last executing test programs:

6m17.959225786s ago: executing program 3 (id=494):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/fscaps', 0x0, 0xcc)
lseek(r0, 0x0, 0x1)

6m17.724155661s ago: executing program 3 (id=498):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x1, 0x35314152}})

6m17.451150484s ago: executing program 3 (id=502):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
migrate_pages(0x0, 0x5, &(0x7f0000000040)=0x9, &(0x7f0000000080)=0x272)

6m17.061048377s ago: executing program 3 (id=508):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)=ANY=[@ANYBLOB='allow_utime=00000000000000000000304,dmask=00000000000000000000011,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000004,discard,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c696f636861727365743d63703933362c6572726f72733d636f6e74696e75652c74696d655f6f66667365743d3078303030303030303030303030303030382c616c6c6f775f7574696d653d30303030303030d64a64d762d35037932d303030303030303032303030303030302c00"], 0x1, 0x152a, &(0x7f0000000340)="$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")
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000001880), 0x800000, &(0x7f00000018c0)={[{@grpquota_block_hardlimit={'grpquota_block_hardlimit', 0x3d, [0x35]}}]})

6m16.589902483s ago: executing program 3 (id=515):
r0 = socket(0x15, 0x5, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x1000, @local}, 0x1c)

6m15.780592209s ago: executing program 3 (id=527):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000140)=@newlink={0x40, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLAGS={0x6, 0x8, 0x2c}, @IFLA_IPTUN_PMTUDISC={0x5, 0xa, 0x1}]}}}]}, 0x40}}, 0x0)

6m15.196972518s ago: executing program 32 (id=527):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000140)=@newlink={0x40, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLAGS={0x6, 0x8, 0x2c}, @IFLA_IPTUN_PMTUDISC={0x5, 0xa, 0x1}]}}}]}, 0x40}}, 0x0)

1m54.642195702s ago: executing program 2 (id=3996):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_RTT={0x8, 0x7, 0x80000000}, @TCA_CAKE_MPU={0x8, 0xe, 0x2e}]}}]}, 0x44}}, 0x0)

1m53.918689912s ago: executing program 2 (id=4002):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@nojournal_checksum}, {@nombcache}, {@acl}, {@init_itable}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x400}}, {@nodelalloc}, {@grpid}, {@usrquota}, {@noauto_da_alloc}, {@usrjquota}, {@errors_continue}]}, 0xff, 0x55c, &(0x7f0000000440)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)

1m53.353825008s ago: executing program 2 (id=4011):
syz_mount_image$jfs(&(0x7f0000000040), &(0x7f0000000240)='./file7\x00', 0x10c03, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYBLOB="e63aac3f19bcada0d08fd987d1abbc7adc57de046cbba95a01a0af102e32ca91961fd12cc8669e11cb2c186c615db7288ff2e606704da19ebc4fe53341a50bb620a4cbd8c6bc11329a148149240e3359e20ae69cacfa1310050e466ace69aa57c347a5d5401c04282d904ad2bc0c0108a8db27cf939bbcbe37b870dc96a949f1e2d0e14e46da460cda21c0dd4992d661fbe926d0773666088b81bb4e6ad1e6a65bafd33af8d49ab13263e401accac30cd51e8fff09368f0ef8266b8ddac7a06eaac9c37c6faf55db5422d1143496c0197b006c0e1faa94edefde85", @ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC, @ANYRES16, @ANYRESOCT], 0x2, 0x6045, &(0x7f0000000680)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/70, 0x46)

1m51.9219688s ago: executing program 2 (id=4022):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f00000001c0)={[{@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@data_err_ignore}, {@nojournal_checksum}, {@dioread_nolock}, {@test_dummy_encryption_v1}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0/file0\x00')

1m51.102988317s ago: executing program 2 (id=4026):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000410000009"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x6, 0x4, 0x1, 0x1, r0}, 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1}, 0x38)

1m50.120675767s ago: executing program 2 (id=4032):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xc)
ioctl$FS_IOC_SETFLAGS(r0, 0x80186e84, &(0x7f0000000280))

1m49.542528084s ago: executing program 33 (id=4032):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xc)
ioctl$FS_IOC_SETFLAGS(r0, 0x80186e84, &(0x7f0000000280))

38.830395179s ago: executing program 4 (id=4698):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r0)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, r1, 0x301, 0x70bd2a, 0x25dfdbfd, {0x5}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40014}, 0x0)

38.549431802s ago: executing program 4 (id=4701):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r0, 0x4b2f, 0x400d83f)

36.896546795s ago: executing program 4 (id=4723):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x2}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)

36.6113642s ago: executing program 4 (id=4727):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

36.232831218s ago: executing program 4 (id=4730):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xe3, 0xdd, 0xef, 0x20, 0x1d50, 0x60a1, 0xa14f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x9d, 0x14, 0x4e}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000080)={0x1c, &(0x7f0000000000)=ANY=[], 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000600)={0x44, &(0x7f0000000340)={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

35.662303486s ago: executing program 4 (id=4737):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f00000012c0), 0x0, 0x0, 0x0)
fremovexattr(r0, &(0x7f0000002480)=@known='trusted.overlay.upper\x00')

34.808502353s ago: executing program 34 (id=4737):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f00000012c0), 0x0, 0x0, 0x0)
fremovexattr(r0, &(0x7f0000002480)=@known='trusted.overlay.upper\x00')

3.704829818s ago: executing program 5 (id=5006):
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x80)
ioctl$I2C_PEC(r0, 0x708, 0x2)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x1, 0x1, 0x5, &(0x7f0000000000)={0x17, "90f5000000f3c9f1bd0d00"}})

3.331038789s ago: executing program 5 (id=5010):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

3.059987244s ago: executing program 5 (id=5013):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000002380)=[0x0], 0x1})

2.908899763s ago: executing program 5 (id=5015):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="070600100000ffdbdf252700000008002c"], 0x1c}, 0x1, 0x0, 0x0, 0x20005090}, 0x24044884)

2.6476808s ago: executing program 5 (id=5020):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
recvmmsg(r0, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40)

2.588398946s ago: executing program 0 (id=5021):
r0 = memfd_create(&(0x7f0000000440)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\xc2%/u\x17\xdaM\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d_\v\xfc\xad\x0f\xa8\xc5\xad\x00\xc2\x12\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV$\x80\x8aJ$\x81\xc0\x16\xf5\x9cz\x10\x97\xdb\x12H\xee/\xe3sY\x02D;L~\xd0\xb44\x01*\xfb\xa4 \xb2b\x90H$\xb2\xad\xbf\x8aM\xb6\x81\x81^\x02\xa0\xa7t\xfbHb\xa5=\xdd+$\xc06J\xb4\xf0\xab\x85Xz\x9f\xb2D$\xbe\xd9\x7f-\r\x9aj9r\n_\x11\xd4\x19\xb0\xa0G\xb7\x94\xf7\xfd~\xe9\xb6G\xbfE\xbb\x15\x15\xa6\xca2\xd0\xd3\x8c\xf7nO\xf9\xa8\xfd\x8a\xd2\xb2\xab\xff\xe4\xb0;\xd9\xa8\f\x03R\xbd%\x9fF\xee\x05\x11', 0x2)
fcntl$addseals(r0, 0x409, 0x20)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x12, r0, 0x4e652000)

2.430842691s ago: executing program 6 (id=5023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008001000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x5, 0xe, 0x0, &(0x7f0000000440)="6121eed4cd50bb2b01e841acde1a", 0x0, 0x29d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

2.216794019s ago: executing program 0 (id=5025):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5, 0x2, 0x83}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x18}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)

2.172770766s ago: executing program 5 (id=5026):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0x8c0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000008940)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x101042, 0xb0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)

2.122783595s ago: executing program 8 (id=5027):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x8)
mount$fuseblk(0x0, 0x0, 0x0, 0x4000, 0x0)
mount$fuseblk(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', &(0x7f0000000380), 0x11, 0x0)

2.049054099s ago: executing program 7 (id=5028):
r0 = socket$isdn(0x22, 0x2, 0x25)
r1 = socket$isdn(0x22, 0x2, 0x22)
dup3(r0, r1, 0x0)

1.924584743s ago: executing program 6 (id=5029):
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000540)={0x1, 0x0, &(0x7f0000000500)=[<r1=>0x0]})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000580)={r1})

1.918057829s ago: executing program 1 (id=5030):
setreuid(0x0, 0xee00)
r0 = inotify_init()
close_range(r0, 0xffffffffffffffff, 0x0)

1.792036537s ago: executing program 0 (id=5031):
r0 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0105500, &(0x7f0000000000)={0x80, 0x14, 0x9, 0xf8, 0xfffffffffffffe08, 0x0, 0x0})

1.757996042s ago: executing program 8 (id=5032):
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={0x40040, 0xd2, 0xf}, 0x18)
unlink(&(0x7f0000000100)='./file0\x00')
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1.596512771s ago: executing program 6 (id=5033):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000740)='./bus\x00', 0x0, &(0x7f00000003c0)=ANY=[], 0x1, 0x4b1, &(0x7f0000001d00)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)

1.576231531s ago: executing program 7 (id=5034):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xc4, 0x19, 0xfd3649826d894c67, 0x70bd26, 0x4, {{@in6=@private0={0xfc, 0x0, '\x00', 0x2}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0x4000000000000000}, 0x400, 0x0, 0x0, 0x1}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xc4}}, 0x20048050)
syz_emit_ethernet(0x4e, &(0x7f0000000780)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x18, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x18, 0x0, @wg=@data={0x4, 0x3, 0x5}}}}}}}, 0x0)

1.573026002s ago: executing program 1 (id=5035):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x12, 0x22, 0x4, 0x6}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000011c0)={r0, &(0x7f00000001c0), &(0x7f0000000000)=@udp=r1}, 0x20)

1.417463834s ago: executing program 8 (id=5036):
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x1b)
io_setup(0x251, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x41, 0x1, 0x0, r0, 0x0, 0x0, 0x4000}])

1.374627558s ago: executing program 0 (id=5037):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x40, &(0x7f0000000cc0)=ANY=[], 0x4, 0xfbd, &(0x7f0000001500)="$eJzs3U+MG+XZAPB3vPb+yS5ZL/DBAh8hH3wVgcJuSCI1vQWBeqmEuPQOCgmNWChqaCUiIJseEJUQRUKcKg4gLpRKKVKRQJUq1FPbU6v21F5QL1SqUimohxYpcZXdd7z2rCf2ztpje/37SY/ffecdz/OM19nMjO3XAZhYlY3bY8eWkxDe/vStR19+Kvn42rK7mmsc3LhNYq8eQqi19JPM9j6PC65cfulkpzYJRzZu03547FLzvvMhhPVwMHwW6uHD1bUvP3jnkUMfvTp7yxvnnnllQLvflN0PAADYiy7+fu0v9/39dw8sfXXxwIkw01yeHp/XY38+HvcfjgfK6fFyJbT3k5ZoNZ1ZbypGJbPeVGa9aiZPNSdfLbOdWs56013yTbUs67SfAAAAMI7S89p6SCorbf1KZWVl87z/ms8Xp5OV586snT47pEIBAACAwv51fuNNt2McsyNQg8jGXPoE29n9Pvz2zu+zq6iUnK9acr6JiWLPNyGEEEKI/oXjETEG0Vgs8WIDAAAAQIf5wrZZ7+9MXc2t1XvLf+nhSuf7Qx9knn/bp53o8/P/+vlnt69Qav4OBp+/NuT8193/9y/4iwMAQHF79Wgy3a/0ODqdxyA7j+BU273mp3Z6/lHJbKe6wzrz5hUcl/kG8+qcKrmOovLq3+nvcVjy6s/Ohzmq8urPztM5qvLqnym5jqLy6u9w5SeM4j/rvPrnSq6jqLz695VcR1F59c+XXEdRefUvlFxHUXn131ByHUXl1b+/5DqKyqt/XN5Wm1d/veQ6isqrf2mzGfnDiLz6byy5jqLy6r+p5DqKyqv/5pLrGJY7Y5s+Dgdy1pvvcPA3cgeDAAAAQEf/Gfv5//ZkJF3XqQ69xomPjdfYh5h/agQeg0HHfP+3+fTCCOyXGKW4sPmfYfvy2Q7LxK6iMgI1DCrmOj2HhBBCiJGM88O79AAAAACMiPRzAemn3htROj61bfyv7127TcerreOzWxtIx2tdtj/dZXymyzgAAAAQwq9eO33bm8nWfHfZz/TvdD68dN6oufDx1VBgHqPsfIQ7zb/bec92m7/zhCPjMhsbAAAAe1Xyrc+u3v/ouy8sfXXxwImWs9+r8Xw3nQe0Gq8NfBL76fsCFjL9JD2HPtGep5KzXvb6wA1523t8lzsKAAAAEyw9f6+HpLLSct5dD5XKysrW+fhyqCWnz6ydOhz76fez/HaxNnNt+UMl1w0AAAD0but8v/P5f/o9vsthOll57sza6bOb/YXm8lql9brA4tbypPW6QD2z/EjO8qOxH7+/M3x3cW5j+crJ76091e+dBwAAgAlx9sVzzzy5tnbq+5PzQzWEsKvthFHYCz/4YaA/DPsvEwAA0G9ffPFW7QdHF369+fn/rfnvrsYfDsZ+Pc7t94e4PH2fQPo5gG2f13+iPc9i3nrPt69Xz6w3FWMmU/dsy3bCxnyD7fdbystXb9/OdE6++Uy+hUy+7DwF1cz6SYe5BEOHmQDT9RYzy7PzMFYzOZJM/rs75AIAAIDU6gvPPr969sVzD5559smnTz196rmjR45/8/jxww9946HVjff1r7a+ux8AAAAYR1tv+h12JQAAAAAAAAAAAAAAAAAAADC5yvg6sWHvIwAAAEy6f54PIawLkRPpFwwOu45xj2QEahhcNGaGX8PejuDfoRCiQ/z5jeHXMAJR8fdRiN5iuOd9s+UeyzQajcYIPOYjGI1G9pvmAQAAAAbryuWXTra226wnfc3X3Fp9s7ka86btwoN/WroW6WqXHm6/XrKvr9Uw6cp+/ss/qvlnOo6/f6G/+TcuxNe3+t3//lXaN3Bi47Yae3O95r139WfLzfwhhNurPeZv2/8LITzea8Z2hzL57w295W+8m3n8n2jrVXrNf18m/74e81/K/v6fz8swe93898f8y7F/6J5e87fv4kwmW69PgK9n9v+p0Gv+zP7Xe0yY8UDMDwCTqPm/eeP8cAvps/QoIT2eno/9dH/TA9bsux92evxfyWynuuvK27ebHgfdGvvNo7r19rypndafPi4Lsb2hYJ1Z4/Kukrz6+/V7HLS8+msl11FUXv3TJddRVF79nc/ei6w0WHn1X//scXTk1d/zhYghy6t/XK4r59U/X3IdReXVv1ByHUXl1b/T/8eHJa/+/SXXUVRe/Ysl11FUXv0FL6uVLq/+pZLrKCqv/htLrqOovPpvKrmOovLqv7nkOobljtjmnQ+n55+LcSzt1zP9mQ6PZc8vhgAAAAAD9Y+RnP+v5crB0GsRQghRdtT8/RcFYmoEahBinOPfjU3DrkP0IRqLw69BjGRszIvIxErG6L3iAPTPYGezYNT5/U82v//J5vfP9aSvxCeZfmqqy3i1y3ity/h0ZjzJ3HEmbzy6KbPdRnpdM7q5y/j/xD3IG9+fuf8PM+O3dtn+cpfx27qM395l/I4u4wAAAEyGW2Lr/BAAAAD2rpd//snrv7z3ictLX108cCJMb5t3/nDsz8TX1l+L/ey896lafM3/R7H/Xmx/E9u/Zdb3/hMAAAAYvPR7Yrz+DwAAAHtX+j2lzv8BAABg71qKrfN/AAAA2LtujK3zfwAAANjDktnOi2ObXhe4O7a9zusHAIy+/43tnbE9ENu7Yvt/sU2PA+6J7f+XVB8A0D8//c6Pj7+ZbM33fzQzfiUuT9tt1jevFCSV9pn852K7L7Zf67Ge7PcB9Jo/tb/HPIPKv7jL/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA3lHZuD12bDkJ4e1P33r0J9Ov//HasruaaxzcuE1irx5CqDXvl45u9X8RV7xy+aWTre3V2CbhSEhC0lweHrvUzDQfQlgPB8NnoR4+XF378oN3Hjn00auzt7xx7plXBvgQtO0fAAAA7EX/DQAA//8Q4Bqg")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x664001)

