last executing test programs:

6.45343174s ago: executing program 0 (id=496):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x42, &(0x7f00000000c0)=ANY=[@ANYBLOB="6673796e635f6d6f64653d706f7369782c6e6f696e6c696e655f646174612c6469736361726400aa19fd46b492dc6cf59d696e6c696e655f64656e7472792c00"], 0x1, 0x550e, &(0x7f0000005980)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.stat\x00', 0x275a, 0x0)
write$FUSE_LSEEK(r0, &(0x7f00000000c0)={0x18, 0x0, 0x0, {0x8093}}, 0x18)
write$uinput_user_dev(r0, &(0x7f0000000180)={'syz0\x00', {0xfe2c, 0x1000, 0xff00, 0x7ff}, 0x44, [0x0, 0x6, 0x7, 0x9, 0xc194, 0xdcf, 0x1, 0xd05, 0x7fff, 0x4, 0x8, 0x1, 0x0, 0x29, 0x3, 0x2, 0x81, 0x4, 0x9, 0x0, 0x5, 0x7, 0x0, 0x3, 0x20000000, 0x5, 0xb, 0x6, 0xa, 0xd0bc, 0x80000001, 0x200, 0x2, 0x42b90b17, 0x7, 0x5, 0x8, 0x0, 0xff, 0x200, 0x4, 0x5, 0x3, 0xefd0, 0x6, 0x98, 0xab4, 0x2, 0x4, 0x7f, 0x10000, 0x2, 0x2, 0x8, 0x8f100000, 0x400, 0xffffffb3, 0x40, 0xc, 0x5, 0x8, 0xc2ee, 0x6c96, 0x88b0], [0xff, 0x49, 0x4, 0xc016, 0x6, 0x7ff, 0x5, 0x1, 0xb, 0x8, 0x80000001, 0x10000, 0xc74475f, 0x5, 0x224f22e7, 0xa, 0x2, 0x0, 0x0, 0x7fffffff, 0xfffffff2, 0x9ba1, 0x4, 0x47e, 0xbf2, 0xc, 0x5, 0x7, 0x3, 0xe2db, 0x6, 0x800, 0x6a1f, 0x5, 0x2448f173, 0x2, 0x4, 0x1, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x243e5e64, 0x0, 0x5, 0xbb5e, 0xc, 0x52, 0x1, 0xfffffffe, 0x85, 0x8, 0x3, 0x800, 0x4, 0x1, 0x10, 0x7, 0x6, 0x6, 0x1000, 0x7], [0x41ea, 0xfffffff7, 0xcf72, 0x7, 0x7, 0x6, 0x3, 0x10000, 0x80000000, 0x7, 0x1, 0x400, 0x5, 0x26eff1d2, 0x5, 0x5, 0x5, 0x200, 0xffff7fff, 0x5, 0xdd, 0xffff, 0xa263, 0xfffffffd, 0x7, 0x8, 0x8, 0x4, 0x1, 0x5, 0x2, 0x9, 0x6, 0x6, 0x8, 0x7, 0x8, 0x5, 0x3000000, 0xb5, 0x43, 0xfffffffa, 0xfffe, 0x2000000, 0x4, 0x3, 0x3, 0x6, 0x6, 0x1, 0x80000001, 0x1, 0x2, 0xffff, 0x4, 0x80000001, 0x2, 0x0, 0x4, 0x0, 0x7, 0x37d9272d, 0x80000000], [0x9, 0x7f, 0x5, 0x4, 0x8, 0x8, 0x5, 0x0, 0x283, 0x7, 0x0, 0x0, 0x3ce, 0x7, 0x4, 0xff, 0x3, 0x4da, 0x7, 0x5, 0x1, 0x9, 0x1ff, 0x40, 0x7be, 0xfffffffe, 0x200, 0x3, 0xfffffff9, 0x3, 0x1, 0x3, 0x7, 0xfffffff3, 0x5, 0x5, 0xfffffffb, 0x9, 0x800, 0xcab1, 0x7, 0xfffffffa, 0x8, 0x81, 0xa, 0x7, 0x6, 0x10, 0x4d5, 0xf929, 0x0, 0x7c753245, 0x4, 0xffffffff, 0x8d, 0x4305, 0x7, 0x5ef81e72, 0x1, 0x4, 0xfffffffd, 0x5a, 0x5, 0x2]}, 0x45c)

5.650690104s ago: executing program 0 (id=500):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000002100), 0x1, 0x2)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000280)={0x7, @vbi={0x20000, 0x9, 0xfff, 0x32315258, [0x5, 0x7], [0x1, 0x2]}})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r4 = dup(r3)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)=@x86={0x80, 0x5, 0x9, 0x0, 0x5, 0x3, 0xf, 0x1, 0x7, 0xc2, 0x4, 0xff, 0x0, 0x6, 0x3, 0x2, 0x38, 0x3, 0x1, '\x00', 0x92, 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.864035418s ago: executing program 4 (id=505):
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001080)={0x10, 0x1403, 0x1}, 0x10}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

3.430256266s ago: executing program 4 (id=510):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd26, 0x8000003, {0x0, 0x0, 0x0, r3, {0x0, 0xfff4}, {}, {0x1, 0x10}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x10, 0x2, 0x0, 0x0, {{0xffff, 0x0, 0x7540}, "0400"}}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

2.954801744s ago: executing program 0 (id=512):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = open(&(0x7f0000000580)='./bus\x00', 0x80242, 0x100)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x20ff, 0x5, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
pwritev2(r1, &(0x7f0000000680)=[{&(0x7f0000000200)="05", 0x6a000}], 0x1, 0x6000000, 0x0, 0x0)

2.869994065s ago: executing program 4 (id=514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x4, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000000000000000060000008500000061000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x320e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

2.718128568s ago: executing program 3 (id=515):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd21, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x2, 0x8}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8848}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xc, 0xc}, {0x0, 0xfff1}, {0xfff2, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4041080)

2.635332017s ago: executing program 0 (id=516):
syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="bbbbbbbbbbbb000000000000082045b80600"], 0x0)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0xc7ec}, 0x1c)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xffd8}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

2.629608475s ago: executing program 4 (id=517):
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406a0505000000000000010902"], 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x7, 0x4ce, 0x3, 0x9dff, 0x14, "800300eb00cbe600"})
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0xfffffff9, 0x7fff, 0x16, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0xa)

2.367450156s ago: executing program 0 (id=519):
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000200)='./file0\x00', 0x10, &(0x7f0000000480)=ANY=[], 0x5, 0xa5a, &(0x7f0000001b40)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x80186e84, &(0x7f0000000080)={@desc={0x40002, 0x0, @desc1}})

2.303733453s ago: executing program 3 (id=521):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800"/15], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="e8000000190001002dbd7000fbdbdf2502202000ff02ff020018000008000100ac1414aac100088026"], 0xe8}, 0x1, 0x0, 0x0, 0x44050}, 0x1000)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4040806)

2.171230503s ago: executing program 2 (id=522):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, 0x0, &(0x7f0000000040)='syzkaller\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x94)

2.032330451s ago: executing program 2 (id=523):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x6, 0x0)

2.021448439s ago: executing program 3 (id=524):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000140), 0x0, 0x0, 0x0)

1.9825252s ago: executing program 0 (id=525):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f000000040b2100000095f5758483"], 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r3, 0x81044804, &(0x7f0000000400)={0x1})
ioctl$HIDIOCGUSAGES(r2, 0xd01c4813, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_pidfd_open(0x0, 0x0)
syz_open_dev$loop(0x0, 0xf01c, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000400)={'#! ', './file1/../file0'}, 0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

1.727211154s ago: executing program 3 (id=526):
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_mount_image$btrfs(&(0x7f0000000200), &(0x7f0000005600)='./file0\x00', 0x800, &(0x7f0000000740), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080)=0x2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f00000000c0)={{}, 0x0, 0x0})

1.726887645s ago: executing program 2 (id=527):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x4, &(0x7f0000000a80)=ANY=[@ANYBLOB="18000000000000000000000006000000850000006100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x320e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.59754233s ago: executing program 2 (id=528):
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.444913133s ago: executing program 1 (id=529):
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8c0a, &(0x7f0000000180)=ANY=[@ANYRES64=0x0, @ANYRES64, @ANYRES16=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
openat(0xffffffffffffff9c, &(0x7f0000000200)='.\x02\x00', 0x8042, 0x1da)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x1c}}, 0x0)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
lgetxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="74722df6ff"], 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x20, 0x103)

1.247247775s ago: executing program 2 (id=530):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001400)=0x7)
syz_mount_image$xfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x8000, &(0x7f0000000080)={[{@logbufs={'logbufs', 0x3d, 0x2}}, {@noalign}, {@sysvgroups}, {@inode64}, {@logbufs={'logbufs', 0x3d, 0x6}}]}, 0x1, 0xb99f, &(0x7f0000018700)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x2)
fstatfs(r0, 0x0)

1.149595229s ago: executing program 1 (id=531):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006080)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd21, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x2, 0x8}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8848}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xc, 0xc}, {0x0, 0xfff1}, {0xfff2, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4041080)

921.536443ms ago: executing program 3 (id=532):
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001080)={0x10, 0x1403, 0x1}, 0x10}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

590.152414ms ago: executing program 1 (id=533):
syz_open_procfs(0x0, &(0x7f00000011c0)='mountinfo\x00')
r0 = syz_io_uring_setup(0x88f, 0x0, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r0, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

411.467634ms ago: executing program 1 (id=534):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="a95c55c825ec1ba69b86308426f0d9a4af59", 0x12)

390.146738ms ago: executing program 4 (id=535):
socket$inet6(0xa, 0x3, 0x2c)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x6, 0x9, 0x80, 0x0, 0xffffffff, 0x91b1}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffff7, 0x4}}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0xef6e190000000000}]}}}]}, 0x64}}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000500)
r2 = socket$inet6(0xa, 0x3, 0x2)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e25, 0x0, @empty, 0x7}, 0x1c)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0)

356.654729ms ago: executing program 2 (id=536):
syz_emit_vhci(&(0x7f0000000840)=ANY=[@ANYBLOB="042ffb03ffffffffffff40b4659680000000f87066d663dd170bb4dcf7396d11e1a91b1f9aed01c2d76d62abd8fe77f4ecca730853f78084dda6b1c8536b2c88b74ae116013c078c30aa3c31026f5870dbef1ed94f44d1277642b790e1a4b5aa4704bd"], 0x2fe)

266.110799ms ago: executing program 1 (id=537):
ioctl$SIOCRSGCAUSE(0xffffffffffffffff, 0x89e0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x2808080, &(0x7f0000000380)={[{@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@numtail}, {@shortname_win95}, {@shortname_winnt}, {@uni_xlateno}, {@fat=@codepage={'codepage', 0x3d, '437'}}, {@utf8}, {@uni_xlateno}, {@utf8}, {@shortname_win95}, {@utf8no}, {@uni_xlate}, {@shortname_win95}]}, 0x7f, 0x2bd, &(0x7f0000000580)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x80)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

211.817153ms ago: executing program 4 (id=538):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000a0000004200000040"], 0x50)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0x23, 0x6, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000001c0)=<r3=>0x0)
sched_setattr(r3, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0, 0x500)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, 0x0, 0x20000800)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r12, {0xf000, 0xffff}, {}, {0x7, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
symlink(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')

89.985374ms ago: executing program 1 (id=539):
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000000c0)=0xffff, 0x4)
write(r0, &(0x7f0000000000)="240000001a005f0314f9f40700090400020000000100000000000000080004000100", 0x22)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000040)=0x1, 0x4)
recvmmsg(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001740)=""/17, 0x11}}], 0x1, 0x2000, 0x0)

0s ago: executing program 3 (id=540):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000a80)={0x48, r1, 0x1, 0xfffffffe, 0x0, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfb2e77a8993c191f}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffff}]}, 0x48}}, 0x20000000)

kernel console output (not intermixed with test programs):

