last executing test programs:

5m11.67842307s ago: executing program 1 (id=17):
set_mempolicy(0x4005, &(0x7f0000000080)=0x4, 0x8)
syz_clone(0x40800000, 0x0, 0x0, 0x0, 0x0, 0x0)

5m11.446439915s ago: executing program 1 (id=18):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x6, 0x4, 0x6, 0x9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x37)

5m11.446244474s ago: executing program 1 (id=19):
munlockall()

5m11.335567164s ago: executing program 1 (id=20):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000180)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@i_version}, {@noblock_validity}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@noauto_da_alloc}, {@grpquota}]}, 0xd, 0x5e1, &(0x7f0000001200)="$eJzs3c1vVFUbAPDnTD9oKe/bQoyKC2liDCSGlhYwxLiArSENfsSNGystiBRoaI0WTSgJbkyMG2NMXLkQ/wslsmWlKxduXBkSooaliWNmem/baWdaOrS92Pv7JUPvvWcO59xOnznnnjnnTgClNVj7pxKxPyKmU0R/ml9M64wscXDheQ/++vhs7ZGiWn39jxQpO5Y/P2U/+7LMPRHx048p9nWsLndm7trF8ampyavZ/vDspenhmblrhy9cGj8/eX7y8uiLoyeOHzt+YuRIW+d1vcmx0zff+6D/07G3vv367zTy3a9jKU7GK9kTl5/HZhmMwfrvJK1O6jux2YUVpCP7O1n+EqfOAivEhuSvX1dEPBX90RFLL15/fPJqoZUDtlQ1RVSBkkriH0oq7wfk1/Yrr4MrhfRKgO1w/9TCAMDq+O9cGBuMnvrYwO4HKZYP66SIaG9krtGeiLh7Z+zmuTtjN2OLxuGA5uZvRMTTzeI/1eN/IHpioB7/lYb4r/ULzmQ/a8dfa7P8lUPF4h+2z0L896wZ/9Ei/t9eFv/vtFn+4NLmu70N8d/b7ikBAAAAAABAad0+FdknfEtzABb2Kovzf6LJ/J++iDi5CeUPrthf/fl/5d4mFAM0cf9UxMtN5/9W8tm/Ax3Z1v/q8wG60rkLU5NHIuL/EXEounbV9kfWKOPwZ/u+apU2mM3/yx+18u9mcwGzetzr3NWYZ2J8dvxRzxuIuH8j4pmm83/TYvufmrT/tfeD6YcsY9/zt860Sls//oGtUv0m4mDT9n/prhVp7ftzDNf7A8N5r2C1Zz/6/PtW5bcb/24xAY+u1v7vXjv+B9Ly+/XMbLyMo3Od1VZp7fb/u9Mb9VvOdGfHPhyfnb06EtGdTnf0RHfj8dGN1xl2ojwe8nipxf+h55pf/6/V/++NiPkV/3f6s3FNce7Jf/p+a1Uf/X8oTi3+JzbU/m98Y/TWwA+tyn+49v9Yva0/lB0x/gcLvszDtLvxeJNw7GyWtN31BQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICdoBIReyJVhha3K5WhoYi+iHgidlemrszMvnDuyvuXJ2pp9e//r+Tf9Nu/sJ/y7/8fWLY/umL/aETsjYgvOnrr+0Nnr0xNFH3yAAAAAAAAAAAAAAAAAAAA8Jjoa7H+v+b3jqJrB2y5zqIrABSmSfz/XEQ9gO2n/YfyEv9QXuIfykv8Q3mJfygv8Q/lJf6hvMQ/AAAAAADsKHsP3P4lRcT8S731R013ltZVaM2ArVYpugJAYdziB8rL1B8ory7vAFB6aZ30npaZ1su5lumzj5AZAAAAAAAAAAAAAErn4H7r/6GsrP+H8rL+H8orX/17oOB6ANvPNT4Q66zkb7r+f91cAAAAAAAAAAAAAMBmmpm7dnF8amryqo03N5ZrJ/zqqtXq9dpfweNSn//4Rj4V/nGpz4qNfK3fw+Uq7j0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo9G8AAAD//0JvIXg=")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

5m11.161799083s ago: executing program 1 (id=23):
syz_usb_connect(0x0, 0x34, &(0x7f00000002c0)=ANY=[@ANYBLOB="120100036a56f140b7e4a2cd01000000030109022200010302a05a0904560b01ef0401"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0})

5m10.778654563s ago: executing program 1 (id=24):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000001d00)={0x0, 0x0, 0x0}, 0x40000020)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="180000002500010324bd5502ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000001d40)=""/4098, 0x1002}, {&(0x7f0000000000)=""/32, 0x20}, {&(0x7f0000000740)=""/4066, 0xfe2}, {&(0x7f0000000500)=""/161, 0xa1}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000080)=""/31, 0x1f}], 0x7}, 0x32120)

5m10.634023074s ago: executing program 32 (id=24):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000001d00)={0x0, 0x0, 0x0}, 0x40000020)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="180000002500010324bd5502ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000001d40)=""/4098, 0x1002}, {&(0x7f0000000000)=""/32, 0x20}, {&(0x7f0000000740)=""/4066, 0xfe2}, {&(0x7f0000000500)=""/161, 0xa1}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000080)=""/31, 0x1f}], 0x7}, 0x32120)

4m24.723888821s ago: executing program 0 (id=437):
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x525, &(0x7f0000000100)="$eJzs3c9vG1kdAPCv3fxw03SThT0sCNiyLBRU1U7c3Wi1B1guSGi1WqRlTwh1o8SNothxFDulCZFIJW5ckajECf4EDkgckHrizg1uXIoEUoGKqkFCyGjscZo4dhM1cdzGn4808ps3k/l+n6V5L37+8QIYWlciYicixiLi04iYSusz6Rbvt7bkvCePthd2H20vZKLR+PifI+mZ2wvt89supdfMRXyU7I93iVvb3FqZL5dL6+l+oV5ZK9Q2t64vV+aXSkul1WJxbnZu5t0b7xRPra1vVH7z8DvLH3zy+9998cEfd77x4yTnb7UOjSVtO7VA+7Sel9GY3FeXPHMf9CPYAFxI2zM26ER4LtmI+ExEvJmW9+QGlxMA0F+NxlQ0pvbv95Y5xjkAwIsvec0/GZlsPn39PxnZbD7fnMPLvRYT2XK1Vr92q7qxuhjNOazpGM3eWi6XZtK5wukYzST7s83y0/1ix/6NiHg1In4+frG5n1+olhcH9U8PAAy5Sx3j/+Px1vh/DN4hAICXmZEcAIbP4fF/dCB5AABnx+t/ABg++8b/bt/VBQDOoVzHd/8BgPPvyPn/1+MnPzybVACAM+L9fwAYKt/78MNka+ymv3+9eHtzY6V6+/piqbaSr2ws5Beq62v5pWp1qfmbPZWjrleuVtdm346NO4V6qVYv1Da3blaqG6v1m83f9b5Z8sUCABi8V9+4/+dMROy8d7G5RXstBx8IgHPPbQ7D68KgEwAGZmTQCQADYz4eyBxxvOdHhO71/puLJ8gH6L+rn+sx/9/tf4O7e6X/Nc4uRaBPzP/D8DrZ/L/ZA3iZmf+H4dVoZKznDwBD5hiv4H1EEM65537/HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIbYZHPLZPPpWuCTkc3m8xGXI2I6RjO3lsulmYh4JSL+ND46nuzPDjppAOCEsn/PpOt/XZ16a7Lz6FjmP+PNx4j40S8//sWd+Xp9fTap/9deff1eWl/sGmC8/20AAPYZ6axoj9Ptcby9vu+TR9sL7e0sE3z47dbioknc3XRrp95KPhejETHx78yBxmROaWHinbsR8Xpn+7N7x6fTlU874yexL/ctfjRbOHkgfvZA/GzzWOsxeS4+ewq5wLC5n/Q/73e7/7JxpfmY3n+Zg51pLn52uHN9Du3+b7fR2f+17vePLueafU23/u/KcWO8/Yfv9jx290Lj8yMRu4f63/aK0LlmqVv8t7pd8KfffLzRUfWXL3zpzV7xG7+KuBrPit8qFeqVtUJtc+v6cmV+qbRUWi0W52bnZt698U6x0JyjLrRnqg/7x3vXXund/oiJHvFzR7T/q70u2uHX//30B19+Rvyvf6Vb/Gy89oz4yZj4tWPGn5/4bc/lu5P4iz3aP3Ig/tiBv0vqrh0z/oO/bi0e81QA4AzUNrdW5svl0rrCSQu5fl350gvSQIUehb99cuCeGng+p1IYWJcEnJGnN/2gMwEAAAAAAAAAAAAAAHqpfT/9yb8+fhlu0G0EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg/Pp/AAAA///RQMtW")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x80d800, 0x0, 0x0, 0x0, &(0x7f0000000c80))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='pids.events\x00', 0x275a, 0x0)

4m24.611712967s ago: executing program 0 (id=440):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000180)={@hyper, 0x1})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7cb, &(0x7f0000000100)={&(0x7f0000001080)={{@my=0x1, 0xfff}, {@local, 0x10000}, 0x400, "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"}, 0x418, 0x8})
ioctl$IOCTL_VMCI_SET_NOTIFY(r0, 0x7cb, &(0x7f0000000140)={0xffffffffffffffff, 0x26, 0x3})

4m24.474543447s ago: executing program 0 (id=441):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x19, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000005000000000000001000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r3}, 0xc)

4m24.474345761s ago: executing program 0 (id=442):
mkdir(&(0x7f0000000ac0)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)

4m24.363851149s ago: executing program 0 (id=444):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000300)={'geneve0\x00', 0x400})

4m23.537588644s ago: executing program 0 (id=450):
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0xc07e, 0x67)
io_setup(0x80, &(0x7f0000000480)=<r1=>0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000240)={[{@usrjquota}, {@mblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x81}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1000}}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x44d, &(0x7f0000000c80)="$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")
io_submit(r1, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000)="96", 0xfffffe3b, 0x0, 0x0, 0x0, r0}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff}])

4m23.325573522s ago: executing program 33 (id=450):
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0xc07e, 0x67)
io_setup(0x80, &(0x7f0000000480)=<r1=>0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000240)={[{@usrjquota}, {@mblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x81}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1000}}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x44d, &(0x7f0000000c80)="$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")
io_submit(r1, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000)="96", 0xfffffe3b, 0x0, 0x0, 0x0, r0}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff}])

3m28.280483382s ago: executing program 2 (id=1050):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, @none={0x0, 0x3}}, 0x14, &(0x7f0000000100)={0x0}, 0x7}, 0x80)
setsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, &(0x7f0000000000)=0x1, 0x4)
recvmmsg(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)}, 0xb682}], 0x1, 0x20, 0x0)

3m28.158309618s ago: executing program 2 (id=1052):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000000000100b060a5000000000000109022400010000500009040002010300000009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1e0000000000000009"], 0x50)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

3m26.178245282s ago: executing program 2 (id=1064):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000001c0)='cgroup.clone_children\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000180), 0x12)
mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff)

3m26.177641708s ago: executing program 2 (id=1065):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000900)={[{@init_itable_val={'init_itable', 0x3d, 0x94eb}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x45f, &(0x7f0000000480)="$eJzs3MtvG8UfAPDvruP019cvoZRHH0CgICIeSdMW6IEDIJA4FAkJDnCMkrQqdRvUBIlWFW0RKieEkLgjjvwLnOCCECckrnBFqFKFemnLyWjt3cZ2bJOHXUP9+UjbzuyOO/P17NizO94GMLQmsj+SiB0R8WtEjNWzzQUm6n/dvH5h7tb1C3NJVKtv/ZnUyt24fmGuKFq8bnuemUwj0k+S2Nem3qVz50/NVioLZ/P89PLp96eXzp1/9uTp2RMLJxbOHDp69MjhmReeP/RcT+LM2nRj70eL+/e8/u4Xbxz7rCn+ljh6ZKLbwSeq1R5XN1g7G9LJyAAbwrqUIiLrrnJt/I9FKVY6byxe+3igjQP6qlqtVrc3ZC82H75UBe5iyWj+MZAz5GFYFF/02fVvsbXOEV7q8xxkkK69XL8AyuK+mW/1IyOR5mXKLde3vTQREe9c+uurbIv+3IcAAGjyXTb/eabd/C+N+xvK/T9fGxqPiHsiYldE3BsRuyPivoha2Qci4sE11bqywtS6SLJ6/pNe3XBwa5DN/17M17aa53/F7C/GS3luZy3+cnL8ZGXhYP6eTEZ5S5af6VLH96/+8nmnY43zv2zL6i/mgnk7ro5saX7N/Ozy7GZibnTtcsTekXbxJ7dXArLe2hMRezdYx8mnvtnf6dg/x99FD9aZql9HPFnv/0vREn8h6b4+Of2/qCwcnC7OitV++vnKm53q31T8PZD1/7a25//t+MeTxvXapfXXceW3Tzte02z0/B9N3q6lR/N9H84uL5+diRhNjtUb3bj/0Mpri3xRPot/8kD78b8rVt6JfRGRncQPRcTDEfFI3vZHI+KxiDjQJf4fX3n8vY3H319Z/PPr6v+VxGi07mmfKJ364dumSsdXxX+re/8fqaUm8z1r+fxbS7s2djYDAADAf08aETsiSadup9N0aqr+e/ndEWllcWn56eOLH5yZrz8jMB7ltLjTNdZwP3Qmv6yv5y9HRP2nBcXxw/l94y9LW2v5qbnFyvygg4cht73D+M/8URp064C+87wWDC/jH4aX8Q/Dy/iH4dVm/G8dRDuAO6/d9//FAbQDuPNaxr9lPxgev7v+h+HVcfzfzf/zD1Dj+x+G0tLW6P6Q/La8YMcyxb+0hofthyoR5X9FMzafqCZtOzfSQTdMop+JwX0mAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9NLfAQAA//9i/dxS")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
chroot(&(0x7f0000000200)='./file0\x00')
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000002680)='.\x00', 0xa0, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))

3m26.066151809s ago: executing program 2 (id=1066):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone3(&(0x7f0000000000)={0x170e4000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r5 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000006680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000006780)={0x0, 0x0, &(0x7f0000006740)={&(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYRES64=r6, @ANYBLOB="010029000000fedbdf252500000005002b00"], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x4c004)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r5, 0x0, 0x0)
r8 = openat$cgroup_subtree(r7, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000040)={[{0x2b, 'rdma'}, {0x2b, 'cpuset'}]}, 0xe)
r9 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r9, 0xc0185879, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000000b00010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)

3m25.800068153s ago: executing program 2 (id=1067):
r0 = socket(0xa, 0x5, 0x0)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in6={0xa, 0x4e24, 0xff, @loopback, 0x5}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000100)="e6", 0x1}], 0x1, &(0x7f0000000600)=[@dstaddrv4={0x18, 0x84, 0x7, @local}, @dstaddrv6={0x20, 0x84, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}], 0x38, 0x4855}, 0x24000052)

3m25.661594094s ago: executing program 34 (id=1067):
r0 = socket(0xa, 0x5, 0x0)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in6={0xa, 0x4e24, 0xff, @loopback, 0x5}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000100)="e6", 0x1}], 0x1, &(0x7f0000000600)=[@dstaddrv4={0x18, 0x84, 0x7, @local}, @dstaddrv6={0x20, 0x84, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}], 0x38, 0x4855}, 0x24000052)

2m23.215482693s ago: executing program 3 (id=1746):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000040)=0x11, 0x4)

2m23.215095222s ago: executing program 3 (id=1748):
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000240)={0x0, 0x40}, 0x8)

2m23.129948447s ago: executing program 3 (id=1749):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmmsg$inet(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