1.250002428s ago: executing program 7 (id=5038):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x20000090, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080)=0x4000004, 0x4)

1.192058141s ago: executing program 1 (id=5039):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
sendmmsg$unix(r0, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000b00)="23216d3d557a2c77808b25d13d84792095bf2d6c6fb2f63362115b1d07dbb0ef24b4bd36894b30bee48f66710a90a153ba5664ffd70921b00522af015965a850f616b25b11d6d98d848555d333016e6785fe61715c0ee16db90b0659bc66dd442d76513da81fba59c0f71047ffaa92a9a3836e2402bedf66b79301e69295a38f43360f36eb837621d95ccab5cd0847fd29e6c0180bc97d7e22483d132780570f30c058b45a8b35b8a93353c50ab3b7da641d20a565cb3d3ced11bfab6fea92a7a18e7e6251407825e80c3259275dfade74e123a1ab5e9c9513cf68eabc5f88cf07946c3bc7c74f312703ba1f5220666481f54807e391468008d078be06818a3a71f80501a645e0626ed370b9917d262cb03893e417964160751caf8e9e1c6f2bb076083a5de38d7d454f9747d97126afe555e84b4ddf04c86267a53213b7bfe5019febee47eda89119336a83280450a108540e208b0295d78467a5fbe357354415c084ae830cf547549cc80b3a6e5fdec381cfff2cd6921c139f21e7b0ebae1f291e1da7e8fc8ff32d85f5ca5bfc1461c0d0e54a343e212c3254cc357832f60614f45af96e413ed3f824d1e8c693c7ba0ddbb10e4f8539a1998e7dac78e0ec61f18298ecc1af4e20c66fcae191d10bd0ae5eb24752a64548d00852ea2d961412b35e9058aa0b0d29d17da2b4b269d6b3b97d1c397fbacc45c8f63f5b05eed8d48b1b9fc3f27d9be2ec61bef293ef9a552318e3dc8caba5ae4e58befef452600412cc45252839fe8a029a411f7cdb1fb7e7010bd3394d57785dbee022eaac6b614766f95c2fcade0c6a8e6d8be8adf8b1011d6cccc9579bae034313e7383b0574c37692649ab8791663a938e27f5d77ca04422cf3607a3f5859afb9d0e6eb5d839281b8584a5c9576ac79112b77523f68768d1df4b10aad9415dd864f30044c0b78732bf7200dcca6b18828ff36e79a7b047566b7074faff8defe7e8e4fa4d7f5305f195a2d0adff998a9d57c570a8a8fe460a79aaaa11505b4c7555d7735604f07bd959ecbc9c81ea59abe20f375933df873769c22278a2f710f91c9340a780673123176c5b57376791bbb490ebdc93df2abc0058f30ba88f3ab0c2edc26963ce3a17a341d05d18eba80b1e55cef30d5e6356df183c5cf12596b85fe7e05aa274c533cd39b897f7e7b18de32425011ec578f6edcee754be6dce24d740c72e86aaa061f1211aaba0a8274fca4645e67b6ac565ba9fadc19ee321238d6feef8828410d7c89d7eef885a7f0f692420d9a42d97acc06384e25f7de51ac25e336374008617c65e1599bc6c88060af5381a6555f8693b7f9b6e5500d56830b566c2caf3b8824eac3fd970394a70ab8fcae829b77005e4530c027f399ba9086670529b4ae01078f973a94438aaa92b15a8c96211fec07c9ddedf5fb", 0x3f8}], 0x1, &(0x7f0000000200), 0x0, 0x24040000}}], 0x1, 0x0)

955.740969ms ago: executing program 6 (id=5040):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000480)=0x1)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000140)=0x5)

933.33106ms ago: executing program 7 (id=5041):
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x41, 0x0)

924.583609ms ago: executing program 8 (id=5042):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000540)={'netdevsim0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xe, 0x841e, 0xa04f, 0x100090, 0x0, 0x8, 0x1, 0x9, 0x9, 0x6, 0x9, 0x2, 0x3, 0x0, 0xe, 0x6, 0x101, 0x7, 0x401, 0x180000, 0xffffff7f, 0x27b, 0xffffffff}})
r0 = memfd_create(&(0x7f0000000080)='%\x00', 0x3)
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000240)={{}, {0x1, 0x4}, [{0x2, 0x6}], {}, [], {0x10, 0x3}}, 0x34, 0x2)

871.281063ms ago: executing program 1 (id=5043):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x28, 0x0, 0x0, 0xfffff024}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)

558.202525ms ago: executing program 7 (id=5044):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_TARGET_NAME={0xa, 0x1, 'AUDIT\x00'}, @NFTA_TARGET_INFO={0x5, 0x3, '\x00'}, @NFTA_TARGET_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)

538.721845ms ago: executing program 8 (id=5045):
unshare(0x2c020400)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8001)
ppoll(&(0x7f0000000080)=[{r0, 0x8}], 0x1, &(0x7f00000000c0)={0x0, 0x989680}, 0x0, 0x0)

537.838253ms ago: executing program 0 (id=5046):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)

533.909056ms ago: executing program 1 (id=5047):
mlock2(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0)
mlock2(&(0x7f0000006000/0x1000)=nil, 0x1000, 0x1)
mlock2(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0)

456.703104ms ago: executing program 6 (id=5048):
r0 = fsopen(&(0x7f0000000100)='fuseblk\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcf\xcb\x92\xf1\x83\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f0000000240)='//\xf2/\x06\b\xa30\\/\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas\x9d\x14\xe3\v\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7Gl\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)

207.800853ms ago: executing program 8 (id=5049):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf250113000008000100ffffffff3400048005000300050000000500030002000000050003000500000005000300050000000500030004ff00008a55049d4983a6200800020002"], 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

161.485164ms ago: executing program 6 (id=5050):
syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000100)='./bus\x00', 0x42, &(0x7f0000000540)=ANY=[], 0xd, 0x1a4, &(0x7f0000000640)="$eJzs271u2lAUwPFj7GKgX7S0HapKRerQLsVAW6Ru7aNQcBGqaaKQBcRA8gJ5hrxfGKIsmULk648oBoNCAIP8/w3Y3HM/zgWudIRkAZBav6QsmmiScd98yBXPSlrSKQHYkql/vZkCSB/92ruWk04EwJZNfouq/S8uRy3Rs2FdENy58XEQz5gz9cPkROS94ce1nOSj9cW5yOdgvFaIDr9yWwph/GkknFXzf/kUrP9MnssLeSlFeSWvpeSv3w7Hv3to+TO7IQAAUkCTyrJ4TIcn6jUvf7uOXVU9I/58V73ceC12/qyK1xfG9Y/x+ZlqfKV14LQX7gPArMzK59+jh+d/PmPJ+QeQnP5g+K/pOPbRDtzk7uczNUU2uKi5C1ve3xtToi3GWmbOx4ZOZV7I/dGsc18j/2Bs9jMcR1vcajrJ79TwVtf9NPhfDEgB67h3aPUHw6/dXrNjd+z/9Wr1Z+PHt1qjbqnK3lpc3wPYX3dlQNKZAAAAAAAAAAAAAACAVb2Rt0mnAAAAAGBLlj4YJIbX8REPGCW9RwAAds5tAAAA//8YBw3V")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

129.634009ms ago: executing program 7 (id=5051):
syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
exit(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')

56.512688ms ago: executing program 0 (id=5052):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x200, 0x70bd28, 0x0, {0x60, 0x0, 0x0, 0x0, {0xfff1, 0x2}, {0xe, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0xc}, @TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}]}, 0x44}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

0s ago: executing program 1 (id=5053):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="180000004200010a2abd700000000000070000fd"], 0x18}}, 0xc0)

kernel console output (not intermixed with test programs):