   T52] Bluetooth: hci2: command tx timeout
[   87.812052][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.817126][ T5826] veth1_macvtap: entered promiscuous mode
[   87.837820][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.847299][ T5844] veth1_vlan: entered promiscuous mode
[   87.861388][ T5831] veth1_macvtap: entered promiscuous mode
[   87.870348][   T52] Bluetooth: hci4: command tx timeout
[   87.879765][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.924714][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.934103][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.945524][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.968370][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.976064][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.992346][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.003705][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.011571][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.041629][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.065910][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.092200][ T5844] veth0_macvtap: entered promiscuous mode
[   88.117235][   T60] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.133218][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   88.137239][ T5844] veth1_macvtap: entered promiscuous mode
[   88.163423][   T60] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.174338][   T60] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.185755][   T60] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.245091][   T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.279782][   T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.291890][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.312006][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.343066][   T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.354196][   T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.383788][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.413762][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.455070][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.464249][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.471729][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.498723][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.508597][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.531150][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.541118][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.572717][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.584777][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.595435][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.654572][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.665444][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.693525][ T5950] loop1: detected capacity change from 0 to 1024
[   88.715674][ T5950] =======================================================
[   88.715674][ T5950] WARNING: The mand mount option has been deprecated and
[   88.715674][ T5950]          and is ignored by this kernel. Remove the mand
[   88.715674][ T5950]          option from the mount to silence this warning.
[   88.715674][ T5950] =======================================================
[   88.756014][ T5950] EXT4-fs: inline encryption not supported
[   88.785984][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.810760][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.812657][ T5950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.875782][ T1168] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.896351][ T1168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.975574][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.033400][ T1168] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.076302][ T1168] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.751423][ T5981] loop2: detected capacity change from 0 to 1024
[   89.770006][   T43] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   89.779920][ T5981] EXT4-fs: inline encryption not supported
[   89.790139][   T52] Bluetooth: hci1: command tx timeout
[   89.846156][ T5981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.881312][   T52] Bluetooth: hci2: command tx timeout
[   89.881742][ T5833] Bluetooth: hci3: command tx timeout
[   89.886938][   T52] Bluetooth: hci0: command tx timeout
[   89.950592][   T52] Bluetooth: hci4: command tx timeout
[   89.972194][   T43] usb 4-1: Using ep0 maxpacket: 16
[   89.982583][   T43] usb 4-1: unable to get BOS descriptor or descriptor too short
[   89.993150][   T43] usb 4-1: config 32 has an invalid interface number: 11 but max is 0
[   90.010292][   T43] usb 4-1: config 32 has no interface number 0
[   90.022226][   T43] usb 4-1: config 32 interface 11 has no altsetting 0
[   90.043729][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.107843][   T43] usb 4-1: New USB device found, idVendor=0403, idProduct=da72, bcdDevice=97.06
[   90.129365][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.137386][   T43] usb 4-1: Product: syz
[   90.168630][   T43] usb 4-1: Manufacturer: syz
[   90.176455][   T43] usb 4-1: SerialNumber: syz
[   90.205119][ T5993] loop1: detected capacity change from 0 to 256
[   90.229146][ T5993] exfat: Deprecated parameter 'namecase'
[   90.293725][ T5993] exfat: Deprecated parameter 'utf8'
[   90.365438][ T5993] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[   90.797374][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   90.963819][   T43] usb 4-1: NDI device with a latency value of 1
[   90.995813][   T43] ftdi_sio 4-1:32.11: FTDI USB Serial Device converter detected
[   91.009994][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.019246][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.028045][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.036831][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.045561][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.054424][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.063218][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.121434][   T43] ftdi_sio ttyUSB0: unknown device type: 0x9706
[   91.206821][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   91.215934][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.299675][   T43] usb 4-1: USB disconnect, device number 2
[   91.341632][   T43] ftdi_sio 4-1:32.11: device disconnected
[   91.643825][ T6008] loop1: detected capacity change from 0 to 1024
[   91.968512][ T6014] xt_hashlimit: size too large, truncated to 1048576
[   92.141078][ T6019] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25'.
[   92.182406][ T6018] loop2: detected capacity change from 0 to 128
[   92.292226][   T30] audit: type=1800 audit(1761124769.224:2): pid=6018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.26" name="file2" dev="loop2" ino=1048607 res=0 errno=0
[   92.352229][ T6018] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[   92.407970][ T6018] FAT-fs (loop2): Filesystem has been set read-only
[   92.453644][ T6018] syz.2.26: attempt to access beyond end of device
[   92.453644][ T6018] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[   92.532202][   T30] audit: type=1326 audit(1761124769.464:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   92.668172][   T30] audit: type=1326 audit(1761124769.474:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   92.692735][   T30] audit: type=1326 audit(1761124769.474:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   92.759412][   T30] audit: type=1326 audit(1761124769.474:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   92.858022][   T30] audit: type=1326 audit(1761124769.474:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   92.941504][   T30] audit: type=1326 audit(1761124769.474:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   93.017467][   T30] audit: type=1326 audit(1761124769.474:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   93.053127][ T6038] loop2: detected capacity change from 0 to 512
[   93.069868][   T30] audit: type=1326 audit(1761124769.474:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   93.120763][   T30] audit: type=1326 audit(1761124769.474:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[   93.160990][ T6038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.169592][ T5904] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.189704][ T6038] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.204847][ T6042] loop4: detected capacity change from 0 to 22
[   93.215487][ T6038] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   93.229035][ T6038] EXT4-fs (loop2): changing journal_checksum during remount not supported; ignoring
[   93.243031][ T6038] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   93.274773][ T6042] MTD: Attempt to mount non-MTD device "/dev/loop4"
[   93.290715][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.353092][ T6042] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   93.379421][ T5904] usb 2-1: Using ep0 maxpacket: 16
[   93.398871][ T5904] usb 2-1: config 0 has no interfaces?
[   93.413957][ T5904] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   93.440423][ T5904] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.448561][ T5904] usb 2-1: Product: syz
[   93.468346][ T5904] usb 2-1: Manufacturer: syz
[   93.485653][ T5904] usb 2-1: SerialNumber: syz
[   93.500460][ T5904] usb 2-1: config 0 descriptor??
[   93.737202][ T5904] usb 2-1: USB disconnect, device number 2
[   94.104052][ T6055] netlink: 'syz.2.41': attribute type 10 has an invalid length.
[   94.134502][ T6055] netlink: 32 bytes leftover after parsing attributes in process `syz.2.41'.
[   94.170325][ T6058] netlink: 'syz.0.42': attribute type 10 has an invalid length.
[   94.205943][ T6058] team0: Port device dummy0 added
[   94.547032][ T6068] loop4: detected capacity change from 0 to 128
[   94.594736][ T6068] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[   94.633944][ T6072] loop0: detected capacity change from 0 to 128
[   94.862977][ T6072] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   94.925772][ T6072] ext4 filesystem being mounted at /6/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   95.671688][ T6068] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   95.717614][ T5827] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.200285][ T5944] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   96.290647][ T6095] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   96.391378][ T5944] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.402513][ T5944] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.423885][ T5944] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   96.454005][ T5944] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   96.477362][ T5944] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.522282][ T5944] usb 1-1: config 0 descriptor??
[   97.430532][ T5944] usbhid 1-1:0.0: can't add hid device: -71
[   97.436709][ T5944] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[   97.503376][ T5944] usb 1-1: USB disconnect, device number 2
[   97.929852][    T9] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   98.110974][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[   98.117820][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[   98.145064][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.210462][    T9] usb 2-1: config 0 descriptor??
[   98.520310][ T6115] comedi comedi0: pcmda12: I/O port conflict (0x7,16)
[   98.664883][ T6117] loop0: detected capacity change from 0 to 128
[   98.691377][ T6117] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   98.716390][ T6117] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   99.519512][    T9] video4linux radio48: keene_cmd_main failed (-71)
[   99.586878][    T9] radio-keene 2-1:0.0: V4L2 device registered as radio48
[   99.598122][    T9] usb 2-1: USB disconnect, device number 3
[   99.637011][ T5827] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   99.708392][ T6125] loop2: detected capacity change from 0 to 512
[   99.740171][   T30] kauditd_printk_skb: 80 callbacks suppressed
[   99.740183][   T30] audit: type=1326 audit(1761124776.674:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[   99.817144][   T30] audit: type=1326 audit(1761124776.714:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[   99.878900][ T6125] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.61: inode has both inline data and extents flags
[   99.893802][ T6125] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.61: couldn't read orphan inode 15 (err -117)
[   99.916209][   T30] audit: type=1326 audit(1761124776.714:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[   99.967140][   T30] audit: type=1326 audit(1761124776.714:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.019264][   T30] audit: type=1326 audit(1761124776.724:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.023690][ T6131] loop4: detected capacity change from 0 to 4096
[  100.051267][ T6125] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.079517][   T30] audit: type=1326 audit(1761124776.724:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.140890][ T6125] xt_ecn: cannot match TCP bits for non-tcp packets
[  100.151009][   T30] audit: type=1326 audit(1761124776.724:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.252958][   T30] audit: type=1326 audit(1761124776.724:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.325580][   T30] audit: type=1326 audit(1761124776.724:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.405752][   T30] audit: type=1326 audit(1761124776.724:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  100.850200][ T6148] loop4: detected capacity change from 0 to 64
[  101.170911][ T6153] xt_TCPMSS: Only works on TCP SYN packets
[  102.387589][ T6155] netlink: 12 bytes leftover after parsing attributes in process `syz.3.71'.
[  102.798092][ T6157] Process accounting resumed
[  102.975386][ T6160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'.
[  103.340563][ T6160] Zero length message leads to an empty skb
[  103.375861][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.440185][ T6162] loop4: detected capacity change from 0 to 128
[  103.576316][ T6166] syz.1.77 uses obsolete (PF_INET,SOCK_PACKET)
[  103.646383][ T6162] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.663186][ T6166] loop1: detected capacity change from 0 to 4096
[  103.674093][ T6166] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  103.755440][ T6162] ext4 filesystem being mounted at /21/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  104.093445][ T5889] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  104.279877][ T5889] usb 1-1: Using ep0 maxpacket: 16
[  104.456452][ T5889] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.512603][ T5889] usb 1-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  104.557803][ T5889] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.598875][ T6186] process 'syz.2.82' launched './file0' with NULL argv: empty string added
[  104.642985][ T5889] usb 1-1: config 0 descriptor??
[  104.702620][ T5826] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.865159][ T6194] loop3: detected capacity change from 0 to 512
[  104.874320][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  104.874336][   T30] audit: type=1326 audit(1761124781.814:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  104.943205][ T6194] EXT4-fs (loop3): orphan cleanup on readonly fs
[  104.951962][ T6194] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.86: iget: bad i_size value: 38620345925642
[  104.965514][   T30] audit: type=1326 audit(1761124781.814:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  104.987899][ T6194] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.86: couldn't read orphan inode 15 (err -117)
[  105.000464][   T30] audit: type=1326 audit(1761124781.844:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.025981][ T6194] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.058158][   T30] audit: type=1326 audit(1761124781.844:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.089399][   T30] audit: type=1326 audit(1761124781.844:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.116454][ T6196] loop2: detected capacity change from 0 to 4096
[  105.144594][ T5889] kye 0003:0458:5016.0001: control desc unexpectedly large
[  105.154637][   T30] audit: type=1326 audit(1761124781.844:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.183305][ T5889] input: HID 0458:5016 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5016.0001/input/input5
