last executing test programs:

14.889794042s ago: executing program 1 (id=676):
fsopen(0x0, 0x0)
syz_mount_image$btrfs(&(0x7f0000000280), &(0x7f0000000200)='./file1\x00', 0x300000a, &(0x7f0000000440), 0xff, 0x55a3, &(0x7f000000e0c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x5000943f, &(0x7f0000002480)={{}, 0x0, 0x0, @unused=[0x0, 0x10000], @devid})

14.352884965s ago: executing program 1 (id=683):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x3000046, &(0x7f0000000480)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x40}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@init_itable_val={'init_itable', 0x3d, 0x3209ddb}}, {@grpquota}, {@delalloc}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x563, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r1, 0x20, 0x4000, 0x8000)

14.08996638s ago: executing program 1 (id=689):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x54, 0x2, 0x6, 0x101, 0x0, 0x0, {0x1}, [@IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x40000007}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e23}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x6}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010102}}]}, @IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000010}, 0x4004000)
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
setreuid(0x0, 0xee00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0])

13.991322038s ago: executing program 1 (id=692):
r0 = syz_open_dev$cec(&(0x7f0000000d00), 0x0, 0xc2b02)
ioctl$CEC_ADAP_G_LOG_ADDRS(r0, 0x805c6103, &(0x7f0000000300))
r1 = syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000140)='./file1\x00', 0x1000c01, &(0x7f0000000040)=ANY=[], 0x5, 0x811, &(0x7f0000002380)="$eJzs3U1sHHcVAPA3rp04jkirgkoUpekkKVIiUndtty5WD2W7HjvT2rvW7holqlAbNU6J4vRTVWmEaHNpASEhThxLOVa99AZCAokDcEKiBy4ckCr1hAoCCYEAyWhnd+O1Y6/z5Vi0v5/Vndn/vJl5/9npvJ3NzmwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJFUpkulsSTm8uriqXRzlel6bb7P9O7yfrlm0Ge9EUnrvxgejv3tpv1fWJ18T+vhSBxsPzsYw63BcFzae89dj35+cKA7f5+EbtThzScN9T5JIt5sJXXhzPLy0svbkMht9L2fd0aGexp3RfTZvv9aaT3OZtW8Ucvny7NZmjdq6dTkZOnBkzONdCafyxqnG81sPq3Us3KzVk+PVY6nY1NTE2k2erq2WJ2dLs9l3cZHHhgvlSbTJ0YXsnK9Uas++MRoo3Iyn5vLq7NFzHjptWjFPNLaEZ/Mm2kzK8+n6bnzy0sTW/WuFTS2pmX3mo4dvP+uj1/96O/nl1o75GYLSTo75vjY2Pj42OTDUw8/UioNjpfG1zaU1okrETEQ0YrYlp2WnbV3g7bBzh5z1YSIlTtvzcEbbtJAp/7HXORRjcU4FWmkMVA8rv4NRSWmox61mG89/8PQuulpdA6Q3fr/pQf/8rt+6+2t/90qv3918oEo6v+h9rNDm9X/q7K4/r+xO681svp+O5vetlfi9bgUF+JMLMdyLMXLN5LDrvVL3ca/gVu7vNnIohp5NKIWecxHuWhJOy1pTMVkTEYpno6TMRN7Io2ZyGMusmjE6WhEM7Jij6pEPbIoRzNqUY80jkUljrdenZiKqZiINLIYjdNRi8WoxmxMR7lYyrk4X2z3iXV53fPtZ3723O8/fqc1fiVorE9HktabuVbQ3/oEXVXur6P+dyPU/0+b4c4x61rjb+nxG27GSlH/B699hv/8ZDvTAQAAALZBUnz6nkTEUNxbjM3kc9lTO50WAAAAcAsVX9s72BoMtcbujaR1/l/aIPLD254bAAAAcGskxTV2SUSMxH3tse7lUht9CAAAAAD8Hyr+/f9QazAS8UbR4PwfAAAAPmW+s9k99j/a1bnHbmNhd/KLv0a9PpRcXrkyX/niHe2RzuBrV6Y0Zw4k+zoLKQaTg5f2JhExWMkOJt27X/53d3v4SfF4YPUGhJvd6z8pElg4dX9ysbxRAtE/geJZfD8Ot2MOn20Pz3antNcyMpPPZaOV2tyjY0nnw5Hmq8+f/2YU3f9udX5fEufOLy+NPvvC8tkil8utpVy+2Ln7cdKdK6J9QUWfXFY6WyDu3bjHQ8WFGJ31jrTXW+rt/0B79oH+/U961/lWHGnHHBlpD0fW9n+4tc6x0UfHolzeN9DMTjVfXenpfSeLsXbP31zT8+t4Fd6Ko+2Yo8eOtgcbZDG+Jovnr85ivHf7X9u2uOYs3jn8xql//LqWZBNbZTFxk1kA7JRzxV1/VqvQnqIK/XulrVXQ1tXdPd05r+cod271XUZ3/p5aNxhXVff0Rqr7W3GsHXOs/X5i8MAGdaW0wRH9xfMv/qZzRH/ovR/9+OuHfvvBurp+HVm8F8fbMZ1B3P2rTWpsfeXO5BtPra2q77bmeHfT9TbmxpO4o7URix8fiksPnL945rml55aeHx+fmCw9VCo9PB5DxVuFzmCTTFUegM+2Pr+x0yq9yQffuhK62a/wJA9tcVZ995WvFIzGs/FCLMfZOFFcbRAR92281JGeryGc2OKsdaTnF15ObHFuuRo7vj5299Ek9kbEBrETPVvsiz8sBv/cphcEAG6DI1vU4aT7DuG1z3XmWBdxR5Kc2OK8e20tP94+d+2eHcfmtXwjX9nm7QEAnwVZ/ZNkpPl2Uq/nC0+PTU2NlZsns7ReqzyZ1vPp2SzNq82sXjlZrs5m6UK91qxVuh8dT2eNtLG4sFCrN9OZWj1dqDXyU8Uvv6edn35vZPPlajOvNBbmsnIjSyu1arNcaabTeaOSLiw+Ppc3Tmb1YubGQlbJZ/JKuZnXqmmjtlivZKNp2siynsB8Oqs285k8G0rzarpQz+fL9csRMbc4n6XTWaNSzxeatfYCu+vKqzO1+nyx2NEi7Zd6u//nndjmALDTXnn90oUzy8tLL9/YyB+vJXin+wgArLVBld6zowkBAAAAAAAAAAAAAABXufpyvVbrmpbh6H+R31Dc8OWDr+yOm7n68NM38uX32y/LzS/wvpduZjl7YnnXasuuzs6y89vnukeeeeyxC6styWDv5n38jf0n/5RFt3d9lrPx/ykbXer69r6IXT/9Qbvlq5sEJ4O3uKcfRsQNzL6S9Im5/cciAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjK/wIAAP//BPFR5w==")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x800)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r3 = epoll_create1(0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r4=>0x0, <r5=>0x0})
ioctl$VIDIOC_QUERYBUF_DMABUF(r2, 0xc0585609, &(0x7f0000000280)={0x0, 0x2, 0x4, 0x8, 0x2, {r4, r5/1000+10000}, {0x4, 0xc, 0x5, 0x1, 0x6, 0xff, "0be8c911"}, 0x90e5344, 0x4, {<r6=>0xffffffffffffffff}, 0xe, 0x0, r1})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r6, &(0x7f0000000040))
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_N2(r7, 0x103, 0x3, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000c40)={0x8000203d})
pipe2$9p(&(0x7f0000000240)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r9, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r10 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r10)
ptrace(0x19, r10)
r11 = dup(r9)
read$FUSE(r11, &(0x7f0000004c00)={0x2020, 0x0, <r12=>0x0, 0x0, 0x0, <r13=>0x0}, 0x2020)
write$FUSE_BMAP(r11, &(0x7f0000000000)={0x18, 0x0, r12, {0xfffffffffffffffc}}, 0x18)
write$FUSE_DIRENTPLUS(r11, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r11, @ANYBLOB=',directio,access=user,cache=mmap,vession=9p2000,cache=none,version=9p2000.u,obj_type=trans=fd,,\x00'])
newfstatat(0xffffffffffffff9c, &(0x7f0000000e80)='./file1\x00', &(0x7f0000000f00), 0x800)
r14 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x200, 0x20, 0xa}, 0x18)
kcmp(r13, r10, 0x0, r9, r14)

13.887976341s ago: executing program 1 (id=694):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
connect$ax25(r0, &(0x7f00000001c0)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)

13.610331676s ago: executing program 1 (id=698):
r0 = syz_open_dev$radio(&(0x7f0000000300), 0x2, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000002280)={0x0, 0x1, 0x40})

13.441373842s ago: executing program 32 (id=698):
r0 = syz_open_dev$radio(&(0x7f0000000300), 0x2, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000002280)={0x0, 0x1, 0x40})

2.830329381s ago: executing program 0 (id=829):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r3, {}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})

2.609028489s ago: executing program 0 (id=831):
r0 = syz_usb_connect$uac1(0x0, 0xdc, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca00030100700009040000000101"], 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000780)={0x14, 0x0, &(0x7f00000009c0)={0x0, 0x3, 0x6, @string={0x6, 0x3, "6600519a"}}}, 0x0)

1.220750252s ago: executing program 3 (id=842):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x1, 0x42, 0x40, 0xc6}, 0x50)

1.22031716s ago: executing program 3 (id=844):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
quotactl$Q_GETQUOTA(0xffffffff80000700, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1.00950899s ago: executing program 3 (id=848):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYBLOB="740000000306010800000000000000000600000705000100070000000500010007000000050001000700000005000100070000000900020073797a3000000000050001000700000005000100070000000900020073797a30000000000900020073797a30000000000900020073797a31"], 0x74}, 0x1, 0x0, 0x0, 0x80c1}, 0x50)

916.71999ms ago: executing program 2 (id=850):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
tee(r0, r0, 0x85, 0xb)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000140)={{{@in=@broadcast, @in=@broadcast, 0x0, 0x5, 0x4e20, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0xfffffffffffffffe, 0x0, 0x72, 0x0, 0x0, 0x4}, {0x3}, 0x0, 0x0, 0x1}, {{@in6=@private2, 0x0, 0x32}, 0xa, @in, 0x0, 0x4}}, 0xe8)
sendmmsg$inet6(r0, &(0x7f0000000a80)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x1, 0x0)
close(r0)

901.224403ms ago: executing program 0 (id=851):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1f, 0x0, &(0x7f0000000480))

798.780495ms ago: executing program 3 (id=852):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3, r2}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)

750.436148ms ago: executing program 2 (id=853):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000840)={&(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x27}}, 0x10, 0x0, 0x0, &(0x7f0000001c80)=ANY=[], 0x2f8}, 0x20000080)
setsockopt$sock_attach_bpf(r0, 0x6, 0x19, &(0x7f0000000200)=r0, 0x21)

750.169358ms ago: executing program 0 (id=854):
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800020085000000a500000095"], &(0x7f0000000300)='GPL\x00', 0x8, 0xff8, &(0x7f0000001e00)=""/4088}, 0x94)

749.743361ms ago: executing program 3 (id=855):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f5, &(0x7f0000000380)={'ip6_vti0\x00', 0x0})