 416.342454][T15445] loop5: detected capacity change from 0 to 4096
[  416.363160][T15445] NILFS (loop5): invalid segment: Checksum error in segment payload
[  416.371528][ T5937] usb 1-1: Using ep0 maxpacket: 32
[  416.379802][T15445] NILFS (loop5): trying rollback from an earlier position
[  416.393832][ T5937] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  416.405236][ T5937] usb 1-1: New USB device found, idVendor=046d, idProduct=c539, bcdDevice= 0.00
[  416.431132][ T5937] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.453508][T15445] NILFS (loop5): recovery complete
[  416.462095][ T5937] usb 1-1: config 0 descriptor??
[  416.474785][T15446] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  416.519758][ T5938] usb 2-1: USB disconnect, device number 14
[  416.626199][T15432] loop4: detected capacity change from 0 to 32768
[  416.758964][T15432] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  417.002972][ T5868] ocfs2: Unmounting device (7,4) on (node local)
[  417.032190][T15454] loop5: detected capacity change from 0 to 1024
[  417.088793][ T5937] usb 1-1: USB disconnect, device number 15
[  417.313807][   T36] hfsplus: b-tree write err: -5, ino 4
[  417.454514][T15458] netlink: 'syz.5.4111': attribute type 3 has an invalid length.
[  417.831276][    T9] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  417.981341][T15456] loop1: detected capacity change from 0 to 32768
[  418.016269][T15456] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4110 (15456)
[  418.031065][    T9] usb 6-1: Using ep0 maxpacket: 8
[  418.048340][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  418.055246][    T9] usb 6-1: New USB device found, idVendor=0c70, idProduct=f003, bcdDevice= 0.00
[  418.069355][T15456] BTRFS info (device loop1): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  418.095151][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  418.100615][T15456] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  418.123940][    T9] usb 6-1: config 0 descriptor??
[  418.237261][T15456] BTRFS info (device loop1): enabling ssd optimizations
[  418.262703][T15456] BTRFS info (device loop1): enabling free space tree
[  418.274995][T15456] BTRFS info (device loop1): use lzo compression, level 1
[  418.301191][ T5875] Bluetooth: hci4: command tx timeout
[  418.393263][ T1173] team0 (unregistering): Port device team_slave_1 removed
[  418.537142][ T5869] BTRFS info (device loop1): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  418.573306][ T1173] team0 (unregistering): Port device team_slave_0 removed
[  418.584142][    T9] aquacomputer_d5next 0003:0C70:F003.0009: unknown main item tag 0x0
[  418.594613][    T9] aquacomputer_d5next 0003:0C70:F003.0009: item fetching failed at offset 6/7
[  418.626370][    T9] aquacomputer_d5next 0003:0C70:F003.0009: probe with driver aquacomputer_d5next failed with error -22
[  418.650192][T15464] loop4: detected capacity change from 0 to 32768
[  418.678060][T15464] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4113 (15464)
[  418.755181][T15464] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  418.772882][ T6010] usb 6-1: USB disconnect, device number 14
[  418.783208][T15464] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  418.976316][T15464] BTRFS info (device loop4): enabling ssd optimizations
[  419.002377][T15464] BTRFS info (device loop4): enabling free space tree
[  419.224794][ T5868] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  420.440398][T15504] loop1: detected capacity change from 0 to 131072
[  420.457450][T15504] F2FS-fs (loop1): QUOTA feature is enabled, so ignore qf_name
[  420.465094][T15504] F2FS-fs (loop1): QUOTA feature is enabled, so ignore qf_name
[  420.557873][T15504] F2FS-fs (loop1): Bad quota inode 2:2048
[  420.563720][T15504] F2FS-fs (loop1): Failed to enable quota tracking (type=2, err=-2). Please run fsck to fix.
[  420.573959][T15504] F2FS-fs (loop1): Cannot turn on quotas: error -2
[  420.580469][T15504] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  420.597480][T15504] F2FS-fs (loop1): Mounted with checkpoint version = 1b41e955
[  421.560150][T15285] chnl_net:caif_netlink_parms(): no params data found
[  422.037004][ T6010] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  422.281076][ T6010] usb 5-1: Using ep0 maxpacket: 16
[  422.310543][ T6010] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  422.326133][T15285] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.353963][ T6010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  422.365444][T15285] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.386482][ T6010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  422.398002][T15285] bridge_slave_0: entered allmulticast mode
[  422.429040][T15285] bridge_slave_0: entered promiscuous mode
[  422.435167][ T6010] usb 5-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00
[  422.460100][T15285] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.482229][ T6010] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  422.499773][T15285] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.519062][ T6010] usb 5-1: config 0 descriptor??
[  422.527629][T15285] bridge_slave_1: entered allmulticast mode
[  422.565006][T15285] bridge_slave_1: entered promiscuous mode
[  422.841915][T15535] loop6: detected capacity change from 0 to 32768
[  422.854982][T15561] netlink: 'syz.5.4138': attribute type 12 has an invalid length.
[  422.903649][T15561] netlink: 9472 bytes leftover after parsing attributes in process `syz.5.4138'.
[  422.919723][T15535] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  422.974457][ T6010] hid-picolcd 0003:04D8:F002.000A: unknown main item tag 0x0
[  423.024630][T15535] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  423.080790][ T6010] hid-picolcd 0003:04D8:F002.000A: unknown main item tag 0x0
[  423.098122][T15285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  423.122338][ T6010] hid-picolcd 0003:04D8:F002.000A: unknown main item tag 0x0
[  423.129764][ T6010] hid-picolcd 0003:04D8:F002.000A: unknown main item tag 0x0
[  423.201279][ T6010] hid-picolcd 0003:04D8:F002.000A: unknown main item tag 0x0
[  423.229756][T15285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  423.277437][ T6010] hid-picolcd 0003:04D8:F002.000A: No report with id 0xf3 found
[  423.321068][ T6010] hid-picolcd 0003:04D8:F002.000A: No report with id 0xf4 found
[  423.335768][ T7240] ocfs2: Unmounting device (7,6) on (node local)
[  423.372109][ T6010] usb 5-1: USB disconnect, device number 8
[  423.634633][T15285] team0: Port device team_slave_0 added
[  423.679887][T15285] team0: Port device team_slave_1 added
[  423.864426][T15590] netlink: 312 bytes leftover after parsing attributes in process `syz.6.4147'.
[  423.916174][T15586] loop1: detected capacity change from 0 to 4096
[  423.949530][T15586] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  424.032094][T15586] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  424.098716][T15285] batman_adv: batadv0: Adding interface: batadv_slave_0
[  424.098739][T15285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  424.098770][T15285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  424.100754][T15285] batman_adv: batadv0: Adding interface: batadv_slave_1
[  424.100771][T15285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  424.100802][T15285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  424.358559][T15598] netlink: 'syz.0.4151': attribute type 1 has an invalid length.
[  424.536759][T15602] loop6: detected capacity change from 0 to 1024
[  424.554932][T15600] loop4: detected capacity change from 0 to 256
[  424.578665][T15600] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  424.583785][T15604] loop1: detected capacity change from 0 to 512
[  424.660583][T15285] hsr_slave_0: entered promiscuous mode
[  424.685547][T15604] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.4152: corrupted in-inode xattr: invalid ea_ino
[  424.713568][T15285] hsr_slave_1: entered promiscuous mode
[  424.720016][T15285] debugfs: 'hsr0' already exists in 'hsr'
[  424.769981][T15604] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.4152: couldn't read orphan inode 15 (err -117)
[  424.791628][T15285] Cannot create hsr debugfs directory
[  424.887823][T15604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.250715][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.461343][ T5965] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  425.598064][T15633] loop0: detected capacity change from 0 to 512
[  425.621523][ T5965] usb 7-1: Using ep0 maxpacket: 32
[  425.661622][ T5965] usb 7-1: config 4 has an invalid interface number: 128 but max is 0
[  425.664292][T15633] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  425.669816][ T5965] usb 7-1: config 4 has no interface number 0
[  425.669866][ T5965] usb 7-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  425.841086][ T5965] usb 7-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  425.845753][T15633] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.4165: bad orphan inode 131083
[  425.872586][ T5965] usb 7-1: New USB device found, idVendor=016d, idProduct=c314, bcdDevice= 0.00
[  425.910984][ T5965] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  425.942791][ T5965] hub 7-1:4.128: USB hub found
[  425.953766][T15633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.045558][T15285] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  426.104395][T15285] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  426.160472][T15285] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  426.167561][ T5965] hub 7-1:4.128: config failed, can't read hub descriptor (err -90)
[  426.249761][T15285] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  426.274034][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.480876][T15616] loop4: detected capacity change from 0 to 32768
[  426.491321][ T5965] usb 7-1: USB disconnect, device number 10
[  426.546896][T15616] XFS: noikeep mount option is deprecated.
[  426.565841][T15616] XFS: noikeep mount option is deprecated.
[  426.675224][T15616] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  426.795779][T15285] 8021q: adding VLAN 0 to HW filter on device bond0
[  426.903607][T15629] loop1: detected capacity change from 0 to 32768
[  426.930455][T15667] usb usb9: usbfs: process 15667 (syz.5.4171) did not claim interface 0 before use
[  426.952856][T15285] 8021q: adding VLAN 0 to HW filter on device team0
[  427.013609][T15629] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4162 (15629)
[  427.019905][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state
[  427.033699][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state
[  427.086406][T15616] XFS (loop4): Ending clean mount
[  427.117255][T15616] XFS (loop4): Quotacheck needed: Please wait.
[  427.161005][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state
[  427.168219][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state
[  427.205739][T15629] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  427.311111][T15629] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  427.342036][T15616] XFS (loop4): Quotacheck: Done.
[  427.675604][T15629] BTRFS info (device loop1): setting nodatasum
[  427.710367][T15629] BTRFS info (device loop1): setting nodatacow
[  427.718464][T15629] BTRFS info (device loop1): enabling free space tree
[  427.772812][T15629] BTRFS info (device loop1): max_inline set to 0
[  427.786029][ T5868] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  428.031026][   T30] audit: type=1326 audit(1758799215.851:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15702 comm="syz.6.4178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  428.155661][   T30] audit: type=1326 audit(1758799215.851:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15702 comm="syz.6.4178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  428.258904][   T30] audit: type=1326 audit(1758799215.861:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15702 comm="syz.6.4178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  428.281255][    C0] vkms_vblank_simulate: vblank timer overrun
[  428.334881][ T5869] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  428.345567][   T30] audit: type=1326 audit(1758799215.861:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15702 comm="syz.6.4178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  428.367924][    C0] vkms_vblank_simulate: vblank timer overrun
[  428.470146][   T30] audit: type=1326 audit(1758799215.861:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15702 comm="syz.6.4178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  428.639193][T15285] 8021q: adding VLAN 0 to HW filter on device batadv0
[  428.963512][T15725] loop0: detected capacity change from 0 to 512
[  429.132403][T15725] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.161303][T15725] ext4 filesystem being mounted at /699/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  429.362017][T15735] bridge0: entered promiscuous mode
[  429.397147][T15735] macvlan2: entered promiscuous mode
[  429.469236][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.951495][T15700] loop5: detected capacity change from 0 to 40427
[  429.980271][T15700] F2FS-fs: heap/no_heap options were deprecated
[  430.010556][T15285] veth0_vlan: entered promiscuous mode
[  430.053951][T15700] F2FS-fs (loop5): build fault injection rate: 23
[  430.092867][T15285] veth1_vlan: entered promiscuous mode
[  430.101304][T15700] F2FS-fs (loop5): build fault injection type: 0x3bfe8c
[  430.165504][T15700] F2FS-fs (loop5): invalid crc value
[  430.205616][T15700] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  430.229976][T15285] veth0_macvtap: entered promiscuous mode
[  430.251979][T15285] veth1_macvtap: entered promiscuous mode
[  430.280073][T15759] loop0: detected capacity change from 0 to 2048
[  430.334218][T15285] batman_adv: batadv0: Interface activated: batadv_slave_0
[  430.410823][T15285] batman_adv: batadv0: Interface activated: batadv_slave_1
[  430.458915][T15762] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  430.509257][T15700] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  430.542988][ T3573] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  430.563103][ T3573] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  430.606318][T15700] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  430.639320][ T3573] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.682539][ T3573] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.922320][ T5873] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  430.983901][T15776] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  431.024246][T15776] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  431.030735][T15776] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  431.056130][T15776] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  431.057169][ T1173] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  431.073819][T15776] comedi comedi3: 8255: I/O port conflict (0xb,4)
[  431.121967][ T1173] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  431.243604][ T3573] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  431.277944][ T3573] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  431.471194][ T5938] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  431.531112][ T6010] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  431.594705][T15790] loop7: detected capacity change from 0 to 64
[  431.665744][ T5938] usb 5-1: Using ep0 maxpacket: 8
[  431.693596][ T5938] usb 5-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  431.704731][ T6010] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  431.734165][ T5938] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  431.746785][ T6010] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  431.777245][ T5938] usb 5-1: Product: syz
[  431.793185][T15793] netlink: 277 bytes leftover after parsing attributes in process `syz.1.4208'.
[  431.799035][ T6010] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  431.802931][ T5938] usb 5-1: Manufacturer: syz
[  431.861162][ T5938] usb 5-1: SerialNumber: syz
[  431.872071][ T5938] usb 5-1: config 0 descriptor??
[  431.873182][ T6010] usb 1-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24
[  431.912578][ T5938] gspca_main: se401-2.14.0 probing 047d:5003
[  431.938358][ T6010] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  431.965414][ T6010] usb 1-1: Product: syz
[  431.990600][ T6010] usb 1-1: Manufacturer: syz
[  432.010258][ T6010] usb 1-1: SerialNumber: syz
[  432.038972][ T6010] usb 1-1: config 0 descriptor??
[  432.056412][T15782] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  432.270790][T15802] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[  432.299813][ T6010] powermate: unknown product id 0240
[  432.306600][ T5938] gspca_se401: Bayer format not supported!
[  432.321686][ T6010] powermate: Expected payload of 3--6 bytes, found 1024 bytes!
[  432.399265][ T6010] input: Griffin SoundKnob as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input21
[  432.638354][ T5938] usb 5-1: USB disconnect, device number 9
[  432.817180][    C1] powermate: config urb returned -71
[  432.817640][ T6045] usb 1-1: USB disconnect, device number 16
[  432.822498][    C1] powermate: usb_submit_urb(config) failed
[  432.822580][    C1] powermate 1-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[  433.245520][T15823] openvswitch: netlink: nsh attr 7 is out of range max 3
[  433.267930][T15823] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  433.394107][T15829] netlink: 204 bytes leftover after parsing attributes in process `syz.4.4224'.
[  433.436176][T15829] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4224'.
[  433.471236][T15829] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4224'.
[  433.662850][ T5951] IPVS: starting estimator thread 0...
[  433.771160][T15838] IPVS: using max 26 ests per chain, 62400 per kthread
[  433.961181][T15810] loop5: detected capacity change from 0 to 32768
[  433.999811][T15810] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4215 (15810)
[  434.084832][T15810] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  434.135191][T15854] CUSE: info not properly terminated
[  434.146365][T15810] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  434.382377][T15810] BTRFS info (device loop5): enabling ssd optimizations
[  434.445781][T15810] BTRFS info (device loop5): enabling free space tree
[  434.573683][T15810] overlayfs: missing 'lowerdir'
[  434.776966][ T5873] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  435.137033][T15836] loop6: detected capacity change from 0 to 32768
[  435.181136][ T6010] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  435.384963][ T6010] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  435.403590][ T6010] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.428702][ T6010] usb 1-1: Product: syz
[  435.440040][ T6010] usb 1-1: Manufacturer: syz
[  435.445730][ T6010] usb 1-1: SerialNumber: syz
[  435.476620][ T6010] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  435.498278][ T5965] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  435.547173][T15899] loop4: detected capacity change from 0 to 2048
[  435.697170][T15904] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  435.806509][T15906] loop1: detected capacity change from 0 to 128
[  435.826978][T15904] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  435.891722][T15904] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4)
[  435.914534][T15906] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  436.007049][T15904] Remounting filesystem read-only
[  436.030004][T15906] ext4 filesystem being mounted at /700/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.378615][ T6010] usb 1-1: USB disconnect, device number 17
[  436.466648][ T5869] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  436.508763][ T5868] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[  436.527460][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.535709][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.543653][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.551627][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.559544][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.567594][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.575635][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.583595][T15916] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  436.624828][T15918] loop7: detected capacity change from 0 to 256