2m23.129476076s ago: executing program 3 (id=1750):
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000001b40)='./file0\x00', 0x208008de, &(0x7f0000001b80)=ANY=[@ANYBLOB='utf8,errors=continue,namecase=1,utf8,gid=', @ANYRESHEX=0x0, @ANYBLOB=',umask=00000000000000000000077,umask=00000000000000000005676,uid=', @ANYRESHEX=0x0, @ANYBLOB=',gid=', @ANYRESHEX=0x0, @ANYBLOB="2c000ca8768ddddc191573cbd33da79641936c9de64e264f331d1b50f4c4f54702f51dcbddb39c14c19175f07a639bb65ea608fbf6fadf5d8da30ace1281bed3e61b084526e10dbe921dad84fbcabc5791f52445cb76b789ed377aa0cd17309c4df04d525e8af05fb246b33836d90656cd2daa991b916be40df3bd607ae5672e1bb90730d0ff03000000000000c5f0cf287ea707c1fc66165f74e7d8a78c37a4b86907cec1df06da3611f616718d88770a2520ceb039bc06ef4d1183"], 0x1, 0x1503, &(0x7f0000000580)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x3, 0x0, 0x0, 0x4, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c678082004cb59d654cb9b1b165263bdbcef549ba197fce47ddfdd753abd950100172a00ffffff00f7ffffff000000f3e7f20000000200000000000600", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2m22.136824633s ago: executing program 3 (id=1759):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0xff, 0xfe, 0x7fff0006}]})
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x20004, <r2=>r0})
r3 = syz_open_dev$dri(&(0x7f0000000280), 0x1ff, 0x140)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000040)=0x6)

2m21.841509784s ago: executing program 3 (id=1761):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r0, &(0x7f0000004cc0)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x1ff, @private0, 0x401}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000000)="f5", 0x1}], 0x1}}, {{&(0x7f0000000480)={0xa, 0x4e24, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8e}, 0x1c, &(0x7f0000000d80)=[{&(0x7f0000000c40)="ea", 0x1}], 0x1}}], 0x2, 0x40)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000080)={0x0, 0xac1e5000}, &(0x7f00000000c0)=0x8)

2m21.653581545s ago: executing program 35 (id=1761):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendmmsg$inet6(r0, &(0x7f0000004cc0)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x1ff, @private0, 0x401}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000000)="f5", 0x1}], 0x1}}, {{&(0x7f0000000480)={0xa, 0x4e24, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8e}, 0x1c, &(0x7f0000000d80)=[{&(0x7f0000000c40)="ea", 0x1}], 0x1}}], 0x2, 0x40)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000080)={0x0, 0xac1e5000}, &(0x7f00000000c0)=0x8)

2.19688371s ago: executing program 5 (id=3634):
r0 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0xfffffff9, 0xa1, &(0x7f00000004c0)={0x2, 0x3, 0x5, 0x21}, 0x8, 0x0, 0x20008, 0x0, 0x0, 0x0, 0x0})

2.080739666s ago: executing program 5 (id=3636):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000001040)={&(0x7f0000000040)={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000001c0)="2d0000008058", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007"], 0x40}, 0x20008024)

1.947306356s ago: executing program 5 (id=3639):
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x4030582b, &(0x7f0000000080)={0x0, 0x2, 0x9, 0x5})
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000b7403340861a22753635f10203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000040)={0x1c, &(0x7f0000000080)=ANY=[], 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

1.27033608s ago: executing program 6 (id=3645):
r0 = mq_open(&(0x7f0000000180)='eth0\x00', 0x40, 0x59, 0x0)
mq_notify(r0, &(0x7f00000000c0)={0x0, 0xd})
readv(r0, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/18, 0x12}], 0x1)

1.19610108s ago: executing program 6 (id=3646):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001d00075f12f5f5000000000007000000", @ANYRES32, @ANYBLOB='\x00\x00g\x00\b'], 0x24}, 0x1, 0x0, 0x0, 0x4008004}, 0x0)

1.133075247s ago: executing program 6 (id=3647):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/devices.allow\x00', 0x2, 0xc8)
open_by_handle_at(r0, &(0x7f0000000040)=@ocfs2={0xc, 0x1, {0x101, 0x2, 0x5}}, 0x472500)

1.078017938s ago: executing program 6 (id=3648):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf2503000000180001801400020073797a5f74756e00000000000000000005000200030000000500050000000000050003"], 0x44}, 0x1, 0x0, 0x0, 0x20009085}, 0x40040c4)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000005580)=""/102392, 0x18ff8)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_ZEROPAGE(r3, 0xc020aa04, 0x0)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r5, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000140)={0x28, 0x2, r5, 0x0, &(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x1})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000040)={0x28, 0x4, r5, 0x0, &(0x7f0000ff8000/0x1000)=nil, 0x1000})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r5})

1.00560778s ago: executing program 6 (id=3649):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f000068c000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f000068a000/0xa000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)

878.210263ms ago: executing program 6 (id=3652):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x18}], 0x1, 0x0, 0x0, 0x804c044}, 0x881)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000980)={0x0, 0x2, 0x9, 0x5, 0x2db5, 0x5, 0x400, 0x3ef, {0x0, @in6={{0xa, 0x4e23, 0x5, @mcast2, 0x2}}, 0x7, 0x4d, 0x6da, 0x1, 0x1}}, &(0x7f0000000a40)=0xb0)

279.653899ms ago: executing program 4 (id=3655):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000000140)=[{0x0, 0xffffff31}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff00)

279.366556ms ago: executing program 4 (id=3656):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0x3, @empty, 0x3}], 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x85, &(0x7f00000012c0)={0x0, @in={{0x2, 0x4c24, @empty}}, 0x6, 0x6}, 0x90)
sendmsg$inet6(r1, &(0x7f0000000540)={&(0x7f00000000c0)={0xa, 0x4e24, 0x8004, @loopback, 0x7fff}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000100)="f0", 0x1}], 0x1}, 0x400d4)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e24, 0x42, @loopback, 0x8000}}, 0xabb6, 0x67, 0xa4f, 0xc4, 0xa, 0x0, 0xa9}, 0x9c)

233.875414ms ago: executing program 5 (id=3657):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_DIR={0x5, 0x3, 0x1}, @NFTA_XFRM_KEY={0x8}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0xf}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xcc}}, 0x0)

149.420121ms ago: executing program 4 (id=3658):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000021c0)={r1, 0xffffffffffffffff, 0x2e, 0x0, @void}, 0x10)

149.176571ms ago: executing program 5 (id=3659):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet6_udp_encap(r0, 0x11, 0x68, &(0x7f0000000000)=0x5, 0x4)

63.782819ms ago: executing program 4 (id=3660):
rseq(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x2}, 0x20, 0x0, 0x0)
r0 = memfd_create(&(0x7f00000002c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9\xd6\x1c\x1b*\x9a!?\x7f\xa5\xad\x9a,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{&\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+\x02\x00\x00\x00\x00\x00\x00\x00\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5', 0x2)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

63.558343ms ago: executing program 5 (id=3661):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f0000000280)={[{}]}, 0x82, 0x499, &(0x7f0000000840)="$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")
bind$unix(0xffffffffffffffff, &(0x7f00000001c0)=@file={0x0, './file0/file0\x00'}, 0x6e)
r0 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x40002002, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r1 = accept(0xffffffffffffffff, 0x0, 0x0)
close(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
syz_usb_control_io$uac2(0xffffffffffffffff, &(0x7f00000017c0)={0x14, 0x0, 0x0}, 0x0)
write$P9_RREADLINK(r2, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)

1.57386ms ago: executing program 4 (id=3662):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x400)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000011c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6})

0s ago: executing program 4 (id=3663):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4001, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f070000004001000058000b480400945f64009400050038923944000000800000008004000000ff0109000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)

kernel console output (not intermixed with test programs):