689.317957ms ago: executing program 3 (id=856):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x2, [@var, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}, {}]}, @func={0x0, 0x0, 0x0, 0xc, 0x20}, @volatile, @volatile, @volatile={0x0, 0x0, 0x0, 0x9, 0x2}]}}, 0x0, 0x96}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e24, @loopback}, 0x10)
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xc9100120, 0x0, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000200)={0x1f, 0x0, @any, 0x2}, 0xe)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f00000000c0)=0x3d, 0x4)

689.084729ms ago: executing program 2 (id=857):
r0 = socket(0x2, 0x400000000002, 0x0)
setsockopt(r0, 0x0, 0x21, &(0x7f0000000180), 0x0)

686.969131ms ago: executing program 0 (id=858):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f00000009c0)={0xf, {"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", 0x1009}}, 0x1006)

510.658813ms ago: executing program 2 (id=859):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getroute={0x1c, 0x1a, 0x101, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x5, 0x800}}, 0x1c}}, 0x0)

422.298886ms ago: executing program 2 (id=860):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f00000016c0)={0x10, 0x0, 0x25dfdbfb, 0x40000044}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x11c}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x4}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x80}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)

291.412µs ago: executing program 2 (id=861):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x443f, &(0x7f00000088c0)="$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")
setxattr$trusted_overlay_origin(&(0x7f0000000240)='.\x00', &(0x7f0000000000), 0x0, 0x0, 0x0)