[  436.641075][ T5965] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  436.648164][ T5965] ath9k_htc: Failed to initialize the device
[  436.666269][T15918] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  436.701347][ T6010] usb 1-1: ath9k_htc: USB layer deinitialized
[  436.722638][T15920] loop1: detected capacity change from 0 to 1024
[  436.725223][T15918] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[  436.798137][T15918] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  436.838186][T15918] UDF-fs: Scanning with blocksize 512 failed
[  436.899224][T15918] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  436.977354][T15926] loop0: detected capacity change from 0 to 512
[  437.003272][T15918] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  437.026327][T15926] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  437.044943][T15926] EXT4-fs (loop0): orphan cleanup on readonly fs
[  437.064353][T15926] Quota error (device loop0): find_block_dqentry: Quota for id 0 referenced but not present
[  437.081085][T15926] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  437.091997][T15926] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.4260: Failed to acquire dquot type 1
[  437.115563][T15926] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4260: bg 0: block 40: padding at end of block bitmap is not set
[  437.150251][T15926] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  437.184491][T15926] EXT4-fs (loop0): 1 truncate cleaned up
[  437.217498][T15926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  437.235495][T15933] loop1: detected capacity change from 0 to 256
[  437.284509][T15933] exfat: Deprecated parameter 'utf8'
[  437.368752][T15926] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.4260: bad symlink.
[  437.438984][T15936] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.4260: bad symlink.
[  437.453702][T15933] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  437.859658][T15924] loop5: detected capacity change from 0 to 32768
[  438.087905][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.640223][T15956] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  438.640223][T15956] The task syz.5.4269 (15956) triggered the difference, watch for misbehavior.
[  438.841687][ T5965] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  438.913120][T15938] loop4: detected capacity change from 0 to 32768
[  439.041164][ T5965] usb 1-1: Using ep0 maxpacket: 32
[  439.090207][T15966] binder: 15963:15966 ioctl c0306201 200000000080 returned -14
[  439.098478][ T5965] usb 1-1: config 1 has an invalid interface number: 232 but max is 0
[  439.134104][ T5965] usb 1-1: config 1 has no interface number 0
[  439.163725][ T5965] usb 1-1: config 1 interface 232 has no altsetting 0
[  439.230035][ T5965] usb 1-1: New USB device found, idVendor=174f, idProduct=8a34, bcdDevice=fd.d5
[  439.240379][ T5965] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  439.260625][ T5965] usb 1-1: Product: syz
[  439.267733][ T5965] usb 1-1: Manufacturer: syz
[  439.277478][ T5965] usb 1-1: SerialNumber: syz
[  439.344506][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  439.443850][T15938] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  439.443882][T15938]   allowing incompatible features above 0.0: (unknown version)
[  439.443897][T15938]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  439.464441][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.644697][T15938] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  439.671227][T15938] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  439.697264][ T5965] usb 1-1: Found UVC 0.00 device syz (174f:8a34)
[  439.715781][T15938] bcachefs (loop4): Version upgrade required:
[  439.715781][T15938] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  439.715781][T15938] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  439.715781][T15938]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  439.817802][ T5965] usb 1-1: No valid video chain found.
[  439.848771][T15938] bcachefs (loop4): dropping and reconstructing all alloc info
[  439.931581][ T5965] usb 1-1: USB disconnect, device number 18
[  439.972370][T15938] bcachefs (loop4): accounting_read... done
[  440.008755][T15938] bcachefs (loop4): alloc_read... done
[  440.040638][T15938] bcachefs (loop4): snapshots_read... done
[  440.085742][T15938] bcachefs (loop4): check_allocations...
[  440.184669][T15999] loop6: detected capacity change from 0 to 1024
[  440.251909][T15938]  done
[  440.267210][T15938] bcachefs (loop4): going read-write
[  440.336556][   T30] audit: type=1800 audit(1758799228.227:126): pid=15999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4285" name="file1" dev="loop6" ino=20 res=0 errno=0
[  440.402444][T15938] bcachefs (loop4): done starting filesystem
[  440.411966][T15999] syz.6.4285: attempt to access beyond end of device
[  440.411966][T15999] loop6: rw=34817, sector=5778, nr_sectors = 2 limit=1024
[  440.770604][T15938] syz.4.4266 (15938) used greatest stack depth: 18584 bytes left
[  440.862116][ T5868] bcachefs (loop4): shutting down
[  440.867229][ T5868] bcachefs (loop4): going read-only
[  440.910128][ T5868] bcachefs (loop4): finished waiting for writes to stop
[  440.938150][T16015] usb usb8: usbfs: process 16015 (syz.1.4291) did not claim interface 0 before use
[  441.047060][ T5868] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11
[  441.110476][ T5868] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11
[  441.209401][ T5868] bcachefs (loop4): unclean shutdown complete, journal seq 12
[  441.311573][ T5868] bcachefs (loop4): done going read-only, filesystem not clean
[  441.447524][T16033] loop7: detected capacity change from 0 to 256
[  441.494684][ T5868] bcachefs (loop4): shutdown complete
[  441.640535][T16033] FAT-fs (loop7): Directory bread(block 64) failed
[  441.691640][T16033] FAT-fs (loop7): Directory bread(block 65) failed
[  441.699045][T16033] FAT-fs (loop7): Directory bread(block 66) failed
[  441.774006][T16033] FAT-fs (loop7): Directory bread(block 67) failed
[  441.780668][T16033] FAT-fs (loop7): Directory bread(block 68) failed
[  441.838465][T16033] FAT-fs (loop7): Directory bread(block 69) failed
[  441.855715][T16033] FAT-fs (loop7): Directory bread(block 70) failed
[  441.893876][T16033] FAT-fs (loop7): Directory bread(block 71) failed
[  441.941878][T16033] FAT-fs (loop7): Directory bread(block 72) failed
[  441.979880][T16033] FAT-fs (loop7): Directory bread(block 73) failed
[  442.259055][T16052] loop1: detected capacity change from 0 to 512
[  442.272863][T16056] loop6: detected capacity change from 0 to 1024
[  442.327596][T16056] hfsplus: bad catalog entry type
[  442.403123][T16052] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.526684][T16052] ext4 filesystem being mounted at /712/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  442.638698][T16068] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4312'.
[  442.971754][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.318600][T16084] loop1: detected capacity change from 0 to 1024
[  443.455604][T16084] hfsplus: small dir entry
[  443.469126][T16038] loop0: detected capacity change from 0 to 32768
[  443.668110][T16038] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  443.851660][T16114] loop1: detected capacity change from 0 to 512
[  443.991239][T16114] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.041178][T16114] ext4 filesystem being mounted at /714/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  444.118095][T16038] XFS (loop0): Ending clean mount
[  444.169425][T16038] XFS (loop0): Quotacheck needed: Please wait.
[  444.369138][T16038] XFS (loop0): Quotacheck: Done.
[  444.383777][T16114] EXT4-fs error (device loop1): ext4_get_first_dir_block:3529: inode #12: comm syz.1.4323: Directory hole found for htree leaf block 0
[  444.541431][ T5938] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  444.608477][ T5870] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  444.653757][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.791125][ T5938] usb 7-1: Using ep0 maxpacket: 16
[  444.831683][ T5938] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  444.858503][ T5938] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  444.916785][ T5938] usb 7-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  444.936918][ T5938] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.965468][ T5938] usb 7-1: config 0 descriptor??
[  445.407898][ T5938] hid-multitouch 0003:1FD2:6007.000B: unknown main item tag 0x1
[  445.464231][ T5938] hid-multitouch 0003:1FD2:6007.000B: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.6-1/input0
[  445.675481][T16150] loop5: detected capacity change from 0 to 256
[  445.681856][ T5965] usb 7-1: USB disconnect, device number 11
[  445.748056][T16148] fido_id[16148]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[  445.803869][T16150] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[  445.833730][T16150] FAT-fs (loop5): Filesystem has been set read-only
[  445.860665][T16150] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 198)
[  445.929202][T16150] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 198)
[  445.952402][ T6010] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  446.121260][ T6010] usb 5-1: Using ep0 maxpacket: 16
[  446.146939][ T6010] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  446.165040][T16160] loop7: detected capacity change from 0 to 4096
[  446.170779][ T6010] usb 5-1: config 0 has no interface number 0
[  446.196633][ T6010] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  446.236739][ T6010] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  446.249908][T16160] ntfs3(loop7): ino=3, Correct links count -> 2.
[  446.309108][ T6010] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  446.366031][T16170] loop1: detected capacity change from 0 to 164
[  446.369603][ T6010] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  446.425036][ T6010] usb 5-1: Product: syz
[  446.442307][ T6010] usb 5-1: SerialNumber: syz
[  446.485264][T16160] ntfs3(loop7): ino=1a, mi_enum_attr
[  446.490703][T16160] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  446.499387][ T5875] Bluetooth: hci0: unexpected event for opcode 0x2043
[  446.509430][ T6010] usb 5-1: config 0 descriptor??
[  446.627718][ T6010] cm109 5-1:0.8: invalid payload size 0, expected 4
[  446.675829][ T6010] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input22
[  446.784065][ T5875] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  446.794598][ T5875] Bluetooth: hci4: Injecting HCI hardware error event
[  446.804512][ T5886] Bluetooth: hci4: hardware error 0x00
[  446.814664][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.824154][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.834301][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.842145][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.849497][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.861130][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.870028][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.878688][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.887718][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.895310][ T6010] usb 5-1: USB disconnect, device number 10
[  446.901333][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  446.901358][    C1] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  447.004076][ T6010] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  447.521263][T16197] loop1: detected capacity change from 0 to 2048
[  447.686632][T16197] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  447.777544][T16206] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4353'.
[  448.146173][T16216] raw_sendmsg: syz.1.4358 forgot to set AF_INET. Fix it!
[  448.471984][T16227] x_tables: ip_tables: DSCP.0 target: invalid size 8 (kernel) != (user) 16
[  448.655530][T16237] loop7: detected capacity change from 0 to 8
[  448.727186][T16189] loop0: detected capacity change from 0 to 32768
[  448.823811][T16189] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  448.843016][T16248] loop4: detected capacity change from 0 to 16
[  448.976831][T16257] loop5: detected capacity change from 0 to 16
[  448.992322][T16257] erofs (device loop5): mounted with root inode @ nid 36.
[  449.004882][T16189] XFS (loop0): Ending clean mount
[  449.021047][ T5886] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  449.307714][ T5870] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  449.610898][T16271] loop1: detected capacity change from 0 to 64
[  449.758478][T16273] loop7: detected capacity change from 0 to 1024
[  449.910072][T16248] erofs (device loop4): mounted with root inode @ nid 36.
[  450.091730][   T12] hfsplus: b-tree write err: -5, ino 4
[  450.417603][T16275] loop6: detected capacity change from 0 to 8192
[  450.437083][T16289] loop0: detected capacity change from 0 to 8
[  450.485276][T16289] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  450.500302][T16275] msdos: Unknown parameter 'dos1xfloppyç³;’s'
[  450.516195][ T5894] udevd[5894]: incorrect cramfs checksum on /dev/loop0
[  450.666369][T16293] team0: Port device bridge1 added
[  450.693186][ T5894] udevd[5894]: incorrect cramfs checksum on /dev/loop0
[  451.032433][T16299] lo speed is unknown, defaulting to 1000
[  451.610814][T16319] loop1: detected capacity change from 0 to 4096
[  451.682284][T16319] EXT4-fs: Ignoring removed mblk_io_submit option
[  451.737471][T16319] EXT4-fs (loop1): Test dummy encryption mode enabled
[  451.850283][T16319] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  452.020341][T16319] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  452.491146][ T6010] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  452.535367][T16353] loop6: detected capacity change from 0 to 128
[  452.569923][T16353] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  452.616740][T16356] 9pnet_fd: p9_fd_create_unix (16356): problem connecting socket: éq‰Y’3aK: -111
[  452.626960][T16353] ext4 filesystem being mounted at /619/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  452.681016][ T6010] usb 6-1: Using ep0 maxpacket: 8
[  452.688306][ T6010] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  452.707296][ T6010] usb 6-1: New USB device found, idVendor=0458, idProduct=501a, bcdDevice= 0.00
[  452.720629][ T6010] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.756910][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.769869][ T6010] usb 6-1: config 0 descriptor??
[  452.885484][ T7240] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  452.986265][T16362] loop1: detected capacity change from 0 to 16
[  453.046200][T16362] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  453.252496][T16370] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4424'.
[  453.263633][ T6010] kye 0003:0458:501A.000C: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  453.295313][T16370] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4424'.
[  453.329388][ T6010] kye 0003:0458:501A.000C: hidraw0: USB HID v0.00 Device [HID 0458:501a] on usb-dummy_hcd.5-1/input0
[  453.363846][T16370] netlink: 'syz.7.4424': attribute type 14 has an invalid length.
[  453.372668][ T6010] kye 0003:0458:501A.000C: tablet-enabling feature report not found
[  453.381157][T16370] netlink: 'syz.7.4424': attribute type 13 has an invalid length.
[  453.396909][ T6010] kye 0003:0458:501A.000C: tablet enabling failed
[  453.467319][ T6010] usb 6-1: USB disconnect, device number 15
[  453.500178][T16367] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4422'.
[  453.628842][T16377] loop4: detected capacity change from 0 to 256
[  453.679494][T16375] fido_id[16375]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  453.695421][T16379] loop1: detected capacity change from 0 to 8
[  453.775783][T16379] SQUASHFS error: lzo decompression failed, data probably corrupt
[  453.797020][T16377] FAT-fs (loop4): Directory bread(block 64) failed
[  453.824393][T16379] SQUASHFS error: Failed to read block 0x202: -5
[  453.830801][T16379] SQUASHFS error: Unable to read metadata cache entry [200]
[  453.842253][T16377] FAT-fs (loop4): Directory bread(block 65) failed
[  453.851453][   T30] audit: type=1326 audit(1758799241.737:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16382 comm="syz.6.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  453.901993][T16377] FAT-fs (loop4): Directory bread(block 66) failed
[  453.916355][T16377] FAT-fs (loop4): Directory bread(block 67) failed
[  453.923462][T16377] FAT-fs (loop4): Directory bread(block 68) failed
[  453.930861][   T30] audit: type=1326 audit(1758799241.737:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16382 comm="syz.6.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  454.002090][T16377] FAT-fs (loop4): Directory bread(block 69) failed
[  454.029595][   T30] audit: type=1326 audit(1758799241.737:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16382 comm="syz.6.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  454.052624][T16377] FAT-fs (loop4): Directory bread(block 70) failed
[  454.059175][T16377] FAT-fs (loop4): Directory bread(block 71) failed
[  454.132691][T16377] FAT-fs (loop4): Directory bread(block 72) failed
[  454.139266][T16377] FAT-fs (loop4): Directory bread(block 73) failed
[  454.151027][   T30] audit: type=1326 audit(1758799241.737:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16382 comm="syz.6.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  454.207929][T16387] binder: 16386:16387 ioctl c0306201 200000000480 returned -14
[  454.229485][   T30] audit: type=1326 audit(1758799241.737:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16382 comm="syz.6.4430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  454.489123][T16393] can0: slcan on ttyprintk.
[  454.543092][ T6010] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  454.755532][ T6010] usb 6-1: Using ep0 maxpacket: 8
[  454.782127][ T6010] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x99, changing to 0x89
[  454.813260][T16392] can0 (unregistered): slcan off ttyprintk.
[  454.871220][ T6010] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  454.926923][ T6010] usb 6-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  454.974448][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.991087][ T6010] usb 6-1: Product: syz
[  455.001336][ T6010] usb 6-1: Manufacturer: syz
[  455.006033][ T6010] usb 6-1: SerialNumber: syz
[  455.037826][ T6010] usb 6-1: config 0 descriptor??
[  455.095304][ T6010] streamzap 6-1:0.0: streamzap_probe: endpoint attributes don't match xfer 0200
[  455.140344][T16412] loop7: detected capacity change from 0 to 128
[  455.198125][T16412] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  455.281077][T16412] hpfs: filesystem error: improperly stopped
[  455.287129][T16412] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  455.332929][T16412] hpfs: You really don't want any checks? You are crazy...
[  455.362119][T16412] hpfs: hpfs_map_sector(): read error
[  455.367576][T16412] hpfs: code page support is disabled
[  455.381290][    T9] usb 6-1: USB disconnect, device number 16
[  455.431271][T16412] hpfs: hpfs_map_4sectors(): unaligned read
[  455.445259][T16412] hpfs: hpfs_map_4sectors(): unaligned read
[  455.449378][T16414] loop1: detected capacity change from 0 to 1024
[  455.470037][T16418] loop0: detected capacity change from 0 to 64
[  455.486401][T16412] hpfs: filesystem error: unable to find root dir
[  455.991719][T16424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4450'.
[  456.461227][ T6045] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  456.641053][ T6045] usb 6-1: Using ep0 maxpacket: 32
[  456.648933][ T6045] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  456.688866][ T6045] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  456.711163][ T6045] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.719767][ T6045] usb 6-1: Product: syz