[  105.223589][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.237714][   T30] audit: type=1326 audit(1761124781.854:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.258536][ T5889] input: HID 0458:5016 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5016.0001/input/input6
[  105.274673][ T6200] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  105.339382][   T30] audit: type=1326 audit(1761124781.854:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.369490][   T30] audit: type=1326 audit(1761124781.854:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.404884][   T30] audit: type=1326 audit(1761124781.854:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  105.484209][ T5889] kye 0003:0458:5016.0001: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.0-1/input0
[  106.319427][ T5889] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  106.439897][ T6237] loop3: detected capacity change from 0 to 1024
[  106.463259][ T6237] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  106.481518][ T5889] usb 5-1: Using ep0 maxpacket: 32
[  106.501641][ T5889] usb 5-1: config 0 has an invalid interface number: 132 but max is 0
[  106.523484][ T5889] usb 5-1: config 0 has no interface number 0
[  106.542549][ T5889] usb 5-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  106.582248][ T5889] usb 5-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5
[  106.602067][ T5889] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.619463][ T5889] usb 5-1: Product: syz
[  106.628375][ T5889] usb 5-1: Manufacturer: syz
[  106.642447][ T5889] usb 5-1: SerialNumber: syz
[  106.665138][ T5889] usb 5-1: config 0 descriptor??
[  106.696538][ T5889] em28xx 5-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132)
[  106.697457][ T6240] loop1: detected capacity change from 0 to 4096
[  106.729442][ T5889] em28xx 5-1:0.132: Video interface 132 found:
[  106.731848][ T6240] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  106.758868][ T6240] ntfs3(loop1): ino=3, mi_enum_attr
[  107.040848][ T6248] program syz.3.106 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  107.146762][ T6243] loop2: detected capacity change from 0 to 512
[  107.153660][ T5889] em28xx 5-1:0.132: unknown em28xx chip ID (0)
[  107.169243][ T6248] mmap: syz.3.106 (6248) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  107.261840][ T6243] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.566193][ T6243] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[  107.646493][ T5889] em28xx 5-1:0.132: failed to get i2c transfer status from bridge register (error=-5)
[  107.687110][ T5889] em28xx 5-1:0.132: board has no eeprom
[  107.807949][ T5889] em28xx 5-1:0.132: Identified as Leadtek Winfast USB II (card=7)
[  107.828186][ T5889] em28xx 5-1:0.132: analog set to bulk mode.
[  107.848756][  T116] em28xx 5-1:0.132: Registering V4L2 extension
[  107.922243][ T5889] usb 5-1: USB disconnect, device number 2
[  107.942774][ T5889] em28xx 5-1:0.132: Disconnecting em28xx
[  108.218084][ T6259] loop3: detected capacity change from 0 to 512
[  108.302964][  T116] em28xx 5-1:0.132: Config register raw data: 0xffffffed
[  108.314756][  T116] em28xx 5-1:0.132: AC97 chip type couldn't be determined
[  108.329414][  T116] em28xx 5-1:0.132: No AC97 audio processor
[  108.333063][ T6259] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  108.347867][  T116] usb 5-1: Decoder not found
[  108.352954][  T116] em28xx 5-1:0.132: failed to create media graph
[  108.359985][  T116] em28xx 5-1:0.132: V4L2 device video103 deregistered
[  108.372321][  T116] em28xx 5-1:0.132: Remote control support is not available for this card.
[  108.383438][ T5889] em28xx 5-1:0.132: Closing input extension
[  108.396699][ T6259] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  108.424088][ T6259] EXT4-fs (loop3): 1 truncate cleaned up
[  108.437712][ T5889] em28xx 5-1:0.132: Freeing device
[  108.471559][ T6259] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.540930][ T5904] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  108.560823][ T6259] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 4: comm syz.3.108: lblock 0 mapped to illegal pblock 4 (length 1)
[  108.599770][ T6272] loop4: detected capacity change from 0 to 128
[  108.611140][ T6259] EXT4-fs (loop3): Remounting filesystem read-only
[  108.708242][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.742825][ T5904] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  108.760116][ T5904] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.769485][ T5904] usb 2-1: Product: syz
[  108.773714][ T5904] usb 2-1: Manufacturer: syz
[  108.778363][ T5904] usb 2-1: SerialNumber: syz
[  108.808765][ T5904] usb 2-1: config 0 descriptor??
[  108.924579][ T6274] loop2: detected capacity change from 0 to 4096
[  108.941273][ T6274] EXT4-fs (loop2): Test dummy encryption mode enabled
[  108.988330][ T6274] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  109.011865][ T6274] System zones: 0-5
[  109.022843][ T6274] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.066671][ T6281] loop4: detected capacity change from 0 to 256
[  109.317971][ T6281] FAT-fs (loop4): Directory bread(block 64) failed
[  109.338185][ T6281] FAT-fs (loop4): Directory bread(block 65) failed
[  109.370983][ T6281] FAT-fs (loop4): Directory bread(block 66) failed
[  109.459943][ T6281] FAT-fs (loop4): Directory bread(block 67) failed
[  109.538179][ T6287] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  109.590999][ T6288] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  109.764001][ T6281] FAT-fs (loop4): Directory bread(block 68) failed
[  109.912567][ T6281] FAT-fs (loop4): Directory bread(block 69) failed
[  109.957115][ T6281] FAT-fs (loop4): Directory bread(block 70) failed
[  109.987461][ T6281] FAT-fs (loop4): Directory bread(block 71) failed
[  110.019501][ T5904] usb 2-1: Firmware version (0.0) predates our first public release.
[  110.028583][ T5904] usb 2-1: Please update to version 0.2 or newer
[  110.035504][ T6281] FAT-fs (loop4): Directory bread(block 72) failed
[  110.089664][ T6281] FAT-fs (loop4): Directory bread(block 73) failed
[  110.127592][ T5904] usb 2-1: USB disconnect, device number 4
[  110.330197][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.394861][ T6297] loop4: detected capacity change from 0 to 16
[  110.452787][ T6297] erofs (device loop4): mounted with root inode @ nid 36.
[  110.531817][ T6299] loop1: detected capacity change from 0 to 512
[  110.545846][ T6301] 9pnet_fd: Insufficient options for proto=fd
[  110.565773][ T6299] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  110.595848][ T6299] EXT4-fs (loop1): bad geometry: first data block 0 is beyond end of filesystem (0)
[  110.687381][   T30] kauditd_printk_skb: 73 callbacks suppressed
[  110.687397][   T30] audit: type=1326 audit(1761124787.624:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  110.789384][   T30] audit: type=1326 audit(1761124787.674:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  110.856202][   T30] audit: type=1326 audit(1761124787.674:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  110.904701][ T6310] netlink: 12 bytes leftover after parsing attributes in process `syz.2.128'.
[  111.011933][   T30] audit: type=1326 audit(1761124787.674:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  111.054777][   T30] audit: type=1326 audit(1761124787.674:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  111.100998][ T6317] loop3: detected capacity change from 0 to 256
[  111.108515][ T6317] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  111.157588][ T6310] 8021q: adding VLAN 0 to HW filter on device bond1
[  111.298085][   T30] audit: type=1326 audit(1761124787.674:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  111.321371][   T30] audit: type=1326 audit(1761124787.674:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  111.330758][ T6313] bond_slave_0: entered promiscuous mode
[  111.344115][   T30] audit: type=1326 audit(1761124787.674:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  111.349492][ T6313] bond_slave_1: entered promiscuous mode
[  111.477280][ T6313] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  111.574147][   T30] audit: type=1326 audit(1761124787.674:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  112.013659][ T6313] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[  112.038901][   T30] audit: type=1326 audit(1761124787.674:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6304 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  112.063979][ T6321] bridge0: port 3(syz_tun) entered blocking state
[  112.070700][ T6321] bridge0: port 3(syz_tun) entered disabled state
[  112.077447][ T6321] syz_tun: entered allmulticast mode
[  112.084755][ T6321] syz_tun: entered promiscuous mode
[  112.090759][ T6321] bridge0: port 3(syz_tun) entered blocking state
[  112.097559][ T6321] bridge0: port 3(syz_tun) entered forwarding state
[  112.514088][ T6332] loop2: detected capacity change from 0 to 16
[  112.551677][ T6332] erofs (device loop2): mounted with root inode @ nid 36.
[  113.243814][ T6337] loop2: detected capacity change from 0 to 32768
[  113.254809][ T6337] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.137 (6337)
[  113.286357][ T6337] BTRFS info (device loop2 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  113.297545][ T6337] BTRFS info (device loop2 state S): using crc32c (crc32c-lib) checksum algorithm
[  113.377185][ T6330] loop3: detected capacity change from 0 to 40427
[  113.405060][ T6330] F2FS-fs (loop3): build fault injection rate: 771
[  113.417692][ T6330] F2FS-fs (loop3): invalid crc value
[  113.483614][ T1112] BTRFS warning (device loop2 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  113.548785][ T1112] BTRFS warning (device loop2 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored
[  113.566959][ T1112] BTRFS warning (device loop2 state CS): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x73153135 level 0, ignored
[  113.607320][ T6337] BTRFS info (device loop2 state CS): enabling ssd optimizations
[  113.615393][ T6337] BTRFS info (device loop2 state CS): turning off barriers
[  113.622737][ T6337] BTRFS info (device loop2 state CS): disabling log replay at mount time
[  113.631220][ T6337] BTRFS info (device loop2 state CS): turning on sync discard
[  113.639644][ T6337] BTRFS info (device loop2 state CS): enabling free space tree
[  113.647223][ T6337] BTRFS info (device loop2 state CS): ignoring bad roots
[  113.655014][ T6337] BTRFS info (device loop2 state CS): ignoring data csums
[  113.662218][ T6337] BTRFS info (device loop2 state CS): ignoring meta csums
[  113.669429][ T6337] BTRFS info (device loop2 state CS): ignoring unknown super block flags
[  113.677902][ T6337] BTRFS info (device loop2 state CS): use zlib compression, level 3
[  113.691784][ T6337] BTRFS info (device loop2 state CS): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  113.695391][ T6330] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  113.743401][ T6330] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  114.002937][ T6373] loop4: detected capacity change from 0 to 256
[  114.034705][ T6373] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  114.485600][ T6376] bridge0: port 3(syz_tun) entered blocking state
[  114.492891][ T6376] bridge0: port 3(syz_tun) entered disabled state
[  114.501651][ T6376] syz_tun: entered allmulticast mode
[  114.522915][ T6376] syz_tun: entered promiscuous mode
[  114.530680][ T6376] bridge0: port 3(syz_tun) entered blocking state
[  114.537250][ T6376] bridge0: port 3(syz_tun) entered forwarding state
[  115.281685][ T6383] 9pnet_fd: Insufficient options for proto=fd
[  116.186333][ T6395] loop2: detected capacity change from 0 to 512
[  116.225443][ T6397] loop3: detected capacity change from 0 to 128
[  116.244289][ T6395] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.264408][ T6395] EXT4-fs: Ignoring removed bh option
[  116.280695][    C0] kye 0003:0458:5016.0001: usb_submit_urb(ctrl) failed: -1
[  116.292938][ T6211] kye 0003:0458:5016.0001: timeout initializing reports
[  116.305672][ T6397] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  116.337663][ T6400] loop4: detected capacity change from 0 to 1024
[  116.365274][ T6397] ext4 filesystem being mounted at /23/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  116.384241][ T5889] usb 1-1: USB disconnect, device number 3
[  116.422214][ T6395] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  116.522500][ T6395] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  116.644746][ T6395] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #11: comm syz.2.150: corrupted inode contents
[  116.786393][ T6395] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #11: comm syz.2.150: mark_inode_dirty error
[  116.814600][ T6395] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.150: invalid indirect mapped block 1 (level 1)
[  116.888520][ T6395] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #11: comm syz.2.150: corrupted inode contents
[  116.941726][ T5844] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.947994][ T6395] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[  117.046641][ T6395] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #11: comm syz.2.150: corrupted inode contents
[  117.055408][ T6415] loop3: detected capacity change from 0 to 256
[  117.081155][ T5889] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  117.103145][ T6395] EXT4-fs error (device loop2): ext4_truncate:4637: inode #11: comm syz.2.150: mark_inode_dirty error
[  117.110599][ T6415] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x09066d1f, utbl_chksum : 0xe619d30d)
[  117.145600][ T6395] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[  117.190507][ T6415] exFAT-fs (loop3): error, data size is invalid(150994954)
[  117.197250][ T6395] EXT4-fs (loop2): 1 truncate cleaned up
[  117.197908][ T6415] exFAT-fs (loop3): Filesystem has been set read-only
[  117.208830][ T6395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.256008][ T5889] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  117.265705][ T5889] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.274051][ T5889] usb 1-1: Product: syz
[  117.278379][ T5889] usb 1-1: Manufacturer: syz
[  117.283931][ T5889] usb 1-1: SerialNumber: syz
[  117.299678][ T5889] usb 1-1: config 0 descriptor??
[  117.388518][ T6395] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  117.490617][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.667238][ T6418] loop3: detected capacity change from 0 to 128
[  117.704522][ T6418] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.720087][ T6422] loop2: detected capacity change from 0 to 128
[  117.739870][ T5889] usb 1-1: Firmware version (0.0) predates our first public release.
[  117.748003][ T5889] usb 1-1: Please update to version 0.2 or newer
[  117.755370][ T6418] ext4 filesystem being mounted at /25/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  117.771265][ T6422] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  117.820875][ T6422] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  117.892269][ T5844] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.900276][ T5889] usb 1-1: USB disconnect, device number 4
[  118.050413][ T6413] loop4: detected capacity change from 0 to 40427
[  118.079702][ T6413] F2FS-fs (loop4): build fault injection rate: 771
[  118.097255][ T6426] loop3: detected capacity change from 0 to 128
[  118.122320][ T6413] F2FS-fs (loop4): invalid crc value
[  118.183684][ T6426] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.318639][ T6426] ext4 filesystem being mounted at /26/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  118.403568][ T6434] loop0: detected capacity change from 0 to 256
[  118.567019][ T5844] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.579670][ T6413] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  118.623066][ T6413] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  119.561438][ T6455] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  119.766007][ T6457] netlink: 36 bytes leftover after parsing attributes in process `syz.4.164'.
[  119.868013][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  119.868025][   T30] audit: type=1326 audit(1761124796.804:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.079479][   T30] audit: type=1326 audit(1761124796.804:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.129579][   T30] audit: type=1326 audit(1761124796.854:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.152320][   T30] audit: type=1326 audit(1761124796.854:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.174626][   T30] audit: type=1326 audit(1761124796.854:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.198017][ T6465] loop4: detected capacity change from 0 to 128