block nbd3: shutting down sockets
[  238.504128][T10997] loop3: detected capacity change from 0 to 1024
[  238.551311][T10997] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.557027][T11003] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1719'.
[  238.580914][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.622588][  T937] usb 6-1: new full-speed USB device number 13 using dummy_hcd
[  238.782346][  T937] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  238.789901][  T937] usb 6-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=d2.87
[  238.795562][  T937] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.799523][  T937] usb 6-1: Product: syz
[  238.802521][  T937] usb 6-1: Manufacturer: syz
[  238.806561][  T937] usb 6-1: SerialNumber: syz
[  238.814130][  T937] usb 6-1: config 0 descriptor??
[  238.818711][  T937] port100 6-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  239.038456][  T937] usb 6-1: USB disconnect, device number 13
[  239.892455][   T24] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  240.065616][   T24] usb 6-1: unable to get BOS descriptor or descriptor too short
[  240.069552][   T24] usb 6-1: not running at top speed; connect to a high speed hub
[  240.075174][   T24] usb 6-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  240.080431][   T24] usb 6-1: config 1 interface 0 has no altsetting 0
[  240.084325][   T24] usb 6-1: language id specifier not provided by device, defaulting to English
[  240.090455][   T24] usb 6-1: New USB device found, idVendor=046d, idProduct=c29a, bcdDevice= 0.40
[  240.094456][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.097988][   T24] usb 6-1: Product: syz
[  240.099891][   T24] usb 6-1: SerialNumber: syz
[  240.107175][T11043] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  240.349381][   T24] usbhid 6-1:1.0: can't add hid device: -71
[  240.361923][   T24] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  240.371410][   T24] usb 6-1: USB disconnect, device number 14
[  241.181431][T11116] loop3: detected capacity change from 0 to 256
[  241.192500][T11116] exfat: Deprecated parameter 'utf8'
[  241.196170][T11116] exfat: Deprecated parameter 'namecase'
[  241.198943][T11116] exfat: Deprecated parameter 'utf8'
[  241.213820][T11116] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  241.313205][   T24] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  241.316407][T11116] loop3: detected capacity change from 256 to 0
[  241.496423][   T24] usb 6-1: config 0 has no interfaces?
[  241.505491][   T24] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  241.514557][   T24] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  241.521681][   T24] usb 6-1: Product: syz
[  241.524623][   T24] usb 6-1: Manufacturer: syz
[  241.533283][   T24] usb 6-1: SerialNumber: syz
[  241.549383][   T24] usb 6-1: config 0 descriptor??
[  241.806955][   T10] usb 6-1: USB disconnect, device number 15
[  242.125425][ T5784] buffer_io_error: 332 callbacks suppressed
[  242.125436][ T5784] Buffer I/O error on dev loop3, logical block 0, lost sync page write
[  242.822118][ T5617] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  242.833754][ T5617] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  242.837128][ T5617] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  242.846907][ T5617] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  242.858145][ T5617] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  243.298252][T11200] loop5: detected capacity change from 0 to 32768
[  243.307140][T11200] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1774 (11200)
[  243.323679][T11200] BTRFS info (device loop5): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  243.328453][T11200] BTRFS info (device loop5): using xxhash64 checksum algorithm
[  243.401650][T11200] BTRFS info (device loop5): enabling ssd optimizations
[  243.404530][T11200] BTRFS info (device loop5): turning on async discard
[  243.410149][T11200] BTRFS info (device loop5): enabling free space tree
[  243.462851][T11162] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.465641][T11162] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.468436][T11162] bridge_slave_0: entered allmulticast mode
[  243.482303][T11162] bridge_slave_0: entered promiscuous mode
[  243.485788][T11162] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.488420][T11162] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.491146][T11162] bridge_slave_1: entered allmulticast mode
[  243.495277][T11162] bridge_slave_1: entered promiscuous mode
[  243.573736][T11162] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  243.581295][T11162] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.630986][ T8609] BTRFS info (device loop5): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  243.634072][T11162] team0: Port device team_slave_0 added
[  243.650068][T11162] team0: Port device team_slave_1 added
[  243.778234][T11162] batman_adv: batadv0: Adding interface: batadv_slave_0
[  243.785949][T11162] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.810904][T11162] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  243.822688][T11162] batman_adv: batadv0: Adding interface: batadv_slave_1
[  243.830794][T11162] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  243.849329][T11162] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  243.967044][T11162] hsr_slave_0: entered promiscuous mode
[  243.973006][T11162] hsr_slave_1: entered promiscuous mode
[  243.980051][T11162] debugfs: 'hsr0' already exists in 'hsr'
[  243.984819][T11162] Cannot create hsr debugfs directory
[  244.574252][T11162] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  244.588913][T11162] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  244.592732][T11162] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  244.605674][T11162] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  244.609414][T11162] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  244.614579][T11162] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  244.620984][T11162] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  244.621127][T11497] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1783'.
[  244.635602][T11162] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  244.725876][T11507] netlink: 'syz.4.1785': attribute type 15 has an invalid length.
[  244.729057][T11507] netlink: 666 bytes leftover after parsing attributes in process `syz.4.1785'.
[  244.744282][T11162] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.769392][T11162] 8021q: adding VLAN 0 to HW filter on device team0
[  244.778565][ T9156] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.781738][ T9156] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.796385][ T9156] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.799584][ T9156] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.812581][T11511] netlink: 'syz.4.1787': attribute type 1 has an invalid length.
[  245.042359][ T5002] Bluetooth: hci0: command tx timeout
[  245.165621][T11530] overlayfs: failed to clone upperpath
[  245.691821][T11162] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.975642][T11162] veth0_vlan: entered promiscuous mode
[  245.994566][T11162] veth1_vlan: entered promiscuous mode
[  246.048182][T11162] veth0_macvtap: entered promiscuous mode
[  246.062639][T11162] veth1_macvtap: entered promiscuous mode
[  246.081980][T11162] batman_adv: batadv0: Interface activated: batadv_slave_0
[  246.096210][T11162] batman_adv: batadv0: Interface activated: batadv_slave_1
[  246.115403][   T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  246.126993][   T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  246.135692][   T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  246.139830][   T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  246.213364][T11570] loop5: detected capacity change from 0 to 512
[  246.226519][T11570] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.248951][T11570] EXT4-fs: Ignoring removed nobh option
[  246.278153][T11570] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[  246.329684][ T9156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.334821][ T9156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.398138][ T9158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.404022][ T9158] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  247.254414][ T5002] Bluetooth: hci0: command tx timeout
[  247.785076][   T33] audit: type=1326 audit(1778603058.185:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11636 comm="syz.4.1822" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8a13f9cdd9 code=0x0
[  247.886485][   T33] audit: type=1326 audit(1778603058.288:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.893800][   T33] audit: type=1326 audit(1778603058.288:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.901176][   T33] audit: type=1326 audit(1778603058.288:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.910984][   T33] audit: type=1326 audit(1778603058.288:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.919156][   T33] audit: type=1326 audit(1778603058.288:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.950996][   T33] audit: type=1326 audit(1778603058.335:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  247.958137][   T33] audit: type=1326 audit(1778603058.344:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9e7315d60e code=0x7ffc0000
[  247.967025][   T33] audit: type=1326 audit(1778603058.363:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9e7315d60e code=0x7ffc0000
[  247.974737][   T33] audit: type=1326 audit(1778603058.372:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.5.1825" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9e7315d60e code=0x7ffc0000
[  248.024045][ T5722] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  248.187414][ T5722] usb 7-1: unable to get BOS descriptor or descriptor too short
[  248.192121][ T5722] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  248.197149][ T5722] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[  248.202610][ T5722] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  248.210039][ T5722] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  248.214013][ T5722] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.217926][ T5722] usb 7-1: Product: syz
[  248.219983][ T5722] usb 7-1: Manufacturer: syz
[  248.222161][ T5722] usb 7-1: SerialNumber: syz
[  248.456080][ T5722] cdc_ncm 7-1:1.0: bind() failure
[  248.465433][ T5722] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  248.468320][ T5722] cdc_ncm 7-1:1.1: bind() failure
[  248.475887][ T5722] usb 7-1: USB disconnect, device number 2
[  249.089597][T11674] loop6: detected capacity change from 0 to 2048
[  249.163914][T11674]  loop6: p1 < > p4 < >
[  249.167096][T11674] loop6: partition table partially beyond EOD, truncated
[  249.175141][T11674] loop6: p4 start 42112 is beyond EOD, truncated
[  249.233601][T11685] loop5: detected capacity change from 0 to 128
[  249.264196][T11685] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  249.287282][T11685] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.287781][ T5615] udevd[5615]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  249.376940][T11699] loop6: detected capacity change from 0 to 512
[  249.427424][ T8609] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  249.439499][T11699] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #17: comm syz.6.1834: iget: immutable or append flags not allowed on symlinks
[  249.444991][T11699] loop6: lost file I/O error report for ino 17 type 5 pos 0x0 len 0x0 error -117
[  249.445213][T11699] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.1834: couldn't read orphan inode 17 (err -117)
[  249.463911][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  249.466561][    C1] EXT4-fs (loop6): initial error at time 1778603059: ext4_orphan_get:1397: inode 17
[  249.469374][    C1] EXT4-fs (loop6): last error at time 1778603059: ext4_orphan_get:1397: inode 17
[  249.472642][T11699] loop6: lost filesystem error report for type 5 error -117
[  249.472745][ T5002] Bluetooth: hci0: command tx timeout
[  249.478727][T11699] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.525362][T11162] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.833077][T11731] loop5: detected capacity change from 0 to 1024
[  250.193258][  T796] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  250.378081][  T796] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 246, changing to 11
[  250.383855][  T796] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  250.389044][  T796] usb 6-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[  250.391916][  T796] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.401263][  T796] usb 6-1: config 0 descriptor??
[  250.674897][ T2342] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  250.847526][ T2342] usb 7-1: Using ep0 maxpacket: 8
[  250.851115][  T796] hid-alps 0003:044E:120C.000A: unknown main item tag 0x0
[  250.855290][ T2342] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  250.858451][  T796] hid-alps 0003:044E:120C.000A: unexpected long global item
[  250.861147][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  250.865323][  T796] hid-alps 0003:044E:120C.000A: parse failed
[  250.867358][ T2342] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  250.871216][  T796] hid-alps 0003:044E:120C.000A: probe with driver hid-alps failed with error -22
[  250.874321][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  250.882919][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  250.889744][ T2342] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  250.893711][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  250.899062][ T2342] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  250.902949][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  250.906499][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  250.911524][ T2342] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  250.914084][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  250.917687][ T2342] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  250.922706][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  250.926110][ T2342] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  250.934136][ T2342] usb 7-1: string descriptor 0 read error: -22
[  250.936763][ T2342] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  250.943631][ T2342] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.965014][ T2342] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  251.020442][ T5002] Bluetooth: hci2: command 0x0406 tx timeout
[  251.055311][ T2342] usb 6-1: USB disconnect, device number 16
[  251.692671][ T5617] Bluetooth: hci0: command tx timeout
[  251.958051][T11843] loop5: detected capacity change from 0 to 164
[  252.373535][   T24] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  252.544085][   T24] usb 6-1: Using ep0 maxpacket: 16
[  252.549646][   T24] usb 6-1: unable to get BOS descriptor or descriptor too short
[  252.553807][   T24] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7
[  252.561318][   T24] usb 6-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40
[  252.564742][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  252.568169][   T24] usb 6-1: Product: syz
[  252.570745][   T24] usb 6-1: Manufacturer: syz
[  252.572650][   T24] usb 6-1: SerialNumber: syz
[  252.804863][   T24] usb 6-1: Audio class v2/v3 interfaces need an interface association
[  252.812041][   T24] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[  253.020157][   T24] usb 6-1: 2:1 : can't get High Capability descriptor
[  253.255637][ T2342] usb 6-1: USB disconnect, device number 17
[  253.384681][T11893] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1881'.
[  253.400863][ T5677] usb 7-1: USB disconnect, device number 3
[  254.174340][T11921] futex_wake_op: syz.5.1886 tries to shift op by 36; fix this program
[  254.301093][   T12] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  254.305310][   T12] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  254.315888][   T12] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  254.523488][T11932] loop6: detected capacity change from 0 to 8
[  254.644893][T11932] SQUASHFS error: xz decompression failed, data probably corrupt
[  254.647950][T11932] SQUASHFS error: Failed to read block 0x108: -5
[  254.650874][T11932] SQUASHFS error: Unable to read metadata cache entry [106]
[  254.654017][T11932] SQUASHFS error: Unable to read inode 0x11f
[  254.758985][   T12] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  254.910275][T11947] loop5: detected capacity change from 0 to 256
[  254.979710][T11947] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  255.065935][   T33] kauditd_printk_skb: 525 callbacks suppressed
[  255.065955][   T33] audit: type=1800 audit(1778603064.988:770): pid=11947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1891" name="file1" dev="loop5" ino=1048718 res=0 errno=0
[  255.398688][T11961] loop6: detected capacity change from 0 to 256
[  255.814098][ T2342] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  255.997049][ T2342] usb 7-1: Using ep0 maxpacket: 16
[  256.001592][ T2342] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  256.005787][ T2342] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  256.011072][ T2342] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  256.016378][ T2342] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  256.024043][ T2342] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.034501][ T2342] usb 7-1: config 0 descriptor??
[  256.113112][ T5677] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  256.170919][T11991] netlink: 'syz.4.1903': attribute type 1 has an invalid length.
[  256.504773][ T2342] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  256.508097][ T2342] microsoft 0003:045E:07DA.000B: ignoring exceeding usage max
[  256.514110][ T2342] microsoft 0003:045E:07DA.000B: ignoring exceeding usage max
[  256.517552][ T2342] microsoft 0003:045E:07DA.000B: usage index exceeded
[  256.521619][ T2342] microsoft 0003:045E:07DA.000B: item 0 4 2 2 parsing failed
[  256.525393][ T2342] microsoft 0003:045E:07DA.000B: parse failed
[  256.527394][ T2342] microsoft 0003:045E:07DA.000B: probe with driver microsoft failed with error -22
[  256.722556][ T2342] usb 7-1: USB disconnect, device number 4
[  257.256700][ T5677] usb 6-1: Using ep0 maxpacket: 8
[  257.263999][ T5677] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  257.268428][ T5677] usb 6-1: New USB device found, idVendor=05a9, idProduct=2630, bcdDevice=55.12
[  257.271951][ T5677] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.279713][ T5677] usb 6-1: config 0 descriptor??
[  257.289125][ T5677] uvcvideo 6-1:0.0: Found UVC 0.00 device <unnamed> (05a9:2630)
[  257.292145][ T5677] uvcvideo 6-1:0.0: No valid video chain found.
[  257.558087][ T2342] usb 6-1: USB disconnect, device number 18
[  258.962093][T12029] loop5: detected capacity change from 0 to 2048
[  259.103122][T12029] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=27485, location=27485
[  259.139557][T12029] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  259.697399][T12052] Bluetooth: MGMT ver 1.23
[  259.921419][T12058] loop5: detected capacity change from 0 to 8192
[  259.928465][T12036] loop6: detected capacity change from 0 to 131072
[  259.935148][T12036] F2FS-fs (loop6): Test dummy encryption mode enabled
[  259.939498][T12036] F2FS-fs (loop6): invalid crc value
[  259.978169][T12036] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  259.983582][T12036] F2FS-fs (loop6): Start checkpoint disabled!
[  259.995815][T12036] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  260.002154][T12036] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  260.296793][T12084] loop5: detected capacity change from 0 to 1024