[  456.771146][ T6045] usb 6-1: Manufacturer: syz
[  456.775795][ T6045] usb 6-1: SerialNumber: syz
[  456.824952][ T6045] usb 6-1: config 0 descriptor??
[  456.849728][ T6045] usb 6-1: bad CDC descriptors
[  456.928755][T16442] loop7: detected capacity change from 0 to 4096
[  456.966026][T16442] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  456.983133][ T6045] usb 6-1: unsupported MDLM descriptors
[  457.078530][ T6010] usb 6-1: USB disconnect, device number 17
[  457.516782][T16436] loop0: detected capacity change from 0 to 32768
[  457.635450][T16436] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  457.909965][T16459] loop6: detected capacity change from 0 to 2048
[  457.946794][T16446] loop1: detected capacity change from 0 to 32768
[  457.991191][T16446] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4460 (16446)
[  458.015225][ T5870] (syz-executor,5870,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  458.052062][T16459] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.101474][ T5870] ocfs2: Unmounting device (7,0) on (node local)
[  458.166914][T16446] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  458.222348][T16446] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  458.271046][T16446] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  458.312352][T16470] loop5: detected capacity change from 0 to 1024
[  458.371534][ T7240] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.453489][T16470] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  458.551263][T16470] ext4 filesystem being mounted at /765/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  458.656593][T16446] BTRFS info (device loop1): rebuilding free space tree
[  458.708323][T16493] loop6: detected capacity change from 0 to 256
[  458.728584][T16446] BTRFS info (device loop1): disabling free space tree
[  458.777434][T16446] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  458.813807][T16446] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  458.854084][T16446] BTRFS info (device loop1): enabling ssd optimizations
[  458.892994][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  458.911793][T16446] BTRFS info (device loop1): turning off barriers
[  458.947130][T16446] BTRFS info (device loop1): disabling tree log
[  458.998348][T16446] BTRFS info (device loop1): turning on flush-on-commit
[  459.029517][T16493] FAT-fs (loop6): Directory bread(block 64) failed
[  459.041027][T16446] BTRFS info (device loop1): enabling disk space caching
[  459.061077][T16493] FAT-fs (loop6): Directory bread(block 65) failed
[  459.067740][T16493] FAT-fs (loop6): Directory bread(block 66) failed
[  459.069342][T16499] rdma_op ffff88807f6f91f0 conn xmit_rdma 0000000000000000
[  459.101923][T16446] BTRFS info (device loop1): force clearing of disk cache
[  459.125193][T16446] BTRFS info (device loop1): doing ref verification
[  459.133212][T16493] FAT-fs (loop6): Directory bread(block 67) failed
[  459.139841][T16493] FAT-fs (loop6): Directory bread(block 68) failed
[  459.175607][T16446] BTRFS info (device loop1): use lzo compression, level 1
[  459.196340][T16493] FAT-fs (loop6): Directory bread(block 69) failed
[  459.281098][T16493] FAT-fs (loop6): Directory bread(block 70) failed
[  459.365740][T16493] FAT-fs (loop6): Directory bread(block 71) failed
[  459.389359][T16493] FAT-fs (loop6): Directory bread(block 72) failed
[  459.429130][T16493] FAT-fs (loop6): Directory bread(block 73) failed
[  459.553789][ T5869] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  459.851711][T16514] loop7: detected capacity change from 0 to 1024
[  459.955781][T16514] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.998498][T16471] loop4: detected capacity change from 0 to 32768
[  460.063426][T16471] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4469 (16471)
[  460.165349][T16471] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  460.239559][T16514] EXT4-fs error (device loop7): mb_free_blocks:2017: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  460.260202][T16471] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  460.345535][T16514] EXT4-fs (loop7): Remounting filesystem read-only
[  460.532269][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.584386][T16471] BTRFS info (device loop4): enabling ssd optimizations
[  460.612683][T16471] BTRFS info (device loop4): enabling free space tree
[  460.631140][T16542] loop6: detected capacity change from 0 to 256
[  460.698828][T16542] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  460.836035][T16542] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  460.874043][   T30] audit: type=1800 audit(1758799248.757:132): pid=16471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4469" name="file2" dev="loop4" ino=261 res=0 errno=0
[  460.906559][T16512] loop5: detected capacity change from 0 to 32768
[  461.000857][T16542] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  461.426626][ T5868] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  461.919548][T16569] loop7: detected capacity change from 0 to 1024
[  462.259589][ T3573] hfsplus: b-tree write err: -5, ino 4
[  462.406968][T16583] loop6: detected capacity change from 0 to 512
[  462.560605][T16583] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.652854][T16583] ext4 filesystem being mounted at /633/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  462.672661][T16558] loop0: detected capacity change from 0 to 32768
[  462.708109][T16558] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4494 (16558)
[  462.766010][T16597] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  462.800568][T16597] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  462.848729][T16558] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  462.927706][T16558] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  462.953002][ T7240] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.172136][T16612] loop4: detected capacity change from 0 to 128
[  463.253489][T16612] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  463.325432][T16558] BTRFS info (device loop0): enabling ssd optimizations
[  463.381461][T16558] BTRFS info (device loop0): enabling free space tree
[  463.402469][T16612] ext4 filesystem being mounted at /760/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  463.439976][T16558] BTRFS info (device loop0): use lzo compression, level 1
[  463.731729][ T5868] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  464.288125][T16618] loop5: detected capacity change from 0 to 40427
[  464.297530][T16593] loop1: detected capacity change from 0 to 32768
[  464.310683][ T5870] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  464.341561][T16618] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  464.349346][T16618] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  464.369896][T16593] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4510 (16593)
[  464.415515][T16640] loop4: detected capacity change from 0 to 256
[  464.424605][T16618] F2FS-fs (loop5): invalid crc value
[  464.466998][T16640] exfat: Deprecated parameter 'namecase'
[  464.506067][T16593] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  464.550622][T16640] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  464.578991][T16593] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[  465.058132][T16618] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  465.085887][T16593] BTRFS info (device loop1): allowing degraded mounts
[  465.135699][T16667] program syz.7.4527 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  465.136433][T16593] BTRFS info (device loop1): enabling ssd optimizations
[  465.208724][T16593] BTRFS info (device loop1): enabling free space tree
[  465.243414][T16618] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  465.267220][T16593] BTRFS info (device loop1): force zlib compression, level 3
[  465.282146][T16618] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  465.692813][ T5869] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  465.824454][T16679] loop7: detected capacity change from 0 to 64
[  466.101309][T16686] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4532'.
[  466.199508][T16689] loop4: detected capacity change from 0 to 764
[  467.039374][T16672] loop0: detected capacity change from 0 to 32768
[  467.070228][T16711] loop7: detected capacity change from 0 to 64
[  467.197635][T16672] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  467.316741][T16672] XFS (loop0): Ending clean mount
[  467.556410][ T5232] udevd[5232]: worker [6388] terminated by signal 33 (Unknown signal 33)
[  467.582609][ T5870] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  467.602110][ T5232] udevd[5232]: worker [6388] failed while handling '/devices/virtual/block/loop0'
[  467.616297][T16732] ALSA: mixer_oss: invalid OSS volume ''
[  468.155542][T16750] loop7: detected capacity change from 0 to 512
[  468.270181][T16755] usb usb8: usbfs: process 16755 (syz.4.4563) did not claim interface 0 before use
[  468.406474][T16750] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.481298][T16750] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  468.611265][T16768] loop5: detected capacity change from 0 to 512
[  468.655788][T16768] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  468.675161][T16768] EXT4-fs (loop5): 1 truncate cleaned up
[  468.679254][T16773] loop4: detected capacity change from 0 to 65
[  468.723900][T16768] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.770980][T16773] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  468.771012][T16773] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  468.843227][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.986379][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.022749][T16812] loop0: detected capacity change from 0 to 64
[  470.329901][   T30] audit: type=1326 audit(1758799258.217:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16817 comm="syz.7.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f900d38eec9 code=0x7ffc0000
[  470.446446][   T30] audit: type=1326 audit(1758799258.217:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16817 comm="syz.7.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f900d38eec9 code=0x7ffc0000
[  470.566963][   T30] audit: type=1326 audit(1758799258.217:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16817 comm="syz.7.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f900d38eec9 code=0x7ffc0000
[  470.676542][   T30] audit: type=1326 audit(1758799258.217:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16817 comm="syz.7.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f900d38eec9 code=0x7ffc0000
[  470.732882][   T30] audit: type=1326 audit(1758799258.217:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16817 comm="syz.7.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f900d38eec9 code=0x7ffc0000
[  471.438815][T16824] loop5: detected capacity change from 0 to 32768
[  471.469024][T16824] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4594 (16824)
[  471.532320][T16824] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  471.582584][T16824] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  471.793319][T16826] loop0: detected capacity change from 0 to 32768
[  471.802717][T16832] loop4: detected capacity change from 0 to 32768
[  471.834923][T16824] BTRFS info (device loop5): enabling ssd optimizations
[  471.844408][T16826] (syz.0.4593,16826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  471.882633][T16824] BTRFS info (device loop5): enabling free space tree
[  471.893947][T16826] (syz.0.4593,16826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  471.980140][T16832] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  472.096816][T16832] (syz.4.4599,16832,0):ocfs2_reflink_ioctl:4417 ERROR: status = -14
[  472.112343][T16826] JBD2: Ignoring recovery information on journal
[  472.125508][T16834] loop6: detected capacity change from 0 to 40427
[  472.172105][T16834] F2FS-fs (loop6): invalid crc value
[  472.209456][T16826] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  472.335898][ T5868] ocfs2: Unmounting device (7,4) on (node local)
[  472.462445][ T5873] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  472.711834][T16834] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  472.784003][T16834] F2FS-fs (loop6): Start checkpoint disabled!
[  472.825810][T16834] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  472.835295][ T5870] ocfs2: Unmounting device (7,0) on (node local)
[  472.931256][T16834] F2FS-fs (loop6): Stopped filesystem due to reason: 0
[  473.863137][T16901] loop5: detected capacity change from 0 to 64
[  474.019631][T16878] loop1: detected capacity change from 0 to 32768
[  474.196028][T16878] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  474.263949][T16916] loop0: detected capacity change from 0 to 1024
[  474.331476][T16912] loop5: detected capacity change from 0 to 1024
[  474.424179][T16912] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  474.505833][T16912] ext4 filesystem being mounted at /787/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  474.580480][ T5869] ocfs2: Unmounting device (7,1) on (node local)
[  474.656222][   T30] audit: type=1800 audit(1758799262.547:138): pid=16912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4626" name="file1" dev="loop5" ino=15 res=0 errno=0
[  475.008191][T16935] loop0: detected capacity change from 0 to 256
[  475.026914][T16935] exfat: Deprecated parameter 'namecase'
[  475.050770][T16935] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  475.067290][T16930] loop4: detected capacity change from 0 to 32768
[  475.112674][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  475.169538][T16930] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,recovery_pass_last=snapshots_read,nojournal_transaction_names,noexcl,read_only,no_data_io
[  475.169572][T16930]   allowing incompatible features above 0.0: (unknown version)
[  475.169587][T16930]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  475.216799][T16930] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  475.226137][T16930] bcachefs (loop4): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing
[  475.238772][T16930] bcachefs (loop4): invalid journal entry, version=1.7: mi_btree_bitmap type=data_usage in superblock: invalid journal entry usage: no devices in entry free: 0/0 [], fixing
[  475.256170][T16930] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  475.264552][T16930] bcachefs (loop4): Version upgrade required:
[  475.264552][T16930] Version upgrade from 0.27: fragmentation_lru to 1.7: mi_btree_bitmap incomplete
[  475.264552][T16930] Doing incompatible version upgrade from 0.27: fragmentation_lru to 1.28: inode_has_case_insensitive
[  475.264552][T16930]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  475.335913][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.436690][T16930] bcachefs (loop4): btree node read error at btree alloc level 0/0
[  475.436713][T16930]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0
[  475.436733][T16930]   loop4 node offset 0/24 bset u64s 0: invalid bkey format: field 2 too large: 4294967295 + 11015804688548233216 > 4294967295
[  475.436752][T16930]   u64s 3 fields 64:0, 64:0, 32:11015804688548233216, 0:0, 0:0, 0:0
[  475.436766][T16930]   loop4 btree validate error
[  475.436778][T16930]   flagging btree alloc lost data
[  475.436790][T16930]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  475.436806][T16930]   ret btree_node_read_err_bad_node
[  475.505649][T16930] bcachefs (loop4): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  475.526176][T16930] bcachefs (loop4): invalid bkey in btree_node btree=freespace level=0: u64s 5 type set 0:35:0 len 0 ver 0
[  475.526209][T16930]   size == 0, deleting
[  475.544844][T16930] bcachefs (loop4): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  475.560691][T16930] bcachefs (loop4): btree node read error at btree backpointers level 0/0
[  475.560711][T16930]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4a8b0fa43a9980a6 written 24 min_key POS_MIN durability: 1 ptr: 0:37:0 gen 0
[  475.560732][T16930]   loop4 node offset 0/24 bset u64s 0: checksum error, type none: got  should be 
[  475.560748][T16930]   loop4 btree validate error
[  475.560759][T16930]   flagging btree backpointers lost data
[  475.560772][T16930]   ret fsck_errors_not_fixed
[  475.608828][T16930] bcachefs (loop4): error reading btree root btree=backpointers level=0: btree_node_read_error, fixing
[  475.621771][T16930] bcachefs (loop4): check_topology... done
[  475.635059][T16930] bcachefs (loop4): accounting_read... done
[  475.712393][T16930] bcachefs (loop4): alloc_read... done
[  475.719576][T16930] bcachefs (loop4): snapshots_read... done
[  475.726939][T16930] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[  475.739442][T16930] bcachefs (loop4): done starting filesystem
[  476.073481][ T5868] bcachefs (loop4): shutting down
[  476.264700][ T5868] bcachefs (loop4): shutdown complete
[  476.463007][ T6040] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  476.536157][T16974] loop6: detected capacity change from 0 to 256
[  476.602826][   T30] audit: type=1800 audit(1758799264.497:139): pid=16974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4652" name="bus" dev="loop6" ino=1048776 res=0 errno=0
[  476.662123][ T6040] usb 1-1: Using ep0 maxpacket: 16
[  476.690445][ T6040] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=f4.9b
[  476.710236][ T6040] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  476.721574][T16976] loop1: detected capacity change from 0 to 256
[  476.761081][ T6040] usb 1-1: Product: syz
[  476.765650][ T6040] usb 1-1: SerialNumber: syz
[  476.834218][ T6040] usb 1-1: config 0 descriptor??
[  476.876097][ T6040] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  476.896727][ T6040] dvb_usb_af9015 1-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  476.955065][ T6040] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  476.981148][ T6040] dvb_usb_af9035 1-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[  477.051137][ T6040] usb 1-1: USB disconnect, device number 19
[  477.061538][T16986] capability: warning: `syz.1.4657' uses 32-bit capabilities (legacy support in use)
[  477.779730][T17010] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4667'.
[  477.807652][T17005] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4667'.
[  477.950776][T17013] loop0: detected capacity change from 0 to 2048
[  478.102663][T17023] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  478.361386][T17029] loop5: detected capacity change from 0 to 1024
[  478.492302][T17029] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  478.584974][T17029] ext4 filesystem being mounted at /797/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  478.680207][T17029] EXT4-fs error (device loop5): ext4_free_blocks:6696: comm syz.5.4678: Freeing blocks not in datazone - block = 0, count = 16
[  478.823811][T17029] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  478.894117][T17051] loop1: detected capacity change from 0 to 64
[  478.943264][T17051] hfs: unable to locate alternate MDB
[  478.970839][T17051] hfs: continuing without an alternate MDB
[  478.992375][T17053] loop6: detected capacity change from 0 to 764
[  479.038559][T17053] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  479.066713][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  479.085712][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  479.114169][T17053] Symlink component flag not implemented
[  479.134161][T17053] Symlink component flag not implemented (7)
[  479.252005][    T9] usb 8-1: Using ep0 maxpacket: 32
[  479.294278][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  479.326999][    T9] usb 8-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  479.387456][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.442027][    T9] usb 8-1: config 0 descriptor??
[  479.786859][T17072] vlan2: entered promiscuous mode
[  479.933902][    T9] belkin 0003:1020:0006.000D: hidraw0: USB HID v0.00 Device [HID 1020:0006] on usb-dummy_hcd.7-1/input0
