last executing test programs:

3m23.745446062s ago: executing program 5 (id=7363):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006325a640402000498b4d000000010902240001000000000904000002214c6a0009050702000000da000905890e"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000640)={0x34, &(0x7f0000000380)={0x20, 0x1, 0x2e, "3e0d38b06d0f50aa7b2c060a23f0e370f3e28abb926cf445c8a5a35dd40b2bb1615640675f7f432ecfc1ab728739"}, 0x0, 0x0, 0x0, 0x0, 0x0})

3m21.57171963s ago: executing program 5 (id=7390):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x50, 0x27, 0x1, 0x0, 0x0, {{@in=@private=0xa000100, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x2b}}}, 0x50}, 0x1, 0x0, 0x0, 0x2000c0c0}, 0x0)

3m21.104580283s ago: executing program 5 (id=7398):
r0 = syz_open_dev$dri(&(0x7f0000000400), 0x0, 0x8640)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f00000002c0)={0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

3m20.776690987s ago: executing program 5 (id=7403):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f00000004c0)={[{@uid={'uid', 0x3d, 0xee00}}, {@part={'part', 0x3d, 0x9}}, {@nobarrier}, {@force}, {@nls={'nls', 0x3d, 'iso8859-13'}}, {@gid={'gid', 0x3d, 0xee00}}, {@nobarrier}, {@uid}, {}]}, 0xfe, 0x5ee, &(0x7f0000000680)="$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")
mount$9p_unix(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1018, 0x0)

3m20.191045166s ago: executing program 5 (id=7414):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000001c0)=ANY=[@ANYBLOB="6a6f75726e616c5f6173796e635f636f6d6d69742c6865617274626561743d6e6f6e652c6c6f63616c666c6f636b732c696e6f646536342c6a6f75726e616c5f6173796e635f636f6d6d69742c6e6f61636c2c6e6f61636c2c6572726f72733d636f6e74696e75652c00edc97523793b5022d016bb24c65ba594abbd38fd9c301bfa101e61d574eb5cc84215aa20846b6f33df6281eaedb4b4afaaacd321e4df0d16b4f5a8a992efe2554b52ec9c980e5544cd4b8df3e1ba594d07e0bfe3471c164430a36b7ebddc35caf2959224d8330f1807117fc520d8ff5660c5691afd66a8e397bb802ed69df198008fb799cc37"], 0x1, 0x470e, &(0x7f0000008f40)="$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")
quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

3m19.639287649s ago: executing program 5 (id=7421):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x19, @mcast1, 0x7}, 0x1c)

3m18.955721643s ago: executing program 32 (id=7421):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x19, @mcast1, 0x7}, 0x1c)

4.950154604s ago: executing program 4 (id=9575):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000500)='./file0\x00', 0xc0, &(0x7f0000000040)=ANY=[], 0x5, 0x18e, &(0x7f0000000780)="$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")
mount$9p_unix(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x801000, 0x0)

4.527660989s ago: executing program 4 (id=9579):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x121001, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40081271, &(0x7f0000000980)=0x4000)

3.630295057s ago: executing program 4 (id=9586):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)="5c000000120007ab9a3fe3d86e17aa0a", 0x10}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
syz_usb_connect$cdc_ncm(0x2, 0x6e, &(0x7f0000000180)=ANY=[@ANYBLOB="12015002020000082505a1a4400001020b0109025c0002017f400f090400000102020000052406000105240006000d240f01065878797f0021010506241a100b1c090581030004f20940090401"], &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0})

1.661118214s ago: executing program 6 (id=9604):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r0, &(0x7f000000a2c0)=[{{&(0x7f0000000180)={0xa, 0x4e24, 0x7, @private2, 0x6}, 0x1c, &(0x7f0000000480)=[{&(0x7f0000000380)="b74b", 0x2}], 0x1}}, {{&(0x7f0000000b00)={0xa, 0x4e24, 0xb, @mcast1, 0x9}, 0x1c, &(0x7f0000000ec0)=[{&(0x7f0000000b40)="5bbb", 0x2}], 0x1}}], 0x2, 0x840)

1.586121484s ago: executing program 1 (id=9605):
r0 = syz_io_uring_setup(0x1ec3, &(0x7f0000000140)={0x0, 0x3ee1, 0x0, 0x1, 0x200}, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES(r0, 0x1f, 0x0, 0x0)

1.57830573s ago: executing program 2 (id=9606):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0x25, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x8, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc8}}, 0x0)

1.372897928s ago: executing program 3 (id=9608):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x40, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}]}, 0x40}, 0x1, 0x0, 0x0, 0x28001}, 0x8000002)

1.368318638s ago: executing program 0 (id=9609):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nofsc'])

1.357256936s ago: executing program 6 (id=9610):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000980)={0x50, 0x2, 0x2, 0x301, 0x0, 0x0, {0xa}, [@CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

1.313544834s ago: executing program 1 (id=9611):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f0000000280)=""/250, 0x6e, 0xfa}, 0x28)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x23, &(0x7f0000000000), 0x0)

1.309828658s ago: executing program 2 (id=9612):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000800)=@raw={'raw\x00', 0x8, 0x3, 0x398, 0x0, 0x11, 0x148, 0x260, 0x0, 0x300, 0x2a8, 0x2a8, 0x300, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x8800, 0x200, 0x260, 0x0, {}, [@common=@unspec=@devgroup={{0x38}, {0x3, 0x6, 0x6, 0x8, 0x6e69}}, @common=@inet=@hashlimit3={{0x158}, {'ip6tnl0\x00', {0x10, 0x8, 0x40, 0x6, 0x0, 0x3, 0x5, 0x8, 0x0, 0x20}, {0x5}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x3, 0x4, 0x6, 0x6, 0x5, 0x6], 0x1}, {0xffffffffffffffff, [0x1, 0x6, 0x7, 0xe, 0x4, 0x3], 0x1, 0x6}}}}, {{@ip={@multicast2, @remote, 0x0, 0x0, 'vlan0\x00', 'macvlan1\x00', {}, {0xff}, 0x8}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f8)

1.134140962s ago: executing program 6 (id=9613):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xa, {"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", 0x4e}}, 0x69)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.128457602s ago: executing program 3 (id=9614):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x3, @none}, 0xe)

1.118300694s ago: executing program 0 (id=9615):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x130, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0x8, 0x0, 0x1, [@nested={0x100, 0x12, 0x0, 0x1, [@typed={0xc, 0x4b, 0x0, 0x0, @u64=0x5}, @typed={0x5, 0x122, 0x0, 0x0, @str='\x00'}, @typed={0xe5, 0x12a, 0x0, 0x0, @binary="8ff5bb9427ab70a33426e7c093e686a42f8e8f0d6b0f40cfe60be041b3f1f8cddfe753828af570bd1154423c4208ffbabc2d99757b21b0753a1f09ce362ffbad546905dc09b5bbfb11bf58a4f9dd181af172a96d2f7f1d37f8ae06f9b786ff845b6a3a13a6bcec6a0f6ad18b6334c2a6dac7b5786627490b9c6a04c0c82432ae0d64142b1e1c22814bf47a6a8cb7b0da337e72471875bcbbcd2436abf94b2bdfd70b25c2b7e0d5cf3df1c8adc803ca04bf42a598dc11a2fb686a4d53ab9a15a6958781d01b9c79dfe5de1d6838a3fc320ae6435a4cd7514deff3b1c1202790516f"}]}]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x130}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

1.083212757s ago: executing program 1 (id=9616):
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x8, 0x80000000)

966.692592ms ago: executing program 2 (id=9618):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7003f00)

870.686812ms ago: executing program 0 (id=9619):
r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r0, 0xc01864cb, &(0x7f0000002ec0)={0x0, 0x0})

860.703033ms ago: executing program 3 (id=9620):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RANGE_TO_DATA={0x4}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RANGE_FROM_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "8f"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0)

802.535875ms ago: executing program 1 (id=9621):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000600)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000040], 0x0, 0x0, &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108)

800.703603ms ago: executing program 6 (id=9622):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x8040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

774.974689ms ago: executing program 4 (id=9623):
r0 = semget$private(0x0, 0x4, 0x10)
semtimedop(r0, &(0x7f00000000c0)=[{0x3, 0x4, 0x1000}, {0x2, 0x8}], 0x2, &(0x7f0000000180))

635.885109ms ago: executing program 2 (id=9624):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r0, &(0x7f000000a2c0)=[{{&(0x7f0000000180)={0xa, 0x4e24, 0x7, @private2, 0x6}, 0x1c, &(0x7f0000000480)=[{&(0x7f0000000380)="b74b", 0x2}], 0x1}}, {{&(0x7f0000000b00)={0xa, 0x4e24, 0xb, @mcast1, 0x9}, 0x1c, &(0x7f0000000ec0)=[{&(0x7f0000000b40)="5bbb", 0x2}], 0x1}}], 0x2, 0x840)

635.682063ms ago: executing program 6 (id=9625):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x28, 0x3, 0x8, 0x101, 0x0, 0x0, {}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0xffffffffffffffff}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_SENT={0x8, 0x1, 0x1, 0x0, 0x5}]}]}, 0x28}}, 0xd0)

571.266068ms ago: executing program 3 (id=9626):
r0 = socket$inet6(0xa, 0x2, 0x3a)
sendto$inet6(r0, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0)

571.082055ms ago: executing program 0 (id=9627):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xa}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb8}}, 0x0)

470.679442ms ago: executing program 1 (id=9628):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x1, 0xa0c00)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x4)

450.702844ms ago: executing program 4 (id=9629):
socket$unix(0x1, 0x5, 0x0)
pselect6(0x40, &(0x7f0000002b40)={0x0, 0x9, 0x7, 0x2, 0x4a1f5aab, 0x7fff, 0x1000, 0x8086}, &(0x7f0000002b80)={0x9, 0x5, 0x6, 0x7, 0x6, 0x49a2, 0x4, 0x8}, 0x0, 0x0, 0x0)

400.915108ms ago: executing program 6 (id=9630):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="66696c655f756d61736b3d30303030303030303030303030303030303030373737372c6469725f756d61736b3d30303030303030303030303030303030303030303030302c696f636861727365743d69736f383835392d362c636f6465706167653d63703835352c63726561746f723d4ddd71752c00eeabc72a9832436950c6116498dda8be60a94746ea68766f63d1d63944fbda2a9337439b37b6f2a694ba98f40070d09c3890bd28a2018f1adfe1e0a630020a9cac1a43800a70a9328ddb2a2f2e207da7cd3caf243b39eaff4966b7aa97cb6cc7d2cfc59e7a976de0a00d23c7ffaaa056cc4f8bc7b4c0f9a21db642b3e832e30a90ba1b9e7933b77c60f6a1b9ca9128f0a2d0e23373c9d15c79865bae97ddd82b98001b6aa9c5390e4deaf5f0ee492c6842b1c08486e479a889491459a257e9d4083634dac6cd58520f72e6c2f11bbd5b03655bb1863b16f3", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$eJzs3U1rE08cB/Dv7KZN+m/pf7UVwYNINWAvovUiXiIlL8KTqE0KxSWitviAYBVPIvbu3aNXX4N4UQTP9eRJPHiqBxmZh2SfN6lmd1P9fsCy2dmZ/e3OzlPALIjon7Xa3n11/ov6JwAXLvDsIuAAaAA1AEdwtLHV29zY9LudvIJcHK+bXAImp0gcs9brpmVtwOawPPWphrnwPiqGlPLS56qDoMrp1i/d6M4Tuieo29apExsVxZfl8f6zfJsBsF1EMBMlv6bEHvZwD/OlhUNERBNJmPHdseP8nJ2/Ow7QtIOJSpu48f937VUdQOFkbmpo/NerLClUvf+vk4L1nl7CqXSnv0pMK+t17PNU7PM0zNMTmV2KYatKHYszs77hd8+s3fQ7Dp6gZYUOW9R/O/bxtCLR1hNFL6WsTXMMSpvJPESkzyhn9TVMqWtYMfHfBRCJfyH3jAUQ78QHcUV4eInOYP5Xk0JVk64pL1ZTJv6z2SXqq/TUUbDdRqvVciKHHNInOWbPYA25ygbcrDNO2zIjXxB4w+LUuQ7HcpmrOzck10JqrhW9vQwnI9diJJe6mvUN/232qUohXojLYglf8Qbt0PzfUfE1kWyZoYc+aDWiaYYCfcdV64zWbEitaXsiPXJsfdp9aPYnm8vgLiYbrPUjv0+jfXiO67iA+Tv3H9xwfb97W21c89XjqjcGe27N2Q2/O/UUCCdNyga2gz11SC1xcH9QKjOw5bEWqPqPlCTVsHrf+3tUKxtW4KM/jUf1A4XeutkRrmJ/G/2uazwFtt+P50HqTxsiST+llCU2oh17Z+JJ1XRLVK6g0kc7PmWqQwebqlJh1n/BeqVmJnvqj5c6Tx/xiwBbolRz7MEKLsgrzYwcwH85K7i0YjNXcMk1V2LNqNdcJ08Dp0Y/o2fj/EuINj7iKr//JyIiIiIiIiIiIiIiIiIiIiIiIiI6aMr4zzBVXyMRERERERERERERERERERERERERERER0UG32oD53Wv03/+L0d7/G38Vi2t+Enws7//d6YHv/yUq3q8AAAD///B/c8c=")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

373.828446ms ago: executing program 3 (id=9631):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7786}, [@call={0x85, 0x0, 0x0, 0x29}, @printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x7b}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x44, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

305.720685ms ago: executing program 0 (id=9632):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
ioctl$SNDCTL_SEQ_SYNC(r0, 0x541b)

293.684623ms ago: executing program 2 (id=9633):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x23, &(0x7f0000000000)=""/48, &(0x7f0000000040)=0x30)

211.888999ms ago: executing program 1 (id=9634):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000980)={0x2, 0x3, 0x0, 0x9, 0xe, 0x0, 0x70bd2c, 0x25dfdbff, [@sadb_address={0x5, 0x6, 0x3c, 0x0, 0x0, @in6={0xa, 0x4e24, 0x8, @mcast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0xe0000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x5e24, 0x9, @local, 0x6}}]}, 0x70}, 0x1, 0x7}, 0x0)

154.600203ms ago: executing program 4 (id=9635):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000400)={[{@nodiscard}, {@nocheckpoint_merge}, {@alloc_mode_def}, {@six_active_logs}, {@flush_merge}, {@fault_injection={'fault_injection', 0x3d, 0x4ee}}, {@acl}, {@noacl}, {@compress_cache}, {@alloc_mode_def}, {@nodiscard}, {@compress_cache}, {@fault_type={'fault_type', 0x3d, 0x4}}]}, 0x1, 0x5505, &(0x7f00000079c0)="$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")
open(&(0x7f00000002c0)='./file0\x00', 0x14937e, 0x12)

58.441666ms ago: executing program 3 (id=9636):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890c, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @empty}, @l2tp={0x2, 0x0, @broadcast, 0xfffffffe}, @nl=@unspec, 0x0, 0x0, 0x0, 0x0, 0x3})

10.145594ms ago: executing program 2 (id=9637):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000980)=ANY=[@ANYBLOB="12010000ac46b740e1092151c140010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000100)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

0s ago: executing program 0 (id=9638):
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000080)={'@\x00', 0x0, 0x6, 0x2, 0x7ff, 0x1, "ff0000c8e29b15e5a8c8c7ffff00", '\x00\x00\a\x00', "020500", "0001ffff", ["50d5c2a7c5ae5cace40000b6", '\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', "000000400300"]})

kernel console output (not intermixed with test programs):