[  260.307533][T12084] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  260.322358][T12084] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  260.337563][T12084] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  260.355640][T12084] EXT4-fs (loop5): orphan cleanup on readonly fs
[  260.360207][T12084] EXT4-fs error (device loop5): ext4_map_blocks:833: inode #3: block 3: comm syz.5.1925: lblock 3 mapped to illegal pblock 3 (length 1)
[  260.366835][T12084] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  260.369938][T12084] Quota error (device loop5): write_blk: dquota write failed
[  260.376793][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  260.376812][    C1] EXT4-fs (loop5): initial error at time 1778603069: ext4_map_blocks:833: inode 3: block 3
[  260.376844][    C1] EXT4-fs (loop5): last error at time 1778603069: ext4_map_blocks:833: inode 3: block 3
[  260.388603][T12084] Quota error (device loop5): find_free_dqentry: Can't write quota data block 3
[  260.392366][T12084] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  260.396075][T12084] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.1925: Failed to acquire dquot type 0
[  260.400099][T12084] loop5: lost filesystem error report for type 5 error -117
[  260.400431][T12084] EXT4-fs error (device loop5): ext4_map_blocks:791: inode #3: block 3: comm syz.5.1925: lblock 3 mapped to illegal pblock 3 (length 1)
[  260.408546][T12084] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  260.413799][T12084] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  260.421888][T12084] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.1925: Failed to acquire dquot type 0
[  260.425788][T12084] loop5: lost filesystem error report for type 5 error -117
[  260.426463][T12084] EXT4-fs error (device loop5): ext4_free_blocks:6718: comm syz.5.1925: Freeing blocks not in datazone - block = 0, count = 4096
[  260.436561][T12084] loop5: lost filesystem error report for type 5 error -117
[  260.443102][T12084] EXT4-fs error (device loop5): ext4_map_blocks:791: inode #3: block 3: comm syz.5.1925: lblock 3 mapped to illegal pblock 3 (length 1)
[  260.453352][T12084] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  260.458210][T12084] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  260.465986][T12084] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.1925: Failed to acquire dquot type 0
[  260.470197][T12084] loop5: lost filesystem error report for type 5 error -117
[  260.473540][T12084] EXT4-fs (loop5): 1 orphan inode deleted
[  260.486776][T12084] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  260.518088][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.616247][T12099] loop6: detected capacity change from 0 to 164
[  260.633654][T12099] Unable to read rock-ridge attributes
[  260.645416][T12099] Unable to read rock-ridge attributes
[  260.672180][T12099] iso9660: Corrupted directory entry in block 2 of inode 1792
[  261.119580][T12132] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  261.160973][T12136] Cannot find set identified by id 3 to match
[  261.319957][T12146] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1938'.
[  261.428045][T12156] loop5: detected capacity change from 0 to 512
[  261.436150][T12156] EXT4-fs error (device loop5): ext4_get_journal_inode:5896: comm syz.5.1942: inode #1792: comm syz.5.1942: iget: illegal inode #
[  261.454482][T12156] loop5: lost filesystem error report for type 5 error -117
[  261.454786][T12156] EXT4-fs (loop5): Remounting filesystem read-only
[  261.457537][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  261.457549][    C0] EXT4-fs (loop5): initial error at time 1778603070: ext4_get_journal_inode:5896
[  261.457561][    C0] EXT4-fs (loop5): last error at time 1778603070: ext4_get_journal_inode:5896
[  261.470912][T12156] EXT4-fs (loop5): no journal found
[  261.472699][T12156] EXT4-fs (loop5): can't get journal size
[  261.486074][T12156] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  261.490393][T12156] EXT4-fs (loop5): Errors on filesystem, clearing orphan list.
[  261.494108][T12156] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.502399][T12156] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  261.526443][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.312657][T12197] loop6: detected capacity change from 0 to 32768
[  262.428814][T12197] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  262.558783][T12197] XFS (loop6): Ending clean mount
[  262.569570][T12197] XFS (loop6): Quotacheck needed: Please wait.
[  262.627065][T12197] XFS (loop6): Quotacheck: Done.
[  262.985525][ T5677] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  263.151944][ T5677] usb 7-1: device descriptor read/64, error -71
[  263.369252][ T5616] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  263.413354][ T5677] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  263.529598][ T5616] usb 6-1: Using ep0 maxpacket: 8
[  263.541641][ T5616] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  263.547770][ T5616] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  263.552277][ T5616] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  263.558022][ T5616] usb 6-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  263.562935][ T5616] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.572653][ T5677] usb 7-1: device descriptor read/64, error -71
[  263.574143][ T5616] usb 6-1: config 0 descriptor??
[  263.701217][ T5677] usb usb7-port1: attempt power cycle
[  263.964961][T12236] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1963'.
[  263.971202][T12236] veth1_to_bridge: entered allmulticast mode
[  264.074668][ T5677] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  264.098463][ T5677] usb 7-1: device descriptor read/8, error -71
[  264.261338][ T5616] usbhid 6-1:0.0: can't add hid device: -71
[  264.270871][ T5616] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  264.280404][ T5616] usb 6-1: USB disconnect, device number 19
[  264.373525][ T5677] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  264.396295][ T5677] usb 7-1: device descriptor read/8, error -71
[  264.516289][ T5677] usb usb7-port1: unable to enumerate USB device
[  265.111616][ T5677] usb 6-1: new full-speed USB device number 20 using dummy_hcd
[  265.204268][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[  265.207060][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[  265.285368][ T5677] usb 6-1: unable to get BOS descriptor or descriptor too short
[  265.291154][ T5677] usb 6-1: not running at top speed; connect to a high speed hub
[  265.299770][ T5677] usb 6-1: config 0 has an invalid interface number: 47 but max is 0
[  265.305575][ T5677] usb 6-1: config 0 has no interface number 0
[  265.311371][ T5677] usb 6-1: config 0 interface 47 altsetting 5 endpoint 0xC has invalid maxpacket 512, setting to 64
[  265.322138][ T5677] usb 6-1: config 0 interface 47 altsetting 5 has an invalid endpoint descriptor of length 2, skipping
[  265.326779][T11162] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  265.326813][ T5677] usb 6-1: config 0 interface 47 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  265.334325][ T5677] usb 6-1: config 0 interface 47 has no altsetting 0
[  265.339201][ T5677] usb 6-1: New USB device found, idVendor=0557, idProduct=7820, bcdDevice=33.bb
[  265.342160][ T5677] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  265.344723][ T5677] usb 6-1: Product: syz
[  265.346327][ T5677] usb 6-1: Manufacturer: syz
[  265.347755][ T5677] usb 6-1: SerialNumber: syz
[  265.354231][ T5677] usb 6-1: config 0 descriptor??
[  265.589968][ T5677] mos7840 6-1:0.47: required endpoints missing
[  265.603790][ T5677] usb 6-1: USB disconnect, device number 20
[  265.958379][T12343] netlink: 'syz.6.1998': attribute type 2 has an invalid length.
[  265.960975][T12343] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1998'.
[  267.811241][ T5677] Process accounting resumed
[  268.113512][ T2342] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[  268.477334][ T2342] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  268.482108][ T2342] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64
[  268.486373][ T2342] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  268.554795][T12433] loop5: detected capacity change from 0 to 8
[  268.611516][ T2342] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.619684][ T2342] usb 7-1: config 0 descriptor??
[  269.011523][ T2342] ath6kl: Failed to submit usb control message: -71
[  269.015587][ T2342] ath6kl: unable to send the bmi data to the device: -71
[  269.019311][ T2342] ath6kl: Unable to send get target info: -71
[  269.024719][ T2342] ath6kl: Failed to init ath6kl core: -71
[  269.027472][ T2342] ath6kl_usb 7-1:0.0: probe with driver ath6kl_usb failed with error -71
[  269.033999][ T2342] usb 7-1: USB disconnect, device number 9
[  269.382736][T12473] fuse: fd is not a fuse device
[  269.490480][T12481] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2040'.
[  269.604097][T12484] loop5: detected capacity change from 0 to 1024
[  270.142685][T12510] loop5: detected capacity change from 0 to 512
[  270.159564][T12510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  270.184265][T12510] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[  270.194318][T12510] System zones: 1-2, 4-12, 8-8
[  270.215448][T12510] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.2047: iget: bad i_size value: 38620345925642
[  270.224310][T12510] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  270.224921][T12510] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.2047: couldn't read orphan inode 15 (err -117)
[  270.233490][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  270.233513][    C0] EXT4-fs (loop5): initial error at time 1778603079: ext4_orphan_get:1397: inode 15
[  270.233542][    C0] EXT4-fs (loop5): last error at time 1778603079: ext4_orphan_get:1397: inode 15
[  270.248054][T12510] loop5: lost filesystem error report for type 5 error -117
[  270.250170][T12510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.284471][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.034598][T12543] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  271.038942][T12543] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  271.139546][T12552] netlink: 2 bytes leftover after parsing attributes in process `syz.6.2060'.
[  271.295117][T12560] overlayfs: failed to clone lowerpath
[  271.526125][   T33] audit: type=1326 audit(1778603080.401:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.540734][   T33] audit: type=1326 audit(1778603080.401:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.561271][   T33] audit: type=1326 audit(1778603080.401:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.577205][   T33] audit: type=1326 audit(1778603080.401:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.587303][   T33] audit: type=1326 audit(1778603080.401:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.596301][   T33] audit: type=1326 audit(1778603080.401:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.607561][   T33] audit: type=1326 audit(1778603080.401:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.623385][   T33] audit: type=1326 audit(1778603080.401:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.640673][   T33] audit: type=1326 audit(1778603080.401:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.652382][   T33] audit: type=1326 audit(1778603080.401:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12572 comm="syz.6.2067" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  271.751189][T12590] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2074'.
[  271.754192][T12590] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2074'.
[  271.757095][T12590] netlink: 352 bytes leftover after parsing attributes in process `syz.4.2074'.
[  271.760491][T12590] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2074'.
[  271.989912][T12602] IPv6: NLM_F_CREATE should be specified when creating new route
[  272.532508][T12605] loop5: detected capacity change from 0 to 32768
[  272.535924][T12605] btrfs: Deprecated parameter 'usebackuproot'
[  272.538464][T12605] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  272.542794][T12605] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2080 (12605)
[  272.551402][T12605] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  272.555470][T12605] BTRFS info (device loop5): using crc32c checksum algorithm
[  272.558419][T12605] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  272.593275][   T26] BTRFS warning (device loop5): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xb0e5ffa5 level 0
[  272.613310][T12605] BTRFS warning (device loop5): couldn't read tree root
[  272.615490][T12605] BTRFS warning (device loop5): try to load backup roots slot 1
[  272.618043][ T9156] BTRFS warning (device loop5): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x32d10ca2 level 0
[  272.623922][T12605] BTRFS warning (device loop5): couldn't read tree root
[  272.626168][T12605] BTRFS warning (device loop5): try to load backup roots slot 2
[  272.628830][ T1241] BTRFS warning (device loop5): checksum verify failed on logical 5255168 mirror 1 wanted 0x9df47653 found 0x6344b7f5 level 1
[  272.633042][T12605] BTRFS warning (device loop5): couldn't read tree root
[  272.635263][T12605] BTRFS warning (device loop5): try to load backup roots slot 3
[  272.643697][T12605] BTRFS info (device loop5): rebuilding free space tree
[  272.678939][T12605] BTRFS info (device loop5): disabling free space tree
[  272.681250][T12605] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  272.685994][T12605] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  272.709366][T12605] BTRFS info (device loop5): checking UUID tree
[  272.712149][T12605] BTRFS info (device loop5): enabling ssd optimizations
[  272.714383][T12605] BTRFS info (device loop5): turning off barriers
[  272.716410][T12605] BTRFS info (device loop5): turning on sync discard
[  272.718431][T12605] BTRFS info (device loop5): enabling disk space caching
[  272.721206][T12605] BTRFS info (device loop5): force clearing of disk cache
[  272.723480][T12605] BTRFS info (device loop5): enabling auto defrag
[  272.725421][T12605] BTRFS info (device loop5): trying to use backup root at mount time
[  272.727883][T12605] BTRFS info (device loop5): max_inline set to 0
[  272.795529][T12631] loop6: detected capacity change from 0 to 8
[  272.824547][T12631] Page size > filesystem block size (512).  This is currently not supported!
[  272.877612][T12637] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2085'.
[  272.885921][T12637] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  272.889068][T12637] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2085'.
[  272.942225][ T8609] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  273.184256][T12663] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2093'.
[  273.531953][   T24] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  273.693801][   T24] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  273.698508][   T24] usb 6-1: New USB device found, idVendor=1bc7, idProduct=9010, bcdDevice=36.53
[  273.705918][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.712179][   T24] usb 6-1: config 0 descriptor??
[  273.933076][   T24] usb 6-1: USB disconnect, device number 21
[  274.950537][T12751] netlink: 'syz.4.2113': attribute type 6 has an invalid length.
[  275.035295][T12757] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2116'.
[  275.226145][ T5722] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  275.309373][ T5722] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  275.521701][ T5677] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  275.667861][T12799] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  275.738685][T12802] loop6: detected capacity change from 0 to 64
[  275.821891][T12802] BFS-fs: bfs_fill_super(): loop6 is unclean, continuing
[  275.968549][T12809] loop6: detected capacity change from 0 to 8
[  275.980547][T12809] syz.6.2129: attempt to access beyond end of device
[  275.980547][T12809] loop6: rw=2048, sector=36028797018963960, nr_sectors = 16 limit=8
[  275.997793][T12809] SQUASHFS error: Failed to read block 0xfffffffffffffffc: -5
[  276.002195][T12809] unable to read xattr id index table
[  276.211120][T12823] loop6: detected capacity change from 0 to 8192
[  276.330946][ T5677] usb 6-1: Using ep0 maxpacket: 16
[  276.338069][ T5677] usb 6-1: config 0 has no interfaces?
[  276.343577][ T5677] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  276.352364][ T5677] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  276.355726][ T5677] usb 6-1: Manufacturer: syz
[  276.361935][ T5677] usb 6-1: config 0 descriptor??
[  276.588841][ T5722] usb 6-1: USB disconnect, device number 22
[  276.930890][T12861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2140'.
[  276.933594][T12861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2140'.
[  276.987188][ T5677] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  277.184157][ T5677] usb 7-1: Using ep0 maxpacket: 16
[  277.187370][ T5677] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  277.192381][ T5677] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  277.203469][ T5677] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  277.207963][ T5677] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.215499][ T5677] usb 7-1: Product: syz
[  277.216858][ T5677] usb 7-1: Manufacturer: syz
[  277.224388][ T5677] usb 7-1: SerialNumber: syz
[  277.237064][ T5677] usb 7-1: 0:2 : does not exist
[  277.455112][ T5677] usb 7-1: 5:0: failed to get current value for ch 0 (-22)
[  277.511866][ T5677] usb 7-1: USB disconnect, device number 10
[  277.551158][ T5615] udevd[5615]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  278.174606][T12926] loop6: detected capacity change from 0 to 2048
[  278.199629][T12926] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  278.304153][T12935] loop5: detected capacity change from 0 to 64
[  278.587941][T12944] loop6: detected capacity change from 0 to 32768
[  278.593670][T12944] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2162 (12944)
[  278.597040][ T5616] usb 6-1: new low-speed USB device number 23 using dummy_hcd
[  278.612518][T12944] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  278.622409][T12944] BTRFS info (device loop6): using sha256 checksum algorithm
[  278.671643][T12944] BTRFS info (device loop6): enabling ssd optimizations
[  278.674022][T12944] BTRFS info (device loop6): turning on async discard
[  278.676290][T12944] BTRFS info (device loop6): enabling free space tree
[  278.773218][ T5616] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  278.784886][ T5616] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  278.790174][ T5616] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  278.795194][ T5616] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  278.801769][ T5616] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  278.806464][ T5616] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  278.818960][ T5616] usb 6-1: string descriptor 0 read error: -22
[  278.823243][ T5616] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  278.828931][ T5616] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.839637][ T5616] usb 6-1: config 0 descriptor??
[  278.850019][ T5616] hub 6-1:0.0: bad descriptor, ignoring hub
[  278.856851][ T5616] hub 6-1:0.0: probe with driver hub failed with error -5
[  278.926529][T11162] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  279.182413][  T937] usb 6-1: USB disconnect, device number 23
[  279.326650][T13006] 9p: Bad value for 'rfdno'
[  279.716492][T13040] netlink: 'syz.6.2189': attribute type 1 has an invalid length.
[  279.728178][T13040] netlink: 200 bytes leftover after parsing attributes in process `syz.6.2189'.