[  120.208148][   T30] audit: type=1326 audit(1761124796.854:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.275296][   T30] audit: type=1326 audit(1761124796.864:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.305305][ T6465] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  120.319106][ T6464] loop3: detected capacity change from 0 to 4096
[  120.338901][   T30] audit: type=1326 audit(1761124796.864:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.362520][   T30] audit: type=1326 audit(1761124796.864:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.388105][ T6464] EXT4-fs (loop3): Test dummy encryption mode enabled
[  120.388244][   T30] audit: type=1326 audit(1761124796.864:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  120.423807][ T6465] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  120.464078][ T6464] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  120.519455][ T6464] System zones: 0-5
[  120.551350][ T6464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.655105][ T5826] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  120.886928][ T6467] loop0: detected capacity change from 0 to 40427
[  120.906527][ T6467] F2FS-fs (loop0): build fault injection rate: 771
[  121.446130][ T6467] F2FS-fs (loop0): invalid crc value
[  121.716053][ T6467] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  121.751649][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.769457][ T6467] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  122.325608][ T6494] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6_vti0, syncid = 1, id = 0
[  123.036895][ T6498] loop0: detected capacity change from 0 to 256
[  123.147106][ T6498] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f96684, utbl_chksum : 0xe619d30d)
[  124.260009][ T6393] Set syz1 is full, maxelem 65536 reached
[  124.441552][ T6521] loop3: detected capacity change from 0 to 40427
[  124.461731][ T6521] F2FS-fs (loop3): build fault injection rate: 771
[  124.470446][ T6521] F2FS-fs (loop3): invalid crc value
[  124.546200][ T6521] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  124.559670][ T6521] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  124.595380][ T6517] loop0: detected capacity change from 0 to 40427
[  124.618732][ T6517] F2FS-fs (loop0): build fault injection rate: 771
[  124.663912][ T6517] F2FS-fs (loop0): invalid crc value
[  124.695356][ T6521] F2FS-fs (loop3): access invalid blkaddr:2816
[  124.701889][ T6521] CPU: 1 UID: 0 PID: 6521 Comm: syz.3.191 Not tainted syzkaller #0 PREEMPT(full) 
[  124.701915][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  124.701930][ T6521] Call Trace:
[  124.701938][ T6521]  <TASK>
[  124.701947][ T6521]  dump_stack_lvl+0x189/0x250
[  124.701984][ T6521]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.702012][ T6521]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  124.702053][ T6521]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  124.702093][ T6521]  f2fs_map_blocks+0xda8/0x4100
[  124.702161][ T6521]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  124.702187][ T6521]  ? xa_load+0x60/0x210
[  124.702226][ T6521]  ? xa_load+0x1ea/0x210
[  124.702267][ T6521]  f2fs_mpage_readpages+0xd25/0x1b80
[  124.702292][ T6521]  ? __pfx_css_rstat_updated+0x10/0x10
[  124.702339][ T6521]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  124.702366][ T6521]  ? __folio_batch_add_and_move+0x192/0xc60
[  124.702412][ T6521]  ? f2fs_readahead+0x177/0x330
[  124.702444][ T6521]  read_pages+0x17a/0x580
[  124.702474][ T6521]  ? __pfx_read_pages+0x10/0x10
[  124.702505][ T6521]  ? filemap_add_folio+0x35f/0x540
[  124.702533][ T6521]  page_cache_ra_unbounded+0x760/0x9b0
[  124.702579][ T6521]  f2fs_readdir+0x49b/0xa60
[  124.702634][ T6521]  ? __pfx_f2fs_readdir+0x10/0x10
[  124.702684][ T6521]  ? down_read_killable+0x1d1/0x350
[  124.702716][ T6521]  iterate_dir+0x399/0x570
[  124.702747][ T6521]  __se_sys_getdents64+0xe4/0x260
[  124.702775][ T6521]  ? __pfx___se_sys_getdents64+0x10/0x10
[  124.702798][ T6521]  ? __pfx_filldir64+0x10/0x10
[  124.702832][ T6521]  ? do_syscall_64+0xbe/0xfa0
[  124.702859][ T6521]  do_syscall_64+0xfa/0xfa0
[  124.702881][ T6521]  ? lockdep_hardirqs_on+0x9c/0x150
[  124.702903][ T6521]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.702923][ T6521]  ? clear_bhb_loop+0x60/0xb0
[  124.702948][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.702968][ T6521] RIP: 0033:0x7f52af18efc9
[  124.702993][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.703011][ T6521] RSP: 002b:00007f52b008f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  124.703033][ T6521] RAX: ffffffffffffffda RBX: 00007f52af3e5fa0 RCX: 00007f52af18efc9
[  124.703049][ T6521] RDX: 0000000000000032 RSI: 0000200000000480 RDI: 0000000000000006
[  124.703062][ T6521] RBP: 00007f52af211f91 R08: 0000000000000000 R09: 0000000000000000
[  124.703075][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.703088][ T6521] R13: 00007f52af3e6038 R14: 00007f52af3e5fa0 R15: 00007ffe5dd5fba8
[  124.703130][ T6521]  </TASK>
[  125.104082][ T6521] F2FS-fs (loop3): access invalid blkaddr:2816
[  125.111972][ T6521] CPU: 1 UID: 0 PID: 6521 Comm: syz.3.191 Not tainted syzkaller #0 PREEMPT(full) 
[  125.111996][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.112008][ T6521] Call Trace:
[  125.112015][ T6521]  <TASK>
[  125.112024][ T6521]  dump_stack_lvl+0x189/0x250
[  125.112061][ T6521]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.112089][ T6521]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  125.112109][ T6521]  ? __f2fs_is_valid_blkaddr+0xe5f/0x14f0
[  125.112164][ T6521]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  125.112204][ T6521]  f2fs_map_blocks+0xda8/0x4100
[  125.112281][ T6521]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  125.112308][ T6521]  ? xa_load+0x60/0x210
[  125.112346][ T6521]  ? xa_load+0x1ea/0x210
[  125.112377][ T6521]  f2fs_mpage_readpages+0xd25/0x1b80
[  125.112400][ T6521]  ? __pfx_css_rstat_updated+0x10/0x10
[  125.112445][ T6521]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  125.112472][ T6521]  ? __folio_batch_add_and_move+0x192/0xc60
[  125.112518][ T6521]  ? f2fs_readahead+0x177/0x330
[  125.112551][ T6521]  read_pages+0x17a/0x580
[  125.112580][ T6521]  ? __pfx_read_pages+0x10/0x10
[  125.112610][ T6521]  ? filemap_add_folio+0x35f/0x540
[  125.112639][ T6521]  page_cache_ra_unbounded+0x760/0x9b0
[  125.112683][ T6521]  f2fs_readdir+0x49b/0xa60
[  125.112736][ T6521]  ? __pfx_f2fs_readdir+0x10/0x10
[  125.112785][ T6521]  ? down_read_killable+0x1d1/0x350
[  125.112816][ T6521]  iterate_dir+0x399/0x570
[  125.112845][ T6521]  __se_sys_getdents64+0xe4/0x260
[  125.112872][ T6521]  ? __pfx___se_sys_getdents64+0x10/0x10
[  125.112897][ T6521]  ? __pfx_filldir64+0x10/0x10
[  125.112932][ T6521]  ? do_syscall_64+0xbe/0xfa0
[  125.112960][ T6521]  do_syscall_64+0xfa/0xfa0
[  125.112981][ T6521]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.113002][ T6521]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.113021][ T6521]  ? clear_bhb_loop+0x60/0xb0
[  125.113045][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.113063][ T6521] RIP: 0033:0x7f52af18efc9
[  125.113081][ T6521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.113098][ T6521] RSP: 002b:00007f52b008f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  125.113136][ T6521] RAX: ffffffffffffffda RBX: 00007f52af3e5fa0 RCX: 00007f52af18efc9
[  125.113149][ T6521] RDX: 0000000000000032 RSI: 0000200000000480 RDI: 0000000000000006
[  125.113162][ T6521] RBP: 00007f52af211f91 R08: 0000000000000000 R09: 0000000000000000
[  125.113174][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  125.113185][ T6521] R13: 00007f52af3e6038 R14: 00007f52af3e5fa0 R15: 00007ffe5dd5fba8
[  125.113219][ T6521]  </TASK>
[  125.113640][ T6521] syz.3.191: attempt to access beyond end of device
[  125.113640][ T6521] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  125.149380][ T5904] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  125.274194][ T6539] loop1: detected capacity change from 0 to 2048
[  125.292026][ T5844] syz-executor: attempt to access beyond end of device
[  125.292026][ T5844] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  125.321677][ T6517] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  125.431872][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  125.431897][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.431907][ T5844] Call Trace:
[  125.431914][ T5844]  <TASK>
[  125.431922][ T5844]  dump_stack_lvl+0x189/0x250
[  125.431953][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.431977][ T5844]  ? __pfx_queue_work_on+0x10/0x10
[  125.431998][ T5844]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  125.432018][ T5844]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  125.432050][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  125.432083][ T5844]  f2fs_write_end_io+0x886/0xb60
[  125.432126][ T5844]  __submit_merged_bio+0x27a/0x6a0
[  125.432158][ T5844]  __submit_merged_write_cond+0x255/0x530
[  125.432190][ T5844]  f2fs_write_data_pages+0x261d/0x3000
[  125.432253][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.432354][ T5844]  ? __lock_acquire+0xab9/0xd20
[  125.432384][ T5844]  ? do_raw_spin_lock+0x121/0x290
[  125.432421][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  125.432446][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.432475][ T5844]  do_writepages+0x32e/0x550
[  125.432513][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  125.432545][ T5844]  filemap_fdatawrite+0x199/0x240
[  125.432574][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  125.432651][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  125.432683][ T5844]  f2fs_sync_dirty_inodes+0x31f/0x830
[  125.432717][ T5844]  f2fs_write_checkpoint+0x93e/0x2440
[  125.432735][ T5844]  ? stack_depot_save_flags+0x40/0x860
[  125.432792][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  125.432851][ T5844]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  125.432870][ T5844]  ? kfree+0x19a/0x6d0
[  125.432907][ T5844]  kill_f2fs_super+0x2cc/0x6d0
[  125.432934][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  125.432970][ T5844]  ? shrinker_free+0x2ce/0x3e0
[  125.432997][ T5844]  deactivate_locked_super+0xbc/0x130
[  125.433022][ T5844]  cleanup_mnt+0x425/0x4c0
[  125.433043][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.433065][ T5844]  task_work_run+0x1d4/0x260
[  125.433084][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  125.433104][ T5844]  ? __x64_sys_umount+0x122/0x160
[  125.433130][ T5844]  ? exit_to_user_mode_loop+0x40/0x130
[  125.433153][ T5844]  exit_to_user_mode_loop+0xe9/0x130
[  125.433174][ T5844]  do_syscall_64+0x2bd/0xfa0
[  125.433194][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.433214][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.433233][ T5844]  ? clear_bhb_loop+0x60/0xb0
[  125.433256][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.433275][ T5844] RIP: 0033:0x7f52af1902f7
[  125.433292][ T5844] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  125.433308][ T5844] RSP: 002b:00007ffe5dd5ee38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.433329][ T5844] RAX: 0000000000000000 RBX: 00007f52af211d7d RCX: 00007f52af1902f7
[  125.433343][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe5dd5eef0
[  125.433354][ T5844] RBP: 00007ffe5dd5eef0 R08: 0000000000000000 R09: 0000000000000000
[  125.433365][ T5844] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe5dd5ff80
[  125.433377][ T5844] R13: 00007f52af211d7d R14: 000000000001e8b3 R15: 00007ffe5dd5ffc0
[  125.433409][ T5844]  </TASK>
[  125.433417][ T5844] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  125.438285][ T6517] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  125.518639][ T6539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.525945][ T5904] usb 5-1: New USB device found, idVendor=102c, idProduct=6251, bcdDevice=75.3e
[  125.579468][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  125.579485][   T30] audit: type=1800 audit(1761124802.484:249): pid=6539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.197" name="file1" dev="loop1" ino=15 res=0 errno=0
[  125.592796][ T5904] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.592820][ T5904] usb 5-1: Product: syz
[  125.592841][ T5904] usb 5-1: Manufacturer: syz
[  125.846943][ T5827] syz-executor: attempt to access beyond end of device
[  125.846943][ T5827] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  125.850355][ T5904] usb 5-1: SerialNumber: syz
[  125.867317][ T5827] CPU: 0 UID: 0 PID: 5827 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  125.867341][ T5827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.867352][ T5827] Call Trace:
[  125.867360][ T5827]  <TASK>
[  125.867368][ T5827]  dump_stack_lvl+0x189/0x250
[  125.867401][ T5827]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.867426][ T5827]  ? __pfx_queue_work_on+0x10/0x10
[  125.867447][ T5827]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  125.867467][ T5827]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  125.867499][ T5827]  f2fs_handle_critical_error+0x37c/0x540
[  125.867531][ T5827]  f2fs_write_end_io+0x886/0xb60
[  125.867568][ T5827]  __submit_merged_bio+0x27a/0x6a0
[  125.867601][ T5827]  __submit_merged_write_cond+0x255/0x530
[  125.867634][ T5827]  f2fs_write_data_pages+0x261d/0x3000
[  125.867701][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.867780][ T5827]  ? __page_cache_release+0x8a6/0xbb0
[  125.867816][ T5827]  ? folios_put_refs+0x584/0x670
[  125.867866][ T5827]  ? __lock_acquire+0xab9/0xd20
[  125.867897][ T5827]  ? do_raw_spin_lock+0x121/0x290
[  125.867940][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  125.867969][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  125.867999][ T5827]  do_writepages+0x32e/0x550
[  125.868041][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  125.868075][ T5827]  filemap_fdatawrite+0x199/0x240
[  125.868105][ T5827]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  125.868195][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  125.868229][ T5827]  f2fs_sync_dirty_inodes+0x31f/0x830
[  125.868268][ T5827]  f2fs_write_checkpoint+0x93e/0x2440
[  125.868286][ T5827]  ? stack_depot_save_flags+0x40/0x860
[  125.868352][ T5827]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  125.868424][ T5827]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  125.868443][ T5827]  ? kfree+0x19a/0x6d0
[  125.868486][ T5827]  kill_f2fs_super+0x2cc/0x6d0
[  125.868514][ T5827]  ? __pfx_kill_f2fs_super+0x10/0x10
[  125.868556][ T5827]  ? shrinker_free+0x2ce/0x3e0
[  125.868586][ T5827]  deactivate_locked_super+0xbc/0x130
[  125.868612][ T5827]  cleanup_mnt+0x425/0x4c0
[  125.868633][ T5827]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.868660][ T5827]  task_work_run+0x1d4/0x260
[  125.868682][ T5827]  ? __pfx_task_work_run+0x10/0x10
[  125.868699][ T5827]  ? __x64_sys_umount+0x122/0x160
[  125.868729][ T5827]  ? exit_to_user_mode_loop+0x40/0x130
[  125.868756][ T5827]  exit_to_user_mode_loop+0xe9/0x130
[  125.868778][ T5827]  do_syscall_64+0x2bd/0xfa0
[  125.868798][ T5827]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.868820][ T5827]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.868840][ T5827]  ? clear_bhb_loop+0x60/0xb0
[  125.868870][ T5827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.868888][ T5827] RIP: 0033:0x7f1f339902f7
[  125.868906][ T5827] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  125.868923][ T5827] RSP: 002b:00007ffe483cb0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.868943][ T5827] RAX: 0000000000000000 RBX: 00007f1f33a11d7d RCX: 00007f1f339902f7
[  125.868956][ T5827] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe483cb180
[  125.868969][ T5827] RBP: 00007ffe483cb180 R08: 0000000000000000 R09: 0000000000000000
[  125.868981][ T5827] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe483cc210
[  125.868993][ T5827] R13: 00007f1f33a11d7d R14: 000000000001ea9d R15: 00007ffe483cc250
[  125.869032][ T5827]  </TASK>
[  125.869041][ T5827] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  125.873037][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.880668][ T5904] usb 5-1: config 0 descriptor??
[  126.263425][ T5904] gspca_main: etoms-2.14.0 probing 102c:6251
[  126.336473][ T6548] loop2: detected capacity change from 0 to 256
[  126.345018][ T6548] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  126.942144][ T6553] loop1: detected capacity change from 0 to 16
[  127.112333][ T5904] usb 5-1: USB disconnect, device number 3