[  480.022597][T17082] vlan2: entered promiscuous mode
[  480.027700][T17082] macvlan1: entered promiscuous mode
[  480.095025][ T5937] usb 8-1: USB disconnect, device number 2
[  480.269629][T17083] fido_id[17083]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  480.321224][    T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  480.481277][    T9] usb 5-1: Using ep0 maxpacket: 16
[  480.510622][    T9] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  480.531391][    T9] usb 5-1: config 0 has no interface number 0
[  480.552978][    T9] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  480.556173][ T5965] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  480.577150][    T9] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  480.601614][    T9] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  480.617751][    T9] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  480.638006][    T9] usb 5-1: Product: syz
[  480.642987][    T9] usb 5-1: SerialNumber: syz
[  480.683492][    T9] usb 5-1: config 0 descriptor??
[  480.725897][    T9] cm109 5-1:0.8: invalid payload size 0, expected 4
[  480.768178][    T9] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input23
[  480.781502][ T5965] usb 6-1: Using ep0 maxpacket: 8
[  480.799159][ T5965] usb 6-1: unable to get BOS descriptor or descriptor too short
[  480.809361][T17106] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4711'.
[  480.821467][T17107] loop0: detected capacity change from 0 to 256
[  480.837743][ T5965] usb 6-1: config index 0 descriptor too short (expected 25, got 18)
[  480.889071][ T5965] usb 6-1: config 9 has an invalid interface number: 112 but max is 0
[  480.936773][ T5965] usb 6-1: config 9 has no interface number 0
[  480.971032][ T5965] usb 6-1: config 9 interface 112 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  480.995826][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  480.997105][ T6010] usb 5-1: USB disconnect, device number 11
[  481.002806][    C0] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  481.059561][ T5965] usb 6-1: config 9 interface 112 has no altsetting 0
[  481.088902][ T5965] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice= 8.d3
[  481.136146][ T5965] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.160562][ T5965] usb 6-1: Product: syz
[  481.165519][ T5965] usb 6-1: Manufacturer: syz
[  481.184468][ T5965] usb 6-1: SerialNumber: syz
[  481.206110][ T6010] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  481.238561][ T5965] r8152-cfgselector 6-1: Unknown version 0x0000
[  481.478241][T17120] loop1: detected capacity change from 0 to 4096
[  481.486139][ T5965] r8152-cfgselector 6-1: USB disconnect, device number 18
[  481.695973][T17120] ntfs3(loop1): ino=19, mi_enum_attr
[  481.733454][T17120] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  481.999382][T17135] loop4: detected capacity change from 0 to 16
[  482.058317][T17135] erofs (device loop4): mounted with root inode @ nid 36.
[  482.211426][ T5965] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  482.413577][ T5965] usb 7-1: Using ep0 maxpacket: 8
[  482.437033][ T5965] usb 7-1: config index 0 descriptor too short (expected 30, got 18)
[  482.467209][ T5965] usb 7-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  482.488099][ T5965] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.525478][ T5965] usb 7-1: Product: syz
[  482.539987][ T5965] usb 7-1: Manufacturer: syz
[  482.548871][ T5965] usb 7-1: SerialNumber: syz
[  482.555626][T17116] loop7: detected capacity change from 0 to 32768
[  482.575634][T17116] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 ./bus (7:7) scanned by syz.7.4716 (17116)
[  482.576571][ T5965] usb 7-1: config 0 descriptor??
[  482.646765][ T5965] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  482.654517][T17116] btrfs: Unknown parameter 'dont_appraise'
[  482.672196][ T5965] usb 7-1: setting power ON
[  482.676726][ T5965] dvb-usb: bulk message failed: -22 (2/0)
[  482.772496][ T5965] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  482.807105][ T5965] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  482.860838][ T5965] usb 7-1: media controller created
[  482.866476][T17132] dvb-usb: bulk message failed: -22 (4/0)
[  482.866523][T17132] cxusb: i2c read failed
[  482.902536][ T6395] udevd[6395]: incorrect btrfs checksum on /dev/loop7
[  483.011517][ T5965] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  483.103725][ T5965] usb 7-1: selecting invalid altsetting 6
[  483.123356][ T5965] usb 7-1: digital interface selection failed (-22)
[  483.129978][ T5965] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  483.194609][ T5965] usb 7-1: setting power OFF
[  483.199258][ T5965] dvb-usb: bulk message failed: -22 (2/0)
[  483.227159][ T5965] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  483.243099][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.272780][ T5965] (NULL device *): no alternate interface
[  483.275559][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  483.394060][ T5965] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  483.445795][ T5965] usb 7-1: USB disconnect, device number 12
[  483.629594][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.645923][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  483.850722][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.884085][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  484.107268][T17179] loop7: detected capacity change from 0 to 256
[  484.135047][T17179] exfat: Deprecated parameter 'utf8'
[  484.140429][T17179] exfat: Deprecated parameter 'namecase'
[  484.234292][T17179] exfat: Deprecated parameter 'namecase'
[  484.266158][T17179] exfat: Deprecated parameter 'utf8'
[  484.293040][T17174] loop5: detected capacity change from 0 to 4096
[  484.320734][T17179] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[  484.353136][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.395006][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  484.423028][T17183] loop6: detected capacity change from 0 to 256
[  484.465827][T17183] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  484.508721][T17183] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  484.585542][T17183] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  484.849344][T17183] exFAT-fs (loop6): error, invalid access to FAT (entry 0xffffffff)
[  484.913926][T17183] exFAT-fs (loop6): Filesystem has been set read-only
[  484.984312][T17183] exFAT-fs (loop6): error, invalid access to FAT (entry 0xffffffff)
[  485.073781][T17183] exFAT-fs (loop6): error, invalid access to FAT (entry 0xffffffff)
[  485.172397][   T12] bridge_slave_1: left allmulticast mode
[  485.178076][   T12] bridge_slave_1: left promiscuous mode
[  485.215065][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.263231][T17201] loop1: detected capacity change from 0 to 128
[  485.280221][ T5875] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  485.295765][ T5875] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  485.314564][ T5875] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  485.330467][ T5875] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  485.341960][ T5875] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  485.341978][ T6040] kernel write not supported for file /snd/seq (pid: 6040 comm: kworker/1:7)
[  485.376452][   T12] bridge_slave_0: left allmulticast mode
[  485.429991][   T12] bridge_slave_0: left promiscuous mode
[  485.436115][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.644834][T17213] befs: Bad value for 'gid'
[  485.659148][T17213] befs: Bad value for 'gid'
[  485.724814][T17218] loop1: detected capacity change from 0 to 512
[  485.773461][T17218] EXT4-fs (loop1): orphan cleanup on readonly fs
[  485.879805][T17218] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4761: bg 0: block 248: padding at end of block bitmap is not set
[  485.956617][T17218] Quota error (device loop1): write_blk: dquota write failed
[  485.985242][T17225] loop6: detected capacity change from 0 to 1024
[  485.990737][T17218] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  486.058990][T17218] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.4761: Failed to acquire dquot type 1
[  486.103861][T17218] EXT4-fs (loop1): 1 truncate cleaned up
[  486.115517][T17225] hfsplus: bad catalog entry type
[  486.167627][T17218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  486.278416][ T3516] hfsplus: b-tree write err: -5, ino 4
[  486.332060][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.560499][T17239] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4768'.
[  486.903822][   T30] audit: type=1326 audit(1758799274.797:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  486.991956][   T30] audit: type=1326 audit(1758799274.797:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.047052][   T30] audit: type=1326 audit(1758799274.817:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.099384][   T30] audit: type=1326 audit(1758799274.817:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.139351][   T30] audit: type=1326 audit(1758799274.817:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.211324][   T30] audit: type=1326 audit(1758799274.857:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.286187][T17255] netlink: 'syz.1.4776': attribute type 10 has an invalid length.
[  487.296073][   T30] audit: type=1326 audit(1758799274.857:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.338505][   T30] audit: type=1326 audit(1758799274.857:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17246 comm="syz.6.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1e958eec9 code=0x7ffc0000
[  487.435287][ T5875] Bluetooth: hci2: command tx timeout
[  487.523035][T17263] loop1: detected capacity change from 0 to 1024
[  487.704103][   T13] hfsplus: b-tree write err: -5, ino 8
[  488.235735][T17278] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4787'.
[  488.411123][T17281] loop1: detected capacity change from 0 to 128
[  488.908022][T17289] loop6: detected capacity change from 0 to 22
[  488.920269][T17289] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  488.935526][T17289] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  489.177201][T17283] loop7: detected capacity change from 0 to 32768
[  489.196758][T17283] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.4789 (17283)
[  489.273036][T17283] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  489.309034][T17283] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  489.466543][T17283] BTRFS info (device loop7): setting nodatasum
[  489.500786][T17283] BTRFS info (device loop7): setting nodatacow
[  489.508243][ T5875] Bluetooth: hci2: command tx timeout
[  489.508725][T17283] BTRFS info (device loop7): enabling free space tree
[  489.522637][T17283] BTRFS info (device loop7): max_inline set to 0
[  489.617429][T15285] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  489.879631][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  489.906190][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  489.942008][   T12] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  489.952750][   T12] veth1_vlan: left allmulticast mode
[  489.972896][   T12] bond0 (unregistering): Released all slaves
[  490.054156][T17287] tipc: Started in network mode
[  490.059047][T17287] tipc: Node identity , cluster identity 4711
[  490.099959][T17287] tipc: Failed to set node id, please configure manually
[  490.129864][T17287] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  490.195465][   T12] IPVS: stopping backup sync thread 9493 ...
[  490.322144][T17202] lo speed is unknown, defaulting to 1000
[  490.571265][ T6010] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  490.709912][T17336] loop7: detected capacity change from 0 to 128
[  490.761587][ T6010] usb 1-1: Using ep0 maxpacket: 32
[  490.799969][ T6010] usb 1-1: config 0 has an invalid interface number: 247 but max is 0
[  490.844991][ T6010] usb 1-1: config 0 has no interface number 0
[  490.892409][ T6010] usb 1-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  490.920725][ T6010] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  490.976303][T17344] rdma_op ffff88807970e9f0 conn xmit_rdma 0000000000000000
[  490.995499][ T6010] usb 1-1: Product: syz
[  490.999693][ T6010] usb 1-1: Manufacturer: syz
[  491.060804][ T6010] usb 1-1: config 0 descriptor??
[  491.125828][T17347] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4809'.
[  491.367068][ T6040] usb 1-1: USB disconnect, device number 20
[  491.582740][ T5875] Bluetooth: hci2: command tx timeout
[  491.621203][ T6010] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  491.791837][ T6010] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  491.834594][ T6010] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  491.911876][ T6010] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  491.951245][ T6010] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  491.959277][ T6010] usb 2-1: Manufacturer: syz
[  492.024419][ T6010] usb 2-1: config 0 descriptor??
[  492.041262][ T5938] usb 7-1: new full-speed USB device number 13 using dummy_hcd
[  492.241997][ T5938] usb 7-1: config 0 has an invalid interface number: 251 but max is 0
[  492.272682][ T5938] usb 7-1: config 0 has no interface number 0
[  492.314078][ T5938] usb 7-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  492.331701][ T6010] rc_core: IR keymap rc-hauppauge not found
[  492.337601][ T6010] Registered IR keymap rc-empty
[  492.364330][ T5938] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.389107][ T5938] usb 7-1: Product: syz
[  492.401496][ T5938] usb 7-1: Manufacturer: syz
[  492.406092][ T5938] usb 7-1: SerialNumber: syz
[  492.408616][ T6010] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  492.511593][ T5938] usb 7-1: config 0 descriptor??
[  492.515511][ T6010] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input24
[  492.693521][    C1] igorplugusb 2-1:0.0: receive overflow, at least 13 lost
[  492.846186][   T12] hsr_slave_0: left promiscuous mode
[  492.875312][   T12] hsr_slave_1: left promiscuous mode
[  492.902067][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  492.949249][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  492.975901][ T6010] usb 2-1: USB disconnect, device number 15
[  493.004299][   T12] batman_adv: batadv0: Interface deactivated: 
2
6±ÿ
[  493.045386][   T12] batman_adv: batadv0: Removing interface: 
2
6±ÿ
[  493.073402][   T12] batman_adv: batadv0: Interface deactivated: vlan1
[  493.083735][   T12] batman_adv: batadv0: Removing interface: vlan1
[  493.130075][ T5938] asix 7-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  493.177006][ T5938] asix 7-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71
[  493.192241][   T12] veth1_macvtap: left promiscuous mode
[  493.197791][   T12] veth0_macvtap: left allmulticast mode
[  493.213378][ T5938] asix 7-1:0.251: probe with driver asix failed with error -71
[  493.221065][   T12] veth0_macvtap: left promiscuous mode
[  493.227110][   T12] veth1_vlan: left promiscuous mode
[  493.240878][ T5938] usb 7-1: USB disconnect, device number 13
[  493.251943][   T12] veth0_vlan: left promiscuous mode
[  493.261816][ T5875] Bluetooth: hci5: command 0x0406 tx timeout
[  493.451175][T17388] loop5: detected capacity change from 0 to 32768
[  493.507138][T17388] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  493.587203][T17388] XFS (loop5): Ending clean mount
[  493.626010][T17388] XFS (loop5): Quotacheck needed: Please wait.
[  493.661239][ T5886] Bluetooth: hci2: command tx timeout
[  493.725367][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  493.725387][   T30] audit: type=1326 audit(1758799281.617:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17415 comm="syz.1.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a2078eec9 code=0x7ffc0000
[  493.798565][T17388] XFS (loop5): Quotacheck: Done.
[  493.869359][   T30] audit: type=1326 audit(1758799281.617:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17415 comm="syz.1.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a2078eec9 code=0x7ffc0000
[  493.916524][T17418] loop6: detected capacity change from 0 to 4096
[  493.928122][   T30] audit: type=1326 audit(1758799281.657:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17415 comm="syz.1.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7f4a2078eec9 code=0x7ffc0000
[  493.932790][T17418] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  494.043856][ T5873] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  494.057040][   T30] audit: type=1326 audit(1758799281.657:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17415 comm="syz.1.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a2078eec9 code=0x7ffc0000
[  494.079408][    C0] vkms_vblank_simulate: vblank timer overrun
[  494.274369][T17418] ntfs3(loop6): ino=0, attr_set_size
[  494.285522][T17418] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  494.376564][T17423] ntfs3(loop6): ino=0, attr_set_size
[  495.025697][T17441] netlink: 'syz.0.4843': attribute type 3 has an invalid length.
[  495.613392][T17437] loop5: detected capacity change from 0 to 32768
[  495.645957][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.645957][T17437] 
[  495.669351][T17437] xtLookup: xtSearch returned -5
[  495.675654][T17437] free_index: error reading directory table
[  495.731037][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.731037][T17437] 
[  495.772028][T17437] xtLookup: xtSearch returned -5
[  495.777651][T17443] loop0: detected capacity change from 0 to 32768
[  495.790144][T17451] program syz.6.4848 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  495.791588][T17437] free_index: error reading directory table
[  495.821783][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.821783][T17437] 
[  495.856670][   T12] team0 (unregistering): Port device team_slave_1 removed
[  495.857892][T17437] xtLookup: xtSearch returned -5
[  495.869108][T17443] ERROR: (device loop0): dbAllocAG: allocation request is larger than the allocation group size
[  495.869108][T17443] 
[  495.873522][T17437] free_index: error reading directory table
[  495.889572][T17452] program syz.6.4848 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  495.901952][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.901952][T17437] 
[  495.913563][T17437] xtLookup: xtSearch returned -5
[  495.918600][T17437] free_index: error reading directory table
[  495.925950][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.925950][T17437] 
[  495.936924][T17452] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  495.950591][T17437] xtLookup: xtSearch returned -5
[  495.956829][T17437] free_index: error reading directory table
[  495.963617][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.963617][T17437] 
[  495.975069][T17437] xtLookup: xtSearch returned -5
[  495.980132][T17437] add_index: get/read_metapage failed!
[  495.987881][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  495.987881][T17437] 
[  495.998314][T17437] xtLookup: xtSearch returned -5
[  496.000428][T17443] ERROR: (device loop0): dbDiscardAG: -EIO
[  496.000428][T17443] 
[  496.025029][T17437] free_index: error reading directory table
[  496.054930][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  496.054930][T17437] 
[  496.102036][T17437] xtLookup: xtSearch returned -5
[  496.119425][T17437] free_index: error reading directory table
[  496.145784][T17437] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  496.145784][T17437] 
[  496.183216][   T12] team0 (unregistering): Port device team_slave_0 removed
[  496.184213][T17437] xtLookup: xtSearch returned -5
[  496.236138][T17437] free_index: error reading directory table
[  497.375847][T17464] loop5: detected capacity change from 0 to 32768
[  497.678443][T17473] loop6: detected capacity change from 0 to 256
[  497.697503][T17202] chnl_net:caif_netlink_parms(): no params data found
[  498.841032][T17202] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.866236][T17202] bridge0: port 1(bridge_slave_0) entered disabled state
[  498.902090][T17202] bridge_slave_0: entered allmulticast mode
[  498.915201][T17202] bridge_slave_0: entered promiscuous mode