[  279.737548][T13040] nbd: illegal input index 196628
[  279.802840][T13049] vivid-007: =================  START STATUS  =================
[  279.805798][T13049] vivid-007: Enable Output Cropping: true grabbed
[  279.810936][T13049] vivid-007: Enable Output Composing: true grabbed
[  279.813078][T13049] vivid-007: Enable Output Scaler: true grabbed
[  279.818706][T13049] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  279.821519][T13049] vivid-007: Transmit Mode: HDMI grabbed
[  279.823413][T13049] vivid-007: Hotplug Present: 0x00000000
[  279.826232][T13049] vivid-007: RxSense Present: 0x00000000
[  279.828161][T13049] vivid-007: EDID Present: 0x00000000
[  279.830017][T13049] vivid-007: ==================  END STATUS  ==================
[  280.135350][T13085] netlink: 7060 bytes leftover after parsing attributes in process `syz.6.2206'.
[  280.538160][   T33] audit: type=1326 audit(1778603088.833:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13099 comm="syz.6.2210" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  280.547566][   T33] audit: type=1326 audit(1778603088.851:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13099 comm="syz.6.2210" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  280.561824][   T33] audit: type=1326 audit(1778603088.861:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13099 comm="syz.6.2210" exe="/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  280.577095][   T33] audit: type=1326 audit(1778603088.861:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13099 comm="syz.6.2210" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  280.602307][   T33] audit: type=1326 audit(1778603088.861:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13099 comm="syz.6.2210" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  280.886301][ T5722] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  281.185713][ T5722] usb 7-1: unable to get BOS descriptor or descriptor too short
[  281.189307][ T5722] usb 7-1: not running at top speed; connect to a high speed hub
[  281.207565][ T5722] usb 7-1: config 17 has an invalid interface number: 8 but max is 1
[  281.211738][ T5722] usb 7-1: config 17 has 1 interface, different from the descriptor's value: 2
[  281.214729][ T5722] usb 7-1: config 17 has no interface number 0
[  281.217074][ T5722] usb 7-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid wMaxPacketSize 0
[  281.220082][ T5722] usb 7-1: config 17 interface 8 has no altsetting 0
[  281.225638][ T5722] usb 7-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  281.228712][ T5722] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  281.231380][ T5722] usb 7-1: Product: syz
[  281.233131][ T5722] usb 7-1: Manufacturer: syz
[  281.234663][ T5722] usb 7-1: SerialNumber: syz
[  281.503661][ T5722] usb 7-1: selecting invalid altsetting 0
[  281.542545][ T5722] usb 7-1: USB disconnect, device number 11
[  281.767878][T13154] fuse: fd is not a fuse device
[  282.155733][T13177] loop6: detected capacity change from 0 to 512
[  282.161064][T13177] ext2: Bad value for 'stripe'
[  282.170448][T13180] netlink: 'syz.5.2232': attribute type 10 has an invalid length.
[  282.206327][T13180] team0: Device wg2 is of different type
[  282.255449][   T33] audit: type=1326 audit(1778603090.442:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13187 comm="syz.4.2233" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8a13f9cdd9 code=0x0
[  282.307377][T13186] binder: 13176:13186 ioctl c0306201 0 returned -14
[  283.106029][ T5722] usb 6-1: new full-speed USB device number 24 using dummy_hcd
[  283.290661][ T5722] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  283.294453][ T5722] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  283.297764][ T5722] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  283.302226][ T5722] usb 6-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00
[  283.305105][ T5722] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.314240][ T5722] usb 6-1: config 0 descriptor??
[  283.466375][   T33] audit: type=1107 audit(1778603091.575:787): pid=13212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  283.823522][ T5722] sunplus 0003:04FC:05D8.000D: hidraw0: USB HID v0.07 Device [HID 04fc:05d8] on usb-dummy_hcd.5-1/input0
[  284.038534][ T5722] usb 6-1: USB disconnect, device number 24
[  284.612041][T13255] 8021q: VLANs not supported on gre0
[  284.731103][T13263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2253'.
[  285.183480][T13283] loop5: detected capacity change from 0 to 32768
[  285.189514][T13283] jfs_mount: dbMount failed w/rc = -22
[  285.200655][T13283] Mount JFS Failure: -22
[  285.204129][T13283] jfs_mount failed w/return code = -22
[  285.409395][T13302] vivid-000: disconnect
[  285.415480][T13302] vivid-000: reconnect
[  286.240239][   T24] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  286.409712][   T24] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  286.413325][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.416535][   T24] usb 6-1: Product: syz
[  286.418601][   T24] usb 6-1: Manufacturer: syz
[  286.420638][   T24] usb 6-1: SerialNumber: syz
[  286.430150][   T24] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  286.479640][  T796] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  286.556944][T13326] loop6: detected capacity change from 0 to 1024
[  286.564621][T13326] EXT4-fs: Ignoring removed bh option
[  286.656535][T13326] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  286.736188][T11162] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.939515][   T24] usb 6-1: USB disconnect, device number 25
[  287.758285][T13383] loop5: detected capacity change from 0 to 4096
[  287.763177][T13383] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  287.768390][T13383] ntfs3(loop5): ino=3, mi_enum_attr
[  287.770604][T13383] ntfs3(loop5): Failed to load $Volume (-22).
[  287.777373][  T796] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  287.793566][  T796] ath9k_htc: Failed to initialize the device
[  287.826119][   T24] usb 6-1: ath9k_htc: USB layer deinitialized
[  289.577957][T13460] tmpfs: Bad value for 'mpol'
[  290.319657][T13463] loop5: detected capacity change from 0 to 131072
[  290.378943][T13463] F2FS-fs (loop5): Wrong CP boundary, start(512) end(1536) blocks(0)
[  290.382212][T13463] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  290.393938][T13463] F2FS-fs (loop5): invalid crc value
[  290.449719][T13463] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  290.471032][T13463] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  290.473552][T13463] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  290.639304][T13476] x_tables: ip6_tables: mh match: only valid for protocol 135
[  290.955432][T13483] netlink: 1047 bytes leftover after parsing attributes in process `syz.6.2322'.
[  290.965663][T13483] veth0_to_bond: default FDB implementation only supports local addresses
[  291.058323][T13488] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2323'.
[  291.450382][T13505] xt_hashlimit: size too large, truncated to 1048576
[  291.800909][T13532] loop5: detected capacity change from 0 to 8
[  291.805640][T13532] squashfs image failed sanity check
[  291.887730][T13543] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2343'.
[  291.910571][T13546] loop5: detected capacity change from 0 to 2048
[  291.942296][T13546] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  291.949074][T13546] ext4 filesystem being mounted at /360/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  291.965815][T13546] EXT4-fs (loop5): shut down requested (1)
[  291.981568][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.337529][T13584] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.2355'.
[  292.623245][T13595] loop5: detected capacity change from 0 to 32768
[  292.653071][T13611] overlayfs: failed to clone lowerpath
[  292.658860][T13595] XFS (loop5): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  292.674663][T13595] XFS (loop5): Ending clean mount
[  292.734919][ T8609] XFS (loop5): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  293.090664][T13645] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2376'.
[  293.118918][T13648] overlayfs: failed to clone upperpath
[  293.638271][T13684] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2393'.
[  293.647869][T13684] netlink: 276 bytes leftover after parsing attributes in process `syz.4.2393'.
[  294.550828][   T24] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  294.723393][   T24] usb 6-1: Using ep0 maxpacket: 8
[  294.729020][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  294.732156][   T24] usb 6-1: config 0 has no interface number 0
[  294.734767][   T24] usb 6-1: config 0 interface 1 has no altsetting 0
[  294.739843][   T24] usb 6-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f
[  294.747290][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.751697][   T24] usb 6-1: Product: syz
[  294.753090][   T24] usb 6-1: Manufacturer: syz
[  294.755107][   T24] usb 6-1: SerialNumber: syz
[  294.760405][   T24] usb 6-1: config 0 descriptor??
[  294.794842][T13754] netlink: 'syz.4.2418': attribute type 12 has an invalid length.
[  294.982546][   T24] i2c-cp2615 6-1:0.1: probe with driver i2c-cp2615 failed with error -22
[  295.200623][  T796] usb 6-1: USB disconnect, device number 26
[  295.573426][T13772] fuse: fd is not a fuse device
[  295.803237][ T5002] Bluetooth: hci1: command 0x2016 tx timeout
[  296.164550][  T937] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  296.325126][  T937] usb 6-1: Using ep0 maxpacket: 16
[  296.331921][  T937] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 11
[  296.338207][  T937] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  296.345908][  T937] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  296.356006][  T937] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  296.360296][  T937] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  296.366125][  T937] usb 6-1: config 1 interface 0 has no altsetting 0
[  296.369019][  T937] usb 6-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  296.372211][  T937] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.382603][  T937] ums-sddr09 6-1:1.0: USB Mass Storage device detected
[  296.606004][  T937] scsi host6: usb-storage 6-1:1.0
[  296.818128][   T24] usb 6-1: USB disconnect, device number 27
[  296.968596][T13857] xt_hashlimit: size too large, truncated to 1048576
[  297.675706][T13887] loop5: detected capacity change from 0 to 32768
[  297.827462][T13910] netlink: 'syz.4.2470': attribute type 1 has an invalid length.
[  297.830483][T13910] netlink: 630 bytes leftover after parsing attributes in process `syz.4.2470'.
[  297.909577][T13919] : renamed from bond_slave_0 (while UP)
[  297.922533][T13921] netlink: 'syz.4.2473': attribute type 4 has an invalid length.
[  298.141324][  T796] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  298.144164][T13935] netlink: 10 bytes leftover after parsing attributes in process `syz.4.2480'.
[  298.204736][T13943] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2483'.
[  298.323759][  T796] usb 6-1: too many configurations: 164, using maximum allowed: 8
[  298.341323][  T796] usb 6-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db
[  298.346677][  T796] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.352931][  T796] usb 6-1: config 0 descriptor??
[  298.583673][  T796] usb 6-1: USB disconnect, device number 28
[  300.015701][T13992] loop5: detected capacity change from 0 to 65536
[  300.032016][T13992] XFS (loop5): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  300.069500][T13992] XFS (loop5): Ending clean mount
[  300.073576][T13992] XFS (loop5): Quotacheck needed: Please wait.
[  300.173648][T13992] XFS (loop5): Quotacheck: Done.
[  300.330234][ T8609] XFS (loop5): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  300.767603][T14036] netlink: 'syz.5.2512': attribute type 4 has an invalid length.
[  301.404194][T14070] fuse: fd is not a fuse device
[  301.882349][T14088] loop5: detected capacity change from 0 to 32768
[  301.912097][T14088] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2538 (14088)
[  301.946807][T14088] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  301.951002][T14088] BTRFS info (device loop5): using sha256 checksum algorithm
[  301.954393][T14088] BTRFS error (device loop5): cannot disable free-space-tree
[  301.962795][T14088] BTRFS error (device loop5): open_ctree failed: -22
[  302.066131][T14118] netlink: 'syz.5.2550': attribute type 46 has an invalid length.
[  302.068874][T14118] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2550'.
[  302.216548][T14130] loop5: detected capacity change from 0 to 1024
[  302.230443][T14130] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  302.449580][T14148] loop5: detected capacity change from 0 to 512
[  302.453749][T14148] EXT4-fs: inline encryption not supported
[  302.464187][T14148] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  302.466920][T14148] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  302.493278][T14148] Quota error (device loop5): do_insert_tree: Free block already used in tree: block 1
[  302.497373][T14148] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  302.502043][T14148] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.2558: Failed to acquire dquot type 1
[  302.507075][T14148] loop5: lost filesystem error report for type 5 error -5
[  302.507429][T14148] EXT4-fs (loop5): Remounting filesystem read-only
[  302.513075][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  302.513092][    C1] EXT4-fs (loop5): initial error at time 1778603109: ext4_acquire_dquot:7034
[  302.513111][    C1] EXT4-fs (loop5): last error at time 1778603109: ext4_acquire_dquot:7034
[  302.524730][T14148] EXT4-fs (loop5): 1 truncate cleaned up
[  302.529125][T14148] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.549933][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.903754][T14203] fuse: fd is not a fuse device
[  303.977165][  T796] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  304.140267][  T796] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  304.143994][  T796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.147418][  T796] usb 6-1: Product: syz
[  304.149525][  T796] usb 6-1: Manufacturer: syz
[  304.151499][  T796] usb 6-1: SerialNumber: syz
[  304.559036][T14254] netlink: 104 bytes leftover after parsing attributes in process `syz.6.2586'.
[  304.846056][T14270] netlink: 'syz.6.2594': attribute type 2 has an invalid length.
[  305.251102][  T796] cdc_ncm 6-1:1.0: MAC-Address: 42:42:42:42:42:42
[  305.369790][T14286] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2601'.
[  305.691647][  T796] cdc_ncm 6-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.5-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  305.707210][  T796] usb 6-1: USB disconnect, device number 29
[  305.718229][  T796] cdc_ncm 6-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.5-1, CDC NCM (NO ZLP)
[  306.607436][T14326] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2609'.
[  307.726620][  T937] usb 6-1: new full-speed USB device number 30 using dummy_hcd
[  307.891513][  T937] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x99, changing to 0x89
[  307.902039][  T937] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  307.909810][  T937] usb 6-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  307.914319][  T937] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.917882][  T937] usb 6-1: Product: syz
[  307.920079][  T937] usb 6-1: Manufacturer: syz
[  307.922142][  T937] usb 6-1: SerialNumber: syz
[  307.941757][  T937] usb 6-1: config 0 descriptor??
[  307.962788][  T937] streamzap 6-1:0.0: streamzap_probe: endpoint attributes don't match xfer 0200
[  308.197505][  T937] usb 6-1: USB disconnect, device number 30
[  308.779398][T14487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2646'.
[  308.788326][T14487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2646'.
[  308.883297][T14492] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  308.964888][T14505] gretap0: entered promiscuous mode
[  309.006123][T14505] vlan2: entered promiscuous mode
[  309.138773][  T937] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  309.202510][T14522] fuse: fd is not a fuse device
[  309.300318][  T937] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD4, changing to 0x84
[  309.306623][  T937] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 51544, setting to 1024
[  309.314364][  T937] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1024
[  309.322344][  T937] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  309.326554][  T937] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.330348][  T937] usb 6-1: Product: syz
[  309.332507][  T937] usb 6-1: Manufacturer: syz
[  309.334696][  T937] usb 6-1: SerialNumber: syz
[  309.353135][  T937] usb 6-1: config 0 descriptor??
[  309.356721][T14497] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  309.580693][T14497] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  309.819212][  T937] usb 6-1: USB disconnect, device number 31
[  310.814869][  T937] usb 6-1: new low-speed USB device number 32 using dummy_hcd
[  311.073231][  T937] usb 6-1: too many endpoints for config 0 interface 0 altsetting 8: 253, using maximum allowed: 30
[  311.077840][  T937] usb 6-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  311.082482][  T937] usb 6-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  311.087438][  T937] usb 6-1: config 0 interface 0 has no altsetting 0
[  311.089957][  T937] usb 6-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.00
[  311.093963][  T937] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.099336][  T937] usb 6-1: config 0 descriptor??
[  311.108537][T14587] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  311.275386][ T5002] Bluetooth: hci1: command 0x2016 tx timeout
[  311.668417][  T937] cypress 0003:04B4:0001.000E: unknown main item tag 0x1
[  311.677302][  T937] cypress 0003:04B4:0001.000E: item fetching failed at offset 5/40
[  311.681444][  T937] cypress 0003:04B4:0001.000E: parse failed
[  311.683861][  T937] cypress 0003:04B4:0001.000E: probe with driver cypress failed with error -22
[  311.887566][  T937] usb 6-1: USB disconnect, device number 32
[  312.203656][   T13] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.540340][   T33] audit: type=1326 audit(1778603118.788:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14645 comm="syz.5.2693" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x0
[  312.909541][  T937] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  312.920602][T14652] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2694'.
[  312.924271][T14652] netlink: 356 bytes leftover after parsing attributes in process `syz.6.2694'.
[  313.071307][  T937] usb 6-1: Using ep0 maxpacket: 8
[  313.077056][  T937] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  313.083385][  T937] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  313.089752][  T937] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  313.093990][  T937] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  313.099597][  T937] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  313.103492][  T937] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.382149][  T937] usb 6-1: GET_CAPABILITIES returned 0
[  313.384430][  T937] usbtmc 6-1:16.0: can't read capabilities
[  313.643664][T14667] overlayfs: missing 'lowerdir'