[  127.120294][ T6554] bridge0: port 3(syz_tun) entered blocking state
[  127.126847][ T6554] bridge0: port 3(syz_tun) entered disabled state
[  127.133566][ T6554] syz_tun: entered allmulticast mode
[  127.143607][ T6554] syz_tun: entered promiscuous mode
[  127.151946][ T6554] bridge0: port 3(syz_tun) entered blocking state
[  127.158518][ T6554] bridge0: port 3(syz_tun) entered forwarding state
[  127.172770][ T6553] erofs (device loop1): mounted with root inode @ nid 36.
[  127.290862][ T6553] overlayfs: missing 'lowerdir'
[  128.151879][ T6580] netlink: 12 bytes leftover after parsing attributes in process `syz.3.212'.
[  128.186086][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.4.213'.
[  128.348823][ T6590] loop2: detected capacity change from 0 to 16
[  128.388342][ T6590] erofs (device loop2): mounted with root inode @ nid 36.
[  128.406198][ T6590] overlay: Unknown parameter '/'
[  128.706347][ T6602] netlink: 52 bytes leftover after parsing attributes in process `syz.2.220'.
[  128.728318][ T6602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.220'.
[  129.303921][ T6606] loop1: detected capacity change from 0 to 164
[  129.395924][ T6606] Unable to read rock-ridge attributes
[  129.433135][ T6606] Unable to read rock-ridge attributes
[  129.468994][ T6606] iso9660: Corrupted directory entry in block 4 of inode 1792
[  130.011555][ T6618] loop3: detected capacity change from 0 to 16
[  130.057213][ T6618] erofs (device loop3): mounted with root inode @ nid 36.
[  130.090971][ T6618] overlay: Unknown parameter '/'
[  130.164186][ T6624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.229'.
[  130.422347][ T6637] overlayfs: failed to resolve './file0': -2
[  130.563636][ T6642] loop2: detected capacity change from 0 to 7
[  130.568025][ T6642] Dev loop2: unable to read RDB block 7
[  130.568085][ T6642]  loop2: unable to read partition table
[  130.568283][ T6642] loop2: partition table beyond EOD, truncated
[  130.568302][ T6642] loop_reread_partitions: partition scan of loop2 (₫被xü—ŸÑà– ) failed (rc=-5)
[  131.362450][ T6655] loop2: detected capacity change from 0 to 16
[  131.418647][ T6655] erofs (device loop2): mounted with root inode @ nid 36.
[  131.992516][ T6655] overlay: Unknown parameter '/'
[  132.120627][   T30] audit: type=1326 audit(1761124809.014:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.183886][ T6665] fuse: Unknown parameter 'grou00000000000000000000'
[  132.208693][   T30] audit: type=1326 audit(1761124809.014:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.496482][ T6670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.247'.
[  132.537904][   T30] audit: type=1326 audit(1761124809.014:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.664852][   T30] audit: type=1326 audit(1761124809.014:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.708941][ T6646] loop1: detected capacity change from 0 to 40427
[  132.726092][ T6646] F2FS-fs (loop1): build fault injection rate: 771
[  132.748573][ T6646] F2FS-fs (loop1): invalid crc value
[  132.801745][   T30] audit: type=1326 audit(1761124809.014:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.843743][ T6680] netlink: 'syz.2.251': attribute type 10 has an invalid length.
[  132.907527][ T6680] team0: Port device dummy0 added
[  132.909496][   T30] audit: type=1326 audit(1761124809.014:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  132.928273][ T6646] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  132.964496][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  132.971370][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  133.001495][ T6646] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  133.097710][   T30] audit: type=1326 audit(1761124809.014:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  133.168246][ T5837] syz-executor: attempt to access beyond end of device
[  133.168246][ T5837] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  133.198209][ T5837] CPU: 0 UID: 0 PID: 5837 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  133.198237][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  133.198248][ T5837] Call Trace:
[  133.198256][ T5837]  <TASK>
[  133.198313][ T5837]  dump_stack_lvl+0x189/0x250
[  133.198351][ T5837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.198379][ T5837]  ? __pfx_queue_work_on+0x10/0x10
[  133.198401][ T5837]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  133.198423][ T5837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  133.198458][ T5837]  f2fs_handle_critical_error+0x37c/0x540
[  133.198494][ T5837]  f2fs_write_end_io+0x886/0xb60
[  133.198534][ T5837]  __submit_merged_bio+0x27a/0x6a0
[  133.198570][ T5837]  __submit_merged_write_cond+0x255/0x530
[  133.198605][ T5837]  f2fs_write_data_pages+0x261d/0x3000
[  133.198683][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  133.198766][ T5837]  ? __mod_zone_page_state+0xd7/0x140
[  133.198799][ T5837]  ? folios_put_refs+0x58b/0x670
[  133.198841][ T5837]  ? __lock_acquire+0xab9/0xd20
[  133.198874][ T5837]  ? do_raw_spin_lock+0x121/0x290
[  133.198917][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  133.198945][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  133.198976][ T5837]  do_writepages+0x32e/0x550
[  133.199018][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  133.199052][ T5837]  filemap_fdatawrite+0x199/0x240
[  133.199082][ T5837]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  133.199174][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  133.199208][ T5837]  f2fs_sync_dirty_inodes+0x31f/0x830
[  133.199247][ T5837]  f2fs_write_checkpoint+0x93e/0x2440
[  133.199272][ T5837]  ? stack_depot_save_flags+0x40/0x860
[  133.199328][ T5837]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  133.199387][ T5837]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  133.199404][ T5837]  ? kfree+0x19a/0x6d0
[  133.199445][ T5837]  kill_f2fs_super+0x2cc/0x6d0
[  133.199472][ T5837]  ? __pfx_kill_f2fs_super+0x10/0x10
[  133.199511][ T5837]  ? shrinker_free+0x2ce/0x3e0
[  133.199540][ T5837]  deactivate_locked_super+0xbc/0x130
[  133.199566][ T5837]  cleanup_mnt+0x425/0x4c0
[  133.199587][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.199613][ T5837]  task_work_run+0x1d4/0x260
[  133.199636][ T5837]  ? __pfx_task_work_run+0x10/0x10
[  133.199652][ T5837]  ? __x64_sys_umount+0x122/0x160
[  133.199682][ T5837]  ? exit_to_user_mode_loop+0x40/0x130
[  133.199708][ T5837]  exit_to_user_mode_loop+0xe9/0x130
[  133.199730][ T5837]  do_syscall_64+0x2bd/0xfa0
[  133.199751][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.199772][ T5837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.199792][ T5837]  ? clear_bhb_loop+0x60/0xb0
[  133.199817][ T5837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.199835][ T5837] RIP: 0033:0x7f8c1e9902f7
[  133.199853][ T5837] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  133.199869][ T5837] RSP: 002b:00007ffd4bbf3b18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  133.199891][ T5837] RAX: 0000000000000000 RBX: 00007f8c1ea11d7d RCX: 00007f8c1e9902f7
[  133.199942][ T5837] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd4bbf3bd0
[  133.199955][ T5837] RBP: 00007ffd4bbf3bd0 R08: 0000000000000000 R09: 0000000000000000
[  133.199967][ T5837] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd4bbf4c60
[  133.199980][ T5837] R13: 00007f8c1ea11d7d R14: 00000000000207ee R15: 00007ffd4bbf4ca0
[  133.200018][ T5837]  </TASK>
[  133.569393][   T30] audit: type=1326 audit(1761124809.014:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  133.626737][ T5837] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  133.693185][   T30] audit: type=1326 audit(1761124809.014:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  133.755143][ T6695] loop3: detected capacity change from 0 to 16
[  133.772471][ T6695] erofs (device loop3): mounted with root inode @ nid 36.
[  133.839737][   T30] audit: type=1326 audit(1761124809.014:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3398efc9 code=0x7ffc0000
[  134.209774][ T6704] 9pnet_fd: Insufficient options for proto=fd
[  134.586381][ T6717] loop1: detected capacity change from 0 to 64
[  134.891134][ T6728] loop3: detected capacity change from 0 to 1024
[  134.907435][ T6728] EXT4-fs: inline encryption not supported
[  134.967372][ T6728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.022898][ T6702] loop0: detected capacity change from 0 to 32768
[  135.063557][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.100516][ T5889] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  135.119992][ T6702] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  135.249511][ T6702] XFS (loop0): Ending clean mount
[  135.287444][ T6750] loop2: detected capacity change from 0 to 256
[  135.307676][ T6702] XFS (loop0): Quotacheck needed: Please wait.
[  135.325956][ T5889] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  135.328000][ T6750] exfat: Deprecated parameter 'utf8'
[  135.352871][ T6750] exfat: Deprecated parameter 'namecase'
[  135.359153][ T5889] usb 5-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  135.398198][ T6750] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[  135.398203][ T5889] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.433141][ T6702] XFS (loop0): Quotacheck: Done.
[  135.450021][ T5889] usb 5-1: config 0 descriptor??
[  135.562706][ T5827] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  135.630950][ T6758] loop3: detected capacity change from 0 to 64
[  135.898410][ T5889] logitech-djreceiver 0003:046D:C71F.0002: unbalanced collection at end of report description
[  135.923622][ T5889] logitech-djreceiver 0003:046D:C71F.0002: logi_dj_probe: parse failed
[  135.932582][ T5889] logitech-djreceiver 0003:046D:C71F.0002: probe with driver logitech-djreceiver failed with error -22
[  136.143792][ T5944] usb 5-1: USB disconnect, device number 4
[  137.953750][ T6781] loop3: detected capacity change from 0 to 4096
[  138.434771][ T6774] loop1: detected capacity change from 0 to 32768
[  138.465936][ T6774] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.288 (6774)
[  138.662990][ T6774] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  138.702490][ T6774] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  138.931667][ T6774] BTRFS info (device loop1): enabling ssd optimizations
[  138.938654][ T6774] BTRFS info (device loop1): turning on async discard
[  138.980169][ T6820] overlayfs: failed to resolve './file1': -2
[  138.991626][ T6774] BTRFS info (device loop1): enabling free space tree
[  139.174297][ T6822] fuse: Unknown parameter 'group_i00000000000000000000'
[  139.394721][ T5837] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  139.612581][ T6825] loop2: detected capacity change from 0 to 256
[  139.657977][ T6825] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  141.513297][ T6840] program syz.0.305 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  142.972720][ T6852] overlayfs: failed to resolve './file1': -2
[  143.145885][ T6855] fuse: Unknown parameter 'group_i00000000000000000000'
[  143.205410][ T6842] loop3: detected capacity change from 0 to 32768
[  143.246572][ T6842] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.308 (6842)
[  143.326190][ T6842] BTRFS info (device loop3 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  143.421612][ T6842] BTRFS info (device loop3 state S): using crc32c (crc32c-lib) checksum algorithm
[  143.548015][ T6864] loop2: detected capacity change from 0 to 4096
[  143.575844][ T6378] BTRFS warning (device loop3 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  143.600688][ T6864] EXT4-fs (loop2): Test dummy encryption mode enabled
[  143.634693][ T6864] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  143.637105][   T50] BTRFS warning (device loop3 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored
[  143.661884][   T50] BTRFS warning (device loop3 state CS): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x73153135 level 0, ignored
[  143.685803][ T6864] System zones: 0-5
[  143.692958][ T6842] BTRFS info (device loop3 state CS): enabling ssd optimizations
[  143.709659][ T6864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.727546][ T6842] BTRFS info (device loop3 state CS): turning off barriers
[  143.742804][ T6842] BTRFS info (device loop3 state CS): disabling log replay at mount time
[  143.763203][ T6842] BTRFS info (device loop3 state CS): turning on sync discard
[  143.785872][ T6842] BTRFS info (device loop3 state CS): enabling free space tree
[  143.879818][ T6842] BTRFS info (device loop3 state CS): ignoring bad roots
[  143.895502][ T6842] BTRFS info (device loop3 state CS): ignoring data csums
[  143.937678][ T6842] BTRFS info (device loop3 state CS): ignoring meta csums
[  143.988647][ T6842] BTRFS info (device loop3 state CS): ignoring unknown super block flags
[  144.005074][ T6842] BTRFS info (device loop3 state CS): use zlib compression, level 3
[  144.788096][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  144.788112][   T30] audit: type=1326 audit(1761124821.724:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  144.816516][   T30] audit: type=1326 audit(1761124821.724:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  144.900976][   T30] audit: type=1326 audit(1761124821.724:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  144.944813][ T6842] BTRFS info (device loop3 state CS): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  144.952244][   T30] audit: type=1326 audit(1761124821.724:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.017772][   T30] audit: type=1326 audit(1761124821.724:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.040437][   T30] audit: type=1326 audit(1761124821.724:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.062921][   T30] audit: type=1326 audit(1761124821.724:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.106787][ T5889] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  145.180042][   T30] audit: type=1326 audit(1761124821.724:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.258475][ T6893] loop1: detected capacity change from 0 to 128
[  145.274550][   T30] audit: type=1326 audit(1761124821.724:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.289769][ T5889] usb 5-1: Using ep0 maxpacket: 8
[  145.315914][ T5889] usb 5-1: no configurations
[  145.318983][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.328745][ T5889] usb 5-1: can't read configurations, error -22
[  145.338838][   T30] audit: type=1326 audit(1761124821.724:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6863 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  145.403209][ T6893] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  145.444869][ T6893] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  145.459437][ T5889] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  145.656421][   T52] Bluetooth: hci2: unexpected event 0x2f length: 763 > 260
[  145.669898][ T5889] usb 5-1: Using ep0 maxpacket: 8
[  145.697589][ T5889] usb 5-1: no configurations
[  145.702302][ T5889] usb 5-1: can't read configurations, error -22
[  145.730387][ T5889] usb usb5-port1: attempt power cycle
[  145.807413][ T6904] loop2: detected capacity change from 0 to 256
[  145.821467][ T6904] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  145.961991][ T6906] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  146.013941][ T6906] bond1 (unregistering): Released all slaves
[  146.146420][ T5889] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  146.171045][ T5889] usb 5-1: Using ep0 maxpacket: 8
[  146.176913][ T5889] usb 5-1: no configurations
[  146.181937][ T5889] usb 5-1: can't read configurations, error -22
[  146.331849][ T5889] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  146.548203][ T6921] loop3: detected capacity change from 0 to 128
[  146.583127][ T6921] FAT-fs (loop3): Directory bread(block 414) failed
[  146.590664][ T5889] usb 5-1: Using ep0 maxpacket: 8
[  146.596441][ T5889] usb 5-1: no configurations
[  146.601242][ T5889] usb 5-1: can't read configurations, error -22
[  146.608987][ T6921] FAT-fs (loop3): Directory bread(block 415) failed
[  146.609125][ T5889] usb usb5-port1: unable to enumerate USB device
[  146.634226][ T6921] FAT-fs (loop3): Directory bread(block 416) failed
[  146.649438][ T6921] FAT-fs (loop3): Directory bread(block 417) failed
[  146.659743][ T6921] FAT-fs (loop3): Directory bread(block 418) failed
[  146.669417][ T6921] FAT-fs (loop3): Directory bread(block 419) failed
[  146.684843][ T6921] FAT-fs (loop3): Directory bread(block 420) failed
[  146.701480][ T6921] FAT-fs (loop3): Directory bread(block 421) failed