0s ago: executing program 0 (id=862):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000040)=[@in6={0xa, 0x4e1f, 0x2dc, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}], 0x1c)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:3864' (ED25519) to the list of known hosts.
syzkaller login: [   56.096711][ T5781] cgroup: Unknown subsys name 'net'
[   56.240991][ T5781] cgroup: Unknown subsys name 'cpuset'
[   56.245804][ T5781] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   57.984980][ T5781] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.151435][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[   71.153518][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[   86.510072][   T46] cfg80211: failed to load regulatory.db
[  103.120517][ T5955] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  107.169895][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.173924][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.177396][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.194528][ T5981] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.199245][ T5978] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.218507][ T5983] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.229952][ T5981] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.233830][ T5981] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.236874][ T5981] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.252810][ T5981] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  107.255204][ T5983] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.269144][ T5981] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.272208][ T5981] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  107.275611][ T5981] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  107.280088][ T5981] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  107.722381][ T5984] chnl_net:caif_netlink_parms(): no params data found
[  107.730944][ T5977] chnl_net:caif_netlink_parms(): no params data found
[  107.786988][ T5980] chnl_net:caif_netlink_parms(): no params data found
[  107.842691][ T5984] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.845587][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.848204][ T5984] bridge_slave_0: entered allmulticast mode
[  107.851006][ T5984] bridge_slave_0: entered promiscuous mode
[  107.889777][ T5984] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.892374][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.895009][ T5984] bridge_slave_1: entered allmulticast mode
[  107.897889][ T5984] bridge_slave_1: entered promiscuous mode
[  107.942902][ T5977] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.945734][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.949247][ T5977] bridge_slave_0: entered allmulticast mode
[  107.953858][ T5977] bridge_slave_0: entered promiscuous mode
[  107.960467][ T5984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.963721][ T5977] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.966473][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.970030][ T5977] bridge_slave_1: entered allmulticast mode
[  107.973909][ T5977] bridge_slave_1: entered promiscuous mode
[  108.002240][ T5984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.005838][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.008703][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.010901][ T5980] bridge_slave_0: entered allmulticast mode
[  108.013550][ T5980] bridge_slave_0: entered promiscuous mode
[  108.057003][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.059978][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.062821][ T5980] bridge_slave_1: entered allmulticast mode
[  108.066568][ T5980] bridge_slave_1: entered promiscuous mode
[  108.081448][ T5977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.085350][ T5984] team0: Port device team_slave_0 added
[  108.103365][ T5977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.122112][ T5984] team0: Port device team_slave_1 added
[  108.127093][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.159548][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.175370][ T5977] team0: Port device team_slave_0 added
[  108.201968][ T5977] team0: Port device team_slave_1 added
[  108.219153][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.221261][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.230310][ T5984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  108.244530][ T5980] team0: Port device team_slave_0 added
[  108.247235][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.250007][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.257615][ T5984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.276384][ T5980] team0: Port device team_slave_1 added
[  108.297580][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.300669][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.308967][ T5977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  108.313838][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.316256][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.326843][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  108.331188][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.333732][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.341422][ T5977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.354382][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.356558][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.364506][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.405011][ T5984] hsr_slave_0: entered promiscuous mode
[  108.407449][ T5984] hsr_slave_1: entered promiscuous mode
[  108.429583][ T5977] hsr_slave_0: entered promiscuous mode
[  108.431879][ T5977] hsr_slave_1: entered promiscuous mode
[  108.433960][ T5977] debugfs: 'hsr0' already exists in 'hsr'
[  108.435741][ T5977] Cannot create hsr debugfs directory
[  108.441993][ T5980] hsr_slave_0: entered promiscuous mode
[  108.444351][ T5980] hsr_slave_1: entered promiscuous mode
[  108.446386][ T5980] debugfs: 'hsr0' already exists in 'hsr'
[  108.449247][ T5980] Cannot create hsr debugfs directory
[  108.775197][ T5984] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  108.792389][ T5984] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  108.806017][ T5984] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  108.811772][ T5984] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  108.843295][ T5977] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  108.870253][ T5977] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  108.892851][ T5977] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  108.904625][ T5977] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  108.931846][ T5980] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  108.942281][ T5980] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.947149][ T5980] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.960782][ T5980] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  109.059877][ T5984] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.076095][ T5977] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.095113][ T5984] 8021q: adding VLAN 0 to HW filter on device team0
[  109.111240][ T5977] 8021q: adding VLAN 0 to HW filter on device team0
[  109.116509][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.122960][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.125386][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.151667][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.154276][ T1091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.165520][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.168382][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.175148][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.178079][ T1091] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.198518][ T5980] 8021q: adding VLAN 0 to HW filter on device team0
[  109.217653][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.219934][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.234312][ T5977] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  109.237517][ T5977] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  109.260622][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.263430][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.312956][ T5238] Bluetooth: hci1: command tx timeout
[  109.315476][ T5238] Bluetooth: hci0: command tx timeout
[  109.317873][ T5981] Bluetooth: hci2: command tx timeout
[  109.357094][ T5980] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  109.362161][ T5980] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  109.423841][ T5977] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.439195][ T5984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.491080][ T5977] veth0_vlan: entered promiscuous mode
[  109.504267][ T5984] veth0_vlan: entered promiscuous mode
[  109.509797][ T5977] veth1_vlan: entered promiscuous mode
[  109.521438][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.530617][ T5984] veth1_vlan: entered promiscuous mode
[  109.554863][ T5977] veth0_macvtap: entered promiscuous mode
[  109.565213][ T5984] veth0_macvtap: entered promiscuous mode
[  109.572867][ T5977] veth1_macvtap: entered promiscuous mode
[  109.577772][ T5984] veth1_macvtap: entered promiscuous mode
[  109.599573][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.603131][ T5980] veth0_vlan: entered promiscuous mode
[  109.612646][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.619894][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.625800][ T5980] veth1_vlan: entered promiscuous mode
[  109.630627][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.637830][ T6006] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.641687][ T6006] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.654665][ T6006] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.657400][ T6006] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.666316][ T5962] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.680020][ T5962] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.691241][ T5962] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.710778][ T5962] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.744801][ T5980] veth0_macvtap: entered promiscuous mode
[  109.777430][ T5980] veth1_macvtap: entered promiscuous mode
[  109.797271][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.803908][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.824446][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.826959][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.827645][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.840105][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.859911][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.865034][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.866340][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.873034][ T5962] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.876454][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.895683][ T5962] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.899652][ T5962] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.913060][ T5962] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.974379][ T6043] loop2: detected capacity change from 0 to 16
[  109.981379][ T6043] erofs (device loop2): mounted with root inode @ nid 36.
[  110.001844][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.006670][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.063047][ T3568] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.065767][ T3568] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.173356][ T6053] loop0: detected capacity change from 0 to 256
[  110.180529][ T6053] =======================================================
[  110.180529][ T6053] WARNING: The mand mount option has been deprecated and
[  110.180529][ T6053]          and is ignored by this kernel. Remove the mand
[  110.180529][ T6053]          option from the mount to silence this warning.
[  110.180529][ T6053] =======================================================
[  110.196696][ T6053] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  110.201615][ T6053] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  110.209704][ T6053] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  110.654001][ T6070] Zero length message leads to an empty skb
[  111.169085][ T6076] loop2: detected capacity change from 0 to 7
[  111.174125][ T6076] Dev loop2: unable to read RDB block 7
[  111.183478][ T6063] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  111.186832][ T6076]  loop2: unable to read partition table
[  111.189627][ T6076] loop2: partition table beyond EOD, truncated
[  111.193867][ T6076] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5)
[  111.392017][   T54] Bluetooth: hci1: command tx timeout
[  111.394559][ T5981] Bluetooth: hci2: command tx timeout
[  111.583250][ T6085] loop0: detected capacity change from 0 to 8
[  111.594643][ T6085] SQUASHFS error: lzo decompression failed, data probably corrupt
[  111.597467][ T6085] SQUASHFS error: Failed to read block 0x82: -5
[  111.600717][ T6085] SQUASHFS error: Unable to read metadata cache entry [80]
[  111.607154][ T6085] SQUASHFS error: Unable to read inode 0x11f
[  111.937652][ T6106] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.126'.
[  111.945717][ T6106] netlink: 24 bytes leftover after parsing attributes in process `syz.2.126'.
[  112.519244][ T6041] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  112.672406][ T6041] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  112.675496][ T6041] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  112.679947][ T6041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  112.683306][ T6041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  112.686777][ T6041] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  112.691618][ T6041] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  112.694456][ T6041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.706326][ T6041] usb 1-1: config 0 descriptor??
[  112.711120][ T6123] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  113.094806][ T6132] loop1: detected capacity change from 0 to 65
[  113.101816][ T6132] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  113.141994][ T6041] plantronics 0003:047F:FFFF.0001: reserved main item tag 0xd
[  113.180498][ T6041] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  113.422596][ T6041] usb 1-1: USB disconnect, device number 2
[  113.469715][ T5981] Bluetooth: hci2: command tx timeout
[  113.471946][ T5981] Bluetooth: hci1: command tx timeout
[  113.493064][ T6148] netlink: 'syz.2.145': attribute type 5 has an invalid length.
[  114.252711][ T6168] Driver unsupported XDP return value 0 on prog  (id 6) dev N/A, expect packet loss!
[  114.831242][ T6185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.161'.
[  114.841984][ T6185] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.864317][ T6185] bridge_slave_1 (unregistering): left allmulticast mode
[  114.866647][ T6185] bridge_slave_1 (unregistering): left promiscuous mode
[  114.869217][ T6038] usb 3-1: new low-speed USB device number 2 using dummy_hcd
[  114.873331][ T6185] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.015170][ T6187] loop0: detected capacity change from 0 to 256
[  115.034174][ T6187] FAT-fs (loop0): Directory bread(block 64) failed
[  115.037098][ T6187] FAT-fs (loop0): Directory bread(block 65) failed
[  115.040948][ T6187] FAT-fs (loop0): Directory bread(block 66) failed
[  115.045274][ T6187] FAT-fs (loop0): Directory bread(block 67) failed
[  115.048761][ T6187] FAT-fs (loop0): Directory bread(block 68) failed