[  313.791068][    C1] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.806382][    C1] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.810240][    C1] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.814220][    C1] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.818052][    C1] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.822571][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.826466][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.830017][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.835955][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.839679][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.843313][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.846966][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.850629][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.855001][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.858808][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.862657][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  313.874443][  T937] usb 6-1: USB disconnect, device number 33
[  314.964552][T14696] netlink: 9 bytes leftover after parsing attributes in process `syz.4.2707'.
[  314.968062][T14696] ..0: renamed from veth1_virt_wifi (while UP)
[  314.972747][T14696] ..0: entered allmulticast mode
[  314.975215][T14696] A link change request failed with some changes committed already. Interface ..0 may have been left with an inconsistent configuration, please check.
[  315.671005][T14708] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  316.679203][T14734] loop5: detected capacity change from 0 to 40427
[  316.688982][T14734] F2FS-fs (loop5): invalid crc value
[  316.761944][T14734] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  316.770090][T14734] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  316.796747][ T8609] syz-executor: attempt to access beyond end of device
[  316.796747][ T8609] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  316.805254][ T8609] CPU: 1 UID: 0 PID: 8609 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  316.805294][ T8609] Tainted: [L]=SOFTLOCKUP
[  316.805298][ T8609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  316.805304][ T8609] Call Trace:
[  316.805308][ T8609]  <TASK>
[  316.805313][ T8609]  dump_stack_lvl+0xe8/0x150
[  316.805329][ T8609]  f2fs_stop_checkpoint+0x3c7/0x590
[  316.805345][ T8609]  f2fs_write_end_io+0x1274/0x1740
[  316.805366][ T8609]  __submit_merged_bio+0x256/0x6a0
[  316.805379][ T8609]  __submit_merged_write_cond+0x3c9/0x4e0
[  316.805392][ T8609]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  316.805412][ T8609]  f2fs_write_data_pages+0x287e/0x34f0
[  316.805422][ T8609]  ? unwind_next_frame+0xa6/0x2550
[  316.805454][ T8609]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.805464][ T8609]  ? is_bpf_text_address+0x26/0x2b0
[  316.805478][ T8609]  ? arch_stack_walk+0xfb/0x150
[  316.805502][ T8609]  ? add_lock_to_list+0xc7/0x100
[  316.805513][ T8609]  ? lockdep_unlock+0x5d/0xd0
[  316.805520][ T8609]  ? __lock_acquire+0x146e/0x2cf0
[  316.805541][ T8609]  ? do_raw_spin_lock+0x12b/0x2f0
[  316.805557][ T8609]  ? do_raw_spin_unlock+0x4d/0x210
[  316.805569][ T8609]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.805580][ T8609]  do_writepages+0x32e/0x550
[  316.805593][ T8609]  ? do_raw_spin_unlock+0x4d/0x210
[  316.805607][ T8609]  filemap_fdatawrite+0x1e9/0x2f0
[  316.805618][ T8609]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  316.805665][ T8609]  ? preempt_schedule_common+0x82/0xd0
[  316.805679][ T8609]  ? preempt_schedule_thunk+0x16/0x30
[  316.805694][ T8609]  f2fs_sync_dirty_inodes+0x30e/0x830
[  316.805712][ T8609]  f2fs_write_checkpoint+0x9df/0x26a0
[  316.805723][ T8609]  ? __lock_acquire+0x6b5/0x2cf0
[  316.805745][ T8609]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  316.805779][ T8609]  kill_f2fs_super+0x314/0x730
[  316.805793][ T8609]  ? __pfx_kill_f2fs_super+0x10/0x10
[  316.805810][ T8609]  ? lockdep_hardirqs_on+0x7a/0x110
[  316.805826][ T8609]  deactivate_locked_super+0xbc/0x130
[  316.805840][ T8609]  cleanup_mnt+0x437/0x4d0
[  316.805852][ T8609]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.805863][ T8609]  task_work_run+0x1d9/0x270
[  316.805876][ T8609]  ? __pfx_task_work_run+0x10/0x10
[  316.805890][ T8609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.805899][ T8609]  exit_to_user_mode_loop+0xed/0x480
[  316.805908][ T8609]  ? rcu_is_watching+0x15/0xb0
[  316.805918][ T8609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.805927][ T8609]  do_syscall_64+0x33e/0xf80
[  316.805937][ T8609]  ? trace_irq_disable+0x3b/0x140
[  316.805952][ T8609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.805960][ T8609] RIP: 0033:0x7f9e7319e017
[  316.805973][ T8609] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  316.805980][ T8609] RSP: 002b:00007ffe0368d4a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  316.805989][ T8609] RAX: 0000000000000000 RBX: 00007f9e73232120 RCX: 00007f9e7319e017
[  316.805995][ T8609] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe0368d560
[  316.806000][ T8609] RBP: 00007ffe0368d560 R08: 00007ffe0368e560 R09: 00000000ffffffff
[  316.806006][ T8609] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0368e5f0
[  316.806011][ T8609] R13: 00007f9e73232120 R14: 000000000004b88a R15: 00007ffe0368e630
[  316.806024][ T8609]  </TASK>
[  316.806120][ T8609] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  317.093189][T14754] securityfs: Unknown parameter ''
[  318.336700][T14789] loop5: detected capacity change from 0 to 8
[  318.347383][T14789] SQUASHFS error: zlib decompression failed, data probably corrupt
[  318.356925][T14789] SQUASHFS error: Failed to read block 0x9b: -5
[  318.359904][T14789] SQUASHFS error: Unable to read metadata cache entry [99]
[  318.362454][T14789] SQUASHFS error: Unable to read inode 0x127
[  318.688157][T14798] netlink: 140 bytes leftover after parsing attributes in process `syz.5.2741'.
[  318.697859][T14798] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2741'.
[  318.814807][   T33] audit: type=1326 audit(1778603124.655:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14803 comm="syz.5.2743" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9e7319cdd9 code=0x0
[  320.011649][T14831] team0: entered promiscuous mode
[  320.013835][T14831] team_slave_0: entered promiscuous mode
[  320.016333][T14831] team_slave_1: entered promiscuous mode
[  321.676716][   T33] audit: type=1326 audit(1778603127.331:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.700342][   T33] audit: type=1326 audit(1778603127.341:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.718515][   T33] audit: type=1326 audit(1778603127.341:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.747056][   T33] audit: type=1326 audit(1778603127.341:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.763075][   T33] audit: type=1326 audit(1778603127.341:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.782916][   T33] audit: type=1326 audit(1778603127.341:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.809633][   T33] audit: type=1326 audit(1778603127.341:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.847813][   T33] audit: type=1326 audit(1778603127.341:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.874385][   T33] audit: type=1326 audit(1778603127.341:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.4.2768" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  321.968118][T14876] netlink: 'syz.5.2773': attribute type 1 has an invalid length.
[  322.192023][T14892] syz.5.2779 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  322.258075][T14897] binder: 14896:14897 ioctl c0306201 0 returned -14
[  322.387477][T14912] loop5: detected capacity change from 0 to 1024
[  322.426484][T14912] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.458281][T14919] kAFS: unable to lookup cell '(,'
[  322.472946][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.567472][T14926] loop5: detected capacity change from 0 to 256
[  322.588119][T14926] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[  323.993496][T15001] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2815'.
[  324.273123][T15001] veth3: entered promiscuous mode
[  325.080729][T15052] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.085638][T15052] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.207680][T15052] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  325.223892][T15052] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  325.367643][T12487] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  325.372578][T12487] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  325.385638][T12487] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.030014][T15086] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2840'.
[  326.062436][T15089] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  326.296158][T15104] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2848'.
[  326.691496][   T33] kauditd_printk_skb: 14 callbacks suppressed
[  326.691512][   T33] audit: type=1326 audit(1778603132.029:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15116 comm="syz.6.2853" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb02fb9cdd9 code=0x0
[  326.773788][T15108] loop5: detected capacity change from 0 to 40427
[  326.784098][T15108] F2FS-fs (loop5): invalid crc value
[  326.903496][T15108] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  326.916617][T15108] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  327.146269][ T8609] syz-executor: attempt to access beyond end of device
[  327.146269][ T8609] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  327.158589][ T8609] CPU: 0 UID: 0 PID: 8609 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  327.158616][ T8609] Tainted: [L]=SOFTLOCKUP
[  327.158621][ T8609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  327.158630][ T8609] Call Trace:
[  327.158637][ T8609]  <TASK>
[  327.158644][ T8609]  dump_stack_lvl+0xe8/0x150
[  327.158667][ T8609]  f2fs_stop_checkpoint+0x3c7/0x590
[  327.158691][ T8609]  f2fs_write_end_io+0x1274/0x1740
[  327.158736][ T8609]  __submit_merged_bio+0x256/0x6a0
[  327.158759][ T8609]  __submit_merged_write_cond+0x3c9/0x4e0
[  327.158784][ T8609]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  327.158840][ T8609]  f2fs_write_data_pages+0x287e/0x34f0
[  327.158913][ T8609]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  327.158941][ T8609]  ? sched_clock+0x3f/0x60
[  327.158983][ T8609]  ? __pfx_hlock_conflict+0x10/0x10
[  327.159002][ T8609]  ? __bfs+0x153/0x290
[  327.159014][ T8609]  ? __pfx_hlock_conflict+0x10/0x10
[  327.159045][ T8609]  ? lockdep_unlock+0x5d/0xd0
[  327.159059][ T8609]  ? __lock_acquire+0x146e/0x2cf0
[  327.159094][ T8609]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  327.159114][ T8609]  do_writepages+0x32e/0x550
[  327.159139][ T8609]  ? do_raw_spin_unlock+0x4d/0x210
[  327.159160][ T8609]  filemap_fdatawrite+0x1e9/0x2f0
[  327.159180][ T8609]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  327.159223][ T8609]  ? preempt_schedule_common+0x82/0xd0
[  327.159243][ T8609]  ? preempt_schedule_thunk+0x16/0x30
[  327.159269][ T8609]  f2fs_sync_dirty_inodes+0x30e/0x830
[  327.159298][ T8609]  f2fs_write_checkpoint+0x9df/0x26a0
[  327.159343][ T8609]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  327.159403][ T8609]  kill_f2fs_super+0x314/0x730
[  327.159426][ T8609]  ? __pfx_kill_f2fs_super+0x10/0x10
[  327.159455][ T8609]  ? lockdep_hardirqs_on+0x7a/0x110
[  327.159485][ T8609]  deactivate_locked_super+0xbc/0x130
[  327.159508][ T8609]  cleanup_mnt+0x437/0x4d0
[  327.159530][ T8609]  ? _raw_spin_unlock_irq+0x23/0x50
[  327.159548][ T8609]  task_work_run+0x1d9/0x270
[  327.159571][ T8609]  ? __pfx_task_work_run+0x10/0x10
[  327.159597][ T8609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.159614][ T8609]  exit_to_user_mode_loop+0xed/0x480
[  327.159628][ T8609]  ? rcu_is_watching+0x15/0xb0
[  327.159645][ T8609]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.159661][ T8609]  do_syscall_64+0x33e/0xf80
[  327.159679][ T8609]  ? trace_irq_disable+0x3b/0x140
[  327.159705][ T8609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.159728][ T8609] RIP: 0033:0x7f9e7319e017
[  327.159743][ T8609] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  327.159753][ T8609] RSP: 002b:00007ffe0368d4a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  327.159766][ T8609] RAX: 0000000000000000 RBX: 00007f9e73232120 RCX: 00007f9e7319e017
[  327.159777][ T8609] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe0368d560
[  327.159786][ T8609] RBP: 00007ffe0368d560 R08: 00007ffe0368e560 R09: 00000000ffffffff
[  327.159795][ T8609] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0368e5f0
[  327.159803][ T8609] R13: 00007f9e73232120 R14: 000000000004de15 R15: 00007ffe0368e630
[  327.159828][ T8609]  </TASK>
[  327.163125][ T8609] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  327.816395][   T10] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  327.917979][T15154] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  327.921791][T15154] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  327.927070][T15154] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  328.318639][   T10] usb 6-1: Using ep0 maxpacket: 32
[  328.324244][   T10] usb 6-1: config 0 has no interfaces?
[  328.337082][   T10] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  328.344409][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.351308][   T10] usb 6-1: Product: syz
[  328.355407][   T10] usb 6-1: Manufacturer: syz
[  328.359936][   T10] usb 6-1: SerialNumber: syz
[  328.374084][   T10] usb 6-1: config 0 descriptor??
[  328.875858][T15172] fuse: fd is not a fuse device
[  328.963297][   T24] usb 6-1: USB disconnect, device number 34
[  329.485257][T15188] netlink: 104 bytes leftover after parsing attributes in process `syz.6.2876'.
[  329.544504][T15190] fuse: fd is not a fuse device
[  330.026815][T15217] netlink: 'syz.6.2889': attribute type 16 has an invalid length.
[  330.029456][T15217] netlink: 64130 bytes leftover after parsing attributes in process `syz.6.2889'.
[  330.320162][T15235] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2898'.
[  330.323261][T15235] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2898'.
[  330.663605][T15259] overlayfs: failed to clone lowerpath
[  330.798188][   T10] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  330.856610][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[  330.859242][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[  330.869021][T15273] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2911'.
[  330.958068][   T10] usb 6-1: Using ep0 maxpacket: 32
[  330.964241][   T10] usb 6-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  330.972883][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.988597][   T10] usb 6-1: config 0 descriptor??
[  331.012517][   T10] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  331.249433][T15295] 9pnet: p9_errstr2errno: server reported unknown error 0x0000
[  331.330208][T15304] macvtap1: entered promiscuous mode
[  331.332465][T15304] macvtap1: entered allmulticast mode
[  331.478013][T15317] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2926'.
[  332.015471][T15248] loop5: detected capacity change from 0 to 40427
[  332.020640][   T10] gspca_vc032x: reg_w err -110
[  332.022219][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.027157][T15248] F2FS-fs (loop5): invalid crc value
[  332.063258][T15248] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  332.071279][T15248] F2FS-fs (loop5): Start checkpoint disabled!
[  332.082807][T15248] F2FS-fs (loop5): f2fs_disable_checkpoint() finish, err:0
[  332.085715][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.087458][T15248] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  332.091826][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.095265][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.097007][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.098607][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.100172][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.102142][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.104843][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.106878][   T33] audit: type=1800 audit(1778603137.092:814): pid=15248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2903" name="file1" dev="loop5" ino=10 res=0 errno=0
[  332.199839][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.202283][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.203945][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.205628][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.207298][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.209348][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.211127][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.212830][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.214568][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  332.216210][   T10] gspca_vc032x: Unknown sensor...
[  332.217760][   T10] vc032x 6-1:0.0: probe with driver vc032x failed with error -22
[  332.614983][T15370] fuse: fd is not a fuse device
[  334.118183][  T796] usb 6-1: USB disconnect, device number 35
[  334.153228][ T9158] kworker/u9:7: attempt to access beyond end of device
[  334.153228][ T9158] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  334.167633][ T9158] CPU: 1 UID: 0 PID: 9158 Comm: kworker/u9:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  334.167657][ T9158] Tainted: [L]=SOFTLOCKUP
[  334.167663][ T9158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  334.167672][ T9158] Workqueue: writeback wb_workfn (flush-7:5)
[  334.167695][ T9158] Call Trace:
[  334.167701][ T9158]  <TASK>
[  334.167708][ T9158]  dump_stack_lvl+0xe8/0x150
[  334.167726][ T9158]  f2fs_stop_checkpoint+0x3c7/0x590
[  334.167748][ T9158]  f2fs_write_end_io+0x1274/0x1740
[  334.167785][ T9158]  __submit_merged_bio+0x256/0x6a0
[  334.167808][ T9158]  __submit_merged_write_cond+0x3c9/0x4e0
[  334.167831][ T9158]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  334.167865][ T9158]  f2fs_write_data_pages+0x287e/0x34f0
[  334.167881][ T9158]  ? f2fs_build_free_nids+0xdc/0x1810
[  334.167923][ T9158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  334.167953][ T9158]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  334.167999][ T9158]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  334.168031][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.168059][ T9158]  ? lock_list_lru_of_memcg+0x2e/0x4c0
[  334.168086][ T9158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  334.168105][ T9158]  do_writepages+0x32e/0x550
[  334.168126][ T9158]  ? reacquire_held_locks+0x104/0x190
[  334.168145][ T9158]  ? writeback_sb_inodes+0x463/0x19d0
[  334.168167][ T9158]  __writeback_single_inode+0x133/0x10e0
[  334.168188][ T9158]  ? do_raw_spin_unlock+0x4d/0x210
[  334.168211][ T9158]  writeback_sb_inodes+0x979/0x19d0
[  334.168226][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.168263][ T9158]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  334.168279][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.168336][ T9158]  ? rcu_is_watching+0x15/0xb0
[  334.168362][ T9158]  wb_writeback+0x445/0xb00
[  334.168412][ T9158]  ? queue_io+0x1e1/0x470
[  334.168436][ T9158]  ? __pfx_wb_writeback+0x10/0x10
[  334.168450][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.168482][ T9158]  wb_workfn+0x3f8/0xf10
[  334.168496][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.168510][ T9158]  ? look_up_lock_class+0x57/0x110
[  334.168543][ T9158]  ? __pfx_wb_workfn+0x10/0x10
[  334.168561][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.168578][ T9158]  ? lock_acquire+0x106/0x350
[  334.168594][ T9158]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  334.168616][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.168632][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.168652][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.168664][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.168680][ T9158]  process_scheduled_works+0xb5d/0x1860
