442140][ T8760]  sctp_inq_push+0x2a3/0x350
[  596.447111][ T8760]  sctp_backlog_rcv+0x3c7/0xda0
[  596.452194][ T8760]  sk_backlog_rcv+0x142/0x420
[  596.457314][ T8760]  __release_sock+0x1d3/0x330
[  596.462216][ T8760]  release_sock+0x6b/0x270
[  596.467044][ T8760]  sctp_wait_for_connect+0x458/0x820
[  596.472622][ T8760]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  596.479210][ T8760]  sctp_sendmsg+0x3910/0x49f0
[  596.484365][ T8760]  inet_sendmsg+0x26c/0x2a0
[  596.489163][ T8760]  __sock_sendmsg+0x278/0x3d0
[  596.494293][ T8760]  __sys_sendto+0x593/0x720
[  596.499069][ T8760]  __x64_sys_sendto+0x130/0x200
[  596.504715][ T8760]  x64_sys_call+0x3c0b/0x3db0
[  596.511598][ T8760]  do_syscall_64+0xd9/0x210
[  596.516952][ T8760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.523111][ T8760] 
[  596.525737][ T8760] CPU: 1 UID: 0 PID: 8760 Comm: syz.0.1075 Tainted: G        W           6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  596.539753][ T8760] Tainted: [W]=WARN
[  596.543717][ T8760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  596.554305][ T8760] =====================================================
[  596.561409][ T8760] Disabling lock debugging due to kernel taint
[  596.568026][ T8760] Kernel panic - not syncing: kmsan.panic set ...
[  596.574653][ T8760] CPU: 1 UID: 0 PID: 8760 Comm: syz.0.1075 Tainted: G    B   W           6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
[  596.588615][ T8760] Tainted: [B]=BAD_PAGE, [W]=WARN
[  596.593818][ T8760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  596.604113][ T8760] Call Trace:
[  596.607558][ T8760]  <TASK>
[  596.610653][ T8760]  __dump_stack+0x26/0x30
[  596.615277][ T8760]  dump_stack_lvl+0x53/0x270
[  596.620148][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.626331][ T8760]  dump_stack+0x1e/0x25
[  596.630767][ T8760]  panic+0x4bd/0xd50
[  596.635008][ T8760]  kmsan_report+0x31c/0x320
[  596.639830][ T8760]  ? __msan_warning+0x1b/0x30
[  596.644777][ T8760]  ? sctp_assoc_bh_rcv+0x34e/0xbc0
[  596.650145][ T8760]  ? sctp_inq_push+0x2a3/0x350
[  596.655196][ T8760]  ? sctp_backlog_rcv+0x3c7/0xda0
[  596.660485][ T8760]  ? sk_backlog_rcv+0x142/0x420
[  596.665607][ T8760]  ? __release_sock+0x1d3/0x330
[  596.670784][ T8760]  ? release_sock+0x6b/0x270
[  596.675661][ T8760]  ? sctp_wait_for_connect+0x458/0x820
[  596.681543][ T8760]  ? sctp_sendmsg_to_asoc+0x223a/0x2260
[  596.687414][ T8760]  ? sctp_sendmsg+0x3910/0x49f0
[  596.692754][ T8760]  ? inet_sendmsg+0x26c/0x2a0
[  596.697725][ T8760]  ? __sock_sendmsg+0x278/0x3d0
[  596.702800][ T8760]  ? __sys_sendto+0x593/0x720
[  596.707827][ T8760]  ? __x64_sys_sendto+0x130/0x200
[  596.713129][ T8760]  ? x64_sys_call+0x3c0b/0x3db0
[  596.718289][ T8760]  ? do_syscall_64+0xd9/0x210
[  596.723268][ T8760]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.729614][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.735751][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.741268][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.747402][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.752817][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.758956][ T8760]  ? sctp_inq_pop+0x15ea/0x19e0
[  596.764079][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.769507][ T8760]  __msan_warning+0x1b/0x30
[  596.774286][ T8760]  sctp_assoc_bh_rcv+0x34e/0xbc0
[  596.779539][ T8760]  ? __pfx_sctp_assoc_bh_rcv+0x10/0x10
[  596.785288][ T8760]  sctp_inq_push+0x2a3/0x350
[  596.790143][ T8760]  sctp_backlog_rcv+0x3c7/0xda0
[  596.795256][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.800695][ T8760]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  596.806338][ T8760]  sk_backlog_rcv+0x142/0x420
[  596.811307][ T8760]  __release_sock+0x1d3/0x330
[  596.816283][ T8760]  release_sock+0x6b/0x270
[  596.821001][ T8760]  sctp_wait_for_connect+0x458/0x820
[  596.826644][ T8760]  ? __pfx_autoremove_wake_function+0x10/0x10
[  596.833089][ T8760]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  596.838784][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.844341][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.850508][ T8760]  sctp_sendmsg+0x3910/0x49f0
[  596.855474][ T8760]  ? kmsan_save_stack_with_flags+0x60/0x60
[  596.861643][ T8760]  ? __pfx_sctp_sendmsg+0x10/0x10
[  596.866955][ T8760]  inet_sendmsg+0x26c/0x2a0
[  596.871852][ T8760]  __sock_sendmsg+0x278/0x3d0
[  596.876780][ T8760]  __sys_sendto+0x593/0x720
[  596.881550][ T8760]  ? do_futex+0x3a1/0x480
[  596.886132][ T8760]  ? kmsan_get_metadata+0xfb/0x160
[  596.891522][ T8760]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  596.897667][ T8760]  __x64_sys_sendto+0x130/0x200
[  596.902843][ T8760]  x64_sys_call+0x3c0b/0x3db0
[  596.907905][ T8760]  do_syscall_64+0xd9/0x210
[  596.912867][ T8760]  ? irqentry_exit+0x16/0x60
[  596.917721][ T8760]  ? clear_bhb_loop+0x40/0x90
[  596.922654][ T8760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.928792][ T8760] RIP: 0033:0x7f4d3758e929
[  596.933392][ T8760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.953263][ T8760] RSP: 002b:00007f4d38464038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  596.961923][ T8760] RAX: ffffffffffffffda RBX: 00007f4d377b5fa0 RCX: 00007f4d3758e929
[  596.970109][ T8760] RDX: 000000000000fee4 RSI: 0000200000847fff RDI: 0000000000000003
[  596.978538][ T8760] RBP: 00007f4d37610b39 R08: 000020000005ffe4 R09: 000000000000001c
[  596.986710][ T8760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  596.994874][ T8760] R13: 0000000000000000 R14: 00007f4d377b5fa0 R15: 00007ffd20efc028
[  597.003094][ T8760]  </TASK>
[  597.006651][ T8760] Kernel Offset: disabled
[  597.011091][ T8760] Rebooting in 86400 seconds..