[  115.059499][ T6038] usb 3-1: config 2 has an invalid interface number: 227 but max is 0
[  115.062064][ T6038] usb 3-1: config 2 has no interface number 0
[  115.063994][ T6038] usb 3-1: config 2 interface 227 has no altsetting 0
[  115.066753][ T6187] FAT-fs (loop0): Directory bread(block 69) failed
[  115.075419][ T6191] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  115.077015][ T6187] FAT-fs (loop0): Directory bread(block 70) failed
[  115.081346][ T6038] usb 3-1: New USB device found, idVendor=07ca, idProduct=2835, bcdDevice=b3.c2
[  115.083480][ T6187] FAT-fs (loop0): Directory bread(block 71) failed
[  115.087088][ T6038] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.087765][ T6187] FAT-fs (loop0): Directory bread(block 72) failed
[  115.092716][ T6187] FAT-fs (loop0): Directory bread(block 73) failed
[  115.205556][ T6195] loop0: detected capacity change from 0 to 256
[  115.227074][ T6195] FAT-fs (loop0): Directory bread(block 64) failed
[  115.229879][ T6195] FAT-fs (loop0): Directory bread(block 65) failed
[  115.232672][ T6195] FAT-fs (loop0): Directory bread(block 66) failed
[  115.235317][ T6195] FAT-fs (loop0): Directory bread(block 67) failed
[  115.238707][ T6195] FAT-fs (loop0): Directory bread(block 68) failed
[  115.241323][ T6195] FAT-fs (loop0): Directory bread(block 69) failed
[  115.244096][ T6195] FAT-fs (loop0): Directory bread(block 70) failed
[  115.246777][ T6195] FAT-fs (loop0): Directory bread(block 71) failed
[  115.251210][ T6195] FAT-fs (loop0): Directory bread(block 72) failed
[  115.253733][ T6195] FAT-fs (loop0): Directory bread(block 73) failed
[  115.310013][  T123] usb 3-1: USB disconnect, device number 2
[  115.378088][ T6038] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  115.538113][ T6038] usb 2-1: Using ep0 maxpacket: 32
[  115.542121][ T6038] usb 2-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  115.544979][ T6038] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.548205][   T54] Bluetooth: hci1: command tx timeout
[  115.549866][   T54] Bluetooth: hci2: command tx timeout
[  115.552686][ T6038] usb 2-1: config 0 descriptor??
[  115.559342][ T6038] as10x_usb: device has been detected
[  115.561481][ T6038] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  115.572777][ T6038] usb 2-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  115.588731][ T6038] as10x_usb: error during firmware upload part1
[  115.590969][ T6038] Registered device nBox DVB-T Dongle
[  115.678981][ T6196] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  115.765723][ T6041] usb 2-1: USB disconnect, device number 2
[  115.784638][ T6041] Unregistered device nBox DVB-T Dongle
[  115.786173][ T6041] as10x_usb: device has been disconnected
[  115.832286][ T6196] usb 1-1: unable to get BOS descriptor or descriptor too short
[  115.840727][ T6196] usb 1-1: config 1 interface 0 altsetting 14 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  115.845611][ T6196] usb 1-1: config 1 interface 0 has no altsetting 0
[  115.857307][ T6196] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  115.864416][ T6196] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.867581][ T6196] usb 1-1: Product: syz
[  115.871111][ T6196] usb 1-1: Manufacturer: syz
[  115.873136][ T6196] usb 1-1: SerialNumber: syz
[  116.093934][ T6196] usbhid 1-1:1.0: can't add hid device: -22
[  116.095975][ T6196] usbhid 1-1:1.0: probe with driver usbhid failed with error -22
[  116.107912][ T6196] usb 1-1: USB disconnect, device number 3
[  116.122506][ T6216] netlink: 268 bytes leftover after parsing attributes in process `syz.2.176'.
[  116.126338][ T6216] unsupported nla_type 65024
[  116.418421][ T6235] capability: warning: `syz.1.184' uses 32-bit capabilities (legacy support in use)
[  116.506995][ T6243] loop1: detected capacity change from 0 to 256
[  116.525171][ T6243] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  116.756294][ T6259] tipc: Failed to remove unknown binding: 66,1,1/0:1001738797/1001738799
[  116.759138][ T6259] tipc: Failed to remove unknown binding: 66,1,1/0:1001738797/1001738799
[  116.876231][ T6265] netfs: Couldn't get user pages (rc=-14)
[  116.988056][ T5316] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  117.351978][ T5316] usb 2-1: Using ep0 maxpacket: 8
[  117.356824][ T5316] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  117.366696][ T5316] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  117.369792][ T5316] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.375034][ T5316] usb 2-1: config 0 descriptor??
[  117.381626][ T5316] gspca_main: vc032x-2.14.0 probing 046d:0892
[  117.789261][ T5316] gspca_vc032x: reg_w err -71
[  117.790820][ T5316] vc032x 2-1:0.0: probe with driver vc032x failed with error -71
[  117.945226][ T6293] hub 6-0:1.0: USB hub found
[  117.948211][ T6293] hub 6-0:1.0: 1 port detected
[  118.003811][ T5316] usb 2-1: USB disconnect, device number 3
[  118.275403][ T6297] loop0: detected capacity change from 0 to 16
[  118.280812][ T6297] erofs (device loop0): blkszbits 0 isn't supported
[  118.357873][ T6301] warning: `syz.0.209' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  118.560984][ T6308] loop1: detected capacity change from 0 to 1024
[  118.595263][ T6308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.632568][ T5984] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.779668][ T5316] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  118.908147][ T6196] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  118.938112][ T5316] usb 3-1: Using ep0 maxpacket: 8
[  118.946909][ T5316] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  118.950679][ T5316] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.953987][ T5316] usb 3-1: Product: syz
[  118.955715][ T5316] usb 3-1: Manufacturer: syz
[  118.957589][ T5316] usb 3-1: SerialNumber: syz
[  118.964654][ T5316] usb 3-1: config 0 descriptor??
[  118.969916][ T5316] gspca_main: se401-2.14.0 probing 047d:5003
[  119.061210][ T6196] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  119.065256][ T6196] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[  119.069263][ T6196] usb 2-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  119.072663][ T6196] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.080376][ T6196] usb 2-1: config 0 descriptor??
[  119.094429][ T6196] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  119.097217][ T6196] dvb-usb: bulk message failed: -22 (3/0)
[  119.104639][ T6196] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  119.112468][ T6196] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  119.115189][ T6196] usb 2-1: media controller created
[  119.119970][ T6196] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  119.127566][ T6196] dvb-usb: bulk message failed: -22 (6/0)
[  119.130130][ T6196] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  119.135900][ T6196] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input5
[  119.148213][ T6196] dvb-usb: schedule remote query interval to 150 msecs.
[  119.150878][ T6196] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  119.303737][ T6196] usb 2-1: USB disconnect, device number 4
[  119.311018][ T6038] dvb-usb: bulk message failed: -22 (1/0)
[  119.313334][ T6038] dvb-usb: error while querying for an remote control event.
[  119.347146][ T6196] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  119.382122][ T5316] gspca_se401: ExtraFeatures: 79
[  119.384670][ T5316] gspca_se401: Frame size: 0x0 1/16th janggu
[  119.448168][ T6321] loop0: detected capacity change from 0 to 512
[  119.471461][ T6321] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.217: casefold flag without casefold feature
[  119.481167][ T6321] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.217: couldn't read orphan inode 15 (err -117)
[  119.490285][ T6321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.534152][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.585719][ T5316] input: se401 as /devices/platform/dummy_hcd.2/usb3/3-1/input/input6
[  119.612125][ T5316] usb 3-1: USB disconnect, device number 3
[  119.616192][ T6326] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  119.789971][ T6332] block nbd0: NBD_DISCONNECT
[  119.792003][ T6332] block nbd0: Send disconnect failed -22
[  119.795628][ T6332] block nbd0: Send disconnect failed -22
[  119.797861][ T6330] block nbd0: Disconnected due to user request.
[  119.802347][ T6330] block nbd0: shutting down sockets
[  119.944637][ T6344] loop1: detected capacity change from 0 to 128
[  119.957624][ T6344] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  120.102105][ T6352] process 'syz.0.231' launched './file0' with NULL argv: empty string added
[  120.110166][ T6354] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  120.122401][ T6354] comedi comedi3: 8255: I/O port conflict (0x10000,4)
[  120.125602][ T6354] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  120.140961][ T6354] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  120.244643][ T6360] loop1: detected capacity change from 0 to 512
[  120.259763][ T6360] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  120.292041][ T6360] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  120.295376][ T6360] System zones: 0-2, 18-18, 34-34
[  120.307290][ T6360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.307411][ T6360] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.336016][ T6360] EXT4-fs: Cannot change journaled quota options when quota turned on
[  120.353039][ T5984] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.435427][ T6373] loop1: detected capacity change from 0 to 2048
[  120.453007][ T6373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  120.463317][ T6373] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  120.471047][ T6373] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28
[  120.476681][ T6373] EXT4-fs (loop1): This should not happen!! Data will be lost
[  120.476681][ T6373] 
[  120.483073][ T6373] EXT4-fs (loop1): Total free blocks count 0
[  120.485388][ T6373] EXT4-fs (loop1): Free/Dirty block details
[  120.487879][ T6373] EXT4-fs (loop1): free_blocks=2415919104
[  120.490388][ T6373] EXT4-fs (loop1): dirty_blocks=16
[  120.492764][ T6373] EXT4-fs (loop1): Block reservation details
[  120.495020][ T6373] EXT4-fs (loop1): i_reserved_data_blocks=1
[  120.503039][ T6373] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  120.620073][ T6381] loop1: detected capacity change from 0 to 1764
[  120.639057][ T6381] iso9660: Corrupted directory entry in block 2 of inode 1920
[  120.968095][ T6196] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  121.138545][ T6196] usb 2-1: Using ep0 maxpacket: 8
[  121.145602][ T6196] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  121.150074][ T6196] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.158905][ T6196] usb 2-1: config 0 descriptor??
[  121.408167][ T5316] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  121.562449][ T5316] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  121.570337][ T5316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  121.574628][ T5316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  121.590111][ T5316] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  121.604436][ T5316] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  121.612816][ T5316] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  121.615972][ T5316] usb 3-1: Manufacturer: syz
[  121.626583][ T5316] usb 3-1: config 0 descriptor??
[  121.745484][ T6400] loop0: detected capacity change from 0 to 2048
[  121.756068][ T6400] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  121.888247][ T5316] rc_core: IR keymap rc-hauppauge not found
[  121.890287][ T5316] Registered IR keymap rc-empty
[  121.892142][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  121.918509][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  121.941595][ T5316] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  121.948287][ T5316] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input7
[  121.960998][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  121.974131][ T6196] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  121.979171][ T6196] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9
[  121.982200][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.008915][ T6196] asix 2-1:0.0: probe with driver asix failed with error -71
[  122.011336][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.016410][ T6196] usb 2-1: USB disconnect, device number 5
[  122.028537][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.048166][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.068522][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.089996][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.108249][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.128185][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.158186][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.174643][ T6418] loop0: detected capacity change from 0 to 4096
[  122.180162][ T5316] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  122.197740][ T6418] ntfs3(loop0): ino=18, mi_enum_attr
[  122.201514][ T6418] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  122.215212][ T5316] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  122.215753][ T6418] ntfs3(loop0): failed to convert "0080" to cp862
[  122.221128][ T5316] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  122.225749][ T6418] ntfs3(loop0): failed to convert name for inode 1e.
[  122.229406][ T6418] ntfs3(loop0): ino=1f, mi_enum_attr
[  122.315005][ T6196] usb 3-1: USB disconnect, device number 4
[  122.550019][ T6428] geneve2: entered promiscuous mode
[  122.552138][ T6428] geneve2: entered allmulticast mode
[  122.658594][ T6038] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  122.808038][ T6038] usb 1-1: Using ep0 maxpacket: 8
[  122.811387][ T6038] usb 1-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[  122.814217][ T6038] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.819040][ T6038] usb 1-1: config 0 descriptor??
[  122.882562][ T6435] loop2: detected capacity change from 0 to 4096
[  122.886652][ T6435] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  123.024809][ T6038] usb 1-1: string descriptor 0 read error: -71
[  123.026795][ T6038] usb 1-1: Found UVC 0.00 device <unnamed> (2833:0201)
[  123.037765][ T6038] usb 1-1: No valid video chain found.
[  123.045689][ T6038] usb 1-1: USB disconnect, device number 4
[  124.234834][ T6477] loop0: detected capacity change from 0 to 65
[  124.243033][ T6477] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop0
[  124.417371][ T6483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.283'.
[  125.717339][ T6509] loop0: detected capacity change from 0 to 16
[  125.721866][ T6509] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  126.098117][ T6038] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  126.248118][ T6038] usb 1-1: Using ep0 maxpacket: 16
[  126.254827][ T6038] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  126.257852][ T6038] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.260800][ T6038] usb 1-1: Product: syz
[  126.262304][ T6038] usb 1-1: Manufacturer: syz
[  126.263772][ T6038] usb 1-1: SerialNumber: syz
[  126.266858][ T6038] usb 1-1: config 0 descriptor??
[  126.274443][ T6038] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  126.279102][ T6038] usb 1-1: Detected FT232H
[  126.477607][ T6038] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  126.923084][ T6038] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  127.136076][ T6540] loop1: detected capacity change from 0 to 736
[  127.358929][ T5316] usb 1-1: USB disconnect, device number 5