[  334.168720][ T9158]  ? __pfx_process_scheduled_works+0x10/0x10
[  334.168741][ T9158]  ? assign_work+0x3d5/0x5e0
[  334.168778][ T9158]  worker_thread+0xa53/0xfc0
[  334.168813][ T9158]  kthread+0x388/0x470
[  334.168832][ T9158]  ? __pfx_worker_thread+0x10/0x10
[  334.168845][ T9158]  ? __pfx_kthread+0x10/0x10
[  334.168865][ T9158]  ret_from_fork+0x514/0xb70
[  334.168884][ T9158]  ? __pfx_ret_from_fork+0x10/0x10
[  334.168900][ T9158]  ? __switch_to+0xc79/0x1410
[  334.168922][ T9158]  ? __pfx_kthread+0x10/0x10
[  334.168941][ T9158]  ret_from_fork_asm+0x1a/0x30
[  334.168970][ T9158]  </TASK>
[  334.170264][ T9158] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  334.289757][ T9158] CPU: 1 UID: 0 PID: 9158 Comm: kworker/u9:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  334.289778][ T9158] Tainted: [L]=SOFTLOCKUP
[  334.289782][ T9158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  334.289789][ T9158] Workqueue: writeback wb_workfn (flush-7:5)
[  334.289811][ T9158] Call Trace:
[  334.289816][ T9158]  <TASK>
[  334.289822][ T9158]  dump_stack_lvl+0xe8/0x150
[  334.289839][ T9158]  f2fs_stop_checkpoint+0x3c7/0x590
[  334.289860][ T9158]  f2fs_write_end_io+0x1274/0x1740
[  334.289892][ T9158]  __submit_merged_bio+0x256/0x6a0
[  334.289912][ T9158]  __submit_merged_write_cond+0x3c9/0x4e0
[  334.289933][ T9158]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  334.289962][ T9158]  f2fs_write_data_pages+0x287e/0x34f0
[  334.289976][ T9158]  ? f2fs_build_free_nids+0xdc/0x1810
[  334.290014][ T9158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  334.290040][ T9158]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  334.290080][ T9158]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  334.290108][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.290133][ T9158]  ? lock_list_lru_of_memcg+0x2e/0x4c0
[  334.290155][ T9158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  334.290171][ T9158]  do_writepages+0x32e/0x550
[  334.290191][ T9158]  ? reacquire_held_locks+0x104/0x190
[  334.290205][ T9158]  ? writeback_sb_inodes+0x463/0x19d0
[  334.290226][ T9158]  __writeback_single_inode+0x133/0x10e0
[  334.290243][ T9158]  ? do_raw_spin_unlock+0x4d/0x210
[  334.290276][ T9158]  writeback_sb_inodes+0x979/0x19d0
[  334.290292][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.290325][ T9158]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  334.290338][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.290419][ T9158]  ? rcu_is_watching+0x15/0xb0
[  334.290444][ T9158]  wb_writeback+0x445/0xb00
[  334.290468][ T9158]  ? queue_io+0x1e1/0x470
[  334.290488][ T9158]  ? __pfx_wb_writeback+0x10/0x10
[  334.290500][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.290529][ T9158]  wb_workfn+0x3f8/0xf10
[  334.290539][ T9158]  ? __lock_acquire+0x6b5/0x2cf0
[  334.290550][ T9158]  ? look_up_lock_class+0x57/0x110
[  334.290603][ T9158]  ? __pfx_wb_workfn+0x10/0x10
[  334.290620][ T9158]  ? do_raw_spin_lock+0x12b/0x2f0
[  334.290634][ T9158]  ? lock_acquire+0x106/0x350
[  334.290647][ T9158]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  334.290665][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.290679][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.290698][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.290710][ T9158]  ? process_scheduled_works+0xa70/0x1860
[  334.290724][ T9158]  process_scheduled_works+0xb5d/0x1860
[  334.290760][ T9158]  ? __pfx_process_scheduled_works+0x10/0x10
[  334.290778][ T9158]  ? assign_work+0x3d5/0x5e0
[  334.290794][ T9158]  worker_thread+0xa53/0xfc0
[  334.290827][ T9158]  kthread+0x388/0x470
[  334.290842][ T9158]  ? __pfx_worker_thread+0x10/0x10
[  334.290853][ T9158]  ? __pfx_kthread+0x10/0x10
[  334.290868][ T9158]  ret_from_fork+0x514/0xb70
[  334.290883][ T9158]  ? __pfx_ret_from_fork+0x10/0x10
[  334.290894][ T9158]  ? __switch_to+0xc79/0x1410
[  334.290913][ T9158]  ? __pfx_kthread+0x10/0x10
[  334.290928][ T9158]  ret_from_fork_asm+0x1a/0x30
[  334.290955][ T9158]  </TASK>
[  334.291829][ T9158] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  335.013147][   T33] audit: type=1326 audit(1778603139.796:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.091712][   T33] audit: type=1326 audit(1778603139.796:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.150698][   T33] audit: type=1326 audit(1778603139.796:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.178712][   T33] audit: type=1326 audit(1778603139.796:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.210062][   T33] audit: type=1326 audit(1778603139.806:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.244820][   T33] audit: type=1326 audit(1778603139.806:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.254471][   T33] audit: type=1326 audit(1778603139.806:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.262400][   T33] audit: type=1326 audit(1778603139.806:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.269657][   T33] audit: type=1326 audit(1778603139.806:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.5.2952" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e7319cdd9 code=0x7ffc0000
[  335.773201][T15438] netlink: 'syz.5.2959': attribute type 1 has an invalid length.
[  335.806567][T15438] bond2: entered promiscuous mode
[  335.809182][T15438] 8021q: adding VLAN 0 to HW filter on device bond2
[  335.828022][T15438] 8021q: adding VLAN 0 to HW filter on device bond2
[  335.831055][T15438] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[  335.835309][T15438] bond2: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  335.850574][T15438] bond2: (slave wireguard0): making interface the new active one
[  335.853115][T15438] wireguard0: entered promiscuous mode
[  335.856089][T15438] bond2: (slave wireguard0): Enslaving as an active interface with an up link
[  336.378829][T15500] fuse: fd is not a fuse device
[  336.882139][T15540] loop5: detected capacity change from 0 to 256
[  336.904105][T15540] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  336.917029][T15540] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  336.930658][T15540] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000e8a4, chksum : 0xd6c92322, utbl_chksum : 0xe619d30d)
[  336.937750][T15540] exFAT-fs (loop5): failed to load alloc-bitmap
[  336.940475][T15540] exFAT-fs (loop5): failed to recognize exfat type
[  337.651685][T15575] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2997'.
[  337.819686][ T5722] kernel write not supported for file bpf-map (pid: 5722 comm: kworker/0:6)
[  338.263491][ T5617] Bluetooth: hci0: unexpected cc 0x0c58 length: 1 < 2
[  338.382462][T15627] loop5: detected capacity change from 0 to 4096
[  338.388835][T15627] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  339.418900][T15676] netlink: 17780 bytes leftover after parsing attributes in process `syz.4.3036'.
[  339.626028][ T5722] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  339.816935][ T5722] usb 6-1: Using ep0 maxpacket: 32
[  339.821700][ T5722] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  339.825403][ T5722] usb 6-1: config 0 has no interface number 0
[  339.832114][ T5722] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  339.836090][ T5722] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.843919][ T5722] usb 6-1: Product: syz
[  339.845840][ T5722] usb 6-1: Manufacturer: syz
[  339.847936][ T5722] usb 6-1: SerialNumber: syz
[  339.863543][ T5722] usb 6-1: config 0 descriptor??
[  340.428520][ T5722] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  340.453278][ T5722] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  340.904269][ T5722] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000108: -71
[  340.921389][ T5722] smsc95xx 6-1:0.67: probe with driver smsc95xx failed with error -71
[  340.941724][ T5722] usb 6-1: USB disconnect, device number 36
[  342.776571][T15779] loop5: detected capacity change from 0 to 1024
[  342.792897][T15779] __quota_error: 305 callbacks suppressed
[  342.792920][T15779] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5
[  342.804452][T15779] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  342.808530][T15779] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.3073: Failed to acquire dquot type 0
[  342.813733][T15779] loop5: lost filesystem error report for type 5 error -117
[  342.818542][T15779] EXT4-fs error (device loop5): mb_free_blocks:2049: group 0, 
[  342.821864][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  342.821882][    C1] EXT4-fs (loop5): initial error at time 1778603147: ext4_acquire_dquot:7034
[  342.821897][    C1] EXT4-fs (loop5): last error at time 1778603147: ext4_acquire_dquot:7034
[  342.837391][T15779] inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt.
[  342.849351][T15779] EXT4-fs (loop5): 1 truncate cleaned up
[  342.853727][T15779] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.866324][T15779] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5
[  342.874008][T15779] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  342.878853][T15779] EXT4-fs error (device loop5): ext4_acquire_dquot:7034: comm syz.5.3073: Failed to acquire dquot type 0
[  342.918150][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.146521][T15798] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3078'.
[  343.716980][T15830] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3086'.
[  344.524373][T15851] loop5: detected capacity change from 0 to 256
[  344.980102][T15878] loop5: detected capacity change from 0 to 128
[  345.847109][T15888] loop5: detected capacity change from 0 to 131072
[  345.911377][T15888] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  345.922456][T15888] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  346.124218][T15917] fuse: fd is not a fuse device
[  346.361619][T15930] overlayfs: failed to resolve './cgroup': -2
[  346.499295][ T5617] Bluetooth: hci1: Ignoring connect complete event for invalid link type
[  346.740697][T15951] netlink: 60 bytes leftover after parsing attributes in process `syz.6.3127'.
[  347.001907][T15982] 9p: Bad value for 'rfdno'
[  348.108600][T16020] loop5: detected capacity change from 0 to 2048
[  348.123361][T16020] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  348.139164][T16020] NILFS error (device loop5): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  348.139468][T16025] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  348.161270][T16020] Remounting filesystem read-only
[  348.174142][T16020] NILFS error (device loop5): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  348.178419][T16020] NILFS (loop5): error -5 reading inode: ino=12
[  348.421858][T16045] bond0: (slave bond_slave_1): Releasing backup interface
[  348.499982][T16048] loop5: detected capacity change from 0 to 512
[  348.526503][T16048] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  348.538208][T16048] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  348.553261][T16048] System zones: 0-1, 15-15, 18-18, 34-34
[  348.561227][T16048] EXT4-fs (loop5): orphan cleanup on readonly fs
[  348.563663][T16048] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0
[  348.566921][T16048] EXT4-fs warning (device loop5): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  348.573781][T16048] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  348.577008][T16048] EXT4-fs error (device loop5): ext4_orphan_get:1423: comm syz.5.3165: bad orphan inode 16
[  348.581784][T16048] loop5: lost filesystem error report for type 5 error -117
[  348.582023][T16048] ext4_test_bit(bit=15, block=18) = 1
[  348.587130][T16048] is_bad_inode(inode)=0
[  348.588970][T16048] NEXT_ORPHAN(inode)=0
[  348.590875][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  348.590893][    C0] EXT4-fs (loop5): initial error at time 1778603152: ext4_orphan_get:1423
[  348.590911][    C0] EXT4-fs (loop5): last error at time 1778603152: ext4_orphan_get:1423
[  348.600803][T16048] max_ino=32
[  348.601830][T16048] i_nlink=2
[  348.604594][T16048] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  348.626649][T16048] fscrypt (loop5, inode 16): Error -61 getting encryption context
[  348.650013][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.828181][T16067] loop5: detected capacity change from 0 to 256
[  348.844493][T16067] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  348.871837][T16067] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  349.224650][T16090] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3176'.
[  349.524603][T16106] netlink: 'syz.4.3180': attribute type 33 has an invalid length.
[  350.817563][T16137] fuse: fd is not a fuse device
[  352.384647][ T5617] Bluetooth: hci2: unexpected event for opcode 0x0809
[  353.355636][T16208] fuse: fd is not a fuse device
[  353.601344][T16215] loop5: detected capacity change from 0 to 32768
[  353.605253][T16215] btrfs: Deprecated parameter 'usebackuproot'
[  353.607910][T16215] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  353.613658][T16215] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3226 (16215)
[  353.622362][T16215] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  353.626611][T16215] BTRFS info (device loop5): using crc32c checksum algorithm
[  353.701551][ T1245] BTRFS warning (device loop5): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  353.733914][T16215] BTRFS error (device loop5): failed to load root extent
[  353.736164][T16215] BTRFS warning (device loop5): try to load backup roots slot 1
[  353.738777][   T26] BTRFS warning (device loop5): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  353.744622][T16249] overlayfs: missing 'lowerdir'
[  353.749833][T16215] BTRFS warning (device loop5): couldn't read tree root
[  353.752633][T16215] BTRFS warning (device loop5): try to load backup roots slot 2
[  353.755687][ T1245] BTRFS error (device loop5): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  353.761026][T16215] BTRFS warning (device loop5): couldn't read tree root
[  353.764535][T16215] BTRFS warning (device loop5): try to load backup roots slot 3
[  353.775069][T16215] BTRFS info (device loop5): rebuilding free space tree
[  353.798287][T16215] BTRFS info (device loop5): checking UUID tree
[  353.801178][T16215] BTRFS info (device loop5): enabling ssd optimizations
[  353.804119][T16215] BTRFS info (device loop5): turning on async discard
[  353.806906][T16215] BTRFS info (device loop5): enabling free space tree
[  353.809533][T16215] BTRFS info (device loop5): force clearing of disk cache
[  353.812392][T16215] BTRFS info (device loop5): enabling auto defrag
[  353.815004][T16215] BTRFS info (device loop5): trying to use backup root at mount time
[  353.819473][T16215] BTRFS info (device loop5): use zstd compression, level 3
[  353.996892][ T8609] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  356.263022][ T5722] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  356.441865][ T5722] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  356.456759][ T5722] usb 6-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 1.41
[  356.466106][ T5722] usb 6-1: New USB device strings: Mfr=0, Product=246, SerialNumber=2
[  356.476346][ T5722] usb 6-1: Product: syz
[  356.478164][ T5722] usb 6-1: SerialNumber: syz
[  356.482851][ T5722] usb 6-1: config 0 descriptor??
[  356.489516][ T5722] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  356.494661][ T5722] usb 6-1: Detected SIO
[  356.502283][ T5722] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  356.710515][  T796] usb 6-1: USB disconnect, device number 37
[  356.719847][  T796] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  356.736937][  T796] ftdi_sio 6-1:0.0: device disconnected
[  356.895107][   T33] audit: type=1326 audit(1778603160.300:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.909153][   T33] audit: type=1326 audit(1778603160.300:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.918731][   T33] audit: type=1326 audit(1778603160.300:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.929360][   T33] audit: type=1326 audit(1778603160.300:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.938493][   T33] audit: type=1326 audit(1778603160.309:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.949780][   T33] audit: type=1326 audit(1778603160.309:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.958228][   T33] audit: type=1326 audit(1778603160.309:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.967192][   T33] audit: type=1326 audit(1778603160.309:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  356.976383][   T33] audit: type=1326 audit(1778603160.309:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16369 comm="syz.4.3275" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  357.097437][T16378] netlink: 'syz.4.3279': attribute type 15 has an invalid length.
[  357.339384][T16385] loop5: detected capacity change from 0 to 4096
[  357.344305][T16385] EXT4-fs: Ignoring removed nomblk_io_submit option
[  357.376976][T16385] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.408118][T16385] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  357.449456][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.772180][T16408] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3290'.
[  358.538940][  T937] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  358.713819][  T937] usb 6-1: config 63 has an invalid interface number: 66 but max is 0
[  358.717230][  T937] usb 6-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config
[  358.722996][  T937] usb 6-1: config 63 has no interface number 0
[  358.727027][  T937] usb 6-1: config 63 interface 66 has no altsetting 0
[  358.740983][  T937] usb 6-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4
[  358.745749][  T937] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.750325][  T937] usb 6-1: Product: syz
[  358.752188][  T937] usb 6-1: Manufacturer: syz
[  358.754409][  T937] usb 6-1: SerialNumber: syz
[  358.996006][  T937] uvcvideo 6-1:63.66: Found UVC 0.07 device syz (174f:8acf)
[  359.007836][  T937] uvcvideo 6-1:63.66: No valid video chain found.
[  359.013468][  T937] usb 6-1: USB disconnect, device number 38
[  359.427694][T16481] team0: No ports can be present during mode change
[  359.566685][T16488] loop5: detected capacity change from 0 to 512
[  359.594396][T16488] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.607451][T16488] ext4 filesystem being mounted at /555/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  359.746248][ T5617] Bluetooth: hci0: command tx timeout
[  361.232775][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.300691][T16549] loop5: detected capacity change from 0 to 128
[  363.310388][T16549] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.322899][T16549] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  363.336125][T16549] ext4 filesystem being mounted at /560/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.394708][ T8609] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  363.651336][T16565] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3344'.
[  363.728958][T16557] binder: 16556:16557 ioctl c0306201 200000001a80 returned -14
[  363.884518][T16577] netlink: 'syz.6.3350': attribute type 21 has an invalid length.
[  363.893225][T16577] netlink: 132 bytes leftover after parsing attributes in process `syz.6.3350'.
[  363.896931][T16577] netlink: 'syz.6.3350': attribute type 1 has an invalid length.
[  364.012653][T16591] loop5: detected capacity change from 0 to 128
[  364.028039][T16591] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  364.032846][T16591] hpfs: filesystem error: improperly stopped
[  364.035114][T16591] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  364.038565][T16591] hpfs: You really don't want any checks? You are crazy...
[  364.042372][T16591] hpfs: Code page index out of array