716][ T1224] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1121.010096][ T1224] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1121.044476][ T1224] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1121.066906][ T1224] usb 4-1: SerialNumber: syz
[ 1121.124963][T26174] team0: Port device team_slave_0 removed
[ 1121.129710][ T1224] usb 4-1: 0:2 : does not exist
[ 1121.202320][T26174] team0: Port device team_slave_1 removed
[ 1121.224778][T26174] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1121.263094][T26174] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1121.296259][T26174] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1121.312490][T26174] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1121.325811][T26174] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1121.378559][T26174] Process accounting paused
[ 1121.438309][T26186] netlink: 59 bytes leftover after parsing attributes in process `syz.6.8573'.
[ 1121.464884][T26186] netlink: 59 bytes leftover after parsing attributes in process `syz.6.8573'.
[ 1121.716916][T20836] usb 4-1: USB disconnect, device number 53
[ 1122.934708][T26238] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1122.935886][T26239] loop4: detected capacity change from 0 to 128
[ 1124.389837][T26285] loop3: detected capacity change from 0 to 2048
[ 1124.463280][T26285] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1124.542959][   T30] audit: type=1800 audit(2000000735.859:225): pid=26285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8615" name="file1" dev="loop3" ino=1367 res=0 errno=0
[ 1124.800030][T26290] loop4: detected capacity change from 0 to 4096
[ 1124.909052][T26290] ntfs3(loop4): ino=19, mi_enum_attr
[ 1124.941220][T26290] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1125.527677][ T6314] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1125.544502][T26315] loop0: detected capacity change from 0 to 1764
[ 1125.560426][T26313] bond0: (slave bond_slave_0): Releasing backup interface
[ 1125.608411][T26278] loop6: detected capacity change from 0 to 32768
[ 1125.617322][T26278] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.8612 (26278)
[ 1125.679476][T26278] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1125.723409][T26278] BTRFS info (device loop6): using crc32c checksum algorithm
[ 1125.725536][T26313] bond0: (slave bond_slave_1): Releasing backup interface
[ 1125.741288][ T6314] usb 3-1: too many configurations: 36, using maximum allowed: 8
[ 1125.792801][ T6314] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1125.806476][ T6314] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.830604][ T6314] usb 3-1: Product: syz
[ 1125.841278][ T6314] usb 3-1: Manufacturer: syz
[ 1125.853251][ T6314] usb 3-1: SerialNumber: syz
[ 1125.909088][ T6314] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1125.925379][T26313] team0: Port device team_slave_0 removed
[ 1125.961202][T26278] BTRFS info (device loop6): enabling ssd optimizations
[ 1125.998564][T26283] loop1: detected capacity change from 0 to 32768
[ 1126.004084][T26278] BTRFS info (device loop6): turning on async discard
[ 1126.047618][ T1224] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1126.070091][T26283] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1126.076756][T26278] BTRFS info (device loop6): enabling free space tree
[ 1126.076792][T26278] BTRFS info (device loop6): use zlib compression, level 3
[ 1126.083711][T26313] team0: Port device team_slave_1 removed
[ 1126.085123][T26313] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1126.085155][T26313] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1126.130364][T26313] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1126.130397][T26313] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1126.191717][T26313] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1126.192316][T26283] XFS (loop1): Ending clean mount
[ 1126.497823][T26308] random: crng reseeded on system resumption
[ 1126.598222][T23411] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1126.758394][T20836] usb 3-1: USB disconnect, device number 44
[ 1126.892014][T26354] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1126.912367][ T6047] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1126.955687][T26354] netlink: 'syz.4.8632': attribute type 1 has an invalid length.
[ 1127.096099][T26356] loop0: detected capacity change from 0 to 1024
[ 1127.236660][ T1224] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 1127.282693][ T1224] ath9k_htc: Failed to initialize the device
[ 1127.313928][T20836] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1127.780056][T26372] loop2: detected capacity change from 0 to 256
[ 1127.926263][T26372] FAT-fs (loop2): Directory bread(block 64) failed
[ 1127.974809][T26372] FAT-fs (loop2): Directory bread(block 65) failed
[ 1127.993482][T26372] FAT-fs (loop2): Directory bread(block 66) failed
[ 1128.040286][T26372] FAT-fs (loop2): Directory bread(block 67) failed
[ 1128.068470][T26372] FAT-fs (loop2): Directory bread(block 68) failed
[ 1128.115908][T26372] FAT-fs (loop2): Directory bread(block 69) failed
[ 1128.132891][T26381] loop0: detected capacity change from 0 to 16
[ 1128.149219][T26381] erofs (device loop0): dirblkbits 7 isn't supported
[ 1128.154205][T26372] FAT-fs (loop2): Directory bread(block 70) failed
[ 1128.186969][T26383] process 'syz.3.8643' launched './file0' with NULL argv: empty string added
[ 1128.190244][T26372] FAT-fs (loop2): Directory bread(block 71) failed
[ 1128.248988][T26372] FAT-fs (loop2): Directory bread(block 72) failed
[ 1128.269576][T26372] FAT-fs (loop2): Directory bread(block 73) failed
[ 1128.561186][   T30] audit: type=1800 audit(2000000739.621:226): pid=26372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8640" name="bus" dev="loop2" ino=1048699 res=0 errno=0
[ 1128.697319][T26395] loop3: detected capacity change from 0 to 2048
[ 1128.729715][T26395] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1128.782820][T26395] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1128.794080][T26397] syz.1.8652 (26397): /proc/26396/oom_adj is deprecated, please use /proc/26396/oom_score_adj instead.
[ 1128.835231][T26395] UDF-fs: Scanning with blocksize 512 failed
[ 1128.864457][T26395] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1129.171727][T26412] loop6: detected capacity change from 0 to 64
[ 1129.256375][T26413] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[ 1129.830838][T26433] set_capacity_and_notify: 2 callbacks suppressed
[ 1129.830866][T26433] loop4: detected capacity change from 0 to 64
[ 1129.863138][T26439] netlink: 56 bytes leftover after parsing attributes in process `syz.3.8672'.
[ 1130.089312][ T6470] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[ 1130.285993][ T6470] usb 7-1: Using ep0 maxpacket: 32
[ 1130.334556][ T6470] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1130.369312][ T6470] usb 7-1: config 0 has no interface number 0
[ 1130.410635][ T6470] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8
[ 1130.456115][ T6470] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1130.481584][ T6470] usb 7-1: Product: syz
[ 1130.497318][ T6470] usb 7-1: Manufacturer: syz
[ 1130.509439][ T6470] usb 7-1: SerialNumber: syz
[ 1130.516091][T26455] loop2: detected capacity change from 0 to 256
[ 1130.534066][ T6470] usb 7-1: config 0 descriptor??
[ 1130.561844][T26455] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1130.590345][ T6470] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[ 1130.621225][ T6470] usb 7-1: selecting invalid altsetting 1
[ 1130.646319][ T6470] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[ 1130.679876][ T6470] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1130.715301][ T6470] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[ 1130.760765][ T6470] usb 7-1: media controller created
[ 1130.885069][ T6470] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1130.938354][T26466] loop2: detected capacity change from 0 to 256
[ 1130.938475][T26467] loop4: detected capacity change from 0 to 8
[ 1131.259818][ T6470] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[ 1131.344705][T26471] loop1: detected capacity change from 0 to 1024
[ 1131.424903][T26473] loop2: detected capacity change from 0 to 1024
[ 1131.541446][ T6470] usb 7-1: USB disconnect, device number 4
[ 1132.301060][T26459] loop3: detected capacity change from 0 to 40427
[ 1132.349460][T26459] F2FS-fs (loop3): invalid crc value
[ 1132.460326][T26469] loop0: detected capacity change from 0 to 32768
[ 1132.502777][T26469] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.8688 (26469)
[ 1132.612108][T26469] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1132.663784][T26469] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1132.720993][T26459] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1132.829823][T26459] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1132.854122][T26517] loop1: detected capacity change from 0 to 8
[ 1132.892666][T26517] unable to read xattr id index table
[ 1132.937544][T26469] BTRFS info (device loop0): enabling ssd optimizations
[ 1132.981831][T26469] BTRFS info (device loop0): turning on async discard
[ 1133.028000][T26469] BTRFS info (device loop0): enabling free space tree
[ 1133.264426][ T6314] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1133.298781][ T6046] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1133.477219][ T6314] usb 2-1: Using ep0 maxpacket: 32
[ 1133.515783][ T6314] usb 2-1: config 0 has an invalid interface number: 130 but max is 0
[ 1133.541461][ T6314] usb 2-1: config 0 has no interface number 0
[ 1133.557473][ T6314] usb 2-1: too many endpoints for config 0 interface 130 altsetting 50: 167, using maximum allowed: 30
[ 1133.645953][ T6314] usb 2-1: config 0 interface 130 altsetting 50 has 0 endpoint descriptors, different from the interface descriptor's value: 167
[ 1133.717050][ T6314] usb 2-1: config 0 interface 130 has no altsetting 0
[ 1133.752097][ T6314] usb 2-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[ 1133.807250][ T6314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.911318][ T6314] usb 2-1: config 0 descriptor??
[ 1134.213419][ T6314] usb 2-1: string descriptor 0 read error: -71
[ 1134.261570][ T6314] usb 2-1: USB disconnect, device number 30
[ 1134.973766][T26564] syz.4.8725: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1135.051095][T26564] CPU: 1 UID: 0 PID: 26564 Comm: syz.4.8725 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1135.051161][T26564] Tainted: [L]=SOFTLOCKUP
[ 1135.051176][T26564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1135.051200][T26564] Call Trace:
[ 1135.051214][T26564]  <TASK>
[ 1135.051229][T26564]  dump_stack_lvl+0x100/0x190
[ 1135.051280][T26564]  warn_alloc.cold+0x95/0x1c1
[ 1135.051323][T26564]  ? __pfx_warn_alloc+0x10/0x10
[ 1135.051384][T26564]  ? __lock_acquire+0x4a5/0x2630
[ 1135.051455][T26564]  __vmalloc_node_range_noprof+0x136c/0x1630
[ 1135.051498][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.051553][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.051602][T26564]  ? rcu_is_watching+0x12/0xc0
[ 1135.051660][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.051710][T26564]  ? trace_contention_end+0x122/0x170
[ 1135.051763][T26564]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1135.051805][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.051857][T26564]  ? dvb_dvr_do_ioctl+0x7e/0x270
[ 1135.051896][T26564]  ? find_held_lock+0x2b/0x80
[ 1135.051959][T26564]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1135.052002][T26564]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1135.052042][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.052095][T26564]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1135.052136][T26564]  ? __pfx___mutex_lock+0x10/0x10
[ 1135.052206][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.052261][T26564]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1135.052303][T26564]  ? futex_wait+0x11e/0x370
[ 1135.052347][T26564]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1135.052388][T26564]  __vmalloc_node_noprof+0xad/0xf0
[ 1135.052427][T26564]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1135.052475][T26564]  dvb_dvr_do_ioctl+0x15d/0x270
[ 1135.052528][T26564]  dvb_usercopy+0x167/0x340
[ 1135.052567][T26564]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 1135.052613][T26564]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1135.052670][T26564]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1135.052720][T26564]  ? __fget_files+0x21f/0x3d0
[ 1135.052771][T26564]  dvb_dvr_ioctl+0x29/0x40
[ 1135.052810][T26564]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 1135.052853][T26564]  __x64_sys_ioctl+0x18e/0x210
[ 1135.052917][T26564]  do_syscall_64+0x10b/0xf80
[ 1135.052987][T26564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.053029][T26564] RIP: 0033:0x7f5e3ef9cdd9
[ 1135.053061][T26564] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1135.053100][T26564] RSP: 002b:00007f5e3d1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1135.053138][T26564] RAX: ffffffffffffffda RBX: 00007f5e3f215fa0 RCX: 00007f5e3ef9cdd9
[ 1135.053171][T26564] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[ 1135.053197][T26564] RBP: 00007f5e3f032d69 R08: 0000000000000000 R09: 0000000000000000
[ 1135.053222][T26564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1135.053247][T26564] R13: 00007f5e3f216038 R14: 00007f5e3f215fa0 R15: 00007fff0585b948
[ 1135.053299][T26564]  </TASK>
[ 1135.111834][T26564] Mem-Info:
[ 1135.400450][T26564] active_anon:9205 inactive_anon:0 isolated_anon:0
[ 1135.400450][T26564]  active_file:12726 inactive_file:4770 isolated_file:0
[ 1135.400450][T26564]  unevictable:768 dirty:255 writeback:0
[ 1135.400450][T26564]  slab_reclaimable:8588 slab_unreclaimable:102843
[ 1135.400450][T26564]  mapped:36463 shmem:1472 pagetables:1539
[ 1135.400450][T26564]  sec_pagetables:0 bounce:0
[ 1135.400450][T26564]  kernel_misc_reclaimable:0
[ 1135.400450][T26564]  free:1318663 free_pcp:14029 free_cma:0
[ 1135.575686][T26564] Node 0 active_anon:36728kB inactive_anon:0kB active_file:50904kB inactive_file:18944kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:145820kB dirty:1168kB writeback:0kB shmem:4168kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13312kB pagetables:6116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1135.630602][T26564] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1135.690370][T26564] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1135.750081][T26585] loop6: detected capacity change from 0 to 2048
[ 1135.756849][ T6304] usb 2-1: new full-speed USB device number 31 using dummy_hcd
[ 1135.791983][T26564] lowmem_reserve[]: 0 2477 2478 2478 2478
[ 1135.801676][T26564] Node 0 DMA32 free:1314156kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37528kB inactive_anon:0kB active_file:50904kB inactive_file:18944kB unevictable:1536kB writepending:1168kB zspages:0kB present:3129332kB managed:2537212kB mlocked:0kB bounce:0kB free_pcp:53432kB local_pcp:20612kB free_cma:0kB
[ 1135.839764][T26585] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1135.900735][T26592] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1135.932940][T26564] lowmem_reserve[]: 0 0 1 1 1
[ 1135.947784][ T6304] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1135.964945][ T6304] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1135.978366][T26564] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1096kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 1136.009164][T26585] NILFS error (device loop6): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12
[ 1136.055269][T26564] lowmem_reserve[]: 0 0 0 0 0
[ 1136.060381][T26564] Node 1 Normal free:3947512kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1136.060799][ T6304] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1136.131952][T26564] lowmem_reserve[]: 0 0 0 0 0
[ 1136.136814][T26564] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1136.149862][T26564] Node 0 DMA32: 6740*4kB (UME) 4297*8kB (UME) 2160*16kB (UME) 626*32kB (UME) 300*64kB (UME) 304*128kB (UME) 382*256kB (UM) 245*512kB (UM) 133*1024kB (UME) 75*2048kB (UM) 153*4096kB (UM) = 1313752kB
[ 1136.153124][T26585] Remounting filesystem read-only
[ 1136.169727][ T6304] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1136.169770][ T6304] usb 2-1: SerialNumber: syz
[ 1136.172520][T26564] Node 0 Normal: 0*4kB 0*8kB 0*16kB 
[ 1136.195389][ T6304] usb 2-1: 0:2 : does not exist
[ 1136.206953][T26564] 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1136.243035][T26564] Node 1 Normal: 6*4kB (UM) 4*8kB (UM) 6*16kB (UM) 5*32kB (UM) 7*64kB (UM) 2*128kB (UM) 2*256kB (M) 3*512kB (UM) 2*1024kB (UM) 3*2048kB (U) 961*4096kB (M) = 3947512kB
[ 1136.338792][T26564] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1136.376547][T26564] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1136.419376][T26564] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1136.460595][T26564] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1136.503149][T26564] 18803 total pagecache pages
[ 1136.518216][T26564] 0 pages in swap cache
[ 1136.527283][   T30] audit: type=1326 audit(2000000747.079:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1136.559768][T26564] Free swap  = 124996kB
[ 1136.572697][T26564] Total swap = 124996kB
[ 1136.587028][T26564] 2097051 pages RAM
[ 1136.605297][T26564] 0 pages HighMem/MovableOnly
[ 1136.625806][T26564] 430859 pages reserved
[ 1136.643766][T26564] 0 pages cma reserved
[ 1136.657739][   T30] audit: type=1326 audit(2000000747.079:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1136.707347][ T6304] usb 2-1: USB disconnect, device number 31
[ 1136.767430][   T30] audit: type=1326 audit(2000000747.107:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1136.855397][   T30] audit: type=1326 audit(2000000747.107:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1136.943002][   T30] audit: type=1326 audit(2000000747.107:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1136.951517][ T5632] udevd[5632]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1136.992044][T26614] loop4: detected capacity change from 0 to 164
[ 1137.003994][   T30] audit: type=1326 audit(2000000747.107:232): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1137.036339][   T30] audit: type=1326 audit(2000000747.107:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1137.107582][   T30] audit: type=1326 audit(2000000747.107:235): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1137.182583][   T30] audit: type=1326 audit(2000000747.107:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26602 comm="syz.2.8744" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1137.348727][T26620] loop0: detected capacity change from 0 to 2048
[ 1137.394138][T26620] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1137.426615][T26620] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 1137.453270][T26620] UDF-fs: Scanning with blocksize 512 failed
[ 1137.504211][T26620] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1138.000435][T26642] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8764'.
[ 1138.034174][T26642] netlink: 'syz.0.8764': attribute type 1 has an invalid length.
[ 1138.066431][T26642] netlink: 'syz.0.8764': attribute type 2 has an invalid length.
[ 1138.141210][T26642] netlink: 112 bytes leftover after parsing attributes in process `syz.0.8764'.
[ 1138.238448][T26644] loop1: detected capacity change from 0 to 2048