[  127.371210][ T5316] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  127.375379][ T5316] ftdi_sio 1-1:0.0: device disconnected
[  127.948575][ T5981] Bluetooth: hci3: command 0x1003 tx timeout
[  127.950412][ T6550] loop1: detected capacity change from 0 to 4096
[  127.951382][   T54] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  128.005295][ T6550] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  128.019130][ T6550] ntfs3(loop1): Failed to load $Extend (-22).
[  128.023880][ T6550] ntfs3(loop1): Failed to initialize $Extend.
[  128.296173][ T6562] loop0: detected capacity change from 0 to 512
[  128.314958][ T6562] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  128.353749][ T6562] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.320: bad orphan inode 15
[  128.367083][ T6562] ext4_test_bit(bit=14, block=18) = 1
[  128.372192][ T6562] is_bad_inode(inode)=0
[  128.375937][ T6562] NEXT_ORPHAN(inode)=1023
[  128.377540][ T6562] max_ino=32
[  128.382985][ T6562] i_nlink=0
[  128.404372][ T6562] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  128.410719][ T6562] ext2 filesystem being mounted at /88/qY3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  128.477427][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  128.816847][ T6564] loop1: detected capacity change from 0 to 32768
[  128.851485][ T6564] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section members_v1: too many devices for section size
[  128.851485][ T6564] members_v1 (size 64):
[  128.851485][ T6564] nr_devices mismatch: have 0 entries, should be 8
[  128.937794][ T6564] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  129.257377][ T6581] loop1: detected capacity change from 0 to 2048
[  129.261044][ T6574] loop2: detected capacity change from 0 to 32768
[  129.266424][ T6574] bcachefs (/dev/loop2): error validating superblock: Invalid superblock layout type 7
[  129.282677][ T6574] bcachefs: bch2_fs_get_tree() error: invalid_sb_layout_type
[  129.283877][ T6581] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.326: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 25349(25349)
[  129.296133][ T6581] EXT4-fs (loop1): Remounting filesystem read-only
[  129.299274][ T6581] EXT4-fs (loop1): get root inode failed
[  129.301691][ T6581] EXT4-fs (loop1): mount failed
[  129.768329][ T6610] netlink: 'syz.1.338': attribute type 1 has an invalid length.
[  129.771749][ T6610] netlink: 'syz.1.338': attribute type 2 has an invalid length.
[  129.775095][ T6610] netlink: 4 bytes leftover after parsing attributes in process `syz.1.338'.
[  129.822148][ T6615] capability: warning: `syz.1.341' uses deprecated v2 capabilities in a way that may be insecure
[  129.955894][ T6621] netlink: 'syz.2.344': attribute type 1 has an invalid length.
[  130.001105][ T6621] bond1: entered promiscuous mode
[  130.003222][ T6621] bond1: entered allmulticast mode
[  130.005844][ T6621] 8021q: adding VLAN 0 to HW filter on device bond1
[  130.022085][ T6621] bridge1: entered promiscuous mode
[  130.024400][ T6621] bridge1: entered allmulticast mode
[  130.027161][ T6621] bond1: (slave bridge1): Enslaving as a backup interface with an up link
[  130.028888][ T6619] loop1: detected capacity change from 0 to 4096
[  130.116590][   T13] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  130.159945][ T6627] netlink: 28 bytes leftover after parsing attributes in process `syz.2.345'.
[  130.259714][   T13] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  130.389637][ T6625] loop0: detected capacity change from 0 to 32768
[  130.403465][ T6625] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  130.445534][ T6625] XFS (loop0): Ending clean mount
[  130.478871][ T5980] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  130.534080][ T6649] loop1: detected capacity change from 0 to 512
[  130.555078][ T6649] EXT4-fs (loop1): Test dummy encryption mode enabled
[  130.557220][ T6649] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  130.573982][ T6649] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  130.580436][ T6649] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.353: bad orphan inode 131083
[  130.585173][ T6649] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.641705][ T5984] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.039084][ T6041] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  131.178215][ T2317] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  131.209555][ T6041] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  131.213327][ T6041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.315832][ T6041] usb 1-1: config 0 descriptor??
[  131.434848][ T6041] gspca_main: cpia1-2.14.0 probing 0813:0001
[  131.593940][ T2317] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.597242][ T2317] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.601127][ T2317] usb 2-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  131.604298][ T2317] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.610311][ T2317] usb 2-1: config 0 descriptor??
[  131.807066][ T6041] gspca_cpia1: usb_control_msg 03, error -32
[  131.813274][ T6041] gspca_cpia1: usb_control_msg 03, error -71
[  131.817135][ T6041] gspca_cpia1: usb_control_msg 01, error -71
[  131.828771][ T6041] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0)
[  131.834869][ T6041] usb 1-1: USB disconnect, device number 6
[  131.917385][ T6687] loop2: detected capacity change from 0 to 512
[  131.944764][ T6687] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  131.947829][ T6687] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  131.951929][ T6687] System zones: 0-1, 15-15, 18-18, 34-34
[  131.954488][ T6687] EXT4-fs (loop2): orphan cleanup on readonly fs
[  131.957104][ T6687] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  131.961506][ T6687] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  131.967255][ T6687] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  131.972001][ T6687] EXT4-fs (loop2): 1 truncate cleaned up
[  131.975547][ T6687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.988964][ T6687] fscrypt (loop2, inode 16): Error -61 getting encryption context
[  131.992649][ T6687] fscrypt (loop2, inode 16): Error -61 getting encryption context
[  132.012798][ T5977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.039276][ T2317] petalynx 0003:18B1:0037.0002: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.1-1/input0
[  132.127709][ T6695] mmap: syz.2.373 (6695) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  132.232181][ T6038] usb 2-1: USB disconnect, device number 6
[  132.281360][ T6699] loop2: detected capacity change from 0 to 4096
[  132.295481][ T6699] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  132.300798][ T6699] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  132.305052][ T6699] ntfs3(loop2): Failed to load $MFT.
[  132.472555][ T6705] loop0: detected capacity change from 0 to 128
[  132.509550][ T6705] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.517422][ T6705] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  132.566364][ T6705] EXT4-fs error (device loop0): make_indexed_dir:2269: inode #2: block 18: comm syz.0.378: bad entry in directory: rec_len is smaller than minimal - offset=988, inode=128, rec_len=9, size=1000 fake=0
[  132.580211][ T6705] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.378: dx entry: limit 0 != root limit 125
[  132.597253][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  132.597396][ T6705] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.378: Corrupt directory, running e2fsck is recommended
[  132.605354][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  132.645543][ T5980] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.860803][ T6714] loop2: detected capacity change from 0 to 8192
[  133.051738][ T6730] loop2: detected capacity change from 0 to 256
[  133.298887][ T6727] loop0: detected capacity change from 0 to 32768
[  133.444430][ T6727] JBD2: Ignoring recovery information on journal
[  133.474897][ T6727] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  133.660137][ T5980] ocfs2: Unmounting device (7,0) on (node local)
[  134.128254][ T6038] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  134.289402][ T6038] usb 3-1: Using ep0 maxpacket: 32
[  134.305543][ T6038] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  134.310278][ T6038] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  134.316773][ T6038] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  134.338494][ T6038] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.356731][ T6038] usb 3-1: config 0 descriptor??
[  134.361484][ T6746] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  134.368177][ T6038] hub 3-1:0.0: USB hub found
[  134.573754][ T6038] hub 3-1:0.0: 1 port detected
[  135.028225][ T6781] dns_resolver: Unsupported server list version (0)
[  135.734588][ T6807] hsr0: entered promiscuous mode
[  135.737192][ T6807] macsec1: entered promiscuous mode
[  135.740734][ T6807] macsec1: entered allmulticast mode
[  135.742830][ T6807] hsr0: entered allmulticast mode
[  135.744831][ T6807] hsr_slave_0: entered allmulticast mode
[  135.747048][ T6807] hsr_slave_1: entered allmulticast mode
[  135.795685][ T6196] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  135.844929][ T2317] usb 3-1: USB disconnect, device number 5
[  135.933080][ T6809] loop0: detected capacity change from 0 to 32768
[  135.952176][ T6809] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  135.958280][ T6196] usb 2-1: Using ep0 maxpacket: 16
[  135.964860][ T6196] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  135.973417][ T6196] usb 2-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  135.981483][ T6196] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  135.990257][ T6196] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  135.992042][ T5980] ocfs2: Unmounting device (7,0) on (node local)
[  135.993921][ T6196] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  136.001084][ T6196] usb 2-1: SerialNumber: syz
[  136.166052][ T6815] loop0: detected capacity change from 0 to 8
[  136.301227][ T6196] usb 2-1: USB disconnect, device number 7
[  137.241127][ T6836] loop0: detected capacity change from 0 to 2048
[  137.245824][ T6836] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.254909][ T6836] EXT4-fs: Ignoring removed bh option
[  137.310878][ T6836] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.327856][   T33] audit: type=1800 audit(1755067385.353:2): pid=6836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.435" name="file1" dev="loop0" ino=15 res=0 errno=0
[  137.336193][ T6836] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  137.355584][ T6836] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  137.366166][ T6836] EXT4-fs (loop0): This should not happen!! Data will be lost
[  137.366166][ T6836] 
[  137.373892][ T6836] EXT4-fs (loop0): Total free blocks count 0
[  137.381643][ T6836] EXT4-fs (loop0): Free/Dirty block details
[  137.389299][ T6836] EXT4-fs (loop0): free_blocks=2415919104
[  137.397185][ T6836] EXT4-fs (loop0): dirty_blocks=16
[  137.405210][ T6836] EXT4-fs (loop0): Block reservation details
[  137.416031][ T6836] EXT4-fs (loop0): i_reserved_data_blocks=1
[  137.514172][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.860267][ T6853] mkiss: ax0: crc mode is auto.
[  137.966308][ T6859] loop0: detected capacity change from 0 to 2048
[  138.004562][ T6859] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  138.007225][ T6859] UDF-fs: Scanning with blocksize 512 failed
[  138.019065][ T6859] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  138.070998][ T2317] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  138.144170][ T6857] loop1: detected capacity change from 0 to 40427
[  138.156245][ T6857] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  138.159020][ T6857] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  138.161788][ T6857] F2FS-fs (loop1): build fault injection rate: 17008
[  138.163950][ T6857] F2FS-fs (loop1): build fault injection type: 0x1f8
[  138.170291][ T6857] F2FS-fs (loop1): invalid crc value
[  138.211472][ T6857] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  138.219860][ T6857] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  138.222260][ T6857] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  138.249603][ T2317] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.258032][ T2317] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.261109][ T2317] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  138.264029][ T2317] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.274679][ T2317] usb 3-1: config 0 descriptor??
[  138.437212][ T6857] syz.1.444: attempt to access beyond end of device
[  138.437212][ T6857] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  138.445224][ T6857] CPU: 1 UID: 0 PID: 6857 Comm: syz.1.444 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  138.445247][ T6857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  138.445257][ T6857] Call Trace:
[  138.445264][ T6857]  <TASK>
[  138.445271][ T6857]  dump_stack_lvl+0x189/0x250
[  138.445299][ T6857]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.445317][ T6857]  ? __pfx_queue_work_on+0x10/0x10
[  138.445333][ T6857]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  138.445350][ T6857]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  138.445376][ T6857]  f2fs_handle_critical_error+0x37c/0x540
[  138.445410][ T6857]  f2fs_write_end_io+0x886/0xb60
[  138.445447][ T6857]  __submit_merged_bio+0x27a/0x6a0
[  138.445471][ T6857]  __submit_merged_write_cond+0x255/0x530
[  138.445496][ T6857]  f2fs_write_data_pages+0x261d/0x3000
[  138.445546][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.445627][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.445656][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.445683][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.445700][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.445721][ T6857]  do_writepages+0x32e/0x550
[  138.445781][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.445803][ T6857]  filemap_fdatawrite+0x199/0x240
[  138.445825][ T6857]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  138.445886][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.445908][ T6857]  f2fs_sync_dirty_inodes+0x31f/0x830
[  138.445943][ T6857]  f2fs_write_checkpoint+0x95a/0x1df0
[  138.445986][ T6857]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  138.446041][ T6857]  ? down_write+0x162/0x1f0
[  138.446060][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.446090][ T6857]  f2fs_issue_checkpoint+0x3ac/0x570
[  138.446115][ T6857]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  138.446143][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.446168][ T6857]  ? __up_read+0x280/0x680
[  138.446187][ T6857]  ? f2fs_sync_fs+0x200/0x3d0
[  138.446203][ T6857]  f2fs_do_sync_file+0x869/0x1860
[  138.446230][ T6857]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  138.446286][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.446306][ T6857]  ? sb_start_write+0x114/0x1c0
[  138.446323][ T6857]  ? mnt_want_write_file+0x164/0x200
[  138.446341][ T6857]  __f2fs_ioctl+0x485a/0xb610
[  138.446369][ T6857]  ? file_ioctl+0x22d/0x780
[  138.446396][ T6857]  ? __pfx_file_ioctl+0x10/0x10
[  138.446422][ T6857]  ? kasan_quarantine_put+0xdd/0x220
[  138.446443][ T6857]  ? __pfx___f2fs_ioctl+0x10/0x10
[  138.446456][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.446474][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.446493][ T6857]  ? do_vfs_ioctl+0xb33/0x1430
[  138.446513][ T6857]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  138.446535][ T6857]  ? do_mprotect_pkey+0xb00/0xce0