[  364.044842][T16591] hpfs: code page support is disabled
[  364.050822][T16591] hpfs: hpfs_map_4sectors(): unaligned read
[  364.065016][T16591] hpfs: hpfs_map_4sectors(): unaligned read
[  364.068076][T16591] hpfs: filesystem error: unable to find root dir
[  364.172008][T16599] netlink: 'syz.6.3360': attribute type 3 has an invalid length.
[  364.442871][T16620] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  364.574079][T16632] sg_write: data in/out 393180/130 bytes for SCSI command 0x0-- guessing data in;
[  364.574079][T16632]    program syz.5.3369 not setting count and/or reply_len properly
[  364.858528][T16658] netlink: 35 bytes leftover after parsing attributes in process `syz.5.3379'.
[  364.863559][T16658] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3379'.
[  365.217692][  T796] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  365.377803][  T796] usb 6-1: Using ep0 maxpacket: 16
[  365.383401][  T796] usb 6-1: unable to get BOS descriptor or descriptor too short
[  365.389686][  T796] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7
[  365.397546][  T796] usb 6-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40
[  365.400821][  T796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.404238][  T796] usb 6-1: Product: syz
[  365.405772][  T796] usb 6-1: Manufacturer: syz
[  365.407388][  T796] usb 6-1: SerialNumber: syz
[  365.642703][  T796] usb 6-1: Audio class v2/v3 interfaces need an interface association
[  365.646277][  T796] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[  366.069444][  T796] usb 6-1: 2:1 : bogus bTerminalLink 6
[  366.320664][  T796] usb 6-1: USB disconnect, device number 39
[  366.372706][ T5615] udevd[5615]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  366.911682][T16767] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3414'.
[  367.119269][T16784] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3421'.
[  367.176863][T16786] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3422'.
[  367.900945][T16812] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3432'.
[  368.914608][   T33] audit: type=1326 audit(1778603171.511:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.937395][   T33] audit: type=1326 audit(1778603171.511:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.944381][   T33] audit: type=1326 audit(1778603171.511:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.952849][   T33] audit: type=1326 audit(1778603171.511:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.963171][   T33] audit: type=1326 audit(1778603171.511:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.971705][   T33] audit: type=1326 audit(1778603171.511:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  368.983401][   T33] audit: type=1326 audit(1778603171.511:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  369.004585][   T33] audit: type=1326 audit(1778603171.511:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.6.3440" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb02fb9cdd9 code=0x7ffc0000
[  369.138375][T16854] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3445'.
[  369.554491][T16893] netlink: 'syz.4.3455': attribute type 12 has an invalid length.
[  369.560713][T16893] netlink: 'syz.4.3455': attribute type 29 has an invalid length.
[  369.568008][T16893] netlink: 252 bytes leftover after parsing attributes in process `syz.4.3455'.
[  369.752009][T16901] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  369.975038][T16918] loop5: detected capacity change from 0 to 256
[  370.213295][T16918] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe39e9277, utbl_chksum : 0x7319d30d)
[  370.949308][  T796] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  371.174715][  T796] usb 6-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  371.178516][  T796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.182773][  T796] usb 6-1: Product: syz
[  371.185318][  T796] usb 6-1: Manufacturer: syz
[  371.189615][  T796] usb 6-1: SerialNumber: syz
[  371.197107][  T796] usb 6-1: config 0 descriptor??
[  371.647827][  T796] usb 6-1: f81604_write: reg: 105 data: 0 failed: -EPROTO
[  371.654892][  T796] f81604 6-1:0.0: Setting termination of CH#0 failed: -EPROTO
[  371.659228][  T796] f81604 6-1:0.0: probe with driver f81604 failed with error -71
[  371.678764][  T796] usb 6-1: USB disconnect, device number 40
[  371.800863][T16995] netlink: 'syz.4.3491': attribute type 1 has an invalid length.
[  371.803248][T16995] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  372.205611][   T33] audit: type=1326 audit(1778603174.617:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16998 comm="syz.4.3492" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  372.214522][   T33] audit: type=1326 audit(1778603174.617:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16998 comm="syz.4.3492" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a13f9cdd9 code=0x7ffc0000
[  373.023361][T17009] loop5: detected capacity change from 0 to 32768
[  373.074399][T17009] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  373.108461][T17009] XFS (loop5): Ending clean mount
[  373.313968][ T8609] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  373.446481][ T5617] Bluetooth: hci2: unexpected event 0x2f length: 509 > 260
[  373.585620][T17045] fuse: fd is not a fuse device
[  373.846067][T17070] loop5: detected capacity change from 0 to 2048
[  373.904973][T17070] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.953746][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.016857][T17082] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3520'.
[  375.360652][T17124] netlink: 27 bytes leftover after parsing attributes in process `syz.6.3537'.
[  376.922452][ T5002] Bluetooth: hci0: command 0x0406 tx timeout
[  377.633238][ T5617] Bluetooth: hci0: unexpected event for opcode 0x0c7b
[  377.767822][T17205] --map-set only usable from mangle table
[  377.826284][T17210] loop5: detected capacity change from 0 to 764
[  377.856392][T17210] rock: directory entry would overflow storage
[  377.858436][T17210] rock: sig=0x4654, size=5, remaining=4
[  378.623837][T17250] overlayfs: failed to clone upperpath
[  378.988308][T17277] loop5: detected capacity change from 0 to 4096
[  378.995519][T17277] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  379.021031][T17277] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[  379.023827][T17277] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  379.032096][T17277] ntfs3(loop5): ino=3, ntfs_set_label failed, -22.
[  379.043977][   T84] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22.
[  379.047794][ T8609] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[  379.054533][ T8609] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  379.089014][ T8609] ntfs3(loop5): ino=3, ntfs_set_state failed, -22.
[  379.092478][   T84] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22.
[  379.446899][T17300] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3606'.
[  379.454204][T17300] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3606'.
[  379.469004][T17300] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3606'.
[  380.611694][T17334] loop5: detected capacity change from 0 to 256
[  380.622682][T17334] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  380.839830][T17347] loop5: detected capacity change from 0 to 4096
[  380.852293][T17347] EXT4-fs (loop5): Test dummy encryption mode enabled
[  380.870495][T17347] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.946281][ T8609] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.595639][T17374] x_tables: unsorted underflow at hook 4
[  381.973382][ T5617] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  381.979886][ T5617] Bluetooth: hci0: Injecting HCI hardware error event
[  381.989133][ T5002] Bluetooth: hci0: hardware error 0x00
[  382.128823][T17384] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3633'.
[  382.230402][   T10] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  382.306568][T17399] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  382.317107][T17399] CIFS mount error: No usable UNC path provided in device string!
[  382.317107][T17399] 
[  382.321507][T17399] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  382.614567][   T24] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  382.789705][   T24] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  382.792589][   T24] usb 6-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  382.795736][   T24] usb 6-1: Product: syz
[  382.798468][   T24] usb 6-1: Manufacturer: syz
[  382.800490][   T24] usb 6-1: SerialNumber: syz
[  382.804126][   T24] usb 6-1: config 0 descriptor??
[  382.813530][   T24] ch341 6-1:0.0: ch341-uart converter detected
[  382.828608][   T10] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  383.341985][ T8652] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  383.466506][   T24] usb 6-1: failed to send control message: -71
[  383.474181][   T24] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  383.484881][   T24] usb 6-1: USB disconnect, device number 41
[  383.492236][   T24] ch341 6-1:0.0: device disconnected
[  384.209086][T17467] loop5: detected capacity change from 0 to 512
[  384.248206][T17467] EXT4-fs (loop5): 1 truncate cleaned up
[  384.253423][T17467] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.298527][ T5002] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  384.332879][T17477] 
[  384.333913][T17477] ======================================================
[  384.336431][T17477] WARNING: possible circular locking dependency detected
[  384.338959][T17477] syzkaller #0 Tainted: G             L     
[  384.341128][T17477] ------------------------------------------------------
[  384.343540][T17477] syz.5.3661/17477 is trying to acquire lock:
[  384.345832][T17477] ffff8881bcf070e0 (&ei->xattr_sem){++++}-{4:4}, at: ext4_destroy_inline_data+0x28/0xe0
[  384.349228][T17477] 
[  384.349228][T17477] but task is already holding lock:
[  384.351722][T17477] ffff888176ae4c18 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x205/0x3b0
[  384.354829][T17477] 
[  384.354829][T17477] which lock already depends on the new lock.
[  384.354829][T17477] 
[  384.357965][T17477] 
[  384.357965][T17477] the existing dependency chain (in reverse order) is:
[  384.360846][T17477] 
[  384.360846][T17477] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  384.363999][T17477]        percpu_down_read_internal+0x48/0x1c0
[  384.365921][T17477]        ext4_writepages+0x205/0x3b0
[  384.367806][T17477]        do_writepages+0x32e/0x550
[  384.369615][T17477]        __writeback_single_inode+0x133/0x10e0
[  384.371554][T17477]        writeback_single_inode+0x4ac/0xdc0
[  384.373624][T17477]        write_inode_now+0x1c2/0x290
[  384.375418][T17477]        iput+0x8c1/0xe80
[  384.376892][T17477]        ext4_xattr_block_set+0x2359/0x2ad0
[  384.378891][T17477]        ext4_expand_extra_isize_ea+0x12cf/0x1ea0
[  384.381068][T17477]        __ext4_expand_extra_isize+0x30d/0x400
[  384.382981][T17477]        __ext4_mark_inode_dirty+0x45c/0x710
[  384.384996][T17477]        ext4_evict_inode+0x986/0x10e0
[  384.386803][T17477]        evict+0x61e/0xb10
[  384.388406][T17477]        ext4_orphan_cleanup+0xc38/0x1470
[  384.390429][T17477]        ext4_fill_super+0x5a19/0x6330
[  384.392419][T17477]        get_tree_bdev_flags+0x431/0x4f0
[  384.394400][T17477]        vfs_get_tree+0x92/0x2a0
[  384.396155][T17477]        do_new_mount+0x341/0xd30
[  384.397961][T17477]        __se_sys_mount+0x31d/0x420
[  384.399465][T17477]        do_syscall_64+0x15f/0xf80
[  384.401007][T17477]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.403143][T17477] 
[  384.403143][T17477] -> #0 (&ei->xattr_sem){++++}-{4:4}:
[  384.405379][T17477]        __lock_acquire+0x15a5/0x2cf0
[  384.406952][T17477]        lock_acquire+0x106/0x350
[  384.408620][T17477]        down_write+0x96/0x200
[  384.410049][T17477]        ext4_destroy_inline_data+0x28/0xe0
[  384.411822][T17477]        ext4_do_writepages+0x51e/0x4670
[  384.413441][T17477]        ext4_writepages+0x241/0x3b0
[  384.414992][T17477]        do_writepages+0x32e/0x550
[  384.416703][T17477]        filemap_flush+0x1e1/0x2e0
[  384.418596][T17477]        ext4_ioctl+0x239e/0x4b30
[  384.420467][T17477]        __se_sys_ioctl+0xfc/0x170
[  384.422279][T17477]        do_syscall_64+0x15f/0xf80
[  384.423864][T17477]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.425893][T17477] 
[  384.425893][T17477] other info that might help us debug this:
[  384.425893][T17477] 
[  384.429390][T17477]  Possible unsafe locking scenario:
[  384.429390][T17477] 
[  384.432027][T17477]        CPU0                    CPU1
[  384.433801][T17477]        ----                    ----
[  384.435470][T17477]   rlock(&sbi->s_writepages_rwsem);
[  384.437093][T17477]                                lock(&ei->xattr_sem);
[  384.439110][T17477]                                lock(&sbi->s_writepages_rwsem);
[  384.441689][T17477]   lock(&ei->xattr_sem);
[  384.443201][T17477] 
[  384.443201][T17477]  *** DEADLOCK ***
[  384.443201][T17477] 
[  384.446258][T17477] 2 locks held by syz.5.3661/17477:
[  384.448113][T17477]  #0: ffff8881bd1de410 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write_file+0x60/0x200
[  384.451078][T17477]  #1: ffff888176ae4c18 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x205/0x3b0
[  384.454734][T17477] 
[  384.454734][T17477] stack backtrace:
[  384.456946][T17477] CPU: 1 UID: 0 PID: 17477 Comm: syz.5.3661 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  384.456964][T17477] Tainted: [L]=SOFTLOCKUP
[  384.456968][T17477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  384.456974][T17477] Call Trace:
[  384.456980][T17477]  <TASK>
[  384.456985][T17477]  dump_stack_lvl+0xe8/0x150
[  384.456998][T17477]  print_circular_bug+0x2e1/0x300
[  384.457011][T17477]  check_noncircular+0x12e/0x150
[  384.457023][T17477]  __lock_acquire+0x15a5/0x2cf0
[  384.457036][T17477]  ? ext4_destroy_inline_data+0x28/0xe0
[  384.457048][T17477]  lock_acquire+0x106/0x350
[  384.457056][T17477]  ? ext4_destroy_inline_data+0x28/0xe0
[  384.457069][T17477]  down_write+0x96/0x200
[  384.457080][T17477]  ? ext4_destroy_inline_data+0x28/0xe0
[  384.457092][T17477]  ? __pfx_down_write+0x10/0x10
[  384.457102][T17477]  ? ext4_journal_check_start+0x1c/0x2b0
[  384.457113][T17477]  ? ext4_journal_check_start+0x1cf/0x2b0
[  384.457124][T17477]  ext4_destroy_inline_data+0x28/0xe0
[  384.457136][T17477]  ext4_do_writepages+0x51e/0x4670
[  384.457153][T17477]  ? look_up_lock_class+0x57/0x110
[  384.457163][T17477]  ? register_lock_class+0x31/0x2e0
[  384.457171][T17477]  ? __pfx_ext4_do_writepages+0x10/0x10
[  384.457179][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457187][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457196][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457204][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457212][T17477]  ? ext4_writepages+0x205/0x3b0
[  384.457223][T17477]  ? ext4_writepages+0x205/0x3b0
[  384.457235][T17477]  ext4_writepages+0x241/0x3b0
[  384.457245][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457253][T17477]  ? __pfx_ext4_writepages+0x10/0x10
[  384.457266][T17477]  ? do_raw_spin_unlock+0x4d/0x210
[  384.457277][T17477]  ? __pfx_ext4_writepages+0x10/0x10
[  384.457287][T17477]  do_writepages+0x32e/0x550
[  384.457296][T17477]  ? do_raw_spin_unlock+0x4d/0x210
[  384.457308][T17477]  filemap_flush+0x1e1/0x2e0
[  384.457316][T17477]  ? __lock_acquire+0x6b5/0x2cf0
[  384.457324][T17477]  ? __pfx_filemap_flush+0x10/0x10
[  384.457339][T17477]  ? rcu_is_watching+0x15/0xb0
[  384.457348][T17477]  ext4_ioctl+0x239e/0x4b30
[  384.457360][T17477]  ? __pfx_ext4_ioctl+0x10/0x10
[  384.457370][T17477]  ? is_bpf_text_address+0x292/0x2b0
[  384.457379][T17477]  ? is_bpf_text_address+0x26/0x2b0
[  384.457387][T17477]  ? kernel_text_address+0xa5/0xe0
[  384.457398][T17477]  ? __kernel_text_address+0xd/0x30
[  384.457408][T17477]  ? unwind_get_return_address+0x4d/0x90
[  384.457418][T17477]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  384.457430][T17477]  ? arch_stack_walk+0xfb/0x150
[  384.457441][T17477]  ? stack_trace_save+0xa9/0x100
[  384.457452][T17477]  ? __pfx_stack_trace_save+0x10/0x10
[  384.457463][T17477]  ? kasan_save_free_info+0x46/0x50
[  384.457473][T17477]  ? stack_depot_save_flags+0x33/0x810
[  384.457486][T17477]  ? kasan_save_track+0x4f/0x80
[  384.457496][T17477]  ? kasan_save_track+0x3e/0x80
[  384.457507][T17477]  ? kasan_save_free_info+0x46/0x50
[  384.457515][T17477]  ? __kasan_slab_free+0x5c/0x80
[  384.457526][T17477]  ? kfree+0x1c5/0x640
[  384.457536][T17477]  ? tomoyo_path_number_perm+0x501/0x630
[  384.457546][T17477]  ? security_file_ioctl+0xc3/0x2a0
[  384.457555][T17477]  ? __se_sys_ioctl+0x47/0x170
[  384.457562][T17477]  ? do_syscall_64+0x15f/0xf80
[  384.457571][T17477]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.457583][T17477]  ? file_ioctl+0x273/0x860
[  384.457591][T17477]  ? __pfx_file_ioctl+0x10/0x10
[  384.457600][T17477]  ? kasan_quarantine_put+0xbb/0x1f0
[  384.457612][T17477]  ? tomoyo_path_number_perm+0x219/0x630
[  384.457621][T17477]  ? tomoyo_path_number_perm+0x219/0x630
[  384.457631][T17477]  ? do_vfs_ioctl+0x1166/0x1530
[  384.457639][T17477]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  384.457654][T17477]  ? do_raw_spin_lock+0x12b/0x2f0
[  384.457671][T17477]  ? __fget_files+0x2a/0x420
[  384.457683][T17477]  ? __fget_files+0x2a/0x420
[  384.457693][T17477]  ? __fget_files+0x3a0/0x420
[  384.457703][T17477]  ? __fget_files+0x2a/0x420
[  384.457713][T17477]  ? bpf_lsm_file_ioctl+0x9/0x20
[  384.457726][T17477]  ? __pfx_ext4_ioctl+0x10/0x10
[  384.457737][T17477]  __se_sys_ioctl+0xfc/0x170
[  384.457744][T17477]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.457752][T17477]  do_syscall_64+0x15f/0xf80
[  384.457761][T17477]  ? trace_irq_disable+0x3b/0x140
[  384.457814][T17477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.457829][T17477] RIP: 0033:0x7f9e7319cdd9
[  384.457845][T17477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  384.457859][T17477] RSP: 002b:00007f9e713f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  384.457872][T17477] RAX: ffffffffffffffda RBX: 00007f9e73416090 RCX: 00007f9e7319cdd9
[  384.457879][T17477] RDX: 0000000000000000 RSI: 000000000000660c RDI: 0000000000000005
[  384.457885][T17477] RBP: 00007f9e73232d69 R08: 0000000000000000 R09: 0000000000000000
[  384.457890][T17477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  384.457895][T17477] R13: 00007f9e73416128 R14: 00007f9e73416090 R15: 00007ffe0368e238
[  384.457905][T17477]  </TASK>
[  384.623828][ T8652] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  384.626952][ T8652] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  384.767678][T17477] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3661: bg 0: block 465: padding at end of block bitmap is not set
[  384.779354][T17477] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 28
[  384.784478][T17477] EXT4-fs (loop5): This should not happen!! Data will be lost
[  384.784478][T17477] 
[  384.788265][T17477] EXT4-fs (loop5): Total free blocks count 0
[  384.790783][T17477] EXT4-fs (loop5): Free/Dirty block details
[  384.793192][T17477] EXT4-fs (loop5): free_blocks=0
[  384.797916][T17477] EXT4-fs (loop5): dirty_blocks=6844
[  384.800101][T17477] EXT4-fs (loop5): Block reservation details
[  384.802579][T17477] EXT4-fs (loop5): i_reserved_data_blocks=6844
[  384.836593][T17467] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2052 with max blocks 2048 with error 28
[  385.435158][ T8609] EXT4-fs warning (device loop5): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  385.649401][ T5722] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  389.239789][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