[  498.981451][T17202] bridge0: port 2(bridge_slave_1) entered blocking state
[  499.012844][T17202] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.020099][T17202] bridge_slave_1: entered allmulticast mode
[  499.084178][T17202] bridge_slave_1: entered promiscuous mode
[  499.301587][ T6040] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  499.353076][T17202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  499.404535][T17530] sp0: Synchronizing with TNC
[  499.445909][T17202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  499.481590][ T6040] usb 2-1: Using ep0 maxpacket: 32
[  499.493911][ T6040] usb 2-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  499.533835][ T6040] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  499.566881][ T6040] usb 2-1: config 0 descriptor??
[  499.591726][ T6040] gspca_main: nw80x-2.14.0 probing 055f:d001
[  499.801269][T17202] team0: Port device team_slave_0 added
[  499.810475][T17202] team0: Port device team_slave_1 added
[  499.881834][T17505] loop0: detected capacity change from 0 to 32768
[  499.978516][T17505] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  500.139781][T17554] loop7: detected capacity change from 0 to 256
[  500.164746][T17505] XFS (loop0): Ending clean mount
[  500.165291][T17556] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  500.176299][T17556] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  500.190765][T17554] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  500.207272][T17202] batman_adv: batadv0: Adding interface: batadv_slave_0
[  500.221316][ T6040] gspca_nw80x: reg_w err -71
[  500.231259][ T6040] nw80x 2-1:0.0: probe with driver nw80x failed with error -71
[  500.259488][T17202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  500.271416][T17556] vhci_hcd vhci_hcd.0: Device attached
[  500.312890][ T6040] usb 2-1: USB disconnect, device number 16
[  500.366226][T17561] loop6: detected capacity change from 0 to 256
[  500.397908][ T5870] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  500.399976][T17202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  500.420124][T17561] exfat: Deprecated parameter 'utf8'
[  500.490561][T17561] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  500.515414][T17202] batman_adv: batadv0: Adding interface: batadv_slave_1
[  500.523123][T17202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  500.549072][    C0] vkms_vblank_simulate: vblank timer overrun
[  500.555644][ T6045] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  500.616821][T17202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  500.641117][ T5938] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  500.787673][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  500.817510][ T5938] usb 6-1: Using ep0 maxpacket: 16
[  500.827503][ T5938] usb 6-1: config 0 has no interfaces?
[  500.841064][ T5938] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  500.871174][ T5938] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.902239][ T5938] usb 6-1: config 0 descriptor??
[  500.985789][T17567] overlayfs: conflicting lowerdir path
[  501.013845][T17570] loop7: detected capacity change from 0 to 512
[  501.061095][T17570] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  501.124781][T17570] EXT4-fs (loop7): 1 truncate cleaned up
[  501.188116][T17202] hsr_slave_0: entered promiscuous mode
[  501.214812][ T5938] usb 6-1: USB disconnect, device number 19
[  501.224396][T17557] vhci_hcd: connection closed
[  501.227069][   T12] vhci_hcd: stop threads
[  501.252622][T17575] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  501.254127][T17202] hsr_slave_1: entered promiscuous mode
[  501.282809][T17570] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  501.299406][   T12] vhci_hcd: release socket
[  501.311088][ T6045] usb 43-1: device descriptor read/64, error -71
[  501.333494][   T12] vhci_hcd: disconnect device
[  501.521107][ T6045] vhci_hcd: vhci_device speed not set
[  501.554267][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.567248][T17584] loop1: detected capacity change from 0 to 24
[  501.622366][T17584] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  501.721565][T17584] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  501.890575][T17591] loop0: detected capacity change from 0 to 764
[  502.033963][T17595] overlayfs: workdir and upperdir must be separate subtrees
[  502.207971][T17599] loop1: detected capacity change from 0 to 512
[  502.318196][T17599] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  502.445466][T17599] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  502.493561][T17599] EXT4-fs (loop1): orphan cleanup on readonly fs
[  502.502448][T17599] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4900: bg 0: block 361: padding at end of block bitmap is not set
[  502.542644][ T5938] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  502.568972][T17599] EXT4-fs (loop1): Remounting filesystem read-only
[  502.604749][T17202] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  502.648397][T17599] EXT4-fs (loop1): 1 truncate cleaned up
[  502.665796][T17202] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  502.684983][T17599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  502.716853][ T5938] usb 1-1: Using ep0 maxpacket: 8
[  502.762521][T17599] EXT4-fs warning (device loop1): dx_probe:861: inode #2: comm syz.1.4900: dx entry: limit 0 != root limit 125
[  502.801910][T17615] loop7: detected capacity change from 0 to 2048
[  502.809163][T17202] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  502.824913][T17599] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.4900: Corrupt directory, running e2fsck is recommended
[  502.831667][ T5938] usb 1-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  502.863946][T17615] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  502.865977][ T5938] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.883325][T17579] loop6: detected capacity change from 0 to 32768
[  502.890476][T17202] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  502.918952][ T5938] usb 1-1: Product: syz
[  502.971753][ T5938] usb 1-1: Manufacturer: syz
[  502.984781][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  502.997342][ T5938] usb 1-1: SerialNumber: syz
[  503.007086][T17617] mac80211_hwsim hwsim13 wlan1: entered promiscuous mode
[  503.043718][T17579] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  503.053981][ T5938] usb 1-1: config 0 descriptor??
[  503.103204][T17617] macvtap1: entered promiscuous mode
[  503.124133][T17579] XFS (loop6): Ending clean mount
[  503.254532][T17617] mac80211_hwsim hwsim13 wlan1: left promiscuous mode
[  503.302189][ T5938] usb 1-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  503.390424][ T7240] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  503.537946][T17633] loop7: detected capacity change from 0 to 256
[  503.594355][T17633] exfat: Deprecated parameter 'namecase'
[  503.706385][ T5938] usb write operation failed. (-71)
[  503.732427][T17633] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x367e6920, utbl_chksum : 0xe619d30d)
[  503.751855][ T5938] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  503.811723][ T5938] dvbdev: DVB: registering new adapter (Terratec H7)
[  503.818473][ T5938] usb 1-1: media controller created
[  503.884958][ T5938] usb read operation failed. (-71)
[  503.903777][ T5938] usb write operation failed. (-71)
[  503.957442][ T5938] dvb_usb_az6007 1-1:0.0: probe with driver dvb_usb_az6007 failed with error -5
[  503.980907][T17648] loop5: detected capacity change from 0 to 512
[  504.038368][ T5938] usb 1-1: USB disconnect, device number 21
[  504.187775][T17648] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  504.280327][T17202] 8021q: adding VLAN 0 to HW filter on device bond0
[  504.281216][T17648] ext4 filesystem being mounted at /836/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  504.425179][T17648] EXT4-fs (loop5): resizing filesystem from 128 to 1 blocks
[  504.446182][T17202] 8021q: adding VLAN 0 to HW filter on device team0
[  504.467859][T17648] EXT4-fs warning (device loop5): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  504.504898][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  504.512127][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  504.544943][T17662] loop1: detected capacity change from 0 to 512
[  504.581111][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  504.588296][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  504.628296][T17662] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.4916: invalid block
[  504.694197][T17664] loop0: detected capacity change from 0 to 1024
[  504.769347][T17662] EXT4-fs (loop1): Remounting filesystem read-only
[  504.798831][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  504.808405][T17662] EXT4-fs (loop1): 2 truncates cleaned up
[  504.828165][T17202] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  504.840834][T17662] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  505.319509][ T1173] hfsplus: b-tree write err: -5, ino 4
[  505.527467][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  506.149796][T17691] loop5: detected capacity change from 0 to 4096
[  506.521678][T17704] loop0: detected capacity change from 0 to 512
[  506.574572][T17700] loop1: detected capacity change from 0 to 32768
[  506.584936][T17691] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  506.612771][T17704] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  506.663356][T17704] EXT4-fs (loop0): invalid journal inode
[  506.669078][T17704] EXT4-fs (loop0): can't get journal size
[  506.686723][T17700] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  506.696933][T17700] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  506.740617][T17706] loop7: detected capacity change from 0 to 2048
[  506.805492][T17700] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  506.810829][T17691] ntfs3(loop5): ino=19, mi_enum_attr
[  506.826422][ T6010] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  506.832584][T17704] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002]
[  506.842816][ T6010] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  506.846565][T17202] 8021q: adding VLAN 0 to HW filter on device batadv0
[  506.901309][T17691] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  506.910602][T17704] System zones: 1-12, 13-13
[  506.981452][T17704] EXT4-fs (loop0): 1 truncate cleaned up
[  506.990414][T17706] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.050251][T17704] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  507.095246][ T6010] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 252ms
[  507.109309][ T6010] gfs2: fsid=syz:syz.0: jid=0: Done
[  507.117645][T17700] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  507.123406][T17691] ntfs3(loop5): failed to convert "c46c" to euc-jp
[  507.133730][T17706] EXT4-fs error (device loop7): ext4_free_inode:354: comm syz.7.4932: bit already cleared for inode 15
[  507.188808][T17691] ntfs3(loop5): ino=20, mi_enum_attr
[  507.189509][T17700] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 0 (bad magic number), function = gfs2_quota_init, file = fs/gfs2/quota.c, line = 1430
[  507.210383][T17700] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  507.229354][T17700] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  507.239031][T17700] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  507.246101][T17700] gfs2: fsid=syz:syz.0: File system withdrawn
[  507.252228][T17700] CPU: 1 UID: 0 PID: 17700 Comm: syz.1.4930 Not tainted syzkaller #0 PREEMPT(full) 
[  507.252260][T17700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  507.252276][T17700] Call Trace:
[  507.252287][T17700]  <TASK>
[  507.252298][T17700]  dump_stack_lvl+0x189/0x250
[  507.252338][T17700]  ? __pfx_dump_stack_lvl+0x10/0x10
[  507.252370][T17700]  ? __pfx__printk+0x10/0x10
[  507.252407][T17700]  ? kobject_uevent_env+0x36b/0x8c0
[  507.252454][T17700]  gfs2_withdraw+0xb30/0x1430
[  507.252515][T17700]  ? __pfx_gfs2_withdraw+0x10/0x10
[  507.252551][T17700]  ? __pfx_gfs2_lm+0x10/0x10
[  507.252608][T17700]  gfs2_meta_check_ii+0x67/0x80
[  507.252647][T17700]  gfs2_quota_init+0xf96/0x1230
[  507.252677][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.252707][T17700]  ? __lock_acquire+0xab9/0xd20
[  507.252770][T17700]  ? __pfx_gfs2_quota_init+0x10/0x10
[  507.252798][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.252829][T17700]  ? __pfx_wake_up_bit+0x10/0x10
[  507.252858][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.252896][T17700]  ? inode_go_inval+0x259/0x2c0
[  507.252934][T17700]  gfs2_make_fs_rw+0x181/0x2b0
[  507.252961][T17700]  gfs2_fill_super+0x1a7b/0x20d0
[  507.253017][T17700]  ? __pfx_gfs2_fill_super+0x10/0x10
[  507.253051][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253086][T17700]  ? init_locking+0xb8/0x210
[  507.253119][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253147][T17700]  ? sb_set_blocksize+0x104/0x180
[  507.253174][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253203][T17700]  ? setup_bdev_super+0x4c1/0x5b0
[  507.253243][T17700]  get_tree_bdev_flags+0x40e/0x4d0
[  507.253280][T17700]  ? __pfx_gfs2_fill_super+0x10/0x10
[  507.253317][T17700]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  507.253356][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253395][T17700]  gfs2_get_tree+0x51/0x1e0
[  507.253435][T17700]  vfs_get_tree+0x92/0x2b0
[  507.253475][T17700]  do_new_mount+0x2a2/0x9e0
[  507.253522][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253551][T17700]  ? ns_capable+0x8a/0xf0
[  507.253576][T17700]  ? __pfx_do_new_mount+0x10/0x10
[  507.253612][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253641][T17700]  ? path_mount+0x61c/0xfe0
[  507.253676][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253719][T17700]  __se_sys_mount+0x317/0x410
[  507.253767][T17700]  ? __pfx___se_sys_mount+0x10/0x10
[  507.253804][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253842][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.253871][T17700]  ? __x64_sys_mount+0x20/0xc0
[  507.253913][T17700]  do_syscall_64+0xfa/0x3b0
[  507.253942][T17700]  ? lockdep_hardirqs_on+0x9c/0x150
[  507.253976][T17700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.254000][T17700]  ? srso_alias_return_thunk+0x5/0xfbef5
[  507.254029][T17700]  ? exc_page_fault+0x9f/0xf0
[  507.254058][T17700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.254083][T17700] RIP: 0033:0x7f4a2079066a
[  507.254106][T17700] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.254128][T17700] RSP: 002b:00007f4a215bde68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  507.254154][T17700] RAX: ffffffffffffffda RBX: 00007f4a215bdef0 RCX: 00007f4a2079066a
[  507.254178][T17700] RDX: 0000200000000140 RSI: 0000200000000000 RDI: 00007f4a215bdeb0
[  507.254196][T17700] RBP: 0000200000000140 R08: 00007f4a215bdef0 R09: 0000000002810000
[  507.254215][T17700] R10: 0000000002810000 R11: 0000000000000246 R12: 0000200000000000
[  507.254232][T17700] R13: 00007f4a215bdeb0 R14: 0000000000037fe2 R15: 00002000000001c0
[  507.254269][T17700]  </TASK>
[  507.254752][T17700] gfs2: fsid=syz:syz.0: can't make FS RW: -5
[  507.348051][T17692] loop6: detected capacity change from 0 to 32768
[  507.388964][T17720] EXT4-fs error (device loop7): __ext4_new_inode:1073: comm syz.7.4932: reserved inode found cleared - inode=1
[  507.698853][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.749888][T17692] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4927 (17692)
[  507.897637][T17692] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  507.980856][T17692] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  508.108882][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.355799][T17692] BTRFS info (device loop6): enabling ssd optimizations
[  508.393303][T17692] BTRFS info (device loop6): enabling free space tree
[  508.591672][ T5938] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  508.685941][T17202] veth0_vlan: entered promiscuous mode
[  508.709354][ T7240] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  508.717731][T17202] veth1_vlan: entered promiscuous mode
[  508.777975][ T5938] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  508.803331][ T5938] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.829725][ T5938] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  508.849239][ T5938] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.874774][T17202] veth0_macvtap: entered promiscuous mode
[  508.886067][ T5938] usb 2-1: config 0 descriptor??
[  508.971285][T17202] veth1_macvtap: entered promiscuous mode
[  509.089507][T17202] batman_adv: batadv0: Interface activated: batadv_slave_0
[  509.140818][T17764] loop5: detected capacity change from 0 to 2048
[  509.154493][T17202] batman_adv: batadv0: Interface activated: batadv_slave_1
[  509.227964][T17764] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  509.238662][ T3541] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  509.276211][ T3541] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  509.321318][ T5951] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  509.321707][ T1101] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  509.367335][ T5938] cm6533_jd 0003:0D8C:0022.000E: invalid report_size -101239751
[  509.381679][ T6395] udevd[6395]: incorrect nilfs2 checksum on /dev/loop5
[  509.391371][T17773] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  509.407745][ T5938] cm6533_jd 0003:0D8C:0022.000E: item 0 4 1 7 parsing failed
[  509.441336][ T1173] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  509.458706][ T5938] cm6533_jd 0003:0D8C:0022.000E: parse failed
[  509.493938][ T5938] cm6533_jd 0003:0D8C:0022.000E: probe with driver cm6533_jd failed with error -22
[  509.526776][ T5951] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  509.565493][ T5938] usb 2-1: USB disconnect, device number 17
[  509.577706][ T5951] usb 8-1: config 0 has no interface number 0
[  509.597227][ T5951] usb 8-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  509.643363][ T5951] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.723862][ T5965] usb 1-1: new low-speed USB device number 22 using dummy_hcd
[  509.739424][ T5951] usb 8-1: config 0 descriptor??
[  509.803839][ T5951] usb 8-1: selecting invalid altsetting 1
[  509.827586][ T3573] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  509.864299][ T5951] dvb_ttusb_budget: ttusb_init_controller: error
[  509.879201][ T3573] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  509.897268][ T5951] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  509.957601][ T5965] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  509.989649][ T5965] usb 1-1: config 0 has no interface number 0
[  510.040993][ T5965] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  510.054971][T17778] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4949'.
[  510.082507][ T5965] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  510.084377][T17778] tipc: Invalid UDP bearer configuration
[  510.113867][T17778] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  510.117681][ T5965] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  510.148674][ T3541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  510.171038][ T3541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  510.188576][ T5951] DVB: Unable to find symbol cx22700_attach()
[  510.196530][ T5965] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.238899][ T5965] usb 1-1: config 0 descriptor??
[  510.280660][T17774] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  510.334521][ T5965] iowarrior 1-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  510.389892][ T5951] DVB: Unable to find symbol tda10046_attach()
[  510.418158][ T5951] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  510.501097][ T5951] usb 8-1: USB disconnect, device number 3
[  510.529183][T17785] loop5: detected capacity change from 0 to 64
[  510.598979][T17787] usb usb1: usbfs: process 17787 (syz.8.4740) did not claim interface 0 before use
[  510.644369][T17785] Trying to free block not in datazone