[  138.446557][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.446597][ T6857]  ? __fget_files+0x2a/0x420
[  138.446621][ T6857]  ? __fget_files+0x2a/0x420
[  138.446640][ T6857]  ? __fget_files+0x3a0/0x420
[  138.446660][ T6857]  ? __fget_files+0x2a/0x420
[  138.446683][ T6857]  ? f2fs_ioctl+0x135/0x250
[  138.446696][ T6857]  ? __pfx_f2fs_ioctl+0x10/0x10
[  138.446717][ T6857]  __se_sys_ioctl+0xfc/0x170
[  138.446766][ T6857]  do_syscall_64+0xfa/0x3b0
[  138.446787][ T6857]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.446806][ T6857]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.446822][ T6857]  ? exc_page_fault+0x9f/0xf0
[  138.446842][ T6857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.446856][ T6857] RIP: 0033:0x7f1c40f8ebe9
[  138.446890][ T6857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.446903][ T6857] RSP: 002b:00007f1c41d18038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.446920][ T6857] RAX: ffffffffffffffda RBX: 00007f1c411b5fa0 RCX: 00007f1c40f8ebe9
[  138.446931][ T6857] RDX: 0000000000000000 RSI: 000000000000f502 RDI: 0000000000000006
[  138.446939][ T6857] RBP: 00007f1c41011e19 R08: 0000000000000000 R09: 0000000000000000
[  138.446947][ T6857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.446955][ T6857] R13: 00007f1c411b6038 R14: 00007f1c411b5fa0 R15: 00007ffd443f1b18
[  138.446981][ T6857]  </TASK>
[  138.446987][ T6857] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  138.614379][ T6857] CPU: 1 UID: 0 PID: 6857 Comm: syz.1.444 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  138.614401][ T6857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  138.614411][ T6857] Call Trace:
[  138.614417][ T6857]  <TASK>
[  138.614425][ T6857]  dump_stack_lvl+0x189/0x250
[  138.614454][ T6857]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.614471][ T6857]  ? __pfx_queue_work_on+0x10/0x10
[  138.614485][ T6857]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  138.614503][ T6857]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  138.614532][ T6857]  f2fs_handle_critical_error+0x37c/0x540
[  138.614559][ T6857]  f2fs_write_end_io+0x886/0xb60
[  138.614599][ T6857]  __submit_merged_bio+0x27a/0x6a0
[  138.614625][ T6857]  __submit_merged_write_cond+0x255/0x530
[  138.614651][ T6857]  f2fs_write_data_pages+0x261d/0x3000
[  138.614706][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.614835][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.614866][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.614895][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.614930][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.614951][ T6857]  do_writepages+0x32e/0x550
[  138.614983][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.615007][ T6857]  filemap_fdatawrite+0x199/0x240
[  138.615027][ T6857]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  138.615102][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.615125][ T6857]  f2fs_sync_dirty_inodes+0x31f/0x830
[  138.615164][ T6857]  f2fs_write_checkpoint+0x95a/0x1df0
[  138.615212][ T6857]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  138.615267][ T6857]  ? down_write+0x162/0x1f0
[  138.615283][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.615312][ T6857]  f2fs_issue_checkpoint+0x3ac/0x570
[  138.615340][ T6857]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  138.615367][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.615392][ T6857]  ? __up_read+0x280/0x680
[  138.615416][ T6857]  ? f2fs_sync_fs+0x200/0x3d0
[  138.615436][ T6857]  f2fs_do_sync_file+0x869/0x1860
[  138.615464][ T6857]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  138.615518][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.615537][ T6857]  ? sb_start_write+0x114/0x1c0
[  138.615553][ T6857]  ? mnt_want_write_file+0x164/0x200
[  138.615570][ T6857]  __f2fs_ioctl+0x485a/0xb610
[  138.615602][ T6857]  ? file_ioctl+0x22d/0x780
[  138.615622][ T6857]  ? __pfx_file_ioctl+0x10/0x10
[  138.615649][ T6857]  ? kasan_quarantine_put+0xdd/0x220
[  138.615672][ T6857]  ? __pfx___f2fs_ioctl+0x10/0x10
[  138.615688][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.615708][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.615768][ T6857]  ? do_vfs_ioctl+0xb33/0x1430
[  138.615789][ T6857]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  138.615812][ T6857]  ? do_mprotect_pkey+0xb00/0xce0
[  138.615834][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.615876][ T6857]  ? __fget_files+0x2a/0x420
[  138.615899][ T6857]  ? __fget_files+0x2a/0x420
[  138.615918][ T6857]  ? __fget_files+0x3a0/0x420
[  138.615938][ T6857]  ? __fget_files+0x2a/0x420
[  138.615962][ T6857]  ? f2fs_ioctl+0x135/0x250
[  138.615974][ T6857]  ? __pfx_f2fs_ioctl+0x10/0x10
[  138.615996][ T6857]  __se_sys_ioctl+0xfc/0x170
[  138.616017][ T6857]  do_syscall_64+0xfa/0x3b0
[  138.616035][ T6857]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.616060][ T6857]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.616076][ T6857]  ? exc_page_fault+0x9f/0xf0
[  138.616096][ T6857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.616111][ T6857] RIP: 0033:0x7f1c40f8ebe9
[  138.616127][ T6857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.616139][ T6857] RSP: 002b:00007f1c41d18038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.616157][ T6857] RAX: ffffffffffffffda RBX: 00007f1c411b5fa0 RCX: 00007f1c40f8ebe9
[  138.616168][ T6857] RDX: 0000000000000000 RSI: 000000000000f502 RDI: 0000000000000006
[  138.616176][ T6857] RBP: 00007f1c41011e19 R08: 0000000000000000 R09: 0000000000000000
[  138.616185][ T6857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.616194][ T6857] R13: 00007f1c411b6038 R14: 00007f1c411b5fa0 R15: 00007ffd443f1b18
[  138.616223][ T6857]  </TASK>
[  138.616230][ T6857] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  138.695035][ T2317] hid-led 0003:0FC5:B080.0003: unknown main item tag 0x0
[  138.696261][ T6857] CPU: 1 UID: 0 PID: 6857 Comm: syz.1.444 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  138.696283][ T6857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  138.696293][ T6857] Call Trace:
[  138.696300][ T6857]  <TASK>
[  138.696307][ T6857]  dump_stack_lvl+0x189/0x250
[  138.696335][ T6857]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.696355][ T6857]  ? __pfx_queue_work_on+0x10/0x10
[  138.696370][ T6857]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  138.696390][ T6857]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  138.696418][ T6857]  f2fs_handle_critical_error+0x37c/0x540
[  138.696445][ T6857]  f2fs_write_end_io+0x886/0xb60
[  138.696486][ T6857]  __submit_merged_bio+0x27a/0x6a0
[  138.696513][ T6857]  __submit_merged_write_cond+0x255/0x530
[  138.696539][ T6857]  f2fs_write_data_pages+0x261d/0x3000
[  138.696595][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.696688][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.696750][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.696781][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.696802][ T6857]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  138.696824][ T6857]  do_writepages+0x32e/0x550
[  138.696856][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.696879][ T6857]  filemap_fdatawrite+0x199/0x240
[  138.696900][ T6857]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  138.696969][ T6857]  ? do_raw_spin_unlock+0x4d/0x240
[  138.696992][ T6857]  f2fs_sync_dirty_inodes+0x31f/0x830
[  138.697030][ T6857]  f2fs_write_checkpoint+0x95a/0x1df0
[  138.697091][ T6857]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  138.697153][ T6857]  ? down_write+0x162/0x1f0
[  138.697174][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.697206][ T6857]  f2fs_issue_checkpoint+0x3ac/0x570
[  138.697231][ T6857]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  138.697262][ T6857]  ? do_raw_spin_lock+0x121/0x290
[  138.697290][ T6857]  ? __up_read+0x280/0x680
[  138.697314][ T6857]  ? f2fs_sync_fs+0x200/0x3d0
[  138.697336][ T6857]  f2fs_do_sync_file+0x869/0x1860
[  138.697368][ T6857]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  138.697431][ T6857]  ? __pfx_down_write+0x10/0x10
[  138.697452][ T6857]  ? sb_start_write+0x114/0x1c0
[  138.697470][ T6857]  ? mnt_want_write_file+0x164/0x200
[  138.697490][ T6857]  __f2fs_ioctl+0x485a/0xb610
[  138.697522][ T6857]  ? file_ioctl+0x22d/0x780
[  138.697544][ T6857]  ? __pfx_file_ioctl+0x10/0x10
[  138.697575][ T6857]  ? kasan_quarantine_put+0xdd/0x220
[  138.697597][ T6857]  ? __pfx___f2fs_ioctl+0x10/0x10
[  138.697615][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.697634][ T6857]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.697656][ T6857]  ? do_vfs_ioctl+0xb33/0x1430
[  138.697677][ T6857]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  138.697699][ T6857]  ? do_mprotect_pkey+0xb00/0xce0
[  138.697754][ T6857]  ? __lock_acquire+0xab9/0xd20
[  138.697798][ T6857]  ? __fget_files+0x2a/0x420
[  138.697822][ T6857]  ? __fget_files+0x2a/0x420
[  138.697842][ T6857]  ? __fget_files+0x3a0/0x420
[  138.697862][ T6857]  ? __fget_files+0x2a/0x420
[  138.697886][ T6857]  ? f2fs_ioctl+0x135/0x250
[  138.697899][ T6857]  ? __pfx_f2fs_ioctl+0x10/0x10
[  138.697921][ T6857]  __se_sys_ioctl+0xfc/0x170
[  138.697959][ T6857]  do_syscall_64+0xfa/0x3b0
[  138.697980][ T6857]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.697998][ T6857]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.698010][ T6857]  ? exc_page_fault+0x9f/0xf0
[  138.698028][ T6857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.698042][ T6857] RIP: 0033:0x7f1c40f8ebe9
[  138.698062][ T6857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.698074][ T6857] RSP: 002b:00007f1c41d18038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.698089][ T6857] RAX: ffffffffffffffda RBX: 00007f1c411b5fa0 RCX: 00007f1c40f8ebe9
[  138.698100][ T6857] RDX: 0000000000000000 RSI: 000000000000f502 RDI: 0000000000000006
[  138.698109][ T6857] RBP: 00007f1c41011e19 R08: 0000000000000000 R09: 0000000000000000
[  138.698118][ T6857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.698125][ T6857] R13: 00007f1c411b6038 R14: 00007f1c411b5fa0 R15: 00007ffd443f1b18
[  138.698152][ T6857]  </TASK>
[  138.699088][ T6857] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  138.843352][ T6870] input input8: cannot allocate more than FF_MAX_EFFECTS effects
[  139.353037][ T5316] usb 3-1: USB disconnect, device number 6
[  140.370350][ T6911] netlink: 256 bytes leftover after parsing attributes in process `syz.0.461'.
[  141.434912][ T6929] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  142.096723][ T6942] loop0: detected capacity change from 0 to 256
[  142.109363][ T6942] exFAT-fs (loop0): error, The cluster chain has a loop
[  142.113055][ T6942] exFAT-fs (loop0): failed to count the number of clusters in root
[  142.117277][ T6942] exFAT-fs (loop0): failed to recognize exfat type
[  143.143882][ T6956] netlink: 12 bytes leftover after parsing attributes in process `syz.1.477'.
[  143.412079][ T6965] loop0: detected capacity change from 0 to 2048
[  143.439772][ T6965] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.449614][ T6965] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.476427][ T6965] overlayfs: Failed to create volatile/dirty file.
[  143.503515][ T6965] overlayfs: failed to set xattr on upper
[  143.505359][ T6965] overlayfs: ...falling back to redirect_dir=nofollow.
[  143.507410][ T6965] overlayfs: ...falling back to index=off.
[  143.511482][ T6965] overlayfs: ...falling back to uuid=null.
[  143.572422][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.659392][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.490'.
[  143.665965][ T6987] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  143.979994][ T7012] loop1: detected capacity change from 0 to 256
[  144.068096][   T46] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  144.084158][ T7006] loop0: detected capacity change from 0 to 32768
[  144.189586][ T7020] netlink: 76 bytes leftover after parsing attributes in process `syz.1.507'.
[  144.192815][ T7020] nbd: must specify at least one socket
[  144.229498][   T46] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84
[  144.233049][   T46] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1023
[  144.236121][   T46] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  144.245870][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  144.260572][   T46] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  144.263360][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.265798][   T46] usb 3-1: Product: syz
[  144.272491][   T46] usb 3-1: Manufacturer: syz
[  144.273976][   T46] usb 3-1: SerialNumber: syz
[  144.281828][   T46] usb 3-1: config 0 descriptor??
[  144.283972][ T7002] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  144.287131][   T46] usb 3-1: ucan: probing device on interface #0
[  144.290930][   T46] usb 3-1: ucan: invalid endpoint configuration
[  144.298056][   T46] usb 3-1: ucan: probe failed; try to update the device firmware
[  144.501020][ T6038] usb 3-1: USB disconnect, device number 7
[  144.522957][ T7041] loop0: detected capacity change from 0 to 2048
[  144.843089][ T7059] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  144.876212][ T7063] loop0: detected capacity change from 0 to 512
[  144.881841][ T7063] EXT4-fs: inline encryption not supported
[  144.884225][ T7063] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  144.890954][ T7063] EXT4-fs (loop0): 1 truncate cleaned up
[  144.893994][ T7063] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.945589][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.993593][ T7068] loop1: detected capacity change from 0 to 1024
[  144.999618][ T7068] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.005709][ T7068] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  145.010457][ T7068] EXT4-fs (loop1): stripe (3675) is not aligned with cluster size (16), stripe is disabled
[  145.016887][ T7068] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  145.103176][ T5984] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.339990][ T7070] loop0: detected capacity change from 0 to 32768
[  145.377037][ T7070] JBD2: Ignoring recovery information on journal
[  145.400709][ T7070] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  145.474992][ T5980] ocfs2: Unmounting device (7,0) on (node local)
[  145.482209][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  145.527271][ T7088] loop2: detected capacity change from 0 to 512
[  145.544339][ T7088] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  145.639155][ T7090] netlink: 16 bytes leftover after parsing attributes in process `syz.0.537'.
[  145.650436][   T24] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  145.654278][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  145.659207][   T24] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  145.665827][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  145.669527][   T24] usb 2-1: SerialNumber: syz
[  145.728351][ T7092] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  145.944047][   T24] usb 2-1: 0:2 : does not exist
[  145.988543][ T7102] netlink: 4 bytes leftover after parsing attributes in process `syz.0.544'.
[  146.068231][   T24] usb 2-1: USB disconnect, device number 8
[  146.096191][   T33] audit: type=1326 audit(1755067394.123:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.2.545" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x0
[  146.195570][ T5850] udevd[5850]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  147.486788][ T7134] loop0: detected capacity change from 0 to 512
[  147.494195][ T7134] EXT4-fs: Ignoring removed oldalloc option