[ 1138.351990][T26653] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1138.617560][   T30] audit: type=1326 audit(2000000749.035:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26657 comm="syz.0.8773" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1139.184562][ T6304] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1139.351031][T26683] team0: Port device dummy0 removed
[ 1139.399682][T26683] .`: (slave bond_slave_0): Releasing backup interface
[ 1139.400425][ T6304] usb 1-1: too many configurations: 36, using maximum allowed: 8
[ 1139.500612][T26683] .`: (slave bond_slave_1): Releasing backup interface
[ 1139.504153][ T6304] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1139.544500][ T6304] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1139.575470][T26683] team0: Port device team_slave_0 removed
[ 1139.586520][ T6304] usb 1-1: Product: syz
[ 1139.621107][ T6304] usb 1-1: Manufacturer: syz
[ 1139.642946][ T6304] usb 1-1: SerialNumber: syz
[ 1139.656806][T26683] team0: Port device team_slave_1 removed
[ 1139.674792][ T6304] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1139.689302][T26683] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1139.702753][T13135] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1139.720308][T26683] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1139.755765][T26683] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1139.783737][T26683] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1139.828449][T26683] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1140.082205][T26671] random: crng reseeded on system resumption
[ 1141.134329][T13135] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1141.144924][ T6304] usb 1-1: USB disconnect, device number 32
[ 1141.158691][T13135] ath9k_htc: Failed to initialize the device
[ 1141.174014][ T6304] usb 1-1: ath9k_htc: USB layer deinitialized
[ 1141.834857][T26699] loop2: detected capacity change from 0 to 32768
[ 1141.879781][T26699] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8792 (26699)
[ 1141.958651][T26699] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1142.008132][T26699] BTRFS info (device loop2): using crc32c checksum algorithm
[ 1142.016139][ T1224] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[ 1142.190490][T26699] BTRFS info (device loop2): enabling ssd optimizations
[ 1142.210788][ T1224] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1142.225447][T26699] BTRFS info (device loop2): turning on async discard
[ 1142.243668][ T1224] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1142.268900][ T1224] usb 4-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1142.278848][T26699] BTRFS info (device loop2): enabling free space tree
[ 1142.303512][T26699] BTRFS info (device loop2): use zlib compression, level 3
[ 1142.311923][ T1224] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1142.335237][ T1224] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1142.400098][ T1224] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1142.433165][ T1224] usb 4-1: invalid MIDI out EP 0
[ 1142.439991][T26764] loop0: detected capacity change from 0 to 512
[ 1142.476365][T26764] EXT4-fs: Ignoring removed orlov option
[ 1142.498409][T26764] EXT4-fs: Ignoring removed bh option
[ 1142.526603][T26764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1142.543451][ T6048] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1142.575947][T26764] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1142.622772][T26764] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.8816: bg 0: block 248: padding at end of block bitmap is not set
[ 1142.688009][T26764] loop0: lost filesystem error report for type 5 error -117
[ 1142.697105][T26764] __quota_error: 3 callbacks suppressed
[ 1142.697133][T26764] Quota error (device loop0): write_blk: dquota write failed
[ 1142.704800][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1142.704843][    C0] EXT4-fs (loop0): last error at time 2000000752: ext4_validate_block_bitmap:440
[ 1142.741714][T26764] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[ 1142.841263][T26764] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.8816: Failed to acquire dquot type 1
[ 1142.912894][T26764] loop0: lost filesystem error report for type 5 error -117
[ 1142.914714][T13135] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1142.933050][T26764] EXT4-fs (loop0): 1 truncate cleaned up
[ 1143.012164][T26764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1143.045817][ T6522] udevd[6522]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1143.070186][ T1224] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1143.101296][ T1224] usb 4-1: USB disconnect, device number 54
[ 1143.163858][T13135] usb 2-1: too many configurations: 36, using maximum allowed: 8
[ 1143.242739][T13135] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1143.251618][T26764] EXT4-fs: Ignoring removed orlov option
[ 1143.273883][T13135] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1143.285814][T26780] netlink: 256 bytes leftover after parsing attributes in process `syz.4.8836'.
[ 1143.293424][T13135] usb 2-1: Product: syz
[ 1143.318673][T26764] EXT4-fs: Ignoring removed bh option
[ 1143.326046][T26764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1143.335411][T13135] usb 2-1: Manufacturer: syz
[ 1143.345453][T13135] usb 2-1: SerialNumber: syz
[ 1143.366038][T13135] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1143.380500][T26764] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[ 1143.384780][T20836] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1143.508887][T26764] EXT4-fs error (device loop0): __ext4_remount:6837: comm syz.0.8816: Abort forced by user
[ 1143.598118][T26764] EXT4-fs (loop0): Remounting filesystem read-only
[ 1143.634916][T26764] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[ 1143.692203][T26764] ext4 filesystem being remounted at /1464/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1143.772995][T26772] random: crng reseeded on system resumption
[ 1143.936432][ T6314] usb 2-1: USB disconnect, device number 32
[ 1144.048346][ T6046] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1144.580318][T20836] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[ 1144.611381][T20836] ath9k_htc: Failed to initialize the device
[ 1144.639189][ T6314] usb 2-1: ath9k_htc: USB layer deinitialized
[ 1144.665941][T26815] netlink: 'syz.2.8838': attribute type 1 has an invalid length.
[ 1144.699730][T26814] loop6: detected capacity change from 0 to 512
[ 1144.759112][T26817] loop1: detected capacity change from 0 to 164
[ 1144.782005][T26814] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1144.885824][T26814] ext4 filesystem being mounted at /201/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1145.176881][T26814] EXT4-fs error (device loop6): ext4_validate_block_bitmap:423: comm syz.6.8839: bg 0: bad block bitmap checksum
[ 1145.230113][T26804] loop4: detected capacity change from 0 to 32768
[ 1145.259212][T26804] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8833 (26804)
[ 1145.296615][T26819] EXT4-fs error (device loop6): ext4_validate_block_bitmap:423: comm ext4lazyinit: bg 0: bad block bitmap checksum
[ 1145.313105][T26827] SET target dimension over the limit!
[ 1145.324039][T26804] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1145.379565][T26804] BTRFS info (device loop4): using crc32c checksum algorithm
[ 1145.537243][T23411] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1145.569058][T26804] BTRFS info (device loop4): enabling ssd optimizations
[ 1145.587982][T26804] BTRFS info (device loop4): turning on async discard
[ 1145.646190][T26804] BTRFS info (device loop4): enabling free space tree
[ 1145.675263][T26804] BTRFS info (device loop4): use zlib compression, level 3
[ 1145.706089][T26852] loop2: detected capacity change from 0 to 128
[ 1145.811498][T26849] loop1: detected capacity change from 0 to 2048
[ 1145.886547][T26849] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1145.888322][T26852] FAT-fs (loop2): error, corrupted directory (invalid entries)
[ 1145.906801][T26854] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1145.966606][T26852] FAT-fs (loop2): Filesystem has been set read-only
[ 1145.966867][T26849] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1146.006067][ T6059] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1146.274298][T26858] netlink: 276 bytes leftover after parsing attributes in process `syz.6.8852'.
[ 1146.512266][T26862] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1146.540127][T26821] loop0: detected capacity change from 0 to 32768
[ 1146.723407][T26868] openvswitch: netlink: Unexpected mask (mask=4000040, allowed=10048)
[ 1146.741981][T26821] blkno = 8ed2c, nblocks = 1
[ 1146.761588][T26821] ERROR: (device loop0): dbFree: block to be freed is outside the map
[ 1146.761588][T26821] 
[ 1146.887709][T26821] ERROR: (device loop0): remounting filesystem as read-only
[ 1146.907496][T26821] ialloc: diAlloc returned -17!
[ 1147.244539][T26878] loop3: detected capacity change from 0 to 512
[ 1147.368125][T26878] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1147.422191][T26878] ext4 filesystem being mounted at /1406/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1147.631262][T26878] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.8860: bg 0: bad block bitmap checksum
[ 1147.897765][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1148.067166][T26904] loop4: detected capacity change from 0 to 512
[ 1148.114291][T26904] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1148.144107][T26904] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1148.169939][T26904] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated!
[ 1148.182970][T26904] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[ 1148.196291][T26904] EXT4-fs error (device loop4): ext4_acquire_dquot:7032: comm syz.4.8869: Failed to acquire dquot type 1
[ 1148.210779][T26904] loop4: lost filesystem error report for type 5 error -5
[ 1148.212189][T26904] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.8869: bg 0: block 40: padding at end of block bitmap is not set
[ 1148.219382][    C0] EXT4-fs (loop4): error count since last fsck: 1
[ 1148.219416][    C0] EXT4-fs (loop4): initial error at time 2000000758: ext4_acquire_dquot:7032
[ 1148.219460][    C0] EXT4-fs (loop4): last error at time 2000000758: ext4_acquire_dquot:7032
[ 1148.265652][T26904] loop4: lost filesystem error report for type 5 error -117
[ 1148.266341][ T6470] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1148.281961][T26904] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem
[ 1148.292091][T26904] loop4: lost filesystem error report for type 5 error -117
[ 1148.294835][T26904] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #16: comm syz.4.8869: data will be lost
[ 1148.333567][T26904] EXT4-fs (loop4): 1 truncate cleaned up
[ 1148.359493][T26904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1148.472191][ T6470] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1148.521466][ T6470] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1148.557965][ T6470] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1148.611348][T26904] EXT4-fs error (device loop4): ext4_get_link:106: inode #16: comm syz.4.8869: bad symlink.
[ 1148.628161][ T6470] usb 1-1: string descriptor 0 read error: -22
[ 1148.652865][ T6470] usb 1-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[ 1148.693472][ T6470] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1148.788187][ T6470] usb 1-1: selecting invalid altsetting 1
[ 1148.828604][ T6470] usb 1-1: unit 3 not found!
[ 1148.861945][T26929] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8879'.
[ 1148.978814][ T6059] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1148.996540][ T6470] usb 1-1: cannot request logical cluster ID: 0 (err: -5)
[ 1148.999887][T26931] loop2: detected capacity change from 0 to 136
[ 1149.038334][ T6470] usb 1-1: invalid MIXER UNIT descriptor 6
[ 1149.342448][ T6470] snd-usb-audio 1-1:1.0: probe with driver snd-usb-audio failed with error -5
[ 1149.386505][ T6016] udevd[6016]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1149.399806][ T6470] usb 1-1: USB disconnect, device number 33
[ 1149.702070][ T5283] veth0_macvtap: left promiscuous mode
[ 1149.759368][T26953] loop2: detected capacity change from 0 to 64
[ 1150.006352][T26964] loop3: detected capacity change from 0 to 16
[ 1150.088248][T26964] erofs (device loop3): mounted with root inode @ nid 36.
[ 1150.114526][T26960] loop6: detected capacity change from 0 to 4096
[ 1150.143019][T26960] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[ 1150.190152][T26964] erofs (device loop3): readahead error at folio 2 @ nid 89
[ 1150.199801][ T1224] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1150.216085][T26964] erofs (device loop3): readahead error at folio 1 @ nid 89
[ 1150.260480][T26964] erofs (device loop3): readahead error at folio 0 @ nid 89
[ 1150.299725][T26960] ntfs3(loop6): ino=19, mi_enum_attr
[ 1150.320346][T26964] erofs (device loop3): read error -117 @ 0 of nid 89
[ 1150.375781][   T30] audit: type=1800 audit(2000000760.040:240): pid=26964 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8894" name="file3" dev="loop3" ino=89 res=0 errno=0
[ 1150.397634][ T1224] usb 5-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[ 1150.466943][ T1224] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1150.472565][T26960] ntfs3(loop6): failed to convert "c46c" to maciceland
[ 1150.524881][ T1224] usb 5-1: config 0 descriptor??
[ 1150.541206][T26960] ntfs3(loop6): ino=20, mi_enum_attr
[ 1150.947191][T26982] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8902'.
[ 1150.965313][T26980] loop3: detected capacity change from 0 to 2048
[ 1151.022698][ T1224] hackrf 5-1:0.0: usb_control_msg() failed -71 request 0f
[ 1151.047849][T26987] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1151.057668][ T1224] hackrf 5-1:0.0: Could not detect board
[ 1151.090926][ T1224] hackrf 5-1:0.0: probe with driver hackrf failed with error -71
[ 1151.150507][ T1224] usb 5-1: USB disconnect, device number 53
[ 1152.057779][T27023] netlink: 9 bytes leftover after parsing attributes in process `syz.2.8918'.
[ 1152.085345][T27023] 0·: renamed from hsr0 (while UP)
[ 1152.177154][T27023] 0·: entered allmulticast mode
[ 1152.193327][T27023] hsr_slave_1: entered allmulticast mode
[ 1152.206620][T27023] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[ 1152.295337][ T1224] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[ 1152.343120][T27029] loop1: detected capacity change from 0 to 8
[ 1152.430143][T27029] SQUASHFS error: Unable to read inode 0xe3
[ 1152.486686][ T1224] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8 has invalid maxpacket 127, setting to 64
[ 1152.536075][ T1224] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1152.586385][ T1224] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1152.620837][ T1224] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1152.658280][T27018] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1152.709345][ T1224] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1152.749751][ T1224] usb 5-1: invalid MIDI in EP 0
[ 1152.863255][ T6314] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[ 1153.071348][ T6314] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1153.100372][ T6314] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1153.139180][ T6314] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1153.202563][ T6314] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1153.257590][ T6314] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1153.281821][ T6314] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1153.316773][ T1224] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1153.336902][ T6314] usb 3-1: Product: syz
[ 1153.351500][ T6314] usb 3-1: Manufacturer: syz
[ 1153.372003][ T6314] usb 3-1: SerialNumber: syz
[ 1153.414340][ T6314] usb 3-1: config 0 descriptor??
[ 1153.436955][ T1224] usb 5-1: USB disconnect, device number 54
[ 1153.454348][ T6314] ums-isd200 3-1:0.0: USB Mass Storage device detected
[ 1153.767228][ T6314] ums-isd200 3-1:0.0: probe with driver ums-isd200 failed with error -22
[ 1153.967861][ T6314] usb 3-1: USB disconnect, device number 45
[ 1153.998643][T27075] loop1: detected capacity change from 0 to 4096
[ 1154.076327][T27080] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1154.091604][T27081] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1154.643797][T27038] Process accounting resumed
[ 1154.756825][T27096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8949'.
[ 1154.799696][T27096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8949'.
[ 1154.946844][T27068] loop3: detected capacity change from 0 to 32768
[ 1154.995776][T27068] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.8948 (27068)
[ 1155.072110][T27068] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1155.104066][T27068] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1155.226207][T27119] loop2: detected capacity change from 0 to 1024
[ 1155.380076][T27068] BTRFS info (device loop3): enabling ssd optimizations
[ 1155.390778][T27068] BTRFS info (device loop3): turning on async discard
[ 1155.396242][T27119] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1155.398283][T27068] BTRFS info (device loop3): enabling free space tree
[ 1155.508199][T27133] loop4: detected capacity change from 0 to 512
[ 1155.523761][T27133] EXT4-fs: Ignoring removed orlov option
[ 1155.536969][T27119] EXT4-fs error (device loop2): ext4_get_first_dir_block:3560: inode #11: comm syz.2.8956: directory missing '..'
[ 1155.605100][T27133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1155.640452][ T6058] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1155.670365][T27133] ext4 filesystem being mounted at /1414/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1155.730950][T27133] EXT4-fs error (device loop4): ext4_get_verity_descriptor_location:337: inode #15: comm syz.4.8958: verity file corrupted; can't find descriptor
[ 1155.799466][T27133] EXT4-fs (loop4): Remounting filesystem read-only
[ 1155.811727][T27133] fs-verity (loop4, inode 15): Error -117 getting verity descriptor size
[ 1155.878749][ T6048] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1156.140469][ T6059] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1156.185840][T27148] Scaler: =================  START STATUS  =================
[ 1156.232100][T27148] Scaler: ==================  END STATUS  ==================
[ 1156.472227][T27157] comedi comedi0: Minor 2147483647 is invalid!
[ 1156.854300][T27169] loop6: detected capacity change from 0 to 512
[ 1156.917488][T27169] EXT4-fs (loop6): revision level too high, forcing read-only mode
[ 1156.955132][T27169] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1157.032119][T27169] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[ 1157.084068][T27169] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[ 1157.129580][T27169] EXT4-fs error (device loop6): ext4_acquire_dquot:7032: comm syz.6.8974: Failed to acquire dquot type 1
[ 1157.194630][T27180] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8978'.
[ 1157.210041][T27169] loop6: lost filesystem error report for type 5 error -5
[ 1157.210419][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1157.224037][    C1] EXT4-fs (loop6): initial error at time 2000000766: ext4_acquire_dquot:7032