[  146.923310][ T5837] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  147.129591][  T116] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  147.310007][  T116] usb 4-1: Using ep0 maxpacket: 8
[  147.320233][  T116] usb 4-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  147.349877][  T116] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.357947][  T116] usb 4-1: Product: syz
[  147.360657][ T6939] loop2: detected capacity change from 0 to 1024
[  147.384202][  T116] usb 4-1: Manufacturer: syz
[  147.406239][  T116] usb 4-1: SerialNumber: syz
[  147.494733][  T116] usb 4-1: config 0 descriptor??
[  147.524963][  T116] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  147.573516][ T6390] hfsplus: b-tree write err: -5, ino 4
[  147.905159][ T6941] loop1: detected capacity change from 0 to 32768
[  147.951523][ T6941] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  148.008128][ T6958] loop0: detected capacity change from 0 to 1024
[  148.024561][ T6941] (syz.1.335,6941,0):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options
[  148.059214][ T6958] ext4: Unknown parameter 'rootcontext'
[  148.119895][   T43] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  148.128948][  T116] gspca_sonixj: reg_w1 err -71
[  148.151044][  T116] sonixj 4-1:0.0: probe with driver sonixj failed with error -71
[  148.181705][  T116] usb 4-1: USB disconnect, device number 3
[  148.320073][   T43] usb 5-1: Using ep0 maxpacket: 8
[  148.326382][   T43] usb 5-1: no configurations
[  148.335385][   T43] usb 5-1: can't read configurations, error -22
[  148.353338][ T5837] ocfs2: Unmounting device (7,1) on (node local)
[  148.470613][   T43] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  148.629493][   T43] usb 5-1: Using ep0 maxpacket: 8
[  148.649867][   T43] usb 5-1: no configurations
[  148.661125][   T43] usb 5-1: can't read configurations, error -22
[  148.678032][   T43] usb usb5-port1: attempt power cycle
[  148.804518][ T6972] loop3: detected capacity change from 0 to 164
[  148.816351][ T6972] Unable to read rock-ridge attributes
[  148.836087][ T6972] Unable to read rock-ridge attributes
[  148.852862][ T6972] iso9660: Corrupted directory entry in block 4 of inode 1792
[  148.980591][ T5904] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  149.033655][   T43] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  149.060024][   T43] usb 5-1: Using ep0 maxpacket: 8
[  149.080150][   T43] usb 5-1: no configurations
[  149.085793][   T43] usb 5-1: can't read configurations, error -22
[  149.110446][  T116] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  149.140816][ T5904] usb 2-1: Using ep0 maxpacket: 32
[  149.162084][ T5904] usb 2-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  149.163008][ T6982] 9pnet: Could not find request transport: fd0x0000000000000003
[  149.178601][ T5904] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.198367][ T5904] usb 2-1: config 0 descriptor??
[  149.220439][ T5904] gspca_main: sunplus-2.14.0 probing 041e:400b
[  149.239433][   T43] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  149.269468][  T116] usb 1-1: Using ep0 maxpacket: 32
[  149.275232][   T43] usb 5-1: Using ep0 maxpacket: 8
[  149.286060][   T43] usb 5-1: no configurations
[  149.291883][  T116] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  149.305616][   T43] usb 5-1: can't read configurations, error -22
[  149.315687][  T116] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  149.325954][   T43] usb usb5-port1: unable to enumerate USB device
[  149.332514][  T116] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.350115][  T116] usb 1-1: Product: syz
[  149.359531][  T116] usb 1-1: Manufacturer: syz
[  149.364152][  T116] usb 1-1: SerialNumber: syz
[  149.389198][  T116] usb 1-1: config 0 descriptor??
[  149.396924][  T116] cdc_ether 1-1:0.0: skipping garbage
[  149.420987][  T116] cdc_ether 1-1:0.0: invalid descriptor buffer length
[  149.431393][  T116] usb 1-1: bad CDC descriptors
[  149.440436][  T116] usb 1-1: unsupported MDLM descriptors
[  149.556767][ T6992] loop3: detected capacity change from 0 to 1024
[  149.569827][ T6992] EXT4-fs (loop3): filesystem is read-only
[  149.585173][ T6992] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  149.595836][ T6992] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  149.600877][ T5944] usb 1-1: USB disconnect, device number 5
[  149.606683][ T6992] EXT4-fs error (device loop3): ext4_get_journal_inode:5808: comm syz.3.356: inode #1: comm syz.3.356: iget: illegal inode #
[  149.639753][ T6992] EXT4-fs (loop3): no journal found
[  149.645036][ T6992] EXT4-fs (loop3): can't get journal size
[  149.678123][ T6992] EXT4-fs (loop3): failed to initialize system zone (-22)
[  149.699729][ T6992] EXT4-fs (loop3): mount failed
[  149.740563][ T6992] loop3: detected capacity change from 0 to 2048
[  149.756856][ T6986] loop2: detected capacity change from 0 to 40427
[  149.757577][ T6992] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  149.775445][ T6986] F2FS-fs (loop2): build fault injection rate: 771
[  149.806300][ T6986] F2FS-fs (loop2): invalid crc value
[  149.972608][ T6986] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  150.007056][ T6986] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  150.061956][ T5831] syz-executor: attempt to access beyond end of device
[  150.061956][ T5831] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  150.076456][ T5831] CPU: 0 UID: 0 PID: 5831 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  150.076481][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  150.076493][ T5831] Call Trace:
[  150.076501][ T5831]  <TASK>
[  150.076509][ T5831]  dump_stack_lvl+0x189/0x250
[  150.076549][ T5831]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.076576][ T5831]  ? __pfx_queue_work_on+0x10/0x10
[  150.076598][ T5831]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  150.076621][ T5831]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  150.076656][ T5831]  f2fs_handle_critical_error+0x37c/0x540
[  150.076692][ T5831]  f2fs_write_end_io+0x886/0xb60
[  150.076733][ T5831]  __submit_merged_bio+0x27a/0x6a0
[  150.076767][ T5831]  __submit_merged_write_cond+0x255/0x530
[  150.076803][ T5831]  f2fs_write_data_pages+0x261d/0x3000
[  150.076874][ T5831]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  150.076960][ T5831]  ? __page_cache_release+0x8a6/0xbb0
[  150.076996][ T5831]  ? folios_put_refs+0x584/0x670
[  150.077037][ T5831]  ? __lock_acquire+0xab9/0xd20
[  150.077070][ T5831]  ? do_raw_spin_lock+0x121/0x290
[  150.077112][ T5831]  ? do_raw_spin_unlock+0x122/0x240
[  150.077141][ T5831]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  150.077171][ T5831]  do_writepages+0x32e/0x550
[  150.077214][ T5831]  ? do_raw_spin_unlock+0x122/0x240
[  150.077254][ T5831]  filemap_fdatawrite+0x199/0x240
[  150.077284][ T5831]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  150.077372][ T5831]  ? do_raw_spin_unlock+0x122/0x240
[  150.077406][ T5831]  f2fs_sync_dirty_inodes+0x31f/0x830
[  150.077445][ T5831]  f2fs_write_checkpoint+0x93e/0x2440
[  150.077463][ T5831]  ? stack_depot_save_flags+0x40/0x860
[  150.077530][ T5831]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  150.077599][ T5831]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  150.077618][ T5831]  ? kfree+0x19a/0x6d0
[  150.077660][ T5831]  kill_f2fs_super+0x2cc/0x6d0
[  150.077688][ T5831]  ? __pfx_kill_f2fs_super+0x10/0x10
[  150.077729][ T5831]  ? shrinker_free+0x2ce/0x3e0
[  150.077759][ T5831]  deactivate_locked_super+0xbc/0x130
[  150.077784][ T5831]  cleanup_mnt+0x425/0x4c0
[  150.077805][ T5831]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.077831][ T5831]  task_work_run+0x1d4/0x260
[  150.077854][ T5831]  ? __pfx_task_work_run+0x10/0x10
[  150.077870][ T5831]  ? __x64_sys_umount+0x122/0x160
[  150.077900][ T5831]  ? exit_to_user_mode_loop+0x40/0x130
[  150.077926][ T5831]  exit_to_user_mode_loop+0xe9/0x130
[  150.077948][ T5831]  do_syscall_64+0x2bd/0xfa0
[  150.077969][ T5831]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.077990][ T5831]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.078009][ T5831]  ? clear_bhb_loop+0x60/0xb0
[  150.078034][ T5831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.078052][ T5831] RIP: 0033:0x7f97549902f7
[  150.078069][ T5831] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  150.078085][ T5831] RSP: 002b:00007ffca23718d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  150.078106][ T5831] RAX: 0000000000000000 RBX: 00007f9754a11d7d RCX: 00007f97549902f7
[  150.078119][ T5831] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffca2371990
[  150.078131][ T5831] RBP: 00007ffca2371990 R08: 0000000000000000 R09: 0000000000000000
[  150.078143][ T5831] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffca2372a20
[  150.078155][ T5831] R13: 00007f9754a11d7d R14: 00000000000249f7 R15: 00007ffca2372a60
[  150.078193][ T5831]  </TASK>
[  150.411349][ T6997] loop3: detected capacity change from 0 to 32768
[  150.420115][ T5831] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  150.429258][ T6997] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.357 (6997)
[  150.456037][ T6997] BTRFS info (device loop3 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  150.467404][ T6997] BTRFS info (device loop3 state S): using crc32c (crc32c-lib) checksum algorithm
[  150.480693][ T5904] gspca_sunplus: reg_w_riv err -71
[  150.485916][ T5904] sunplus 2-1:0.0: probe with driver sunplus failed with error -71
[  150.538363][ T5904] usb 2-1: USB disconnect, device number 5
[  150.673838][ T1168] BTRFS warning (device loop3 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  150.690595][ T7015] netlink: 'syz.0.359': attribute type 11 has an invalid length.
[  150.699154][   T50] BTRFS warning (device loop3 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored
[  150.715980][ T7015] netlink: 228 bytes leftover after parsing attributes in process `syz.0.359'.
[  150.726351][ T7013] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  150.738816][   T36] BTRFS warning (device loop3 state CS): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x73153135 level 0, ignored
[  150.762996][ T6997] BTRFS info (device loop3 state CS): enabling ssd optimizations
[  150.770941][ T6997] BTRFS info (device loop3 state CS): turning off barriers
[  150.778152][ T6997] BTRFS info (device loop3 state CS): disabling log replay at mount time
[  150.786887][ T6997] BTRFS info (device loop3 state CS): turning on sync discard
[  150.794433][ T6997] BTRFS info (device loop3 state CS): enabling free space tree
[  150.802064][ T6997] BTRFS info (device loop3 state CS): ignoring bad roots
[  150.809810][ T6997] BTRFS info (device loop3 state CS): ignoring data csums
[  150.816972][ T6997] BTRFS info (device loop3 state CS): ignoring meta csums
[  150.824739][ T6997] BTRFS info (device loop3 state CS): ignoring unknown super block flags
[  150.833995][ T6997] BTRFS info (device loop3 state CS): use zlib compression, level 3
[  151.000277][ T5844] BTRFS info (device loop3 state CS): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  151.225870][ T7026] loop1: detected capacity change from 0 to 512
[  151.360140][ T7026] EXT4-fs: Ignoring removed nobh option
[  151.379959][ T7022] infiniband syz2: set active
[  151.387476][ T7022] infiniband syz2: added bond0
[  151.445508][ T7022] RDS/IB: syz2: added
[  151.450344][ T7022] smc: adding ib device syz2 with port count 1
[  151.456854][ T7022] smc:    ib device syz2 port 1 has no pnetid
[  151.507616][ T7026] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.364: iget: bad i_size value: 38620345925642
[  151.533315][ T7026] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.364: couldn't read orphan inode 15 (err -117)
[  151.664034][ T7037] loop2: detected capacity change from 0 to 256
[  151.681379][ T7037] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  151.690275][ T7026] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.803772][ T7026] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.364: bg 0: block 5: invalid block bitmap
[  151.838163][ T7026] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28
[  151.859788][ T7026] EXT4-fs (loop1): This should not happen!! Data will be lost
[  151.859788][ T7026] 
[  151.885387][ T7026] EXT4-fs (loop1): Total free blocks count 0
[  151.899422][ T7026] EXT4-fs (loop1): Free/Dirty block details
[  151.917594][ T7026] EXT4-fs (loop1): free_blocks=0
[  151.931027][ T7026] EXT4-fs (loop1): dirty_blocks=5
[  151.945029][ T7026] EXT4-fs (loop1): Block reservation details
[  151.989410][ T7026] EXT4-fs (loop1): i_reserved_data_blocks=5
[  152.070552][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.529812][   T43] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  152.922117][   T43] usb 4-1: Using ep0 maxpacket: 8
[  152.934921][ T7054] TCP: TCP_TX_DELAY enabled
[  152.944314][   T43] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  152.999389][   T43] usb 4-1: config 0 has no interfaces?
[  153.015242][   T43] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  153.029422][   T43] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  153.058533][   T43] usb 4-1: Product: syz
[  153.064511][ T7058] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  153.080053][   T43] usb 4-1: Manufacturer: syz
[  153.099392][   T43] usb 4-1: SerialNumber: syz
[  153.124383][   T43] usb 4-1: config 0 descriptor??
[  153.192874][ T7064] fuse: Bad value for 'fd'
[  153.420175][ T5944] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  153.581839][ T5944] usb 2-1: config 0 has no interfaces?
[  153.588588][ T5944] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  153.600949][ T5944] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.614888][ T5944] usb 2-1: config 0 descriptor??
[  154.097877][ T7078] loop0: detected capacity change from 0 to 32768
[  154.143235][ T7078] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  154.249989][ T5827] ocfs2: Unmounting device (7,0) on (node local)
[  154.573066][ T7087] loop2: detected capacity change from 0 to 1024
[  154.606567][   T43] usb 2-1: USB disconnect, device number 6
[  154.620180][ T7087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.701862][ T7087] EXT4-fs: Ignoring sb option on remount
[  154.707983][ T7087] EXT4-fs: Cannot specify journal on remount
[  154.742475][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.875332][ T7102] x_tables: duplicate underflow at hook 1
[  155.079850][   T43] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  155.139385][  T116] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  155.220286][ T5889] usb 4-1: USB disconnect, device number 4
[  155.249642][   T43] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.265447][   T43] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  155.291459][   T43] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.303708][  T116] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.315694][   T43] usb 5-1: config 0 descriptor??
[  155.326008][  T116] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.338558][   T43] pwc: Askey VC010 type 2 USB webcam detected.
[  155.346364][  T116] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  155.355514][  T116] usb 1-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  155.363869][  T116] usb 1-1: Manufacturer: syz
[  155.372428][  T116] usb 1-1: config 0 descriptor??
[  155.742777][   T43] pwc: recv_control_msg error -32 req 02 val 2b00
[  155.750228][   T43] pwc: recv_control_msg error -32 req 02 val 2700
[  155.853556][ T7115] loop2: detected capacity change from 0 to 164
[  155.865675][ T7115] Unable to read rock-ridge attributes
[  155.872487][ T5889] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  155.883338][ T7115] Unable to read rock-ridge attributes
[  155.890687][ T7115] iso9660: Corrupted directory entry in block 4 of inode 1792
[  155.964277][   T43] pwc: recv_control_msg error -32 req 04 val 1000
[  155.984646][   T43] pwc: recv_control_msg error -32 req 04 val 1300
[  156.000733][   T43] pwc: recv_control_msg error -32 req 04 val 1400
[  156.008228][   T43] pwc: recv_control_msg error -32 req 02 val 2000
[  156.016337][   T43] pwc: recv_control_msg error -32 req 02 val 2100
[  156.029137][ T7119] loop2: detected capacity change from 0 to 256
[  156.031121][ T5889] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  156.048467][ T7119] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  156.050588][ T5889] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  156.076057][ T5889] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  156.086676][ T7119] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  156.088302][ T5889] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  156.108511][ T5889] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.117564][ T5889] usb 2-1: Product: syz