[  147.543720][ T7134] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.559: Parent and EA inode have the same ino 15
[  147.544404][ T7131] loop1: detected capacity change from 0 to 32768
[  147.561926][ T7134] EXT4-fs (loop0): 1 orphan inode deleted
[  147.564532][ T7134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.591568][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.625384][ T7131] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  147.625400][ T7131]   allowing incompatible features above 0.0: (unknown version)
[  147.625405][ T7131]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  147.640386][ T7131] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  147.643416][ T7131] bcachefs (loop1): initializing new filesystem
[  147.656250][ T7131] bcachefs (loop1): going read-write
[  147.666189][ T7131] bcachefs (loop1): marking superblocks
[  147.676371][ T7131] bcachefs (loop1): initializing freespace
[  147.681194][ T7153] loop2: detected capacity change from 0 to 512
[  147.681217][ T7131] bcachefs (loop1): done initializing freespace
[  147.686640][ T7131] bcachefs (loop1): reading snapshots table
[  147.688557][ T7131] bcachefs (loop1): reading snapshots done
[  147.712270][ T7131] bcachefs (loop1): done starting filesystem
[  147.752953][ T7153] Quota error (device loop2): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  147.758076][ T7153] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  147.761059][ T7153] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.562: Failed to acquire dquot type 1
[  147.795960][ T7153] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.562: corrupted inode contents
[  147.802819][ T7153] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.562: mark_inode_dirty error
[  147.819376][ T7153] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.562: corrupted inode contents
[  147.828130][ T7153] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.562: mark_inode_dirty error
[  147.832105][ T7153] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.562: corrupted inode contents
[  147.836773][ T7153] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  147.840508][ T7153] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.562: corrupted inode contents
[  147.844235][ T7153] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.562: mark_inode_dirty error
[  147.849771][ T7153] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  147.856917][ T7153] EXT4-fs (loop2): 1 truncate cleaned up
[  147.869549][ T7153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.873335][ T7153] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.957339][ T5977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.181768][ T6196] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  148.363753][ T6196] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  148.373318][ T6196] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.388997][ T6196] usb 1-1: config 0 descriptor??
[  148.396483][ T6196] cp210x 1-1:0.0: cp210x converter detected
[  148.857895][ T6196] usb 1-1: cp210x converter now attached to ttyUSB0
[  149.034050][ T7131] syz.1.557 (7131) used greatest stack depth: 17432 bytes left
[  149.034898][ T6196] usb 1-1: USB disconnect, device number 7
[  149.056012][ T6196] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  149.065500][ T5984] bcachefs (loop1): shutting down
[  149.067295][ T5984] bcachefs (loop1): going read-only
[  149.072292][ T5984] bcachefs (loop1): finished waiting for writes to stop
[  149.074776][ T6196] cp210x 1-1:0.0: device disconnected
[  149.081573][ T5984] bcachefs (loop1): flushing journal and stopping allocators, journal seq 4
[  149.097295][ T5984] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 4
[  149.101686][ T7149] bch-reclaim/loo (7149) used greatest stack depth: 17032 bytes left
[  149.103546][ T5984] bcachefs (loop1): clean shutdown complete, journal seq 5
[  149.107887][ T5984] bcachefs (loop1): marking filesystem clean
[  149.164646][ T5984] bcachefs (loop1): shutdown complete
[  149.398060][ T6038] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  149.560436][ T6038] usb 3-1: config 0 has an invalid interface number: 251 but max is 0
[  149.563631][ T6038] usb 3-1: config 0 has no interface number 0
[  149.581085][ T6038] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  149.584606][ T6038] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.589542][ T6038] usb 3-1: Product: syz
[  149.594325][ T6038] usb 3-1: Manufacturer: syz
[  149.596555][ T6038] usb 3-1: SerialNumber: syz
[  149.609813][ T6038] usb 3-1: config 0 descriptor??
[  149.636411][ T7176] netlink: 9 bytes leftover after parsing attributes in process `syz.0.570'.
[  149.642815][ T7176] gretap0: entered promiscuous mode
[  149.712407][ T7178] loop0: detected capacity change from 0 to 2048
[  149.722515][ T5850] udevd[5850]: incorrect nilfs2 checksum on /dev/loop0
[  149.727812][ T7178] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  149.760631][ T7179] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  150.234546][ T6038] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  150.298325][ T6038] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71
[  150.377165][ T6038] asix 3-1:0.251: probe with driver asix failed with error -71
[  150.506315][ T6038] usb 3-1: USB disconnect, device number 8
[  150.755394][ T7199] netlink: 96 bytes leftover after parsing attributes in process `syz.0.579'.
[  151.047084][ T7211] loop0: detected capacity change from 0 to 512
[  151.098320][ T7211] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.584: corrupted in-inode xattr: e_value size too large
[  151.110251][ T7211] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.584: couldn't read orphan inode 15 (err -117)
[  151.116506][ T7211] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.142227][ T7211] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 12: comm syz.0.584: lblock 3 mapped to illegal pblock 12 (length 1)
[  151.207902][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.475922][ T7240] loop2: detected capacity change from 0 to 8192
[  152.580536][ T7255] netlink: 40 bytes leftover after parsing attributes in process `syz.1.602'.
[  152.682590][ T7263] netlink: 8 bytes leftover after parsing attributes in process `syz.0.605'.
[  152.772034][ T7267] netlink: 216 bytes leftover after parsing attributes in process `syz.0.608'.
[  152.775163][ T7267] netlink: 24 bytes leftover after parsing attributes in process `syz.0.608'.
[  152.778641][ T7267] netlink: 16 bytes leftover after parsing attributes in process `syz.0.608'.
[  152.929001][ T7277] loop2: detected capacity change from 0 to 65
[  152.935902][ T7277] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  152.943767][ T7277] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  152.969735][ T2317] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  153.046993][ T7279] JFS: charset not found
[  153.130991][ T2317] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  153.137592][ T2317] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  153.141971][ T6038] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  153.147093][ T2317] usb 2-1: config 0 has no interface number 0
[  153.165990][ T2317] usb 2-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  153.170034][ T2317] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.173221][ T2317] usb 2-1: Product: syz
[  153.174932][ T2317] usb 2-1: Manufacturer: syz
[  153.177675][ T2317] usb 2-1: SerialNumber: syz
[  153.189134][ T2317] usb 2-1: config 0 descriptor??
[  153.200660][ T2317] ims_pcu 2-1:0.41: Missing CDC union descriptor
[  153.203498][ T2317] ims_pcu 2-1:0.41: probe with driver ims_pcu failed with error -22
[  153.303260][ T6038] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  153.311933][ T6038] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  153.316404][ T6038] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  153.331126][ T6038] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  153.337588][ T6038] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  153.346444][ T6038] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.352835][ T6038] usb 1-1: config 0 descriptor??
[  153.402024][ T2317] usb 2-1: USB disconnect, device number 9
[  153.773498][ T6038] plantronics 0003:047F:FFFF.0004: ignoring exceeding usage max
[  153.801525][ T6038] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  154.664813][ T7311] input: syz0 as /devices/virtual/input/input9
[  155.414383][ T7313] loop2: detected capacity change from 0 to 4096
[  155.428742][ T7313] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  155.454748][ T7313] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  155.489202][ T7313] ntfs3(loop2): Failed to initialize $Secure::$SDH (-22).
[  155.492143][ T7313] ntfs3(loop2): Failed to initialize $Secure (-22).
[  155.650059][ T7321] loop2: detected capacity change from 0 to 4096
[  155.659409][ T7321] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  155.833484][ T7327] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  155.854661][ T7319] loop1: detected capacity change from 0 to 40427
[  155.859099][ T7319] F2FS-fs (loop1): Wrong segment_count / block_count (64 > 16384)
[  155.862453][ T7319] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  155.989110][ T7319] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  155.993407][ T7319] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  155.997390][ T7319] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  156.037707][ T5984] syz-executor: attempt to access beyond end of device
[  156.037707][ T5984] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  156.056586][ T5984] CPU: 1 UID: 0 PID: 5984 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  156.056607][ T5984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  156.056616][ T5984] Call Trace:
[  156.056623][ T5984]  <TASK>
[  156.056630][ T5984]  dump_stack_lvl+0x189/0x250
[  156.056656][ T5984]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.056673][ T5984]  ? __pfx_queue_work_on+0x10/0x10
[  156.056685][ T5984]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  156.056702][ T5984]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  156.056726][ T5984]  f2fs_handle_critical_error+0x37c/0x540
[  156.056750][ T5984]  f2fs_write_end_io+0x886/0xb60
[  156.056785][ T5984]  __submit_merged_bio+0x27a/0x6a0
[  156.056806][ T5984]  __submit_merged_write_cond+0x255/0x530
[  156.056829][ T5984]  f2fs_write_data_pages+0x261d/0x3000
[  156.056877][ T5984]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  156.056956][ T5984]  ? __lock_acquire+0xab9/0xd20
[  156.056985][ T5984]  ? do_raw_spin_lock+0x121/0x290
[  156.057012][ T5984]  ? do_raw_spin_unlock+0x4d/0x240
[  156.057029][ T5984]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  156.057079][ T5984]  do_writepages+0x32e/0x550
[  156.057109][ T5984]  ? do_raw_spin_unlock+0x4d/0x240
[  156.057130][ T5984]  filemap_fdatawrite+0x199/0x240
[  156.057149][ T5984]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  156.057210][ T5984]  ? do_raw_spin_unlock+0x4d/0x240
[  156.057231][ T5984]  f2fs_sync_dirty_inodes+0x31f/0x830
[  156.057265][ T5984]  f2fs_write_checkpoint+0x95a/0x1df0
[  156.057307][ T5984]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  156.057369][ T5984]  ? kill_f2fs_super+0x298/0x6c0
[  156.057394][ T5984]  kill_f2fs_super+0x2c3/0x6c0
[  156.057420][ T5984]  ? __pfx_kill_f2fs_super+0x10/0x10
[  156.057438][ T5984]  ? radix_tree_delete_item+0x2b6/0x400
[  156.057469][ T5984]  ? shrinker_free+0x2ce/0x3e0
[  156.057487][ T5984]  deactivate_locked_super+0xbc/0x130
[  156.057506][ T5984]  cleanup_mnt+0x425/0x4c0
[  156.057523][ T5984]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.057542][ T5984]  task_work_run+0x1d4/0x260
[  156.057565][ T5984]  ? __pfx_task_work_run+0x10/0x10
[  156.057581][ T5984]  ? __x64_sys_umount+0x122/0x160
[  156.057603][ T5984]  ? exit_to_user_mode_loop+0x40/0x110
[  156.057626][ T5984]  exit_to_user_mode_loop+0xec/0x110
[  156.057647][ T5984]  do_syscall_64+0x2bd/0x3b0
[  156.057663][ T5984]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.057678][ T5984]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.057693][ T5984]  ? exc_page_fault+0x9f/0xf0
[  156.057711][ T5984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.057724][ T5984] RIP: 0033:0x7f1c40f8ff17
[  156.057738][ T5984] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  156.057749][ T5984] RSP: 002b:00007ffd443f0da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  156.057764][ T5984] RAX: 0000000000000000 RBX: 00007f1c41011c05 RCX: 00007f1c40f8ff17
[  156.057774][ T5984] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd443f0e60
[  156.057781][ T5984] RBP: 00007ffd443f0e60 R08: 0000000000000000 R09: 0000000000000000
[  156.057790][ T5984] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd443f1ef0
[  156.057798][ T5984] R13: 00007f1c41011c05 R14: 0000000000026107 R15: 00007ffd443f1f30
[  156.057823][ T5984]  </TASK>
[  156.057830][ T5984] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  156.202361][ T6038] usb 1-1: USB disconnect, device number 8
[  156.740519][ T7356] loop1: detected capacity change from 0 to 32768
[  156.796752][ T7356] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  156.845549][ T7356] XFS (loop1): Ending clean mount
[  156.868763][ T7356] XFS (loop1): Quotacheck needed: Please wait.
[  156.879729][ T7378] Invalid ELF header magic: != ELF
[  156.912231][ T7356] XFS (loop1): Quotacheck: Done.
[  156.983947][ T5984] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  157.023522][ T7368] loop2: detected capacity change from 0 to 32768
[  157.345109][ T7389] dummy0: entered promiscuous mode
[  157.351819][ T7389] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  157.358591][ T7389] hsr1: entered allmulticast mode
[  157.360700][ T7389] dummy0: entered allmulticast mode
[  157.362516][ T7389] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  157.926574][ T7406] loop0: detected capacity change from 0 to 32768
[  157.957304][ T7406] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.666 (7406)
[  157.968201][ T7411] loop1: detected capacity change from 0 to 512
[  157.991205][ T7411] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  157.994916][ T7411] EXT4-fs (loop1): orphan cleanup on readonly fs
[  157.998048][   T46] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  158.004105][ T7411] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  158.011796][ T7411] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  158.024261][ T7411] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  158.029631][ T7411] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.668: bg 0: block 40: padding at end of block bitmap is not set
[  158.035240][ T7411] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  158.040341][ T7411] EXT4-fs (loop1): 1 truncate cleaned up
[  158.042944][ T7411] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  158.051053][ T7411] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  158.303010][ T7406] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  158.322631][ T7406] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[  158.330963][ T7406] BTRFS info (device loop0): using free-space-tree
[  158.520322][   T33] audit: type=1804 audit(1755067406.543:4): pid=7406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.666" name="/newroot/205/file1/file1" dev="loop0" ino=260 res=1 errno=0
[  158.624440][ T5980] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  158.781459][ T5984] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.838157][   T46] usb 3-1: Using ep0 maxpacket: 32
[  158.857745][   T46] usb 3-1: New USB device found, idVendor=04e2, idProduct=1403, bcdDevice=1c.b2