[ 1157.232879][    C1] EXT4-fs (loop6): last error at time 2000000766: ext4_acquire_dquot:7032
[ 1157.248456][T27169] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.8974: bg 0: block 40: padding at end of block bitmap is not set
[ 1157.267189][T27169] loop6: lost filesystem error report for type 5 error -117
[ 1157.270159][T27169] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem
[ 1157.365486][T27169] loop6: lost filesystem error report for type 5 error -117
[ 1157.366148][T27169] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #16: comm syz.6.8974: data will be lost
[ 1157.435175][T27169] EXT4-fs (loop6): 1 truncate cleaned up
[ 1157.458672][T27169] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1157.484826][T27184] loop1: detected capacity change from 0 to 16
[ 1157.512776][T27184] erofs (device loop1): mounted with root inode @ nid 36.
[ 1157.559323][T27189] loop2: detected capacity change from 0 to 256
[ 1157.585874][T27189] exfat: Deprecated parameter 'namecase'
[ 1157.593427][T27189] exfat: Deprecated parameter 'namecase'
[ 1157.613898][T27189] exfat: Deprecated parameter 'utf8'
[ 1157.638546][T27169] EXT4-fs error (device loop6): ext4_get_link:106: inode #16: comm syz.6.8974: bad symlink.
[ 1157.678271][T27189] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[ 1157.787982][ T6314] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[ 1157.816821][T27153] loop3: detected capacity change from 0 to 32768
[ 1157.861065][T27153] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.8961 (27153)
[ 1157.891331][T23411] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1157.942137][T27153] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1157.971882][ T6314] usb 5-1: too many configurations: 36, using maximum allowed: 8
[ 1158.001314][T27153] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1158.044715][ T6314] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1158.088393][ T6314] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1158.125101][ T6314] usb 5-1: Product: syz
[ 1158.133801][T27203] ,Íìpó»: renamed from veth1_vlan (while UP)
[ 1158.140538][ T6314] usb 5-1: Manufacturer: syz
[ 1158.156986][ T6314] usb 5-1: SerialNumber: syz
[ 1158.200682][ T6314] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1158.244500][T27153] BTRFS info (device loop3): enabling ssd optimizations
[ 1158.271787][ T1224] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1158.283834][T27153] BTRFS info (device loop3): turning on async discard
[ 1158.305245][T27153] BTRFS info (device loop3): enabling free space tree
[ 1158.621227][T27223] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8990'.
[ 1158.635098][T27190] random: crng reseeded on system resumption
[ 1158.649188][T27223] netlink: 16 bytes leftover after parsing attributes in process `syz.6.8990'.
[ 1158.710110][ T6058] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1158.814453][ T6304] usb 5-1: USB disconnect, device number 55
[ 1159.472731][ T1224] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[ 1159.507560][ T1224] ath9k_htc: Failed to initialize the device
[ 1159.546019][ T6304] usb 5-1: ath9k_htc: USB layer deinitialized
[ 1159.638874][T27245] netlink: 'syz.3.9003': attribute type 1 has an invalid length.
[ 1159.680868][T27245] netlink: 248 bytes leftover after parsing attributes in process `syz.3.9003'.
[ 1159.786193][T20836] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1159.886172][T27210] loop2: detected capacity change from 0 to 32768
[ 1159.927370][T27210] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8987 (27210)
[ 1160.010195][T20836] usb 1-1: Using ep0 maxpacket: 8
[ 1160.019886][T27210] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1160.039386][T20836] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 15
[ 1160.067819][T27210] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1160.090446][T20836] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1160.158717][T20836] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1160.215452][T27210] BTRFS info (device loop2): allowing degraded mounts
[ 1160.233704][T27210] BTRFS info (device loop2): enabling ssd optimizations
[ 1160.240223][T20836] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1160.242338][T27210] BTRFS info (device loop2): turning on async discard
[ 1160.259014][T27210] BTRFS info (device loop2): enabling free space tree
[ 1160.265862][T27210] BTRFS info (device loop2): force lzo compression, level 1
[ 1160.273332][T27210] BTRFS info (device loop2): max_inline set to 4096
[ 1160.308828][T27258] loop1: detected capacity change from 0 to 4096
[ 1160.347357][T27210] BTRFS info (device loop2 state M): max_inline set to 4096
[ 1160.353876][T20836] usb 1-1: New USB device found, idVendor=077d, idProduct=04aa, bcdDevice=5b.d8
[ 1160.397313][T20836] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1160.411452][T27277] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1160.439846][T20836] usb 1-1: Product: syz
[ 1160.458491][T20836] usb 1-1: Manufacturer: syz
[ 1160.482415][T20836] usb 1-1: SerialNumber: syz
[ 1160.495586][ T6048] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1160.509822][T20836] usb 1-1: config 0 descriptor??
[ 1160.542961][T27243] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1160.829110][T20836] powermate: Expected payload of 3--6 bytes, found 1024 bytes!
[ 1160.897934][T20836] input: Griffin SoundKnob as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input79
[ 1161.251142][    C1] powermate: config urb returned -71
[ 1161.252875][ T6314] usb 1-1: USB disconnect, device number 34
[ 1161.256463][    C1] powermate: usb_submit_urb(config) failed
[ 1161.256548][    C1] powermate 1-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[ 1161.576415][T27295] loop1: detected capacity change from 0 to 4096
[ 1161.627950][T27295] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1161.746640][T27295] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1161.758206][T27297] bond1: peer notification delay (23) is not a multiple of miimon (100), value rounded to 0 ms
[ 1161.789866][T27295] ntfs3(loop1): ino=19, mi_enum_attr
[ 1161.848399][T27297] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1161.923854][T27306] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9024'.
[ 1162.268304][T27314] loop0: detected capacity change from 0 to 1024
[ 1162.311579][T27319] Unknown options in mask b7f2
[ 1162.405030][T27314] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1162.484620][T27314] EXT4-fs error (device loop0): ext4_get_first_dir_block:3560: inode #11: comm syz.0.9027: directory missing '..'
[ 1162.582869][ T6046] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1163.393207][T27344] loop4: detected capacity change from 0 to 4096
[ 1163.451177][T27344] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1163.532539][T27358] comedi comedi0: Minor 2147483647 is invalid!
[ 1163.555475][T27344] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1163.592415][T27344] ntfs3(loop4): ino=19, mi_enum_attr
[ 1164.220720][T27377] loop2: detected capacity change from 0 to 512
[ 1164.220837][T27333] loop1: detected capacity change from 0 to 32768
[ 1164.249573][T27370] loop3: detected capacity change from 0 to 4096
[ 1164.291306][T27370] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[ 1164.312504][T27377] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1164.326379][T27333] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.9035 (27333)
[ 1164.355853][T27370] ntfs3(loop3): ino=3, mi_enum_attr
[ 1164.412285][T27377] ext4 filesystem being mounted at /1464/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1164.420291][T27381] loop0: detected capacity change from 0 to 2048
[ 1164.450425][T27370] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[ 1164.483555][T27333] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1164.541779][T27381] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1164.549391][T27333] BTRFS info (device loop1): using sha256 checksum algorithm
[ 1164.566622][T27381] ext4 filesystem being mounted at /1503/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1164.697945][ T6048] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1164.729765][T27333] BTRFS info (device loop1): enabling ssd optimizations
[ 1164.731126][T27381] Quota error (device loop0): do_check_range: Getting block 196612 out of range 1-5
[ 1164.781929][T27333] BTRFS info (device loop1): turning on async discard
[ 1164.816785][T27381] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1164.821081][T27333] BTRFS info (device loop1): enabling free space tree
[ 1164.847863][T24220] ntfs3(loop3): ino=1f, failed to open parent directory r=5 to update
[ 1164.895096][T27381] EXT4-fs error (device loop0): ext4_acquire_dquot:7032: comm syz.0.9055: Failed to acquire dquot type 0
[ 1165.213888][ T6046] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1165.421914][ T6047] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1166.130189][T20836] usb 2-1: new full-speed USB device number 33 using dummy_hcd
[ 1166.351924][T20836] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1166.358481][ T6314] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1166.393575][T20836] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1166.425294][T20836] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1166.450444][T20836] usb 2-1: Product: syz
[ 1166.465485][T20836] usb 2-1: Manufacturer: syz
[ 1166.486904][T20836] usb 2-1: SerialNumber: syz
[ 1166.550374][T20836] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1166.571461][ T6314] usb 1-1: Using ep0 maxpacket: 32
[ 1166.612770][ T6314] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1166.658191][ T6314] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1166.704020][ T6314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1166.742399][ T6314] usb 1-1: Product: syz
[ 1166.746713][ T6314] usb 1-1: Manufacturer: syz
[ 1166.757309][ T6314] usb 1-1: SerialNumber: syz
[ 1166.786190][ T6314] usb 1-1: config 0 descriptor??
[ 1166.792368][T27457] loop6: detected capacity change from 0 to 512
[ 1166.829620][T27457] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1166.860372][ T6314] quatech2 1-1:0.0: Quatech 2nd gen USB to Serial Driver converter detected
[ 1166.883493][T27457] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a856e01c, mo2=0102]
[ 1166.895870][T27457] System zones: 1-12
[ 1166.900205][T27457] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1166.908292][T27457] EXT4-fs error (device loop6): ext4_free_branches:1020: inode #11: comm syz.6.9080: invalid indirect mapped block 2 (level 2)
[ 1166.922496][T27457] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1166.924228][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1166.939829][    C0] EXT4-fs (loop6): initial error at time 2000000775: ext4_free_branches:1020: inode 11
[ 1166.949590][    C0] EXT4-fs (loop6): last error at time 2000000775: ext4_free_branches:1020: inode 11
[ 1166.984538][T27457] EXT4-fs (loop6): 1 truncate cleaned up
[ 1167.003946][T27457] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[ 1167.033263][T20836] usb 2-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[ 1167.074120][T27457] EXT4-fs (loop6): ext4_remount: Checksum for group 0 failed (17031!=33349)
[ 1167.086266][ T6314] usb 1-1: qt2_setup_urbs - submit read urb failed -8
[ 1167.094105][ T6314] quatech2 1-1:0.0: probe with driver quatech2 failed with error -8
[ 1167.186726][T20836] usb 2-1: USB disconnect, device number 33
[ 1167.334792][   T29] usb 1-1: USB disconnect, device number 35
[ 1167.368838][T23411] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1167.554758][ T6304] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[ 1167.606396][T27478] netlink: 'syz.6.9089': attribute type 11 has an invalid length.
[ 1167.738537][ T6304] usb 5-1: config 1 has an invalid interface number: 7 but max is 0
[ 1167.781810][ T6304] usb 5-1: config 1 has no interface number 0
[ 1167.819175][ T6304] usb 5-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[ 1167.876539][ T6304] usb 5-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[ 1167.898068][ T6304] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1167.906758][ T6304] usb 5-1: Product: syz
[ 1167.916815][ T6304] usb 5-1: Manufacturer: syz
[ 1167.933365][ T6304] usb 5-1: SerialNumber: syz
[ 1168.097364][T27491] ip6t_srh: unknown srh match flags  4000
[ 1168.228223][ T6304] usb 5-1: No status endpoint found
[ 1168.351919][T27495] bond3: peer notification delay (23) is not a multiple of miimon (100), value rounded to 0 ms
[ 1168.403062][T27495] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1168.467432][T27509] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.9101' sets config #0
[ 1168.496711][ T6304] usb 5-1: USB disconnect, device number 56
[ 1168.508871][  T988] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1168.700297][  T988] usb 1-1: Using ep0 maxpacket: 8
[ 1168.728820][  T988] usb 1-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[ 1168.755893][  T988] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239
[ 1168.778122][  T988] usb 1-1: Product: syz
[ 1168.787860][  T988] usb 1-1: Manufacturer: syz
[ 1168.806214][  T988] usb 1-1: SerialNumber: syz
[ 1168.831603][  T988] usb 1-1: config 0 descriptor??
[ 1168.855200][  T988] gspca_main: sq905-2.14.0 probing 2770:9120
[ 1169.323587][  T988] gspca_sq905: sq905_command: usb_control_msg failed 2 (-71)
[ 1169.356134][  T988] sq905 1-1:0.0: probe with driver sq905 failed with error -71
[ 1169.399096][  T988] usb 1-1: USB disconnect, device number 36
[ 1169.405482][   T30] audit: type=1326 audit(2000000777.848:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27533 comm="syz.1.9111" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f559cdd9 code=0x7ffc0000
[ 1169.540876][   T30] audit: type=1326 audit(2000000777.867:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27533 comm="syz.1.9111" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f559cdd9 code=0x7ffc0000
[ 1169.664416][   T30] audit: type=1326 audit(2000000777.914:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27533 comm="syz.1.9111" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fd7f559cdd9 code=0x7ffc0000
[ 1169.699720][T27537] usb usb5: usbfs: process 27537 (syz.4.9113) did not claim interface 0 before use
[ 1169.736779][T27506] loop3: detected capacity change from 0 to 32768
[ 1169.769694][   T30] audit: type=1326 audit(2000000777.914:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27533 comm="syz.1.9111" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f559cdd9 code=0x7ffc0000
[ 1169.877612][T27506] JBD2: Ignoring recovery information on journal
[ 1169.930801][   T30] audit: type=1326 audit(2000000777.914:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27533 comm="syz.1.9111" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f559cdd9 code=0x7ffc0000
[ 1170.114173][T27506] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1170.315654][   T30] audit: type=1326 audit(2000000778.700:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27555 comm="syz.2.9120" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1170.422030][   T30] audit: type=1326 audit(2000000778.700:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27555 comm="syz.2.9120" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1170.475365][T27559] loop0: detected capacity change from 0 to 4096
[ 1170.521485][T27559] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1170.541530][   T30] audit: type=1326 audit(2000000778.700:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27555 comm="syz.2.9120" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1170.632555][T27559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1170.645486][   T30] audit: type=1326 audit(2000000778.700:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27555 comm="syz.2.9120" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44f7d9cdd9 code=0x7ffc0000
[ 1170.892273][ T6058] ocfs2: Unmounting device (7,3) on (node local)
[ 1171.003985][ T6046] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1171.068384][T27570] Cannot find del_set index 1 as target
[ 1171.578263][T27580] loop4: detected capacity change from 0 to 512
[ 1171.676265][T27580] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1171.692349][T27580] ext4 filesystem being mounted at /1441/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1171.746718][T27556] loop1: detected capacity change from 0 to 32768
[ 1172.105462][T27594] loop2: detected capacity change from 0 to 16
[ 1172.155037][ T6059] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1172.173039][T27594] erofs (device loop2): mounted with root inode @ nid 36.
[ 1172.274580][T27594] erofs (device loop2): readahead error at folio 2 @ nid 89
[ 1172.304913][T27594] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1172.349314][T27594] erofs (device loop2): readahead error at folio 1 @ nid 89
[ 1172.399071][T27594] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1172.440150][T27594] erofs (device loop2): readahead error at folio 0 @ nid 89
[ 1172.581047][T27594] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1172.600691][T27594] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1172.624627][T27594] erofs (device loop2): read error -117 @ 0 of nid 89
[ 1172.679267][   T30] audit: type=1800 audit(2000000780.908:250): pid=27594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9136" name="file2" dev="loop2" ino=89 res=0 errno=0
[ 1172.765708][T27610] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1173.064530][   T30] audit: type=1326 audit(2000000781.273:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9146" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1173.163534][T27623] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1173.186716][   T30] audit: type=1326 audit(2000000781.301:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9146" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1173.310316][   T30] audit: type=1326 audit(2000000781.301:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9146" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1173.400298][   T30] audit: type=1326 audit(2000000781.301:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9146" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1173.429777][T27590] loop0: detected capacity change from 0 to 32768
[ 1173.507051][ T6304] usb 3-1: new full-speed USB device number 46 using dummy_hcd
[ 1173.709576][ T6304] usb 3-1: New USB device found, idVendor=0c45, idProduct=6280, bcdDevice=d5.fc
[ 1173.745429][ T6304] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1173.836596][ T6304] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:6280
[ 1174.263444][ T6304] gspca_sn9c20x: Write register 1001 failed -71
[ 1174.286751][ T6304] gspca_sn9c20x: Device initialization failed
[ 1174.315751][ T6304] gspca_sn9c20x 3-1:252.0: probe with driver gspca_sn9c20x failed with error -71
[ 1174.383985][ T6304] usb 3-1: USB disconnect, device number 46
[ 1174.976208][T27668] loop1: detected capacity change from 0 to 8
[ 1175.069350][T27668] SQUASHFS error: Unable to read inode 0xa7
[ 1175.309007][T27670] loop4: detected capacity change from 0 to 4096
[ 1175.334963][T27670] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[ 1175.372177][T27670] ntfs3(loop4): ino=3, mi_enum_attr
[ 1175.447371][T27670] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[ 1175.499405][T27684] netlink: 'syz.0.9181': attribute type 3 has an invalid length.