[  156.122372][ T5889] usb 2-1: Manufacturer: syz
[  156.127007][ T5889] usb 2-1: SerialNumber: syz
[  156.227692][   T43] pwc: recv_control_msg error -32 req 02 val 2500
[  156.238600][   T43] pwc: recv_control_msg error -71 req 02 val 2400
[  156.246166][   T43] pwc: recv_control_msg error -71 req 02 val 2600
[  156.254189][   T43] pwc: recv_control_msg error -71 req 02 val 2900
[  156.261779][   T43] pwc: recv_control_msg error -71 req 02 val 2800
[  156.269543][   T43] pwc: recv_control_msg error -71 req 04 val 1100
[  156.288690][   T43] pwc: recv_control_msg error -71 req 04 val 1200
[  156.319872][   T43] pwc: Registered as video103.
[  156.336342][   T43] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input7
[  156.390008][ T5889] usb 2-1: 0:2 : does not exist
[  156.396345][  T116] uclogic 0003:256C:006D.0003: v1 frame probing failed: -71
[  156.410919][   T43] usb 5-1: USB disconnect, device number 13
[  156.428332][  T116] uclogic 0003:256C:006D.0003: failed probing parameters: -71
[  156.457253][  T116] uclogic 0003:256C:006D.0003: probe with driver uclogic failed with error -71
[  156.500402][  T116] usb 1-1: USB disconnect, device number 6
[  156.520089][ T5889] usb 2-1: USB disconnect, device number 7
[  156.714792][ T6205] udevd[6205]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  157.085896][ T7141] fuse: Unknown parameter 'group_i00000000000000000000'
[  157.748522][ T7144] loop4: detected capacity change from 0 to 32768
[  157.759403][ T7144] (syz.4.405,7144,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  157.775594][ T7144] (syz.4.405,7144,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  157.838487][ T7144] JBD2: Ignoring recovery information on journal
[  157.910919][ T7144] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  157.937295][ T7144] (syz.4.405,7144,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x4d558a87, computed 0x7f660c76. Applying ECC.
[  157.951445][ T7144] (syz.4.405,7144,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x4d558a87, computed 0x2fd566aa
[  157.964016][ T7144] (syz.4.405,7144,1):ocfs2_read_virt_blocks:1037 ERROR: status = -5
[  157.973511][ T7144] (syz.4.405,7144,1):ocfs2_read_quota_block:150 ERROR: status = -5
[  157.982540][ T7144] (syz.4.405,7144,1):ocfs2_load_local_quota_bitmaps:269 ERROR: status = -5
[  157.991240][ T7144] (syz.4.405,7144,1):ocfs2_local_read_info:761 ERROR: status = -5
[  157.999537][ T7144] (syz.4.405,7144,1):ocfs2_enable_quotas:943 ERROR: status = -5
[  158.007196][ T7144] (syz.4.405,7144,1):ocfs2_fill_super:1144 ERROR: status = -5
[  158.044002][ T7144] ocfs2: Unmounting device (7,4) on (node local)
[  158.394671][ T7153] loop3: detected capacity change from 0 to 8192
[  158.525751][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  158.525768][   T30] audit: type=1326 audit(1761124835.464:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  158.645651][   T30] audit: type=1326 audit(1761124835.494:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  158.728149][   T30] audit: type=1326 audit(1761124835.514:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  158.795811][   T30] audit: type=1326 audit(1761124835.514:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.036449][   T30] audit: type=1326 audit(1761124835.514:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.059683][   T30] audit: type=1326 audit(1761124835.514:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.084636][   T30] audit: type=1326 audit(1761124835.514:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.195789][ T7180] fuse: Unknown parameter 'group_i00000000000000000000'
[  159.529159][   T30] audit: type=1326 audit(1761124835.514:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.640434][   T30] audit: type=1326 audit(1761124835.524:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  159.662665][   T30] audit: type=1326 audit(1761124835.524:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.4.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d5b58efc9 code=0x7ffc0000
[  160.405997][ T7195] loop3: detected capacity change from 0 to 32768
[  160.427245][ T7195] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.422 (7195)
[  160.730501][ T7195] BTRFS info (device loop3 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  160.743038][ T7195] BTRFS info (device loop3 state S): using crc32c (crc32c-lib) checksum algorithm
[  160.803235][   T36] BTRFS warning (device loop3 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored
[  161.822839][   T36] BTRFS warning (device loop3 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored
[  161.838669][   T36] BTRFS warning (device loop3 state CS): checksum verify failed on logical 5328896 mirror 1 wanted 0x51ec978b found 0x73153135 level 0, ignored
[  161.913862][ T7195] BTRFS info (device loop3 state CS): enabling ssd optimizations
[  161.921861][ T7195] BTRFS info (device loop3 state CS): turning off barriers
[  161.929074][ T7195] BTRFS info (device loop3 state CS): disabling log replay at mount time
[  161.937562][ T7195] BTRFS info (device loop3 state CS): turning on sync discard
[  161.945161][ T7195] BTRFS info (device loop3 state CS): enabling free space tree
[  161.952834][ T7195] BTRFS info (device loop3 state CS): ignoring bad roots
[  161.959917][ T7195] BTRFS info (device loop3 state CS): ignoring data csums
[  161.968281][ T7195] BTRFS info (device loop3 state CS): ignoring meta csums
[  161.975461][ T7195] BTRFS info (device loop3 state CS): ignoring unknown super block flags
[  161.983922][ T7195] BTRFS info (device loop3 state CS): use zlib compression, level 3
[  162.809763][ T5844] BTRFS info (device loop3 state CS): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  163.431883][ T7256] loop3: detected capacity change from 0 to 128
[  163.561883][ T7256] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  163.631880][ T7256] ext4 filesystem being mounted at /97/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  164.375475][ T5844] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.608839][ T5944] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  164.803777][ T5944] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  164.845231][ T5944] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.881910][ T5944] usb 2-1: Product: syz
[  164.941394][ T5944] usb 2-1: Manufacturer: syz
[  164.979460][ T5944] usb 2-1: SerialNumber: syz
[  164.996445][ T5944] usb 2-1: config 0 descriptor??
[  165.205219][ T7271] loop4: detected capacity change from 0 to 164
[  165.274264][ T7271] Unable to read rock-ridge attributes
[  165.283916][ T5944] hso 2-1:0.0: Failed to find BULK IN ep
[  165.303120][ T5944] usb-storage 2-1:0.0: USB Mass Storage device detected
[  165.362700][ T7271] Unable to read rock-ridge attributes
[  165.379888][ T7271] iso9660: Corrupted directory entry in block 4 of inode 1792
[  165.540446][ T5944] usb 2-1: USB disconnect, device number 8
[  165.952087][ T7287] loop3: detected capacity change from 0 to 64
[  166.131073][ T7291] loop2: detected capacity change from 0 to 512
[  166.138489][ T7291] EXT4-fs: Ignoring removed orlov option
[  166.203669][ T7291] EXT4-fs: Ignoring removed mblk_io_submit option
[  166.259464][ T7291] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.453: corrupted in-inode xattr: bad e_name length
[  166.291442][ T7295] loop1: detected capacity change from 0 to 4096
[  166.315988][ T7295] EXT4-fs (loop1): Test dummy encryption mode enabled
[  166.379438][ T7291] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.453: couldn't read orphan inode 15 (err -117)
[  166.400512][ T7295] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  166.436213][ T7295] System zones: 0-5
[  166.450059][ T7291] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.474979][ T7295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.597986][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  166.598003][   T30] audit: type=1326 audit(1761124843.504:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  166.722428][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.890081][   T30] audit: type=1326 audit(1761124843.504:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  166.956158][   T30] audit: type=1326 audit(1761124843.514:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.035087][   T30] audit: type=1326 audit(1761124843.514:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.192740][   T30] audit: type=1326 audit(1761124843.514:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.325451][   T30] audit: type=1326 audit(1761124843.514:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.349612][ T7313] overlayfs: missing 'lowerdir'
[  167.499373][   T30] audit: type=1326 audit(1761124843.514:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.549365][   T30] audit: type=1326 audit(1761124843.514:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.683143][   T30] audit: type=1326 audit(1761124843.514:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  167.739439][   T30] audit: type=1326 audit(1761124843.514:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7300 comm="syz.3.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f52af18efc9 code=0x7ffc0000
[  168.026024][ T7325] netlink: 24 bytes leftover after parsing attributes in process `syz.0.465'.
[  168.450970][ T5951] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  168.482915][ T5944] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  168.634117][ T5951] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  168.645745][ T5951] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.669165][ T5951] usb 5-1: Product: syz
[  168.673744][ T5944] usb 4-1: Using ep0 maxpacket: 8
[  168.682203][ T5944] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  168.694297][ T5951] usb 5-1: Manufacturer: syz
[  168.698910][ T5951] usb 5-1: SerialNumber: syz
[  168.706484][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.716882][ T5944] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  168.731369][ T5951] usb 5-1: config 0 descriptor??
[  168.742056][ T5944] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  168.752958][ T5944] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  168.766583][ T5944] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  168.776329][ T5944] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.808792][ T7342] loop0: detected capacity change from 0 to 4096
[  168.876114][ T7342] netlink: 'syz.0.472': attribute type 4 has an invalid length.
[  168.914214][ T7342] netlink: 'syz.0.472': attribute type 4 has an invalid length.
[  168.943916][ T5951] hso 5-1:0.0: Failed to find BULK IN ep
[  168.953852][ T5951] usb-storage 5-1:0.0: USB Mass Storage device detected
[  168.994287][ T5944] usb 4-1: GET_CAPABILITIES returned 0
[  169.002867][ T5944] usbtmc 4-1:16.0: can't read capabilities
[  169.086090][ T7351] netlink: 64 bytes leftover after parsing attributes in process `syz.0.475'.
[  169.146483][ T5951] usb 5-1: USB disconnect, device number 14
[  169.203060][ T5944] usb 4-1: USB disconnect, device number 5
[  169.836381][ T7375] loop3: detected capacity change from 0 to 512
[  169.844394][ T7375] EXT4-fs: Ignoring removed mblk_io_submit option
[  169.870691][ T7375] EXT4-fs: inline encryption not supported
[  169.878879][ T7375] EXT4-fs: Ignoring removed mblk_io_submit option
[  169.903254][ T7375] EXT4-fs (loop3): Test dummy encryption mode enabled
[  169.922807][ T7375] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  169.964014][ T7375] EXT4-fs (loop3): 1 truncate cleaned up
[  169.978469][ T7375] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.000879][ T7383] loop4: detected capacity change from 0 to 164
[  170.028301][ T7383] Unable to read rock-ridge attributes
[  170.071977][ T7383] Unable to read rock-ridge attributes
[  170.102066][ T7383] iso9660: Corrupted directory entry in block 4 of inode 1792
[  170.187259][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.290324][ T7389] loop1: detected capacity change from 0 to 256
[  170.320713][ T7389] vfat: Unknown parameter 'shortíЧ…Mư'name'
[  170.349842][ T7391] x_tables: duplicate underflow at hook 1
[  170.930428][ T7403] bridge0: port 3(syz_tun) entered blocking state
[  170.990398][ T7400] loop0: detected capacity change from 0 to 40427
[  171.001630][ T7403] bridge0: port 3(syz_tun) entered disabled state
[  171.008267][ T7403] syz_tun: entered allmulticast mode
[  171.016547][ T7403] syz_tun: entered promiscuous mode
[  171.023994][ T7403] bridge0: port 3(syz_tun) entered blocking state
[  171.030653][ T7403] bridge0: port 3(syz_tun) entered forwarding state
[  171.059806][ T7400] F2FS-fs (loop0): invalid crc value
[  171.162915][ T7400] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  171.182085][ T7400] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  171.225169][ T5827] syz-executor: attempt to access beyond end of device
[  171.225169][ T5827] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  171.249791][ T5827] CPU: 0 UID: 0 PID: 5827 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  171.249819][ T5827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  171.249831][ T5827] Call Trace:
[  171.249839][ T5827]  <TASK>
[  171.249848][ T5827]  dump_stack_lvl+0x189/0x250
[  171.249885][ T5827]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.249912][ T5827]  ? __pfx_queue_work_on+0x10/0x10
[  171.249935][ T5827]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  171.249957][ T5827]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  171.249991][ T5827]  f2fs_handle_critical_error+0x37c/0x540
[  171.250025][ T5827]  f2fs_write_end_io+0x886/0xb60
[  171.250063][ T5827]  __submit_merged_bio+0x27a/0x6a0
[  171.250097][ T5827]  __submit_merged_write_cond+0x255/0x530
[  171.250130][ T5827]  f2fs_write_data_pages+0x261d/0x3000
[  171.250195][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  171.250269][ T5827]  ? __mod_zone_page_state+0xd7/0x140
[  171.250300][ T5827]  ? folios_put_refs+0x58b/0x670
[  171.250339][ T5827]  ? __lock_acquire+0xab9/0xd20
[  171.250370][ T5827]  ? do_raw_spin_lock+0x121/0x290
[  171.250410][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  171.250439][ T5827]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  171.250470][ T5827]  do_writepages+0x32e/0x550
[  171.250509][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  171.250542][ T5827]  filemap_fdatawrite+0x199/0x240
[  171.250572][ T5827]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  171.250665][ T5827]  ? do_raw_spin_unlock+0x122/0x240
[  171.250699][ T5827]  f2fs_sync_dirty_inodes+0x31f/0x830
[  171.250733][ T5827]  f2fs_write_checkpoint+0x93e/0x2440
[  171.250752][ T5827]  ? __lock_acquire+0xab9/0xd20
[  171.250803][ T5827]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  171.250882][ T5827]  kill_f2fs_super+0x2cc/0x6d0
[  171.250908][ T5827]  ? __pfx_kill_f2fs_super+0x10/0x10
[  171.250946][ T5827]  ? shrinker_free+0x2ce/0x3e0
[  171.250975][ T5827]  deactivate_locked_super+0xbc/0x130
[  171.251000][ T5827]  cleanup_mnt+0x425/0x4c0
[  171.251021][ T5827]  ? lockdep_hardirqs_on+0x9c/0x150
[  171.251046][ T5827]  task_work_run+0x1d4/0x260
[  171.251068][ T5827]  ? __pfx_task_work_run+0x10/0x10
[  171.251084][ T5827]  ? __x64_sys_umount+0x122/0x160
[  171.251114][ T5827]  ? exit_to_user_mode_loop+0x40/0x130
[  171.251140][ T5827]  exit_to_user_mode_loop+0xe9/0x130
[  171.251161][ T5827]  do_syscall_64+0x2bd/0xfa0
[  171.251182][ T5827]  ? lockdep_hardirqs_on+0x9c/0x150
[  171.251204][ T5827]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.251223][ T5827]  ? clear_bhb_loop+0x60/0xb0
[  171.251247][ T5827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.251266][ T5827] RIP: 0033:0x7f1f339902f7
[  171.251284][ T5827] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  171.251301][ T5827] RSP: 002b:00007ffe483cb0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  171.251322][ T5827] RAX: 0000000000000000 RBX: 00007f1f33a11d7d RCX: 00007f1f339902f7
[  171.251335][ T5827] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe483cb180
[  171.251348][ T5827] RBP: 00007ffe483cb180 R08: 0000000000000000 R09: 0000000000000000
[  171.251361][ T5827] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe483cc210
[  171.251373][ T5827] R13: 00007f1f33a11d7d R14: 0000000000029cae R15: 00007ffe483cc250
[  171.251407][ T5827]  </TASK>
[  171.251416][ T5827] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  171.730701][ T7416] loop3: detected capacity change from 0 to 164
[  171.946752][ T7416] Unable to read rock-ridge attributes