[  510.660661][   T56] usb 1-1: USB disconnect, device number 22
[  510.758290][T17772] loop6: detected capacity change from 0 to 32768
[  510.779766][T17772] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4948 (17772)
[  510.830461][T17772] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  510.901180][T17772] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  511.069611][T17801] loop5: detected capacity change from 0 to 4096
[  511.099408][T17801] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  511.216638][T17772] BTRFS info (device loop6): enabling ssd optimizations
[  511.244722][T17819] loop1: detected capacity change from 0 to 8
[  511.257538][T17772] BTRFS info (device loop6): enabling free space tree
[  511.328287][T17801] ntfs3(loop5): Failed to load $Extend (-22).
[  511.377653][T17801] ntfs3(loop5): Failed to initialize $Extend.
[  511.669780][ T7240] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  511.690236][T17828] loop7: detected capacity change from 0 to 1764
[  511.782768][T17830] xt_HMARK: spi-set and port-set can't be combined
[  512.503544][T17853] loop7: detected capacity change from 0 to 512
[  512.614467][T17853] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  512.617810][T17864] loop6: detected capacity change from 0 to 512
[  512.665940][T17853] ext4 filesystem being mounted at /169/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  512.693103][T17859] loop0: detected capacity change from 0 to 2048
[  512.789819][T17859] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  512.849713][T17864] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  512.881866][T17864] ext4 filesystem being mounted at /722/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  512.932082][T17874] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  512.960116][T17873] tipc: Started in network mode
[  512.976104][T17873] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  513.007641][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.076730][T17873] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  513.312364][ T7240] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.628825][T17885] loop0: detected capacity change from 0 to 512
[  513.665192][T17890] loop8: detected capacity change from 0 to 128
[  513.707805][T17885] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  513.749693][T17885] EXT4-fs (loop0): 1 truncate cleaned up
[  513.759002][T17890] EXT4-fs: Ignoring removed nobh option
[  513.837941][T17885] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.861829][T17900] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4989'.
[  513.900338][T17890] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  513.944384][T17890] ext4 filesystem being mounted at mnt:[4026533359] supports timestamps until 2038-01-19 (0x7fffffff)
[  513.964440][T17890] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  514.001675][T17904] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4991'.
[  514.189247][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.541652][ T5938] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  514.692120][T17926] loop0: detected capacity change from 0 to 256
[  514.748407][ T5938] usb 2-1: Using ep0 maxpacket: 32
[  514.770830][T17926] exfat: Deprecated parameter 'utf8'
[  514.779919][ T5938] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  514.807366][T17926] exfat: Unknown parameter 'iocharseC'
[  514.837363][ T5938] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  514.861687][T17926] Invalid source name
[  514.870021][ T5938] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.900896][T17932] loop7: detected capacity change from 0 to 512
[  514.901360][T17933] net_ratelimit: 46 callbacks suppressed
[  514.901377][T17933] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  514.923737][ T5938] usb 2-1: Product: syz
[  514.927928][ T5938] usb 2-1: Manufacturer: syz
[  514.939468][ T5938] usb 2-1: SerialNumber: syz
[  514.945039][T17932] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  514.954463][T17932] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  514.996785][T17932] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  515.067185][T17932] System zones: 0-2, 18-18, 34-35
[  515.082201][ T5938] usb 2-1: config 0 descriptor??
[  515.140175][T17932] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  515.169731][ T5938] cdc_ether 2-1:0.0: skipping garbage
[  515.210245][ T5938] usb 2-1: bad CDC descriptors
[  515.236949][ T5938] usb 2-1: unsupported MDLM descriptors
[  515.276293][T17942] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5008'.
[  515.330198][T17942] netlink: 35 bytes leftover after parsing attributes in process `syz.8.5008'.
[  515.337440][T17932] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  515.343283][T17945] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5012'.
[  515.376689][T17942] netlink: 'syz.8.5008': attribute type 5 has an invalid length.
[  515.401014][T17942] netlink: 'syz.8.5008': attribute type 6 has an invalid length.
[  515.407178][T17932] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  515.419254][T17942] netlink: 35 bytes leftover after parsing attributes in process `syz.8.5008'.
[  515.439478][ T5938] usb 2-1: USB disconnect, device number 18
[  515.481105][T17932] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  515.696103][   T30] audit: type=1326 audit(1758799303.577:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  515.784271][   T30] audit: type=1326 audit(1758799303.577:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  515.848027][T15285] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.892458][   T30] audit: type=1326 audit(1758799303.577:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  515.957625][   T30] audit: type=1326 audit(1758799303.607:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.076634][   T30] audit: type=1326 audit(1758799303.607:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.251171][   T30] audit: type=1326 audit(1758799303.607:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.361038][   T30] audit: type=1326 audit(1758799303.607:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.498967][   T30] audit: type=1326 audit(1758799303.607:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.663695][   T30] audit: type=1326 audit(1758799303.607:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  516.687156][T17990] delete_channel: no stack
[  516.744043][T17988] delete_channel: no stack
[  516.811825][   T30] audit: type=1326 audit(1758799303.617:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17955 comm="syz.0.5014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7ff5d178eec9 code=0x7ffc0000
[  517.036414][T18001] loop6: detected capacity change from 0 to 128
[  517.109936][T18001] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  517.220517][T18001] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  517.512317][T18008] loop0: detected capacity change from 0 to 4096
[  517.699000][T18017] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  518.267584][T17985] loop5: detected capacity change from 0 to 32768
[  518.398301][T17985] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  518.480987][T18046] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5052'.
[  518.496801][T18046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5052'.
[  518.518973][T18044] loop6: detected capacity change from 0 to 47
[  518.537361][T17985] 
[  518.539705][T17985] ======================================================
[  518.546714][T17985] WARNING: possible circular locking dependency detected
[  518.553802][T17985] syzkaller #0 Not tainted
[  518.558200][T17985] ------------------------------------------------------
[  518.565203][T17985] syz.5.5026/17985 is trying to acquire lock:
[  518.571255][T17985] ffff888054079538 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f9/0x720
[  518.580571][T17985] 
[  518.580571][T17985] but task is already holding lock:
[  518.587909][T17985] ffff88802ca2a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  518.597138][T17985] 
[  518.597138][T17985] which lock already depends on the new lock.
[  518.597138][T17985] 
[  518.607519][T17985] 
[  518.607519][T17985] the existing dependency chain (in reverse order) is:
[  518.616511][T17985] 
[  518.616511][T17985] -> #4 (jbd2_handle){++++}-{0:0}:
[  518.623807][T17985]        lock_acquire+0x120/0x360
[  518.628834][T17985]        start_this_handle+0x1fa7/0x21c0
[  518.634461][T17985]        jbd2__journal_start+0x2c1/0x5b0
[  518.640086][T17985]        jbd2_journal_start+0x2a/0x40
[  518.645452][T17985]        ocfs2_start_trans+0x376/0x6d0
[  518.650903][T17985]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  518.657131][T17985]        ocfs2_dismount_volume+0x201/0x8d0
[  518.662934][T17985]        generic_shutdown_super+0x135/0x2c0
[  518.668815][T17985]        kill_block_super+0x44/0x90
[  518.674010][T17985]        deactivate_locked_super+0xbc/0x130
[  518.679892][T17985]        cleanup_mnt+0x425/0x4c0
[  518.684824][T17985]        task_work_run+0x1d4/0x260
[  518.689925][T17985]        exit_to_user_mode_loop+0xec/0x110
[  518.695725][T17985]        do_syscall_64+0x2bd/0x3b0
[  518.700827][T17985]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.707236][T17985] 
[  518.707236][T17985] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  518.715748][T17985]        lock_acquire+0x120/0x360
[  518.720766][T17985]        down_read+0x46/0x2e0
[  518.725432][T17985]        ocfs2_start_trans+0x36a/0x6d0
[  518.730882][T17985]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  518.737111][T17985]        ocfs2_dismount_volume+0x201/0x8d0
[  518.742917][T17985]        generic_shutdown_super+0x135/0x2c0
[  518.748802][T17985]        kill_block_super+0x44/0x90
[  518.754006][T17985]        deactivate_locked_super+0xbc/0x130
[  518.759888][T17985]        cleanup_mnt+0x425/0x4c0
[  518.764812][T17985]        task_work_run+0x1d4/0x260
[  518.769920][T17985]        exit_to_user_mode_loop+0xec/0x110
[  518.775899][T17985]        do_syscall_64+0x2bd/0x3b0
[  518.781005][T17985]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.787408][T17985] 
[  518.787408][T17985] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  518.794890][T17985]        lock_acquire+0x120/0x360
[  518.799914][T17985]        ocfs2_start_trans+0x26b/0x6d0
[  518.805369][T17985]        ocfs2_setattr+0x969/0x1b40
[  518.810555][T17985]        notify_change+0xb36/0xe40
[  518.815658][T17985]        chmod_common+0x248/0x400
[  518.820681][T17985]        do_fchmodat+0x12d/0x200
[  518.825608][T17985]        __x64_sys_fchmodat+0x7d/0x90
[  518.830965][T17985]        do_syscall_64+0xfa/0x3b0
[  518.835981][T17985]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.842392][T17985] 
[  518.842392][T17985] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  518.851342][T17985]        lock_acquire+0x120/0x360
[  518.856368][T17985]        down_write+0x96/0x1f0
[  518.861119][T17985]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[  518.867613][T17985]        ocfs2_xattr_set+0x595/0x11f0
[  518.872976][T17985]        ocfs2_set_acl+0x701/0x7b0
[  518.878077][T17985]        ocfs2_iop_set_acl+0x1aa/0x2a0
[  518.883528][T17985]        vfs_set_acl+0x887/0xb00
[  518.888458][T17985]        filename_setxattr+0x2e0/0x600
[  518.893904][T17985]        path_setxattrat+0x364/0x3a0
[  518.899184][T17985]        __x64_sys_setxattr+0xbc/0xe0
[  518.904545][T17985]        do_syscall_64+0xfa/0x3b0
[  518.909567][T17985]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.915970][T17985] 
[  518.915970][T17985] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[  518.923792][T17985]        validate_chain+0xb9b/0x2140
[  518.929420][T17985]        __lock_acquire+0xab9/0xd20
[  518.934618][T17985]        lock_acquire+0x120/0x360
[  518.939644][T17985]        down_read+0x46/0x2e0
[  518.944311][T17985]        ocfs2_init_acl+0x2f9/0x720
[  518.949505][T17985]        ocfs2_mknod+0x1321/0x2050
[  518.954704][T17985]        ocfs2_create+0x1a5/0x440
[  518.959723][T17985]        path_openat+0x14f4/0x3830
[  518.964830][T17985]        do_filp_open+0x1fa/0x410
[  518.969846][T17985]        do_sys_openat2+0x121/0x1c0
[  518.975038][T17985]        __x64_sys_openat+0x138/0x170
[  518.980404][T17985]        do_syscall_64+0xfa/0x3b0
[  518.985425][T17985]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.991835][T17985] 
[  518.991835][T17985] other info that might help us debug this:
[  518.991835][T17985] 
[  519.002055][T17985] Chain exists of:
[  519.002055][T17985]   &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle
[  519.002055][T17985] 
[  519.015798][T17985]  Possible unsafe locking scenario:
[  519.015798][T17985] 
[  519.023241][T17985]        CPU0                    CPU1
[  519.028586][T17985]        ----                    ----
[  519.033928][T17985]   rlock(jbd2_handle);
[  519.038074][T17985]                                lock(&journal->j_trans_barrier);
[  519.045866][T17985]                                lock(jbd2_handle);
[  519.052570][T17985]   rlock(&oi->ip_xattr_sem);
[  519.057238][T17985] 
[  519.057238][T17985]  *** DEADLOCK ***
[  519.057238][T17985] 
[  519.065365][T17985] 8 locks held by syz.5.5026/17985:
[  519.070542][T17985]  #0: ffff88803145a428 (sb_writers#17){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  519.079783][T17985]  #1: ffff888054079800 (&type->i_mutex_dir_key#15){++++}-{4:4}, at: path_openat+0x8da/0x3830
[  519.090066][T17985]  #2: ffff8880510b3480 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  519.103813][T17985]  #3: ffff88805407a640 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  519.117654][T17985]  #4: ffff8880510b6d80 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  519.131660][T17985]  #5: ffff88803145a618 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xe93/0x2050
[  519.140897][T17985]  #6: ffff8880297fd0e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0
[  519.151621][T17985]  #7: ffff88802ca2a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  519.161298][T17985] 
[  519.161298][T17985] stack backtrace:
[  519.167170][T17985] CPU: 0 UID: 0 PID: 17985 Comm: syz.5.5026 Not tainted syzkaller #0 PREEMPT(full) 
[  519.167196][T17985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  519.167211][T17985] Call Trace:
[  519.167220][T17985]  <TASK>
[  519.167230][T17985]  dump_stack_lvl+0x189/0x250
[  519.167263][T17985]  ? __pfx_dump_stack_lvl+0x10/0x10
[  519.167289][T17985]  ? __pfx__printk+0x10/0x10
[  519.167318][T17985]  ? stack_trace_save+0x9c/0xe0
[  519.167346][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167377][T17985]  print_circular_bug+0x2ee/0x310
[  519.167404][T17985]  check_noncircular+0x134/0x160
[  519.167431][T17985]  validate_chain+0xb9b/0x2140
[  519.167456][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167494][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167523][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167551][T17985]  __lock_acquire+0xab9/0xd20
[  519.167586][T17985]  ? ocfs2_init_acl+0x2f9/0x720
[  519.167612][T17985]  lock_acquire+0x120/0x360
[  519.167643][T17985]  ? ocfs2_init_acl+0x2f9/0x720
[  519.167671][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167697][T17985]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  519.167734][T17985]  down_read+0x46/0x2e0
[  519.167758][T17985]  ? ocfs2_init_acl+0x2f9/0x720
[  519.167785][T17985]  ocfs2_init_acl+0x2f9/0x720
[  519.167810][T17985]  ? ocfs2_mknod_locked+0x148/0x250
[  519.167837][T17985]  ? __pfx_ocfs2_init_acl+0x10/0x10
[  519.167862][T17985]  ? dquot_alloc_inode+0x216/0xa50
[  519.167887][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.167912][T17985]  ? ocfs2_block_signals+0x94/0xe0
[  519.167932][T17985]  ? __pfx_ocfs2_block_signals+0x10/0x10
[  519.167955][T17985]  ? ocfs2_init_security_get+0x139/0x1a0
[  519.167987][T17985]  ocfs2_mknod+0x1321/0x2050
[  519.168018][T17985]  ? __pfx_ocfs2_mknod+0x10/0x10
[  519.168040][T17985]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  519.168070][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168095][T17985]  ? __lock_acquire+0xab9/0xd20
[  519.168137][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168163][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168188][T17985]  ? look_up_lock_class+0x74/0x170
[  519.168211][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168236][T17985]  ? register_lock_class+0x51/0x320
[  519.168270][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168295][T17985]  ? __lock_acquire+0xab9/0xd20
[  519.168330][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168355][T17985]  ? __lock_acquire+0xab9/0xd20
[  519.168390][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168415][T17985]  ? do_raw_spin_lock+0x121/0x290
[  519.168444][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168471][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168500][T17985]  ? do_raw_spin_unlock+0x122/0x240
[  519.168528][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168555][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168579][T17985]  ? rcu_is_watching+0x15/0xb0
[  519.168601][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168626][T17985]  ? ocfs2_lookup+0x5b9/0x9b0
[  519.168651][T17985]  ocfs2_create+0x1a5/0x440
[  519.168673][T17985]  ? __pfx_ocfs2_lookup+0x10/0x10
[  519.168694][T17985]  ? from_kgid+0x1b0/0x650
[  519.168722][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168749][T17985]  ? __pfx_ocfs2_create+0x10/0x10
[  519.168769][T17985]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  519.168793][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168818][T17985]  ? inode_permission+0x149/0x470
[  519.168838][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168863][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.168889][T17985]  ? __pfx_ocfs2_create+0x10/0x10
[  519.168910][T17985]  path_openat+0x14f4/0x3830
[  519.168936][T17985]  ? arch_stack_walk+0xfc/0x150
[  519.168979][T17985]  ? __pfx_path_openat+0x10/0x10
[  519.169004][T17985]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.169036][T17985]  do_filp_open+0x1fa/0x410
[  519.169062][T17985]  ? __lock_acquire+0xab9/0xd20
[  519.169094][T17985]  ? __pfx_do_filp_open+0x10/0x10
[  519.169132][T17985]  ? _raw_spin_unlock+0x28/0x50
[  519.169163][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.169188][T17985]  ? alloc_fd+0x64c/0x6c0
[  519.169225][T17985]  do_sys_openat2+0x121/0x1c0
[  519.169249][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.169274][T17985]  ? __se_sys_futex+0x36f/0x400
[  519.169302][T17985]  ? __pfx_do_sys_openat2+0x10/0x10
[  519.169329][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.169353][T17985]  ? rcu_is_watching+0x15/0xb0
[  519.169376][T17985]  __x64_sys_openat+0x138/0x170
[  519.169403][T17985]  do_syscall_64+0xfa/0x3b0
[  519.169427][T17985]  ? lockdep_hardirqs_on+0x9c/0x150
[  519.169449][T17985]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.169470][T17985]  ? srso_alias_return_thunk+0x5/0xfbef5
[  519.169501][T17985]  ? exc_page_fault+0x9f/0xf0
[  519.169523][T17985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.169544][T17985] RIP: 0033:0x7ff38158eec9
[  519.169564][T17985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.169583][T17985] RSP: 002b:00007ff382466038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  519.169605][T17985] RAX: ffffffffffffffda RBX: 00007ff3817e5fa0 RCX: 00007ff38158eec9
[  519.169622][T17985] RDX: 0000000000101042 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  519.169638][T17985] RBP: 00007ff381611f91 R08: 0000000000000000 R09: 0000000000000000
[  519.169653][T17985] R10: 00000000000000b0 R11: 0000000000000246 R12: 0000000000000000
[  519.169666][T17985] R13: 00007ff3817e6038 R14: 00007ff3817e5fa0 R15: 00007ffdb07d06a8
[  519.169691][T17985]  </TASK>
[  519.170773][T18046] netlink: 'syz.0.5052': attribute type 12 has an invalid length.
[  519.179227][    C0] vkms_vblank_simulate: vblank timer overrun
[  519.263684][T18048] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5049'.
[  519.387067][T17985] syz.5.5026 (17985) used greatest stack depth: 17752 bytes left
[  519.807920][ T5873] ocfs2: Unmounting device (7,5) on (node local)