[ 1175.552029][T27690] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9182'.
[ 1175.826597][T24220] ntfs3(loop4): ino=1f, failed to open parent directory r=5 to update
[ 1176.194113][T27706] loop3: detected capacity change from 0 to 512
[ 1176.228262][T27706] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1176.266736][T27706] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a856e01c, mo2=0102]
[ 1176.307558][T27706] System zones: 1-12
[ 1176.332514][T27706] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1176.365934][T27712] netlink: 'syz.4.9192': attribute type 3 has an invalid length.
[ 1176.376201][T27706] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #11: comm syz.3.9189: invalid indirect mapped block 2 (level 2)
[ 1176.451131][T27706] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1176.454293][T27706] EXT4-fs (loop3): 1 truncate cleaned up
[ 1176.458234][T27717] loop1: detected capacity change from 0 to 16
[ 1176.463512][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1176.482076][    C1] EXT4-fs (loop3): initial error at time 2000000784: ext4_free_branches:1020: inode 11
[ 1176.491801][    C1] EXT4-fs (loop3): last error at time 2000000784: ext4_free_branches:1020: inode 11
[ 1176.582509][T27706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[ 1176.605711][T27717] erofs (device loop1): mounted with root inode @ nid 36.
[ 1176.664997][T27706] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (17031!=33349)
[ 1176.690880][T27717] erofs (device loop1): readahead error at folio 2 @ nid 89
[ 1176.746460][T27717] erofs (device loop1): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1176.818445][T27717] erofs (device loop1): readahead error at folio 1 @ nid 89
[ 1176.840446][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1176.870239][T27717] erofs (device loop1): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1176.879481][T27725] loop2: detected capacity change from 0 to 512
[ 1176.915075][T27725] EXT4-fs: Ignoring removed orlov option
[ 1176.921519][T27717] erofs (device loop1): readahead error at folio 0 @ nid 89
[ 1176.944357][T27725] EXT4-fs: Ignoring removed bh option
[ 1176.970492][T27717] erofs (device loop1): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1177.000428][T27725] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1177.007582][T27717] erofs (device loop1): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1177.061050][T27725] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1177.074530][T27717] erofs (device loop1): read error -117 @ 0 of nid 89
[ 1177.090046][T27708] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1177.105892][T27725] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.9198: bg 0: block 248: padding at end of block bitmap is not set
[ 1177.121109][T27725] loop2: lost filesystem error report for type 5 error -117
[ 1177.122720][   T30] audit: type=1800 audit(2000000785.072:255): pid=27717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.9194" name="file2" dev="loop1" ino=89 res=0 errno=0
[ 1177.123522][T27725] Quota error (device loop2): write_blk: dquota write failed
[ 1177.130092][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1177.130124][    C1] EXT4-fs (loop2): last error at time 2000000785: ext4_validate_block_bitmap:440
[ 1177.177047][T27725] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1177.187047][T27725] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.9198: Failed to acquire dquot type 1
[ 1177.198302][T27725] loop2: lost filesystem error report for type 5 error -117
[ 1177.213879][T27725] EXT4-fs (loop2): 1 truncate cleaned up
[ 1177.312273][T27725] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1177.415840][   T30] audit: type=1326 audit(2000000785.344:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.516524][   T30] audit: type=1326 audit(2000000785.372:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.593866][T27725] EXT4-fs: Ignoring removed orlov option
[ 1177.639197][T27725] EXT4-fs: Ignoring removed bh option
[ 1177.643958][   T30] audit: type=1326 audit(2000000785.381:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.680998][T27725] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1177.745264][T27725] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[ 1177.767208][   T30] audit: type=1326 audit(2000000785.381:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.845546][T27725] EXT4-fs error (device loop2): __ext4_remount:6837: comm syz.2.9198: Abort forced by user
[ 1177.874462][   T30] audit: type=1326 audit(2000000785.381:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.911295][T27725] EXT4-fs (loop2): Remounting filesystem read-only
[ 1177.928221][   T30] audit: type=1326 audit(2000000785.381:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1177.955173][T27725] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[ 1177.988823][T27725] ext4 filesystem being remounted at /1492/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1178.008400][   T30] audit: type=1326 audit(2000000785.381:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.9204" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f162939cdd9 code=0x7ffc0000
[ 1178.129026][T27749] netlink: 'syz.4.9208': attribute type 32 has an invalid length.
[ 1178.235517][ T6048] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1178.568813][T27727] loop6: detected capacity change from 0 to 32768
[ 1178.826729][T27765] netlink: 2 bytes leftover after parsing attributes in process `syz.4.9214'.
[ 1178.865017][T13135] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1178.991220][T27772] loop6: detected capacity change from 0 to 16
[ 1179.033050][T27772] erofs (device loop6): mounted with root inode @ nid 36.
[ 1179.064513][T13135] usb 4-1: Using ep0 maxpacket: 8
[ 1179.091598][T13135] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1179.109020][T27772] erofs (device loop6): readahead error at folio 2 @ nid 89
[ 1179.138805][T13135] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[ 1179.149384][T27772] erofs (device loop6): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1179.162025][T13135] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1179.162114][T27770] loop0: detected capacity change from 0 to 4096
[ 1179.186602][T27772] erofs (device loop6): readahead error at folio 1 @ nid 89
[ 1179.201010][T13135] usb 4-1: config 4 has no interface number 0
[ 1179.213702][T27772] erofs (device loop6): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1179.231095][T13135] usb 4-1: string descriptor 0 read error: -22
[ 1179.238563][T13135] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[ 1179.249742][T27770] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[ 1179.259909][T27772] erofs (device loop6): readahead error at folio 0 @ nid 89
[ 1179.284192][T13135] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1179.297735][T27770] ntfs3(loop0): ino=3, mi_enum_attr
[ 1179.299367][T27772] erofs (device loop6): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1179.341301][T27772] erofs (device loop6): bogus lookback distance 1 @ lcn 0 of nid 89
[ 1179.357119][T27772] erofs (device loop6): read error -117 @ 0 of nid 89
[ 1179.407372][T13135] uvcvideo 4-1:4.147: Found multiple Units with ID 6
[ 1179.414137][T13135] uvcvideo 4-1:4.147: Found UVC 0.02 device <unnamed> (04f2:b746)
[ 1179.423361][T27770] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[ 1179.507951][T13135] uvcvideo 4-1:4.147: No valid video chain found.
[ 1179.610432][T13135] usb 4-1: USB disconnect, device number 55
[ 1179.751557][T23517] ntfs3(loop0): ino=1f, failed to open parent directory r=5 to update
[ 1179.990827][T27786] netlink: 'syz.0.9225': attribute type 1 has an invalid length.
[ 1180.029093][T27788] netlink: 100 bytes leftover after parsing attributes in process `syz.6.9228'.
[ 1180.534475][T27798] loop6: detected capacity change from 0 to 4096
[ 1180.644446][T27798] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1180.683925][T27798] ntfs3(loop6): Failed to load $Extend (-22).
[ 1180.683965][T27798] ntfs3(loop6): Failed to initialize $Extend.
[ 1181.366238][T27822] loop6: detected capacity change from 0 to 8
[ 1181.375354][T27824] loop3: detected capacity change from 0 to 64
[ 1181.429026][ T1309] ieee802154 phy0 wpan0: encryption failed: -22
[ 1181.435436][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[ 1182.175594][T27812] loop2: detected capacity change from 0 to 32768
[ 1182.236392][T27812] JBD2: Ignoring recovery information on journal
[ 1182.343504][T27812] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1182.503446][T27812] (syz.2.9239,27812,1):ocfs2_check_dir_entry:334 ERROR: bad entry in directory #65: directory entry overrun - offset=32, inode=17057, rec_len=280, name_len=10
[ 1182.611140][T27812] (syz.2.9239,27812,1):ocfs2_prepare_dir_for_insert:4342 ERROR: status = -2
[ 1182.638852][T27812] (syz.2.9239,27812,1):ocfs2_mknod:302 ERROR: status = -2
[ 1182.667916][T27812] (syz.2.9239,27812,1):ocfs2_mknod:506 ERROR: status = -2
[ 1182.789619][   T29] wlan1 speed is unknown, defaulting to 1000
[ 1182.807786][   T29] syz0: Port: 1 Link DOWN
[ 1182.927766][ T6048] ocfs2: Unmounting device (7,2) on (node local)
[ 1182.983380][T27854] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9257'.
[ 1182.997072][T27854] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9257'.
[ 1183.360364][T27861] netlink: 48 bytes leftover after parsing attributes in process `syz.0.9264'.
[ 1183.416129][T27861] netlink: 48 bytes leftover after parsing attributes in process `syz.0.9264'.
[ 1183.443221][T27837] loop6: detected capacity change from 0 to 32768
[ 1183.677831][T27859] loop1: detected capacity change from 0 to 4096
[ 1183.752511][T27859] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1183.775985][ T6470] usb 5-1: new full-speed USB device number 57 using dummy_hcd
[ 1183.983207][ T6470] usb 5-1: New USB device found, idVendor=14f7, idProduct=0500, bcdDevice=44.85
[ 1184.035783][ T6470] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1184.085938][ T6470] usb 5-1: Product: syz
[ 1184.113441][ T6470] usb 5-1: Manufacturer: syz
[ 1184.140043][ T6470] usb 5-1: SerialNumber: syz
[ 1184.162651][T27859] ntfs3(loop1): ino=19, mi_enum_attr
[ 1184.181174][ T6470] usb 5-1: config 0 descriptor??
[ 1184.231320][ T6470] usb 5-1: selecting invalid altsetting 1
[ 1184.258858][ T6470] technisat-usb2: could not set alternate setting to 0
[ 1184.404254][T27859] ntfs3(loop1): failed to convert "c46c" to cp1251
[ 1184.486746][T27859] ntfs3(loop1): ino=20, mi_enum_attr
[ 1184.511242][ T6470] technisat-usb2: firmware version: 0.0
[ 1184.539800][ T6470] dvb-usb: found a 'Technisat SkyStar USB HD (DVB-S/S2)' in warm state.
[ 1184.763102][ T6470] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 1184.858659][ T6470] dvb-usb: Technisat SkyStar USB HD (DVB-S/S2) error while loading driver (-19)
[ 1184.918208][ T6470] usb 5-1: USB disconnect, device number 57
[ 1185.488683][T27894] loop2: detected capacity change from 0 to 512
[ 1185.522206][T27894] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1185.549843][T27894] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1185.613053][T27894] System zones: 0-1, 15-15, 18-18, 34-34
[ 1185.654468][T27894] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1185.697395][T27871] loop6: detected capacity change from 0 to 40427
[ 1185.714973][T27894] __quota_error: 3 callbacks suppressed
[ 1185.714999][T27894] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[ 1185.766057][T27894] EXT4-fs warning (device loop2): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1185.805833][T27871] F2FS-fs (loop6): Image doesn't support compression
[ 1185.817363][T27894] EXT4-fs (loop2): Cannot turn on quotas: error -22
[ 1185.840370][T27871] F2FS-fs (loop6): build fault injection rate: 690
[ 1185.847622][T27894] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.9279: bad orphan inode 16
[ 1185.876055][T27871] F2FS-fs (loop6): build fault injection type: 0x4
[ 1185.906641][T27871] F2FS-fs (loop6): invalid crc value
[ 1185.908516][T27894] loop2: lost filesystem error report for type 5 error -117
[ 1185.927316][T27894] ext4_test_bit(bit=15, block=18) = 1
[ 1185.934768][    C1] EXT4-fs (loop2): error count since last fsck: 1
[ 1185.934802][    C1] EXT4-fs (loop2): initial error at time 2000000793: ext4_orphan_get:1423
[ 1185.934845][    C1] EXT4-fs (loop2): last error at time 2000000793: ext4_orphan_get:1423
[ 1185.988176][T27894] is_bad_inode(inode)=0
[ 1186.023820][T27894] NEXT_ORPHAN(inode)=0
[ 1186.071322][T27894] max_ino=32
[ 1186.084390][T27894] i_nlink=2
[ 1186.103915][T27894] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1186.269314][T27871] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1186.377755][T27871] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1186.468577][ T6048] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1186.654548][T27890] loop0: detected capacity change from 0 to 32768
[ 1186.698021][T27890] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.9277 (27890)
[ 1186.754927][T27890] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1186.786395][T27890] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1186.850348][T23411] syz-executor: attempt to access beyond end of device
[ 1186.850348][T23411] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1186.895974][T27914] bond4 (unregistering): Released all slaves
[ 1187.014090][T27890] BTRFS info (device loop0): enabling ssd optimizations
[ 1187.027822][T23411] CPU: 1 UID: 0 PID: 23411 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1187.027882][T23411] Tainted: [L]=SOFTLOCKUP
[ 1187.027897][T23411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1187.027921][T23411] Call Trace:
[ 1187.027933][T23411]  <TASK>
[ 1187.027959][T23411]  dump_stack_lvl+0x100/0x190
[ 1187.028009][T23411]  f2fs_stop_checkpoint+0x600/0x9b0
[ 1187.028074][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.028123][T23411]  ? errseq_set+0xe3/0x150
[ 1187.028164][T23411]  ? errseq_set+0xe3/0x150
[ 1187.028205][T23411]  f2fs_write_end_io+0xf59/0x1340
[ 1187.028249][T23411]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1187.028297][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.028356][T23411]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1187.028396][T23411]  bio_endio+0x78f/0x8f0
[ 1187.028455][T23411]  submit_bio_noacct+0x64c/0x2000
[ 1187.028511][T23411]  f2fs_submit_write_bio+0x135/0x340
[ 1187.028578][T23411]  __submit_merged_bio+0x331/0x780
[ 1187.028627][T23411]  __submit_merged_write_cond+0x3fe/0x510
[ 1187.028679][T23411]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1187.028733][T23411]  ? __pfx___might_resched+0x10/0x10
[ 1187.028790][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.028849][T23411]  f2fs_write_cache_pages+0x20e9/0x2630
[ 1187.028924][T23411]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 1187.028984][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029033][T23411]  ? bpf_ksym_find+0x124/0x1c0
[ 1187.029094][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029141][T23411]  ? __kasan_check_byte+0x13/0x50
[ 1187.029200][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029249][T23411]  ? unwind_next_frame+0x3be/0x2090
[ 1187.029305][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029353][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1187.029411][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029474][T23411]  ? bpf_ksym_find+0x124/0x1c0
[ 1187.029588][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029639][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029687][T23411]  ? add_lock_to_list+0x99/0x110
[ 1187.029724][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.029772][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1187.029837][T23411]  f2fs_write_data_pages+0x799/0x16d0
[ 1187.029902][T23411]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1187.029956][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.030014][T23411]  ? do_writepages+0x4b5/0x600
[ 1187.030076][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.030129][T23411]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1187.030184][T23411]  do_writepages+0x278/0x600
[ 1187.030253][T23411]  ? __pfx_do_writepages+0x10/0x10
[ 1187.030314][T23411]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1187.030372][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.030420][T23411]  ? _raw_spin_unlock+0x28/0x50
[ 1187.030480][T23411]  filemap_writeback+0x22d/0x2e0
[ 1187.030549][T23411]  ? __pfx_filemap_writeback+0x10/0x10
[ 1187.030614][T23411]  ? check_noncircular+0x97/0x160
[ 1187.030709][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.030758][T23411]  ? find_held_lock+0x2b/0x80
[ 1187.030820][T23411]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1187.030890][T23411]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1187.030940][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.031006][T23411]  f2fs_sync_dirty_inodes+0x469/0x990
[ 1187.031076][T23411]  block_operations+0x2a6/0xfc0
[ 1187.031124][T23411]  ? __bfs+0x150/0x2a0
[ 1187.031171][T23411]  ? __pfx_block_operations+0x10/0x10
[ 1187.031222][T23411]  ? check_noncircular+0x97/0x160
[ 1187.031314][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.031368][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.031416][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1187.031473][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.031529][T23411]  f2fs_write_checkpoint+0x582/0x5550
[ 1187.031610][T23411]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1187.031673][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.031721][T23411]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1187.031790][T23411]  kill_f2fs_super+0x3f1/0x4a0
[ 1187.031841][T23411]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1187.031914][T23411]  ? lockdep_hardirqs_on+0x78/0x100
[ 1187.031981][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.032030][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.032095][T23411]  deactivate_locked_super+0xc1/0x1b0
[ 1187.032155][T23411]  deactivate_super+0xe7/0x110
[ 1187.032214][T23411]  cleanup_mnt+0x21f/0x450
[ 1187.032256][T23411]  task_work_run+0x150/0x240
[ 1187.032309][T23411]  ? __pfx_task_work_run+0x10/0x10
[ 1187.032361][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1187.032410][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1187.032475][T23411]  exit_to_user_mode_loop+0x107/0x4f0
[ 1187.032525][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1187.032589][T23411]  do_syscall_64+0x706/0xf80
[ 1187.032656][T23411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1187.032697][T23411] RIP: 0033:0x7fa93459e017
[ 1187.032729][T23411] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1187.032768][T23411] RSP: 002b:00007ffc618ce778 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1187.032804][T23411] RAX: 0000000000000000 RBX: 00007fa934632120 RCX: 00007fa93459e017
[ 1187.032831][T23411] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc618ce830
[ 1187.032855][T23411] RBP: 00007ffc618ce830 R08: 00007ffc618cf830 R09: 00000000ffffffff
[ 1187.032881][T23411] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc618cf8c0
[ 1187.032906][T23411] R13: 00007fa934632120 R14: 0000000000111750 R15: 00007ffc618cf900
[ 1187.032964][T23411]  </TASK>
[ 1187.132139][T27917] Process accounting paused
[ 1187.302484][T27890] BTRFS info (device loop0): turning on async discard