[  171.987625][ T7417] loop2: detected capacity change from 0 to 40427
[  171.995553][ T7417] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  172.004498][ T7417] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  172.014498][ T7416] Unable to read rock-ridge attributes
[  172.037352][ T7417] F2FS-fs (loop2): invalid crc value
[  172.047311][ T7416] iso9660: Corrupted directory entry in block 4 of inode 1792
[  172.145312][ T7417] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  172.166968][ T7417] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  172.174086][ T7417] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  172.906626][ T7419] syz.4.503 (7419): drop_caches: 2
[  173.299566][ T7417] F2FS-fs (loop2): Stopped filesystem due to reason: 0
[  173.785039][ T7439] loop3: detected capacity change from 0 to 4096
[  174.106182][ T7451] x_tables: duplicate underflow at hook 1
[  174.114078][   T30] kauditd_printk_skb: 37 callbacks suppressed
[  174.114095][   T30] audit: type=1800 audit(1761124851.054:407): pid=7449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.512" name="bus" dev="overlay" ino=491 res=0 errno=0
[  174.629901][ T7473] netlink: 36 bytes leftover after parsing attributes in process `syz.2.520'.
[  174.654219][ T7470] loop0: detected capacity change from 0 to 2048
[  174.688718][ T7470] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  174.719446][ T5944] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  174.744859][ T7478] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  174.891732][ T5944] usb 5-1: config 0 has no interfaces?
[  174.914670][ T5944] usb 5-1: New USB device found, idVendor=056a, idProduct=0005, bcdDevice= 0.00
[  174.952691][ T5944] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.984576][ T5944] usb 5-1: config 0 descriptor??
[  175.011643][   T30] audit: type=1326 audit(1761124851.954:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.143190][   T30] audit: type=1326 audit(1761124851.954:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.226625][   T30] audit: type=1326 audit(1761124851.984:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.299665][   T30] audit: type=1326 audit(1761124851.984:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.349475][   T30] audit: type=1326 audit(1761124851.984:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.385785][   T30] audit: type=1326 audit(1761124851.984:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.408842][   T30] audit: type=1326 audit(1761124851.984:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f975498efc9 code=0x7ffc0000
[  175.485353][   T30] audit: type=1326 audit(1761124852.004:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9754985e67 code=0x7ffc0000
[  175.507791][  T116] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  175.570304][   T30] audit: type=1326 audit(1761124852.004:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7484 comm="syz.2.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f975492b099 code=0x7ffc0000
[  175.593775][ T7496] loop3: detected capacity change from 0 to 32768
[  175.602637][ T7496] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.526 (7496)
[  175.615064][ T7501] loop1: detected capacity change from 0 to 64
[  175.624142][ T7496] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  175.634385][ T7496] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  175.676467][  T116] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.700108][  T116] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.719844][  T116] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  175.735798][  T116] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  175.765405][  T116] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.790873][  T116] usb 1-1: config 0 descriptor??
[  175.813716][ T7496] BTRFS info (device loop3): enabling ssd optimizations
[  175.820752][ T7496] BTRFS info (device loop3): turning on async discard
[  175.827528][ T7496] BTRFS info (device loop3): enabling free space tree
[  175.923151][   T43] usb 5-1: USB disconnect, device number 15
[  176.056259][ T5844] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  176.229353][  T116] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  176.346164][ T7511] loop2: detected capacity change from 0 to 65536
[  176.412599][ T7511] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  176.478096][ T7511] XFS (loop2): Ending clean mount
[  176.588250][ T5831] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  176.741417][ T7490] usb 1-1: string descriptor 0 read error: -71
[  176.755029][ T7544] loop1: detected capacity change from 0 to 256
[  176.761763][ T5944] usb 1-1: USB disconnect, device number 7
[  177.201269][ T7554] 
[  177.203639][ T7554] ======================================================
[  177.210653][ T7554] WARNING: possible circular locking dependency detected
[  177.217672][ T7554] syzkaller #0 Not tainted
[  177.222065][ T7554] ------------------------------------------------------
[  177.229061][ T7554] syz.3.540/7554 is trying to acquire lock:
[  177.234936][ T7554] ffffffff8e025f48 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0x286/0x1720
[  177.244511][ T7554] 
[  177.244511][ T7554] but task is already holding lock:
[  177.251865][ T7554] ffff888143336c98 (&q->q_usage_counter(io)#49){++++}-{0:0}, at: nbd_start_device+0x17f/0xb10
[  177.262139][ T7554] 
[  177.262139][ T7554] which lock already depends on the new lock.
[  177.262139][ T7554] 
[  177.272529][ T7554] 
[  177.272529][ T7554] the existing dependency chain (in reverse order) is:
[  177.281526][ T7554] 
[  177.281526][ T7554] -> #2 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[  177.290126][ T7554]        lock_acquire+0x120/0x360
[  177.295150][ T7554]        blk_alloc_queue+0x538/0x620
[  177.300425][ T7554]        __blk_mq_alloc_disk+0x15c/0x340
[  177.306049][ T7554]        nbd_dev_add+0x46c/0xae0
[  177.310974][ T7554]        nbd_init+0x1c6/0x240
[  177.315639][ T7554]        do_one_initcall+0x236/0x820
[  177.320915][ T7554]        do_initcall_level+0x104/0x190
[  177.326371][ T7554]        do_initcalls+0x59/0xa0
[  177.331216][ T7554]        kernel_init_freeable+0x334/0x4b0
[  177.336939][ T7554]        kernel_init+0x1d/0x1d0
[  177.341793][ T7554]        ret_from_fork+0x4bc/0x870
[  177.346894][ T7554]        ret_from_fork_asm+0x1a/0x30
[  177.352172][ T7554] 
[  177.352172][ T7554] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  177.359386][ T7554]        lock_acquire+0x120/0x360
[  177.364411][ T7554]        fs_reclaim_acquire+0x72/0x100
[  177.369863][ T7554]        prepare_alloc_pages+0x152/0x650
[  177.375487][ T7554]        __alloc_frozen_pages_noprof+0x123/0x370
[  177.381813][ T7554]        __alloc_pages_noprof+0xa/0x30
[  177.387274][ T7554]        pcpu_populate_chunk+0x182/0xb30
[  177.392915][ T7554]        pcpu_alloc_noprof+0xcbf/0x1720
[  177.398462][ T7554]        xt_percpu_counter_alloc+0x161/0x220
[  177.404444][ T7554]        translate_table+0x1323/0x2040
[  177.409906][ T7554]        ip6t_register_table+0x106/0x7d0
[  177.415536][ T7554]        ip6table_security_table_init+0x41/0x70
[  177.421774][ T7554]        xt_find_table_lock+0x30c/0x3e0
[  177.427315][ T7554]        xt_request_find_table_lock+0x26/0x100
[  177.433475][ T7554]        do_ip6t_get_ctl+0x730/0x1180
[  177.438929][ T7554]        nf_getsockopt+0x26e/0x290
[  177.444027][ T7554]        ipv6_getsockopt+0x1ed/0x290
[  177.449310][ T7554]        do_sock_getsockopt+0x372/0x450
[  177.454859][ T7554]        __x64_sys_getsockopt+0x1a5/0x250
[  177.460581][ T7554]        do_syscall_64+0xfa/0xfa0
[  177.465602][ T7554]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.472005][ T7554] 
[  177.472005][ T7554] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  177.479726][ T7554]        validate_chain+0xb9b/0x2140
[  177.485004][ T7554]        __lock_acquire+0xab9/0xd20
[  177.490188][ T7554]        lock_acquire+0x120/0x360
[  177.495199][ T7554]        __mutex_lock+0x187/0x1350
[  177.500384][ T7554]        pcpu_alloc_noprof+0x286/0x1720
[  177.505918][ T7554]        sbitmap_init_node+0x1e1/0x640
[  177.511371][ T7554]        sbitmap_queue_init_node+0x3e/0x4d0
[  177.517266][ T7554]        blk_mq_init_tags+0x15c/0x2d0
[  177.522820][ T7554]        blk_mq_alloc_map_and_rqs+0xbb/0x9c0
[  177.528804][ T7554]        blk_mq_update_nr_hw_queues+0xa90/0x1ae0
[  177.535121][ T7554]        nbd_start_device+0x17f/0xb10
[  177.540485][ T7554]        nbd_genl_connect+0x135b/0x18f0
[  177.546024][ T7554]        genl_family_rcv_msg_doit+0x215/0x300
[  177.552082][ T7554]        genl_rcv_msg+0x60e/0x790
[  177.557094][ T7554]        netlink_rcv_skb+0x208/0x470
[  177.562367][ T7554]        genl_rcv+0x28/0x40
[  177.566852][ T7554]        netlink_unicast+0x82f/0x9e0
[  177.572296][ T7554]        netlink_sendmsg+0x805/0xb30
[  177.577568][ T7554]        __sock_sendmsg+0x21c/0x270
[  177.582748][ T7554]        ____sys_sendmsg+0x505/0x830
[  177.588022][ T7554]        ___sys_sendmsg+0x21f/0x2a0
[  177.593211][ T7554]        __x64_sys_sendmsg+0x19b/0x260
[  177.598660][ T7554]        do_syscall_64+0xfa/0xfa0
[  177.603673][ T7554]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.610072][ T7554] 
[  177.610072][ T7554] other info that might help us debug this:
[  177.610072][ T7554] 
[  177.620279][ T7554] Chain exists of:
[  177.620279][ T7554]   pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#49
[  177.620279][ T7554] 
[  177.633926][ T7554]  Possible unsafe locking scenario:
[  177.633926][ T7554] 
[  177.641358][ T7554]        CPU0                    CPU1
[  177.646705][ T7554]        ----                    ----
[  177.652052][ T7554]   lock(&q->q_usage_counter(io)#49);
[  177.657418][ T7554]                                lock(fs_reclaim);
[  177.663904][ T7554]                                lock(&q->q_usage_counter(io)#49);
[  177.671792][ T7554]   lock(pcpu_alloc_mutex);
[  177.676283][ T7554] 
[  177.676283][ T7554]  *** DEADLOCK ***
[  177.676283][ T7554] 
[  177.684404][ T7554] 6 locks held by syz.3.540/7554:
[  177.689410][ T7554]  #0: ffffffff8f3378f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  177.697582][ T7554]  #1: ffffffff8f337708 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x10d/0x790
[  177.706532][ T7554]  #2: ffff8880256819c8 (&set->update_nr_hwq_lock){++++}-{4:4}, at: blk_mq_update_nr_hw_queues+0xa7/0x1ae0
[  177.717927][ T7554]  #3: ffff8880256818d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0xba/0x1ae0
[  177.728875][ T7554]  #4: ffff888143336c98 (&q->q_usage_counter(io)#49){++++}-{0:0}, at: nbd_start_device+0x17f/0xb10
[  177.739584][ T7554]  #5: ffff888143336cd0 (&q->q_usage_counter(queue)#33){+.+.}-{0:0}, at: nbd_start_device+0x17f/0xb10
[  177.750558][ T7554] 
[  177.750558][ T7554] stack backtrace:
[  177.756427][ T7554] CPU: 0 UID: 0 PID: 7554 Comm: syz.3.540 Not tainted syzkaller #0 PREEMPT(full) 
[  177.756446][ T7554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  177.756457][ T7554] Call Trace:
[  177.756464][ T7554]  <TASK>
[  177.756472][ T7554]  dump_stack_lvl+0x189/0x250
[  177.756499][ T7554]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.756521][ T7554]  ? __pfx__printk+0x10/0x10
[  177.756539][ T7554]  ? print_lock_name+0xde/0x100
[  177.756557][ T7554]  print_circular_bug+0x2ee/0x310
[  177.756580][ T7554]  check_noncircular+0x134/0x160
[  177.756603][ T7554]  validate_chain+0xb9b/0x2140
[  177.756632][ T7554]  __lock_acquire+0xab9/0xd20
[  177.756652][ T7554]  ? pcpu_alloc_noprof+0x286/0x1720
[  177.756669][ T7554]  lock_acquire+0x120/0x360
[  177.756685][ T7554]  ? pcpu_alloc_noprof+0x286/0x1720
[  177.756707][ T7554]  __mutex_lock+0x187/0x1350
[  177.756726][ T7554]  ? pcpu_alloc_noprof+0x286/0x1720
[  177.756745][ T7554]  ? kasan_save_track+0x4f/0x80
[  177.756761][ T7554]  ? kasan_save_track+0x3e/0x80
[  177.756776][ T7554]  ? __kasan_kmalloc+0x93/0xb0
[  177.756792][ T7554]  ? blk_mq_init_tags+0x83/0x2d0
[  177.756810][ T7554]  ? blk_mq_alloc_map_and_rqs+0xbb/0x9c0
[  177.756834][ T7554]  ? blk_mq_update_nr_hw_queues+0xa90/0x1ae0
[  177.756849][ T7554]  ? pcpu_alloc_noprof+0x286/0x1720
[  177.756865][ T7554]  ? nbd_genl_connect+0x135b/0x18f0
[  177.756885][ T7554]  ? genl_family_rcv_msg_doit+0x215/0x300
[  177.756901][ T7554]  ? genl_rcv_msg+0x60e/0x790
[  177.756921][ T7554]  ? __pfx___mutex_lock+0x10/0x10
[  177.756940][ T7554]  ? ____sys_sendmsg+0x505/0x830
[  177.756962][ T7554]  ? do_syscall_64+0xfa/0xfa0
[  177.756980][ T7554]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.757002][ T7554]  pcpu_alloc_noprof+0x286/0x1720
[  177.757025][ T7554]  sbitmap_init_node+0x1e1/0x640
[  177.757045][ T7554]  sbitmap_queue_init_node+0x3e/0x4d0
[  177.757064][ T7554]  blk_mq_init_tags+0x15c/0x2d0
[  177.757084][ T7554]  blk_mq_alloc_map_and_rqs+0xbb/0x9c0
[  177.757110][ T7554]  ? blk_mq_update_nr_hw_queues+0x992/0x1ae0
[  177.757125][ T7554]  ? kfree+0x19a/0x6d0
[  177.757147][ T7554]  ? blk_mq_update_nr_hw_queues+0x93d/0x1ae0
[  177.757165][ T7554]  blk_mq_update_nr_hw_queues+0xa90/0x1ae0
[  177.757188][ T7554]  ? __pfx_blk_mq_update_nr_hw_queues+0x10/0x10
[  177.757210][ T7554]  ? sysfs_add_file_mode_ns+0x259/0x300
[  177.757229][ T7554]  nbd_start_device+0x17f/0xb10
[  177.757252][ T7554]  ? device_create_file+0xf4/0x1c0
[  177.757275][ T7554]  nbd_genl_connect+0x135b/0x18f0
[  177.757298][ T7554]  ? __pfx_nbd_genl_connect+0x10/0x10
[  177.757320][ T7554]  ? rcu_is_watching+0x15/0xb0
[  177.757341][ T7554]  ? __nla_parse+0x40/0x60
[  177.757356][ T7554]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  177.757376][ T7554]  genl_family_rcv_msg_doit+0x215/0x300
[  177.757395][ T7554]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  177.757416][ T7554]  ? stack_trace_save+0x9c/0xe0
[  177.757440][ T7554]  genl_rcv_msg+0x60e/0x790
[  177.757457][ T7554]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.757471][ T7554]  ? __pfx_nbd_genl_connect+0x10/0x10
[  177.757496][ T7554]  netlink_rcv_skb+0x208/0x470
[  177.757515][ T7554]  ? __lock_acquire+0xab9/0xd20
[  177.757531][ T7554]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.757546][ T7554]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  177.757573][ T7554]  ? down_read+0x1ad/0x2e0
[  177.757593][ T7554]  genl_rcv+0x28/0x40
[  177.757606][ T7554]  netlink_unicast+0x82f/0x9e0
[  177.757628][ T7554]  ? __pfx_netlink_unicast+0x10/0x10
[  177.757652][ T7554]  ? netlink_sendmsg+0x642/0xb30
[  177.757672][ T7554]  ? skb_put+0x11b/0x210
[  177.757693][ T7554]  netlink_sendmsg+0x805/0xb30
[  177.757717][ T7554]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.757739][ T7554]  ? aa_sock_msg_perm+0xf1/0x1d0
[  177.757761][ T7554]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  177.757780][ T7554]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.757801][ T7554]  __sock_sendmsg+0x21c/0x270
[  177.757819][ T7554]  ____sys_sendmsg+0x505/0x830
[  177.757842][ T7554]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.757867][ T7554]  ? import_iovec+0x74/0xa0
[  177.757887][ T7554]  ___sys_sendmsg+0x21f/0x2a0
[  177.757909][ T7554]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.757950][ T7554]  ? __fget_files+0x2a/0x420
[  177.757972][ T7554]  ? __fget_files+0x3a0/0x420
[  177.757999][ T7554]  __x64_sys_sendmsg+0x19b/0x260
[  177.758022][ T7554]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  177.758050][ T7554]  ? do_syscall_64+0xbe/0xfa0
[  177.758069][ T7554]  do_syscall_64+0xfa/0xfa0
[  177.758087][ T7554]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.758103][ T7554]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  177.758120][ T7554]  ? clear_bhb_loop+0x60/0xb0
[  177.758137][ T7554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.758154][ T7554] RIP: 0033:0x7f52af18efc9
[  177.758168][ T7554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.758184][ T7554] RSP: 002b:00007f52b008f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.758200][ T7554] RAX: ffffffffffffffda RBX: 00007f52af3e5fa0 RCX: 00007f52af18efc9
[  177.758213][ T7554] RDX: 0000000020000000 RSI: 0000200000001ac0 RDI: 0000000000000004
[  177.758224][ T7554] RBP: 00007f52af211f91 R08: 0000000000000000 R09: 0000000000000000
[  177.758235][ T7554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.758245][ T7554] R13: 00007f52af3e6038 R14: 00007f52af3e5fa0 R15: 00007ffe5dd5fba8
[  177.758264][ T7554]  </TASK>
[  178.305410][   T52] Bluetooth: hci2: unexpected event 0x2f length: 763 > 260
[  178.343214][   T52] block nbd0: Receive control failed (result -32)
[  178.357842][   T52] block nbd0: Receive control failed (result -32)
[  178.630839][ T7554] nbd0: detected capacity change from 0 to 127