[ 1187.312918][T23411] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1187.607002][T27890] BTRFS info (device loop0): enabling free space tree
[ 1188.569656][ T6046] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1189.314750][T27963] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9289'.
[ 1189.365048][T27962] loop4: detected capacity change from 0 to 2048
[ 1189.414399][T27962] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1189.513402][T27965] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1189.795544][T27974] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9306'.
[ 1189.980281][T27980] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9310'.
[ 1190.015612][T27980] netlink: 32 bytes leftover after parsing attributes in process `syz.2.9310'.
[ 1190.159772][T27978] loop4: detected capacity change from 0 to 4096
[ 1190.190471][T27978] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1190.874886][T28006] __vm_enough_memory: pid: 28006, comm: syz.2.9323, bytes: 21200290566144 not enough memory for the allocation
[ 1191.302278][T28014] loop0: detected capacity change from 0 to 512
[ 1191.375878][T28014] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[ 1191.424488][T28014] System zones: 1-12
[ 1191.464221][T28014] EXT4-fs error (device loop0): dx_probe:791: inode #2: comm syz.0.9328: Directory hole found for htree index block 0
[ 1191.537170][T28014] loop0: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[ 1191.538645][T28014] EXT4-fs (loop0): Remounting filesystem read-only
[ 1191.547812][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1191.547848][    C0] EXT4-fs (loop0): initial error at time 2000000798: dx_probe:791: inode 2
[ 1191.547901][    C0] EXT4-fs (loop0): last error at time 2000000798: dx_probe:791: inode 2
[ 1191.602529][T28014] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117
[ 1191.661304][T28014] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[ 1191.730569][T28014] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1191.787398][T28036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9336'.
[ 1191.808268][T28014] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1192.265127][T28048] loop3: detected capacity change from 0 to 512
[ 1192.305197][T28048] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[ 1192.327313][T28048] System zones: 1-12
[ 1192.351707][T28055] xt_cluster: node mask cannot exceed total number of nodes
[ 1192.355893][T28048] EXT4-fs error (device loop3): dx_probe:791: inode #2: comm syz.3.9355: Directory hole found for htree index block 0
[ 1192.467790][T28048] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[ 1192.468236][T28048] EXT4-fs (loop3): Remounting filesystem read-only
[ 1192.477602][    C1] EXT4-fs (loop3): error count since last fsck: 1
[ 1192.477636][    C1] EXT4-fs (loop3): initial error at time 2000000799: dx_probe:791: inode 2
[ 1192.477691][    C1] EXT4-fs (loop3): last error at time 2000000799: dx_probe:791: inode 2
[ 1192.546251][T28048] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -117
[ 1192.619244][T28048] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[ 1192.682865][T28048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1192.791751][T28048] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1193.766243][T28096] xt_socket: unknown flags 0x4c
[ 1194.004229][T28100] loop2: detected capacity change from 0 to 4096
[ 1194.082715][T28110] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1194.108862][T28112] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[ 1194.166172][T28112] overlayfs: missing 'lowerdir'
[ 1194.173141][T28100] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 1194.279905][T28100] Remounting filesystem read-only
[ 1194.496102][T28119] loop0: detected capacity change from 0 to 128
[ 1194.537323][T28119] efs: Unknown parameter 'äË£P¬ðÕÛ¢L¼VCÙ¼.Œ£àæ[ë�ê{ôœiâwyÞ*�7$„.KÈY‹::’S{³dŒ–óöoèÎŽ['
[ 1194.773922][  T988] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[ 1194.971162][  T988] usb 4-1: Using ep0 maxpacket: 16
[ 1195.001353][  T988] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1195.026907][  T988] usb 4-1: config 0 has no interface number 0
[ 1195.059363][  T988] usb 4-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[ 1195.090325][  T988] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1195.098200][T28105] loop6: detected capacity change from 0 to 32768
[ 1195.115626][  T988] usb 4-1: Product: syz
[ 1195.121467][  T988] usb 4-1: Manufacturer: syz
[ 1195.137661][  T988] usb 4-1: SerialNumber: syz
[ 1195.153092][T28105] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.9369 (28105)
[ 1195.179746][T28134] netlink: 1004 bytes leftover after parsing attributes in process `syz.1.9382'.
[ 1195.180044][  T988] usb 4-1: config 0 descriptor??
[ 1195.253637][T28105] BTRFS info (device loop6): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1195.274789][T28105] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1195.503623][  T988] usb 4-1: selecting invalid altsetting 1
[ 1195.513760][T28105] BTRFS info (device loop6): turning off barriers
[ 1195.520493][  T988] speedtch 4-1:0.1: speedtch_bind: setting interface to  1 failed (-22)!
[ 1195.529157][T28105] BTRFS info (device loop6): enabling free space tree
[ 1195.555748][  T988] speedtch 4-1:0.1: usbatm_usb_probe: bind failed: -22!
[ 1195.588292][  T988] speedtch 4-1:0.1: probe with driver speedtch failed with error -22
[ 1195.623827][   T30] audit: type=1326 audit(2000000802.385:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28158 comm="syz.4.9388" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1195.650879][  T988] usb 4-1: USB disconnect, device number 56
[ 1195.765574][   T30] audit: type=1326 audit(2000000802.413:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28158 comm="syz.4.9388" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1195.830100][   T30] audit: type=1326 audit(2000000802.422:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28158 comm="syz.4.9388" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1195.921737][T23411] BTRFS info (device loop6): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1195.932887][   T30] audit: type=1326 audit(2000000802.422:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28158 comm="syz.4.9388" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e3ef9cdd9 code=0x7ffc0000
[ 1196.827776][T28183] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9399'.
[ 1197.141214][T28187] bond2 (unregistering): Released all slaves
[ 1197.308438][T28190] netlink: 196 bytes leftover after parsing attributes in process `syz.3.9402'.
[ 1197.326812][T28190] netlink: 196 bytes leftover after parsing attributes in process `syz.3.9402'.
[ 1197.359233][T28190] netlink: 19 bytes leftover after parsing attributes in process `syz.3.9402'.
[ 1197.417126][T28168] loop1: detected capacity change from 0 to 32768
[ 1197.498445][T28168] JBD2: Ignoring recovery information on journal
[ 1197.634665][T28209] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1197.728557][T28168] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1197.881818][T28168] (syz.1.9391,28168,1):ocfs2_check_dir_entry:334 ERROR: bad entry in directory #65: directory entry overrun - offset=32, inode=17057, rec_len=280, name_len=10
[ 1197.938237][T28220] loop3: detected capacity change from 0 to 256
[ 1197.948260][T28168] (syz.1.9391,28168,1):ocfs2_prepare_dir_for_insert:4342 ERROR: status = -2
[ 1197.994831][T28168] (syz.1.9391,28168,1):ocfs2_mknod:302 ERROR: status = -2
[ 1198.025665][T28168] (syz.1.9391,28168,1):ocfs2_mknod:506 ERROR: status = -2
[ 1198.376484][ T6047] ocfs2: Unmounting device (7,1) on (node local)
[ 1198.520899][T28234] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9425'.
[ 1198.562377][T28234] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1198.589624][T28234] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1198.635258][T28234] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1198.664020][T28234] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1199.259835][T28250] netlink: 'syz.3.9431': attribute type 2 has an invalid length.
[ 1199.289827][T28250] netlink: 'syz.3.9431': attribute type 2 has an invalid length.
[ 1199.891915][T28271] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 1200.538796][T28257] loop1: detected capacity change from 0 to 40427
[ 1200.559883][T28257] F2FS-fs (loop1): Image doesn't support compression
[ 1200.581284][T28257] F2FS-fs (loop1): build fault injection rate: 690
[ 1200.596563][T28257] F2FS-fs (loop1): build fault injection type: 0x4
[ 1200.614277][T28257] F2FS-fs (loop1): invalid crc value
[ 1200.718899][T28297] loop0: detected capacity change from 0 to 64
[ 1200.806436][T28301] netlink: 'syz.4.9456': attribute type 21 has an invalid length.
[ 1200.868456][T28295] bond2 (unregistering): Released all slaves
[ 1201.030665][T28301] netlink: 164 bytes leftover after parsing attributes in process `syz.4.9456'.
[ 1201.045991][T28257] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1201.186057][T28257] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1201.626222][ T6047] syz-executor: attempt to access beyond end of device
[ 1201.626222][ T6047] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1201.670379][ T6047] CPU: 1 UID: 0 PID: 6047 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1201.670439][ T6047] Tainted: [L]=SOFTLOCKUP
[ 1201.670453][ T6047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1201.670477][ T6047] Call Trace:
[ 1201.670489][ T6047]  <TASK>
[ 1201.670504][ T6047]  dump_stack_lvl+0x100/0x190
[ 1201.670559][ T6047]  f2fs_stop_checkpoint+0x600/0x9b0
[ 1201.670624][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.670672][ T6047]  ? errseq_set+0xe3/0x150
[ 1201.670712][ T6047]  ? errseq_set+0xe3/0x150
[ 1201.670752][ T6047]  f2fs_write_end_io+0xf59/0x1340
[ 1201.670797][ T6047]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1201.670843][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.670923][ T6047]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1201.670968][ T6047]  bio_endio+0x78f/0x8f0
[ 1201.671027][ T6047]  submit_bio_noacct+0x64c/0x2000
[ 1201.671082][ T6047]  f2fs_submit_write_bio+0x135/0x340
[ 1201.671148][ T6047]  __submit_merged_bio+0x331/0x780
[ 1201.671196][ T6047]  __submit_merged_write_cond+0x3fe/0x510
[ 1201.671247][ T6047]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1201.671301][ T6047]  ? __pfx___might_resched+0x10/0x10
[ 1201.671357][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.671414][ T6047]  f2fs_write_cache_pages+0x20e9/0x2630
[ 1201.671488][ T6047]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 1201.671541][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.671589][ T6047]  ? bpf_ksym_find+0x124/0x1c0
[ 1201.671648][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.671699][ T6047]  ? __kasan_check_byte+0x13/0x50
[ 1201.671757][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.671805][ T6047]  ? unwind_next_frame+0x3be/0x2090
[ 1201.671861][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.671908][ T6047]  ? rcu_is_watching+0x12/0xc0
[ 1201.671969][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672032][ T6047]  ? bpf_ksym_find+0x124/0x1c0
[ 1201.672145][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672196][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672243][ T6047]  ? add_lock_to_list+0x99/0x110
[ 1201.672281][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672328][ T6047]  ? rcu_is_watching+0x12/0xc0
[ 1201.672393][ T6047]  f2fs_write_data_pages+0x799/0x16d0
[ 1201.672457][ T6047]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1201.672505][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672562][ T6047]  ? do_writepages+0x4b5/0x600
[ 1201.672622][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672676][ T6047]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1201.672729][ T6047]  do_writepages+0x278/0x600
[ 1201.672798][ T6047]  ? __pfx_do_writepages+0x10/0x10
[ 1201.672859][ T6047]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1201.672915][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.672968][ T6047]  ? _raw_spin_unlock+0x28/0x50
[ 1201.673027][ T6047]  filemap_writeback+0x22d/0x2e0
[ 1201.673094][ T6047]  ? __pfx_filemap_writeback+0x10/0x10
[ 1201.673156][ T6047]  ? check_noncircular+0x97/0x160
[ 1201.673246][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.673293][ T6047]  ? find_held_lock+0x2b/0x80
[ 1201.673354][ T6047]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1201.673409][ T6047]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1201.673458][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.673518][ T6047]  f2fs_sync_dirty_inodes+0x469/0x990
[ 1201.673587][ T6047]  block_operations+0x2a6/0xfc0
[ 1201.673635][ T6047]  ? __bfs+0x150/0x2a0
[ 1201.673681][ T6047]  ? __pfx_block_operations+0x10/0x10
[ 1201.673731][ T6047]  ? check_noncircular+0x97/0x160
[ 1201.673823][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.673877][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.673924][ T6047]  ? rcu_is_watching+0x12/0xc0
[ 1201.673987][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.674043][ T6047]  f2fs_write_checkpoint+0x582/0x5550
[ 1201.674122][ T6047]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1201.674184][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.674232][ T6047]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1201.674300][ T6047]  kill_f2fs_super+0x3f1/0x4a0
[ 1201.674352][ T6047]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1201.674423][ T6047]  ? lockdep_hardirqs_on+0x78/0x100
[ 1201.674481][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.674530][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.674592][ T6047]  deactivate_locked_super+0xc1/0x1b0
[ 1201.674652][ T6047]  deactivate_super+0xe7/0x110
[ 1201.674710][ T6047]  cleanup_mnt+0x21f/0x450
[ 1201.674751][ T6047]  task_work_run+0x150/0x240
[ 1201.674802][ T6047]  ? __pfx_task_work_run+0x10/0x10
[ 1201.674853][ T6047]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1201.674900][ T6047]  ? rcu_is_watching+0x12/0xc0
[ 1201.674968][ T6047]  exit_to_user_mode_loop+0x107/0x4f0
[ 1201.675018][ T6047]  ? rcu_is_watching+0x12/0xc0
[ 1201.675081][ T6047]  do_syscall_64+0x706/0xf80
[ 1201.675148][ T6047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.675188][ T6047] RIP: 0033:0x7fd7f559e017
[ 1201.675218][ T6047] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1201.675257][ T6047] RSP: 002b:00007ffe691abf08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1201.675293][ T6047] RAX: 0000000000000000 RBX: 00007fd7f5632120 RCX: 00007fd7f559e017
[ 1201.675319][ T6047] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe691abfc0
[ 1201.675344][ T6047] RBP: 00007ffe691abfc0 R08: 00007ffe691acfc0 R09: 00000000ffffffff
[ 1201.675369][ T6047] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe691ad050
[ 1201.675394][ T6047] R13: 00007fd7f5632120 R14: 0000000000114d60 R15: 00007ffe691ad090
[ 1201.675446][ T6047]  </TASK>
[ 1201.697131][T28314] loop4: detected capacity change from 0 to 4096
[ 1201.804671][T28322] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1201.860781][ T6047] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1201.982295][T28326] loop6: detected capacity change from 0 to 512
[ 1202.137121][T28327] loop0: detected capacity change from 0 to 16
[ 1202.282656][T28314] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1202.303126][T28326] EXT4-fs: inline encryption not supported
[ 1202.326076][T28314] ntfs3(loop4): Failed to load $Extend (-22).
[ 1202.342405][T28326] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1202.342562][T28314] ntfs3(loop4): Failed to initialize $Extend.
[ 1202.448913][T28326] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.9468: inode has both inline data and extents flags
[ 1202.465575][T28327] erofs (device loop0): mounted with root inode @ nid 36.
[ 1202.506438][T28310] loop2: detected capacity change from 0 to 32768
[ 1202.521563][T28310] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.9459 (28310)
[ 1202.561836][T28326] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1202.564948][T28326] EXT4-fs error (device loop6): ext4_orphan_get:1400: comm syz.6.9468: couldn't read orphan inode 15 (err -117)
[ 1202.574182][    C0] EXT4-fs (loop6): error count since last fsck: 1
[ 1202.574222][    C0] EXT4-fs (loop6): initial error at time 2000000808: ext4_orphan_get:1397: inode 15
[ 1202.574279][    C0] EXT4-fs (loop6): last error at time 2000000808: ext4_orphan_get:1397: inode 15
[ 1202.626448][T28326] loop6: lost filesystem error report for type 5 error -117
[ 1202.627007][T28327] syz.0.9466: attempt to access beyond end of device
[ 1202.627007][T28327] loop0: rw=524288, sector=8, nr_sectors = 24 limit=16
[ 1202.649435][T28310] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1202.651916][T28326] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1202.693476][T28310] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1202.734830][T28327] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[ 1202.776665][T28327] erofs (device loop0): read error -117 @ 0 of nid 89
[ 1202.792276][   T30] audit: type=1800 audit(2000000809.076:270): pid=28327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.9466" name="file2" dev="loop0" ino=89 res=0 errno=0
[ 1202.924364][T28345] bridge_slave_0: entered promiscuous mode
[ 1202.972216][T28310] BTRFS info (device loop2): enabling ssd optimizations
[ 1203.004790][T28310] BTRFS info (device loop2): turning on async discard
[ 1203.012262][T28310] BTRFS info (device loop2): enabling free space tree
[ 1203.058532][T23411] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1203.304104][ T6048] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1203.717516][   T30] audit: type=1326 audit(2000000809.946:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28365 comm="syz.3.9478" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26c639cdd9 code=0x7ffc0000
[ 1203.820184][   T30] audit: type=1326 audit(2000000809.946:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28365 comm="syz.3.9478" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26c639cdd9 code=0x7ffc0000
[ 1203.929223][   T30] audit: type=1326 audit(2000000809.965:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28365 comm="syz.3.9478" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f26c639cdd9 code=0x7ffc0000
[ 1204.058341][   T30] audit: type=1326 audit(2000000809.965:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28365 comm="syz.3.9478" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26c639cdd9 code=0x7ffc0000
[ 1204.233922][   T30] audit: type=1326 audit(2000000809.965:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28365 comm="syz.3.9478" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26c639cdd9 code=0x7ffc0000
[ 1204.343210][T28376] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1205.043661][T28371] loop0: detected capacity change from 0 to 32768
[ 1205.179129][T28371] JBD2: Ignoring recovery information on journal
[ 1205.358837][T28371] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1205.511495][T28371] (syz.0.9480,28371,1):ocfs2_check_dir_entry:334 ERROR: bad entry in directory #65: directory entry overrun - offset=32, inode=17057, rec_len=280, name_len=10
[ 1205.532871][T28371] (syz.0.9480,28371,0):ocfs2_prepare_dir_for_insert:4342 ERROR: status = -2
[ 1205.572967][T28407] loop2: detected capacity change from 0 to 24
[ 1205.600359][T28371] (syz.0.9480,28371,1):ocfs2_mknod:302 ERROR: status = -2
[ 1205.655265][T28371] (syz.0.9480,28371,1):ocfs2_mknod:506 ERROR: status = -2
[ 1205.755424][T28410] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1205.857540][T28412] loop1: detected capacity change from 0 to 2048
[ 1205.923312][T28412] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1205.981764][T28412] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 1376) has entry at pos 232 with incorrect tag 100
[ 1206.220201][ T6046] ocfs2: Unmounting device (7,0) on (node local)
[ 1206.354986][T28422] openvswitch: netlink: IPv4 tun info is not correct
[ 1206.608752][T28427] netlink: 76 bytes leftover after parsing attributes in process `syz.6.9520'.
[ 1206.634683][  T988] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1206.644143][T28427] netlink: 76 bytes leftover after parsing attributes in process `syz.6.9520'.
[ 1206.818176][  T988] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1206.845677][  T988] usb 4-1: config 66 has an invalid descriptor of length 0, skipping remainder of the config
[ 1206.875722][  T988] usb 4-1: New USB device found, idVendor=0471, idProduct=0602, bcdDevice=a4.95
[ 1206.889903][  T988] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1206.905350][  T988] usb 4-1: Product: syz
[ 1206.920629][  T988] usb 4-1: Manufacturer: syz
[ 1206.926031][  T988] usb 4-1: SerialNumber: syz
[ 1207.169808][  T988] ati_remote2 4-1:66.0: ati_remote2_probe(): interface 0 must have an endpoint
[ 1207.193944][  T988] usb 4-1: USB disconnect, device number 57
[ 1207.200013][ T6304] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1207.309644][T28430] bond3 (unregistering): Released all slaves
[ 1207.382376][ T6304] usb 7-1: Using ep0 maxpacket: 8
[ 1207.399135][ T6304] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[ 1207.408969][ T6304] usb 7-1: config 179 has no interface number 0
[ 1207.423504][T28434] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1207.442630][ T6304] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1207.459682][T28437] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[ 1207.468501][ T6304] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1207.490211][ T6304] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1207.524451][ T6304] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1207.556354][ T6304] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1207.592698][ T6304] usb 7-1: config 179 interface 65 has no altsetting 0
[ 1207.611881][ T6304] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1207.657988][ T6304] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1207.871554][ T6304] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input80
[ 1207.991418][ T6304] usb 7-1: USB disconnect, device number 5
[ 1208.011153][T28454] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1208.047033][T28455] loop4: detected capacity change from 0 to 256
[ 1208.654815][   T29] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[ 1208.838939][   T29] usb 4-1: Using ep0 maxpacket: 16
[ 1208.869580][   T29] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1208.906276][   T29] usb 4-1: config 0 has no interface number 0
[ 1208.936222][   T29] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1208.969524][   T29] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1208.999381][   T29] usb 4-1: Product: syz
[ 1209.014551][   T29] usb 4-1: Manufacturer: syz
[ 1209.030980][   T29] usb 4-1: SerialNumber: syz
[ 1209.070490][   T29] usb 4-1: config 0 descriptor??
[ 1209.085701][T28485] netlink: 'syz.1.9536': attribute type 1 has an invalid length.
[ 1209.123539][   T29] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1209.272526][T28491] netlink: 'syz.0.9539': attribute type 10 has an invalid length.
[ 1209.558366][   T29] gspca_spca1528: reg_w err -71
[ 1209.593480][   T29] spca1528 4-1:0.1: probe with driver spca1528 failed with error -71
[ 1209.643463][   T29] usb 4-1: USB disconnect, device number 58
[ 1209.872137][T28505] x_tables: ip_tables: TCPMSS target: only valid for protocol 6
[ 1210.261196][T28514] nfs: Unknown parameter 'ntext'
[ 1210.368055][T28515] loop4: detected capacity change from 0 to 4096
[ 1210.368066][T28489] loop2: detected capacity change from 0 to 32768
[ 1210.381370][T28489] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.9538 (28489)
[ 1210.442402][T28515] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1210.474752][T28489] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1210.476757][T28515] NILFS (loop4): mounting unchecked fs
[ 1210.512687][T28489] BTRFS info (device loop2): using sha256 checksum algorithm
[ 1210.622281][T28515] NILFS (loop4): recovery complete
[ 1210.683543][T28537] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1210.706999][T28489] BTRFS info (device loop2): enabling ssd optimizations
[ 1210.747728][T28489] BTRFS info (device loop2): turning on async discard
[ 1210.755013][T28489] BTRFS info (device loop2): enabling free space tree
[ 1211.123632][ T6048] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1211.530098][T28557] netlink: 20 bytes leftover after parsing attributes in process `syz.4.9563'.
[ 1211.599645][T28511] loop0: detected capacity change from 0 to 32768
[ 1211.654159][T28511] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.9548 (28511)
[ 1211.733189][T28511] BTRFS info (device loop0): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1211.783634][T28511] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1211.965328][T28511] BTRFS info (device loop0): turning off barriers
[ 1211.984504][T28511] BTRFS info (device loop0): enabling free space tree
[ 1212.536169][T28543] loop6: detected capacity change from 0 to 40427
[ 1212.541272][T28594] loop4: detected capacity change from 0 to 8
[ 1212.577380][T28543] F2FS-fs (loop6): Invalid SB checksum offset: 0
[ 1212.608509][T28543] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[ 1212.626599][T28594] SQUASHFS error: Unknown inode type 0 in squashfs_iget!
[ 1212.651546][T28543] F2FS-fs (loop6): invalid crc value
[ 1212.989324][T28604] loop3: detected capacity change from 0 to 256
[ 1213.093226][T28543] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1213.174334][ T6046] BTRFS info (device loop0): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1213.188535][T28543] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[ 1213.199707][T28543] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1213.589198][T28615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9582'.
[ 1213.717098][T23411] syz-executor: attempt to access beyond end of device
[ 1213.717098][T23411] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1213.850517][T23411] CPU: 0 UID: 0 PID: 23411 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1213.850576][T23411] Tainted: [L]=SOFTLOCKUP
[ 1213.850591][T23411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1213.850615][T23411] Call Trace:
[ 1213.850627][T23411]  <TASK>
[ 1213.850642][T23411]  dump_stack_lvl+0x100/0x190
[ 1213.850691][T23411]  f2fs_stop_checkpoint+0x600/0x9b0
[ 1213.850757][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.850806][T23411]  ? errseq_set+0xe3/0x150
[ 1213.850846][T23411]  ? errseq_set+0xe3/0x150
[ 1213.850905][T23411]  f2fs_write_end_io+0xf59/0x1340
[ 1213.850951][T23411]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1213.851011][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.851068][T23411]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1213.851108][T23411]  bio_endio+0x78f/0x8f0
[ 1213.851167][T23411]  submit_bio_noacct+0x64c/0x2000
[ 1213.851222][T23411]  f2fs_submit_write_bio+0x135/0x340
[ 1213.851284][T23411]  __submit_merged_bio+0x331/0x780
[ 1213.851333][T23411]  __submit_merged_write_cond+0x3fe/0x510
[ 1213.851386][T23411]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1213.851438][T23411]  ? __pfx___might_resched+0x10/0x10
[ 1213.851493][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.851550][T23411]  f2fs_write_cache_pages+0x20e9/0x2630
[ 1213.851625][T23411]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[ 1213.851678][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.851728][T23411]  ? bpf_ksym_find+0x124/0x1c0
[ 1213.851787][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.851835][T23411]  ? __lock_acquire+0x4a5/0x2630
[ 1213.851911][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.851978][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.852033][T23411]  ? __lock_acquire+0x4a5/0x2630
[ 1213.852077][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.852169][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.852216][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1213.852281][T23411]  f2fs_write_data_pages+0x799/0x16d0
[ 1213.852345][T23411]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1213.852409][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.852457][T23411]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1213.852512][T23411]  do_writepages+0x278/0x600
[ 1213.852580][T23411]  ? __pfx_do_writepages+0x10/0x10
[ 1213.852641][T23411]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1213.852698][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.852744][T23411]  ? _raw_spin_unlock+0x28/0x50
[ 1213.852804][T23411]  filemap_writeback+0x22d/0x2e0
[ 1213.852870][T23411]  ? __pfx_filemap_writeback+0x10/0x10
[ 1213.852932][T23411]  ? check_noncircular+0x97/0x160
[ 1213.853034][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853082][T23411]  ? find_held_lock+0x2b/0x80
[ 1213.853142][T23411]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1213.853193][T23411]  ? f2fs_sync_dirty_inodes+0x3a6/0x990
[ 1213.853243][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853303][T23411]  f2fs_sync_dirty_inodes+0x469/0x990
[ 1213.853374][T23411]  block_operations+0x2a6/0xfc0
[ 1213.853421][T23411]  ? __bfs+0x150/0x2a0
[ 1213.853466][T23411]  ? __pfx_block_operations+0x10/0x10
[ 1213.853517][T23411]  ? check_noncircular+0x97/0x160
[ 1213.853605][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853659][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853704][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1213.853760][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853814][T23411]  f2fs_write_checkpoint+0x582/0x5550
[ 1213.853872][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.853919][T23411]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1213.853971][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.854025][T23411]  ? __wait_for_common+0x1f3/0x4c0
[ 1213.854083][T23411]  ? __pfx_schedule_timeout+0x10/0x10
[ 1213.854138][T23411]  ? __pfx___wait_for_common+0x10/0x10
[ 1213.854199][T23411]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1213.854262][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.854309][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1213.854365][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.854412][T23411]  ? kthread_stop+0x280/0x640
[ 1213.854460][T23411]  kill_f2fs_super+0x3f1/0x4a0
[ 1213.854511][T23411]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1213.854583][T23411]  ? lockdep_hardirqs_on+0x78/0x100
[ 1213.854642][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.854691][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.854753][T23411]  deactivate_locked_super+0xc1/0x1b0
[ 1213.854812][T23411]  deactivate_super+0xe7/0x110
[ 1213.854871][T23411]  cleanup_mnt+0x21f/0x450
[ 1213.854912][T23411]  task_work_run+0x150/0x240
[ 1213.854962][T23411]  ? __pfx_task_work_run+0x10/0x10
[ 1213.855024][T23411]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1213.855072][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1213.855136][T23411]  exit_to_user_mode_loop+0x107/0x4f0
[ 1213.855185][T23411]  ? rcu_is_watching+0x12/0xc0
[ 1213.855247][T23411]  do_syscall_64+0x706/0xf80
[ 1213.855313][T23411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1213.855354][T23411] RIP: 0033:0x7fa93459e017
[ 1213.855386][T23411] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[ 1213.855425][T23411] RSP: 002b:00007ffc618ce778 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1213.855461][T23411] RAX: 0000000000000000 RBX: 00007fa934632120 RCX: 00007fa93459e017
[ 1213.855486][T23411] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc618ce830
[ 1213.855510][T23411] RBP: 00007ffc618ce830 R08: 00007ffc618cf830 R09: 00000000ffffffff
[ 1213.855537][T23411] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc618cf8c0
[ 1213.855561][T23411] R13: 00007fa934632120 R14: 000000000011798e R15: 00007ffc618cf900
[ 1213.855612][T23411]  </TASK>
[ 1213.914084][T23411] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1214.040648][T28625] loop3: detected capacity change from 0 to 2048
[ 1214.243135][T13135] usb 5-1: new full-speed USB device number 58 using dummy_hcd
[ 1214.437656][T28625] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1214.941626][T13135] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1214.965655][T13135] usb 5-1: not running at top speed; connect to a high speed hub
[ 1214.994655][T13135] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1215.018155][T13135] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[ 1215.075465][T13135] usb 5-1: too many endpoints for config 1 interface 1 altsetting 23: 170, using maximum allowed: 30
[ 1215.116456][T13135] usb 5-1: config 1 interface 1 altsetting 23 has 0 endpoint descriptors, different from the interface descriptor's value: 170
[ 1215.171092][T13135] usb 5-1: config 1 interface 1 has no altsetting 0
[ 1215.202344][T13135] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1215.240192][T13135] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1215.255010][T28647] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9597'.
[ 1215.276084][T13135] usb 5-1: Product: syz
[ 1215.291269][T13135] usb 5-1: Manufacturer: syz
[ 1215.307774][T28647] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9597'.
[ 1215.310129][T13135] usb 5-1: SerialNumber: syz
[ 1215.333526][T28647] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9597'.
[ 1215.384693][T28623] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1215.642627][T13135] cdc_acm 5-1:1.0: probe with driver cdc_acm failed with error -22
[ 1215.730775][T13135] usb 5-1: USB disconnect, device number 58
[ 1216.166569][T28680] Cannot find add_set index 0 as target
[ 1216.376773][T28687] openvswitch: netlink: Geneve option length err (len 256, max 255).
[ 1216.475396][T14271] Bluetooth: hci5: command 0x0406 tx timeout
[ 1217.095362][T28714] loop6: detected capacity change from 0 to 64
[ 1217.125935][T28714] hfs: unable to locate alternate MDB
[ 1217.146258][T28714] hfs: continuing without an alternate MDB
[ 1217.210475][   T30] audit: type=1800 audit(2000000822.579:276): pid=28714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.9630" name="file1" dev="loop6" ino=22 res=0 errno=0
[ 1217.376226][T24209] 
[ 1217.378588][T24209] ======================================================
[ 1217.385603][T24209] WARNING: possible circular locking dependency detected
[ 1217.392623][T24209] syzkaller #0 Tainted: G             L     
[ 1217.398602][T24209] ------------------------------------------------------
[ 1217.405617][T24209] kworker/u8:10/24209 is trying to acquire lock:
[ 1217.411941][T24209] ffff88805200cbf0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0
[ 1217.422721][T24209] 
[ 1217.422721][T24209] but task is already holding lock:
[ 1217.430082][T24209] ffff8880383860a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1217.439460][T24209] 
[ 1217.439460][T24209] which lock already depends on the new lock.
[ 1217.439460][T24209] 
[ 1217.449858][T24209] 
[ 1217.449858][T24209] the existing dependency chain (in reverse order) is:
[ 1217.458868][T24209] 
[ 1217.458868][T24209] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}:
[ 1217.466912][T24209]        __mutex_lock+0x1a4/0x1b10
[ 1217.472068][T24209]        hfs_find_init+0x273/0x330
[ 1217.477209][T24209]        hfs_ext_read_extent+0x19d/0x9d0
[ 1217.482881][T24209]        hfs_get_block+0x576/0x830
[ 1217.488029][T24209]        block_read_full_folio+0x36c/0x8e0
[ 1217.493872][T24209]        filemap_read_folio+0xfc/0x3b0
[ 1217.499352][T24209]        do_read_cache_folio+0x2d7/0x6b0
[ 1217.505010][T24209]        read_cache_page+0x5b/0x1b0
[ 1217.510230][T24209]        __hfs_bnode_create+0x718/0x9a0
[ 1217.515797][T24209]        hfs_bnode_find+0x2d5/0xd30
[ 1217.521024][T24209]        hfs_brec_find+0x39d/0x620
[ 1217.526149][T24209]        hfs_brec_read+0x26/0x120
[ 1217.531194][T24209]        hfs_cat_find_brec+0xdc/0x2a0
[ 1217.536593][T24209]        hfs_fill_super+0x58d/0x7e0
[ 1217.541813][T24209]        get_tree_bdev_flags+0x38c/0x620
[ 1217.547481][T24209]        vfs_get_tree+0x92/0x320
[ 1217.552443][T24209]        path_mount+0x7d0/0x23d0
[ 1217.557405][T24209]        __x64_sys_mount+0x293/0x310
[ 1217.562716][T24209]        do_syscall_64+0x10b/0xf80
[ 1217.567864][T24209]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.574297][T24209] 
[ 1217.574297][T24209] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}:
[ 1217.583551][T24209]        __lock_acquire+0x14b8/0x2630
[ 1217.588956][T24209]        lock_acquire+0x1b1/0x370
[ 1217.594011][T24209]        __mutex_lock+0x1a4/0x1b10
[ 1217.599153][T24209]        hfs_extend_file+0xa6/0xcf0
[ 1217.604374][T24209]        hfs_bmap_reserve+0x2ab/0x3a0
[ 1217.609763][T24209]        __hfs_ext_write_extent+0x3c4/0x510
[ 1217.615764][T24209]        hfs_ext_write_extent+0x1b7/0x200
[ 1217.621508][T24209]        hfs_write_inode+0xce/0xab0
[ 1217.626707][T24209]        __writeback_single_inode+0xcd4/0x1350
[ 1217.632885][T24209]        writeback_sb_inodes+0x766/0x1c60
[ 1217.638627][T24209]        wb_writeback+0x1bf/0xb90
[ 1217.643673][T24209]        wb_workfn+0x14f/0xc00
[ 1217.648460][T24209]        process_one_work+0xa0e/0x1980
[ 1217.653932][T24209]        worker_thread+0x5ef/0xe50
[ 1217.659059][T24209]        kthread+0x370/0x450
[ 1217.663655][T24209]        ret_from_fork+0x72b/0xd50
[ 1217.668777][T24209]        ret_from_fork_asm+0x1a/0x30
[ 1217.674081][T24209] 
[ 1217.674081][T24209] other info that might help us debug this:
[ 1217.674081][T24209] 
[ 1217.684307][T24209]  Possible unsafe locking scenario:
[ 1217.684307][T24209] 
[ 1217.691742][T24209]        CPU0                    CPU1
[ 1217.697098][T24209]        ----                    ----
[ 1217.702451][T24209]   lock(&tree->tree_lock/1);
[ 1217.707146][T24209]                                lock(&HFS_I(tree->inode)->extents_lock);
[ 1217.715652][T24209]                                lock(&tree->tree_lock/1);
[ 1217.722862][T24209]   lock(&HFS_I(tree->inode)->extents_lock);
[ 1217.728843][T24209] 
[ 1217.728843][T24209]  *** DEADLOCK ***
[ 1217.728843][T24209] 
[ 1217.736975][T24209] 3 locks held by kworker/u8:10/24209:
[ 1217.742428][T24209]  #0: ffff88801eabf940 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1217.753188][T24209]  #1: ffffc90007b0fd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1217.765079][T24209]  #2: ffff8880383860a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330
[ 1217.774891][T24209] 
[ 1217.774891][T24209] stack backtrace:
[ 1217.780776][T24209] CPU: 0 UID: 0 PID: 24209 Comm: kworker/u8:10 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1217.780827][T24209] Tainted: [L]=SOFTLOCKUP
[ 1217.780840][T24209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1217.780866][T24209] Workqueue: writeback wb_workfn (flush-7:6)
[ 1217.780930][T24209] Call Trace:
[ 1217.780942][T24209]  <TASK>
[ 1217.780956][T24209]  dump_stack_lvl+0x100/0x190
[ 1217.781000][T24209]  print_circular_bug.cold+0x178/0x1c7
[ 1217.781062][T24209]  check_noncircular+0x146/0x160
[ 1217.781100][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.781152][T24209]  __lock_acquire+0x14b8/0x2630
[ 1217.781198][T24209]  ? __pfx_stack_trace_save+0x10/0x10
[ 1217.781235][T24209]  lock_acquire+0x1b1/0x370
[ 1217.781275][T24209]  ? hfs_extend_file+0xa6/0xcf0
[ 1217.781332][T24209]  ? __pfx___might_resched+0x10/0x10
[ 1217.781382][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.781425][T24209]  ? add_lock_to_list+0x99/0x110
[ 1217.781460][T24209]  __mutex_lock+0x1a4/0x1b10
[ 1217.781517][T24209]  ? hfs_extend_file+0xa6/0xcf0
[ 1217.781572][T24209]  ? hfs_extend_file+0xa6/0xcf0
[ 1217.781628][T24209]  ? hfs_write_inode+0xce/0xab0
[ 1217.781660][T24209]  ? __writeback_single_inode+0xcd4/0x1350
[ 1217.781718][T24209]  ? __pfx___mutex_lock+0x10/0x10
[ 1217.781775][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.781818][T24209]  ? lock_acquire+0x1b1/0x370
[ 1217.781864][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.781907][T24209]  ? trace_contention_end+0x122/0x170
[ 1217.781953][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782005][T24209]  ? hfs_extend_file+0xa6/0xcf0
[ 1217.782066][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782112][T24209]  hfs_extend_file+0xa6/0xcf0
[ 1217.782169][T24209]  ? __pfx_hfs_extend_file+0x10/0x10
[ 1217.782224][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782273][T24209]  hfs_bmap_reserve+0x2ab/0x3a0
[ 1217.782328][T24209]  __hfs_ext_write_extent+0x3c4/0x510
[ 1217.782383][T24209]  ? hfs_find_init+0x273/0x330
[ 1217.782423][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782469][T24209]  hfs_ext_write_extent+0x1b7/0x200
[ 1217.782525][T24209]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1217.782586][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782629][T24209]  ? __mpage_writepages+0x1a8/0x210
[ 1217.782663][T24209]  ? __pfx___mpage_writepages+0x10/0x10
[ 1217.782700][T24209]  hfs_write_inode+0xce/0xab0
[ 1217.782734][T24209]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1217.782767][T24209]  ? __lock_acquire+0x4a5/0x2630
[ 1217.782821][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1217.782878][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1217.782933][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.782982][T24209]  __writeback_single_inode+0xcd4/0x1350
[ 1217.783049][T24209]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1217.783106][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783148][T24209]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1217.783199][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783245][T24209]  writeback_sb_inodes+0x766/0x1c60
[ 1217.783311][T24209]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1217.783368][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783439][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783482][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1217.783533][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783576][T24209]  ? queue_io+0x287/0x540
[ 1217.783624][T24209]  wb_writeback+0x1bf/0xb90
[ 1217.783684][T24209]  ? __pfx_wb_writeback+0x10/0x10
[ 1217.783745][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783788][T24209]  ? mark_held_locks+0x40/0x70
[ 1217.783828][T24209]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1217.783879][T24209]  wb_workfn+0x14f/0xc00
[ 1217.783935][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.783979][T24209]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1217.784035][T24209]  ? __pfx_wb_workfn+0x10/0x10
[ 1217.784092][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784137][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784182][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784225][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1217.784275][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784322][T24209]  process_one_work+0xa0e/0x1980
[ 1217.784376][T24209]  ? __pfx_process_one_work+0x10/0x10
[ 1217.784418][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784468][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784514][T24209]  worker_thread+0x5ef/0xe50
[ 1217.784566][T24209]  ? kthread+0x13a/0x450
[ 1217.784603][T24209]  ? __pfx_worker_thread+0x10/0x10
[ 1217.784645][T24209]  kthread+0x370/0x450
[ 1217.784682][T24209]  ? __pfx_kthread+0x10/0x10
[ 1217.784722][T24209]  ret_from_fork+0x72b/0xd50
[ 1217.784765][T24209]  ? __pfx_ret_from_fork+0x10/0x10
[ 1217.784808][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1217.784850][T24209]  ? __switch_to+0x800/0x1100
[ 1217.784900][T24209]  ? __switch_to_asm+0x39/0x70
[ 1217.784949][T24209]  ? __pfx_kthread+0x10/0x10
[ 1217.784989][T24209]  ret_from_fork_asm+0x1a/0x30
[ 1217.785053][T24209]  </TASK>
[ 1218.296986][T24209] hfs: new node 0 already hashed?
[ 1218.310142][T24209] ------------[ cut here ]------------
[ 1218.315691][T24209] 1
[ 1218.315706][T24209] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#1: kworker/u8:10/24209
[ 1218.328349][T24209] Modules linked in:
[ 1218.332280][T24209] CPU: 1 UID: 0 PID: 24209 Comm: kworker/u8:10 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1218.343544][T24209] Tainted: [L]=SOFTLOCKUP
[ 1218.347893][T24209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1218.358113][T24209] Workqueue: writeback wb_workfn (flush-7:6)
[ 1218.364158][T24209] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1218.370284][T24209] Code: c5 c0 64 0a e9 b7 3c d1 01 e8 ab 26 e1 00 4c 89 f7 e8 b3 c0 64 0a e8 9e 26 e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 b9 3f d1 01 e8 82 26 e1 00 e8 bd 56 4d 00 e9 15 42 d1
[ 1218.390162][T24209] RSP: 0018:ffffc90007b0f020 EFLAGS: 00010282
[ 1218.396254][T24209] RAX: 000000000000001f RBX: ffff88802adff300 RCX: 0000000000000000
[ 1218.404300][T24209] RDX: 000000000000001f RSI: ffffffff81e73529 RDI: fffff52000f61df5
[ 1218.412316][T24209] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1218.420332][T24209] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1218.428319][T24209] R13: ffff888038386000 R14: ffff8880383860d8 R15: 0000000000000000
[ 1218.436359][T24209] FS:  0000000000000000(0000) GS:ffff888124471000(0000) knlGS:0000000000000000
[ 1218.445364][T24209] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1218.451973][T24209] CR2: 00007fabbc76d000 CR3: 00000000333f0000 CR4: 0000000000350ef0
[ 1218.460002][T24209] Call Trace:
[ 1218.463336][T24209]  <TASK>
[ 1218.466287][T24209]  ? _raw_spin_unlock+0x28/0x50
[ 1218.471178][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.476868][T24209]  ? hfs_bnode_put+0x208/0x480
[ 1218.481668][T24209]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1218.486427][T24209]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1218.491657][T24209]  ? __asan_memcpy+0x3c/0x60
[ 1218.496305][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.501969][T24209]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1218.507497][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.511713][T28724] loop4: detected capacity change from 0 to 40427
[ 1218.513147][T24209]  ? folio_mark_accessed+0xf3/0x1040
[ 1218.524844][T24209]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1218.530645][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1218.535447][T24209]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1218.541838][T24209]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1218.547074][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.552768][T24209]  ? _raw_spin_unlock+0x28/0x50
[ 1218.557669][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.563358][T24209]  ? hfs_bnode_put+0x208/0x480
[ 1218.568162][T24209]  hfs_brec_insert+0x8ba/0xc20
[ 1218.573017][T24209]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1218.575378][T28724] F2FS-fs (loop4): Image doesn't support compression
[ 1218.578333][T24209]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1218.585101][ T6470] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1218.590023][T24209]  __hfs_ext_write_extent+0x3ef/0x510
[ 1218.603006][T24209]  ? hfs_find_init+0x273/0x330
[ 1218.607798][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.613525][T24209]  hfs_ext_write_extent+0x1b7/0x200
[ 1218.618775][T24209]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1218.620058][T28734] loop1: detected capacity change from 0 to 256
[ 1218.624631][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.636490][T24209]  ? __mpage_writepages+0x1a8/0x210
[ 1218.641711][T24209]  ? __pfx___mpage_writepages+0x10/0x10
[ 1218.647309][T24209]  hfs_write_inode+0xce/0xab0
[ 1218.652017][T24209]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1218.657386][T24209]  ? __lock_acquire+0x4a5/0x2630
[ 1218.662381][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1218.668254][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1218.674104][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.679823][T24209]  __writeback_single_inode+0xcd4/0x1350
[ 1218.685516][T24209]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1218.691686][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.697359][T24209]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1218.702638][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.708313][T24209]  writeback_sb_inodes+0x766/0x1c60
[ 1218.713601][T24209]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1218.719313][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.725021][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.730741][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1218.735541][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.741225][T24209]  ? queue_io+0x287/0x540
[ 1218.745589][T24209]  wb_writeback+0x1bf/0xb90
[ 1218.750142][T24209]  ? __pfx_wb_writeback+0x10/0x10
[ 1218.754763][ T6470] usb 3-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1
[ 1218.755256][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.764572][ T6470] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1218.769945][T24209]  ? mark_held_locks+0x40/0x70
[ 1218.782691][T24209]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1218.788052][T24209]  wb_workfn+0x14f/0xc00
[ 1218.789389][ T6470] usb 3-1: Product: syz
[ 1218.792355][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.796605][ T6470] usb 3-1: Manufacturer: syz
[ 1218.802127][T24209]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1218.808798][ T6470] usb 3-1: SerialNumber: syz
[ 1218.812527][T24209]  ? __pfx_wb_workfn+0x10/0x10
[ 1218.822048][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.827740][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.833415][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.839111][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1218.843923][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.849669][T24209]  process_one_work+0xa0e/0x1980
[ 1218.854665][T24209]  ? __pfx_process_one_work+0x10/0x10
[ 1218.860095][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.865775][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.866531][T28734] FAT-fs (loop1): Directory bread(block 64) failed
[ 1218.871481][T24209]  worker_thread+0x5ef/0xe50
[ 1218.882793][T24209]  ? kthread+0x13a/0x450
[ 1218.887065][T24209]  ? __pfx_worker_thread+0x10/0x10
[ 1218.889224][T28734] FAT-fs (loop1): Directory bread(block 65) failed
[ 1218.892240][T24209]  kthread+0x370/0x450
[ 1218.899204][T28734] FAT-fs (loop1): Directory bread(block 66) failed
[ 1218.902809][T24209]  ? __pfx_kthread+0x10/0x10
[ 1218.902858][T24209]  ret_from_fork+0x72b/0xd50
[ 1218.902907][T24209]  ? __pfx_ret_from_fork+0x10/0x10
[ 1218.902955][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1218.914606][ T6470] usb 3-1: config 0 descriptor??
[ 1218.918833][T24209]  ? __switch_to+0x800/0x1100
[ 1218.939282][T24209]  ? __switch_to_asm+0x39/0x70
[ 1218.944308][T24209]  ? __pfx_kthread+0x10/0x10
[ 1218.949018][T24209]  ret_from_fork_asm+0x1a/0x30
[ 1218.953843][T24209]  </TASK>
[ 1218.956898][T24209] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1218.964188][T24209] CPU: 1 UID: 0 PID: 24209 Comm: kworker/u8:10 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1218.975426][T24209] Tainted: [L]=SOFTLOCKUP
[ 1218.979759][T24209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1218.989829][T24209] Workqueue: writeback wb_workfn (flush-7:6)
[ 1218.995878][T24209] Call Trace:
[ 1218.999159][T24209]  <TASK>
[ 1219.002088][T24209]  dump_stack_lvl+0x100/0x190
[ 1219.006780][T24209]  vpanic+0x552/0x970
[ 1219.010771][T24209]  ? __pfx_vpanic+0x10/0x10
[ 1219.015369][T24209]  ? lock_release+0x245/0x310
[ 1219.020072][T24209]  panic+0xd1/0xe0
[ 1219.023802][T24209]  ? __pfx_panic+0x10/0x10
[ 1219.028234][T24209]  ? check_panic_on_warn+0x1f/0x90
[ 1219.033358][T24209]  check_panic_on_warn.cold+0x19/0x34
[ 1219.038741][T24209]  ? hfs_bnode_create.cold+0x41/0x49
[ 1219.044045][T24209]  __warn.cold+0x191/0x328
[ 1219.048481][T24209]  __report_bug+0x296/0x3d0
[ 1219.053016][T24209]  ? hfs_bnode_create.cold+0x41/0x49
[ 1219.058323][T24209]  ? __pfx___report_bug+0x10/0x10
[ 1219.063377][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.069030][T24209]  ? preempt_schedule_thunk+0x16/0x30
[ 1219.074436][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.080082][T24209]  ? preempt_count_add+0x76/0x150
[ 1219.085132][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.090779][T24209]  ? __wake_up_klogd+0xe2/0x140
[ 1219.095650][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.101301][T24209]  ? vprintk_emit+0x1c9/0x6b0
[ 1219.106018][T24209]  ? __pfx_vprintk_emit+0x10/0x10
[ 1219.111078][T24209]  ? hfs_bnode_create.cold+0x41/0x49
[ 1219.116382][T24209]  report_bug+0xb2/0x220
[ 1219.120653][T24209]  ? hfs_bnode_create.cold+0x41/0x49
[ 1219.125956][T24209]  handle_bug+0x16a/0x2a0
[ 1219.130302][T24209]  exc_invalid_op+0x17/0x50
[ 1219.134819][T24209]  asm_exc_invalid_op+0x1a/0x20
[ 1219.139682][T24209] RIP: 0010:hfs_bnode_create.cold+0x41/0x49
[ 1219.145597][T24209] Code: c5 c0 64 0a e9 b7 3c d1 01 e8 ab 26 e1 00 4c 89 f7 e8 b3 c0 64 0a e8 9e 26 e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 b9 3f d1 01 e8 82 26 e1 00 e8 bd 56 4d 00 e9 15 42 d1
[ 1219.165215][T24209] RSP: 0018:ffffc90007b0f020 EFLAGS: 00010282
[ 1219.171298][T24209] RAX: 000000000000001f RBX: ffff88802adff300 RCX: 0000000000000000
[ 1219.179271][T24209] RDX: 000000000000001f RSI: ffffffff81e73529 RDI: fffff52000f61df5
[ 1219.187245][T24209] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 1219.195218][T24209] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000
[ 1219.203190][T24209] R13: ffff888038386000 R14: ffff8880383860d8 R15: 0000000000000000
[ 1219.211172][T24209]  ? vprintk_emit+0x1c9/0x6b0
[ 1219.215889][T24209]  ? _raw_spin_unlock+0x28/0x50
[ 1219.220759][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.226409][T24209]  ? hfs_bnode_put+0x208/0x480
[ 1219.231199][T24209]  hfs_bmap_alloc+0x5a7/0x6b0
[ 1219.235905][T24209]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[ 1219.241130][T24209]  ? __asan_memcpy+0x3c/0x60
[ 1219.245741][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.251398][T24209]  ? hfs_bnode_read.part.0+0x298/0x330
[ 1219.256884][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.262534][T24209]  ? folio_mark_accessed+0xf3/0x1040
[ 1219.267844][T24209]  hfs_btree_inc_height.isra.0+0xff/0x820
[ 1219.273594][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1219.278387][T24209]  ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10
[ 1219.284744][T24209]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1219.289969][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.295622][T24209]  ? _raw_spin_unlock+0x28/0x50
[ 1219.300495][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.306149][T24209]  ? hfs_bnode_put+0x208/0x480
[ 1219.310937][T24209]  hfs_brec_insert+0x8ba/0xc20
[ 1219.315741][T24209]  ? __pfx_hfs_brec_insert+0x10/0x10
[ 1219.321052][T24209]  ? hfs_bmap_reserve+0x2c5/0x3a0
[ 1219.326109][T24209]  __hfs_ext_write_extent+0x3ef/0x510
[ 1219.331508][T24209]  ? hfs_find_init+0x273/0x330
[ 1219.336285][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.342035][T24209]  hfs_ext_write_extent+0x1b7/0x200
[ 1219.347267][T24209]  ? __pfx_hfs_ext_write_extent+0x10/0x10
[ 1219.353024][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.358673][T24209]  ? __mpage_writepages+0x1a8/0x210
[ 1219.363884][T24209]  ? __pfx___mpage_writepages+0x10/0x10
[ 1219.369438][T24209]  hfs_write_inode+0xce/0xab0
[ 1219.374126][T24209]  ? __pfx_hfs_write_inode+0x10/0x10
[ 1219.379421][T24209]  ? __lock_acquire+0x4a5/0x2630
[ 1219.384392][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1219.390231][T24209]  ? __writeback_single_inode+0x454/0x1350
[ 1219.396067][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.401722][T24209]  __writeback_single_inode+0xcd4/0x1350
[ 1219.407395][T24209]  ? __pfx___writeback_single_inode+0x10/0x10
[ 1219.413495][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.419146][T24209]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1219.424372][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.430032][T24209]  writeback_sb_inodes+0x766/0x1c60
[ 1219.435273][T24209]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1219.440940][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.446627][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.452277][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1219.457070][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.462727][T24209]  ? queue_io+0x287/0x540
[ 1219.467165][T24209]  wb_writeback+0x1bf/0xb90
[ 1219.471710][T24209]  ? __pfx_wb_writeback+0x10/0x10
[ 1219.476771][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.482424][T24209]  ? mark_held_locks+0x40/0x70
[ 1219.487203][T24209]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1219.492427][T24209]  wb_workfn+0x14f/0xc00
[ 1219.496705][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.502357][T24209]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1219.508199][T24209]  ? __pfx_wb_workfn+0x10/0x10
[ 1219.513008][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.518659][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.524312][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.529961][T24209]  ? rcu_is_watching+0x12/0xc0
[ 1219.534757][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.540410][T24209]  process_one_work+0xa0e/0x1980
[ 1219.545380][T24209]  ? __pfx_process_one_work+0x10/0x10
[ 1219.550769][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.556427][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.562081][T24209]  worker_thread+0x5ef/0xe50
[ 1219.566697][T24209]  ? kthread+0x13a/0x450
[ 1219.570950][T24209]  ? __pfx_worker_thread+0x10/0x10
[ 1219.576080][T24209]  kthread+0x370/0x450
[ 1219.580165][T24209]  ? __pfx_kthread+0x10/0x10
[ 1219.584771][T24209]  ret_from_fork+0x72b/0xd50
[ 1219.589383][T24209]  ? __pfx_ret_from_fork+0x10/0x10
[ 1219.594512][T24209]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1219.600160][T24209]  ? __switch_to+0x800/0x1100
[ 1219.604866][T24209]  ? __switch_to_asm+0x39/0x70
[ 1219.609654][T24209]  ? __pfx_kthread+0x10/0x10
[ 1219.614265][T24209]  ret_from_fork_asm+0x1a/0x30
[ 1219.619066][T24209]  </TASK>
[ 1219.622378][T24209] Kernel Offset: disabled
[ 1219.626696][T24209] Rebooting in 86400 seconds..