[  158.861889][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.865101][   T46] usb 3-1: Product: syz
[  158.868631][   T46] usb 3-1: Manufacturer: syz
[  158.870538][   T46] usb 3-1: SerialNumber: syz
[  158.891533][   T46] usb 3-1: config 0 descriptor??
[  158.900085][   T46] xr_serial 3-1:0.0: invalid descriptor buffer length
[  159.112213][   T46] usb 3-1: USB disconnect, device number 9
[  159.486854][ T7450] use of bytesused == 0 is deprecated and will be removed in the future,
[  159.496906][ T7450] use the actual size instead.
[  159.565651][ T7446] loop1: detected capacity change from 0 to 32768
[  159.569340][ T7446] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.676 (7446)
[  159.590966][ T7446] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  159.594022][ T7446] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  159.604345][ T7446] BTRFS info (device loop1): using free-space-tree
[  159.772237][ T5984] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  160.070155][ T7492] program syz.1.689 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  160.147481][ T7496] loop1: detected capacity change from 0 to 764
[  160.158391][   T10] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  160.184335][ T7498] loop0: detected capacity change from 0 to 512
[  160.190917][ T7498] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  160.342129][   T10] usb 3-1: config 0 has an invalid interface number: 120 but max is 0
[  160.348010][   T10] usb 3-1: config 0 has no interface number 0
[  160.349928][   T10] usb 3-1: config 0 interface 120 has no altsetting 0
[  160.360552][   T10] usb 3-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=8f.72
[  160.365572][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.371975][   T10] usb 3-1: Product: syz
[  160.374454][   T10] usb 3-1: Manufacturer: syz
[  160.375920][   T10] usb 3-1: SerialNumber: syz
[  160.382191][   T10] usb 3-1: config 0 descriptor??
[  160.476501][ T7506] loop0: detected capacity change from 0 to 64
[  160.490918][ T7506] BFS-fs: bfs_fill_super(): Inode 0x00000002 corrupted on loop0
[  160.553085][ T6006] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.605703][   T10] comedi comedi5: could not switch to alternate setting 1
[  160.612968][   T10] usbduxfast 3-1:0.120: driver 'usbduxfast' failed to auto-configure device.
[  160.626272][   T10] usb 3-1: USB disconnect, device number 10
[  160.666535][ T6006] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.750400][ T6006] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.842496][ T6006] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode
[  160.845641][ T6006] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.969748][ T5981] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  160.974544][ T5981] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  160.978616][ T5981] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  160.983219][ T5981] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  160.986363][ T5981] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  161.209946][ T6006] bridge_slave_1: left allmulticast mode
[  161.218070][ T6006] bridge_slave_1: left promiscuous mode
[  161.222612][ T6006] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.251946][ T6006] bridge_slave_0: left allmulticast mode
[  161.254154][ T6006] bridge_slave_0: left promiscuous mode
[  161.256573][ T6006] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.376018][ T7540] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  161.505238][ T7537] loop2: detected capacity change from 0 to 32768
[  161.522168][ T7537] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  161.552047][ T7537] XFS (loop2): Ending clean mount
[  161.588832][ T5977] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  161.762933][ T6006] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.772576][ T6006] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.778706][ T6006] bond0 (unregistering): Released all slaves
[  161.930223][ T7556] loop0: detected capacity change from 0 to 512
[  161.992928][ T7556] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.996892][ T7556] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.030208][   T33] audit: type=1800 audit(1755067410.063:5): pid=7556 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.715" name="file2" dev="loop0" ino=16 res=0 errno=0
[  162.163374][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.265653][ T7516] chnl_net:caif_netlink_parms(): no params data found
[  162.387628][ T7575] vcan0: tx drop: invalid da for name 0x0000000000000002
[  162.571383][ T6006] dummy0: left promiscuous mode
[  162.587220][ T6006] hsr_slave_0: left promiscuous mode
[  162.596682][ T6006] hsr_slave_1: left promiscuous mode
[  162.600191][ T6006] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.602743][ T6006] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.607172][ T6006] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.610358][ T6006] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.631985][ T6006] veth1_macvtap: left promiscuous mode
[  162.634370][ T6006] veth0_macvtap: left promiscuous mode
[  162.638269][ T6006] veth1_vlan: left promiscuous mode
[  162.640289][ T6006] veth0_vlan: left promiscuous mode
[  162.958609][ T5316] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  163.068080][ T5981] Bluetooth: hci2: command tx timeout
[  163.121860][ T5316] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  163.125142][ T5316] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  163.134100][ T5316] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  163.137562][ T5316] usb 1-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  163.150888][ T5316] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.158687][ T5316] usb 1-1: config 0 descriptor??
[  163.183317][ T5316] em28xx 1-1:0.0: New device   @ 480 Mbps (2040:1605, interface 0, class 0)
[  163.186248][ T5316] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  163.231913][ T7603] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  163.333180][ T6006] team0 (unregistering): Port device team_slave_1 removed
[  163.383794][ T6006] team0 (unregistering): Port device team_slave_0 removed
[  163.391253][ T7607] loop2: detected capacity change from 0 to 1024
[  163.394224][ T7607] EXT4-fs: Ignoring removed nobh option
[  163.396031][ T7607] EXT4-fs: inline encryption not supported
[  163.421409][ T7607] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.432997][ T5316] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  163.435320][ T5316] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  163.437817][ T5316] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  163.447894][ T5316] em28xx 1-1:0.0: No AC97 audio processor
[  163.462860][ T5316] usb 1-1: USB disconnect, device number 9
[  163.465901][ T5316] em28xx 1-1:0.0: Disconnecting em28xx
[  163.473864][ T5977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.489657][ T5316] em28xx 1-1:0.0: Freeing device
[  163.506663][ T7611] loop2: detected capacity change from 0 to 8
[  163.511242][ T7611] squashfs: Unknown parameter '0xffffffffffffffff184467440737095516150177777777777777777777700000000000000000000000δ/'jCzR܍ٳ01[^!p&Џ7uPOUߐ#{>y^X:CmC>8tK2'
[  163.657113][ T7613] loop2: detected capacity change from 0 to 4096
[  163.701528][ T7613] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  163.749817][ T5977] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22.
[  164.133532][ T7516] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.136888][ T7516] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.140802][ T7516] bridge_slave_0: entered allmulticast mode
[  164.143902][ T7516] bridge_slave_0: entered promiscuous mode
[  164.148845][ T7516] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.151534][ T7516] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.154027][ T7516] bridge_slave_1: entered allmulticast mode
[  164.157598][ T7516] bridge_slave_1: entered promiscuous mode
[  164.188327][ T7516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  164.195143][ T7516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  164.247000][ T7516] team0: Port device team_slave_0 added
[  164.251569][ T7516] team0: Port device team_slave_1 added
[  164.267227][ T2317] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  164.303525][ T7516] batman_adv: batadv0: Adding interface: batadv_slave_0
[  164.305871][ T7516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.314299][ T7516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  164.320473][ T7516] batman_adv: batadv0: Adding interface: batadv_slave_1
[  164.322779][ T7516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.331782][ T7516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  164.409212][ T7516] hsr_slave_0: entered promiscuous mode
[  164.412475][ T7516] hsr_slave_1: entered promiscuous mode
[  164.428215][ T2317] usb 3-1: Using ep0 maxpacket: 16
[  164.436098][ T2317] usb 3-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[  164.439965][ T2317] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.446112][ T2317] usb 3-1: Product: syz
[  164.448495][ T2317] usb 3-1: Manufacturer: syz
[  164.451466][ T2317] usb 3-1: SerialNumber: syz
[  164.457906][ T2317] usb 3-1: config 0 descriptor??
[  164.471205][ T2317] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state.
[  164.650708][ T7516] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  164.658446][ T7516] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  164.665587][ T7516] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  164.672954][ T2317] gp8psk: usb in 128 operation failed.
[  164.675935][ T2317] gp8psk: usb in 137 operation failed.
[  164.678112][ T2317] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  164.683945][ T7516] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  164.686857][ T2317] dvbdev: DVB: registering new adapter (Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver)
[  164.695961][ T2317] usb 3-1: media controller created
[  164.731441][ T2317] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  164.751665][ T2317] gp8psk_fe: Frontend revision 1 attached
[  164.754925][ T2317] usb 3-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)...
[  164.771925][ T2317] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[  164.776585][ T7516] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.779969][ T7516] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.782621][ T7516] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.785299][ T7516] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.861086][ T2317] gp8psk: usb in 138 operation failed.
[  164.863030][ T2317] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver successfully initialized and connected.
[  164.866236][ T2317] gp8psk: found Genpix USB device pID = 201 (hex)
[  164.882070][ T2317] usb 3-1: USB disconnect, device number 11
[  164.911735][ T7516] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.924621][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.943991][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.981376][ T7516] 8021q: adding VLAN 0 to HW filter on device team0
[  164.999977][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.002238][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.010203][ T2317] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receive successfully deinitialized and disconnected.
[  165.020045][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.022370][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.158956][ T5981] Bluetooth: hci2: command tx timeout
[  165.183195][ T7516] 8021q: adding VLAN 0 to HW filter on device batadv0
[  165.198861][   T10] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  165.241085][ T7516] veth0_vlan: entered promiscuous mode
[  165.252362][ T7516] veth1_vlan: entered promiscuous mode
[  165.295363][ T7516] veth0_macvtap: entered promiscuous mode
[  165.304986][ T7516] veth1_macvtap: entered promiscuous mode
[  165.326009][ T7516] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.339048][ T7516] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.348916][   T10] usb 1-1: Using ep0 maxpacket: 32
[  165.352067][ T6006] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.355011][ T6006] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.356557][   T10] usb 1-1: config 8 has an invalid interface number: 203 but max is 0
[  165.364199][ T6006] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.370282][ T6006] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.370302][   T10] usb 1-1: config 8 has no interface number 0
[  165.375434][   T10] usb 1-1: config 8 interface 203 altsetting 1 bulk endpoint 0xB has invalid maxpacket 1023
[  165.406133][   T10] usb 1-1: config 8 interface 203 has no altsetting 0
[  165.411849][   T10] usb 1-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  165.415493][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.447754][   T10] usb 1-1: Product: syz
[  165.451751][   T10] usb 1-1: Manufacturer: syz
[  165.470023][   T10] usb 1-1: SerialNumber: syz
[  165.483703][ T7645] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  165.633922][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.636495][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.759774][   T10] port100 1-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[  165.808541][   T10] usb 1-1: USB disconnect, device number 10
[  165.885392][  T717] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.898728][  T717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.876386][ T7688] loop3: detected capacity change from 0 to 512
[  166.918228][ T7688] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  166.979756][ T7688] EXT4-fs (loop3): 1 truncate cleaned up
[  166.983242][ T7688] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.037621][ T7516] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.095559][ T7698] netlink: 12 bytes leftover after parsing attributes in process `syz.3.750'.
[  167.228258][ T5981] Bluetooth: hci2: command tx timeout
[  167.333168][ T7713] loop2: detected capacity change from 0 to 1024
[  167.349505][ T7713] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (4096), stripe is disabled
[  167.361900][ T7713] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  167.365423][ T7713] EXT4-fs (loop2): orphan cleanup on readonly fs
[  167.384222][ T7713] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz.2.755: Invalid inode table block 0 in block_group 0
[  167.392529][ T7713] EXT4-fs (loop2): Remounting filesystem read-only
[  167.395392][ T7713] Quota error (device loop2): write_blk: dquota write failed
[  167.404296][ T7713] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  167.409503][ T7713] EXT4-fs (loop2): 1 truncate cleaned up
[  167.428108][ T7713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  167.492568][ T5977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.639109][ T7736] loop0: detected capacity change from 0 to 256
[  167.656916][ T7736] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  167.662860][ T7736] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  167.670633][ T7736] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  167.690887][ T7740] netlink: 8 bytes leftover after parsing attributes in process `syz.3.767'.
[  167.698725][ T7740] netlink: 8 bytes leftover after parsing attributes in process `syz.3.767'.
[  167.806301][ T7748] loop3: detected capacity change from 0 to 16
[  167.820830][ T7748] erofs (device loop3): bogus i_mode (0) @ nid 58320
[  168.026727][ T7760] loop0: detected capacity change from 0 to 4096
[  168.049254][ T7761] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  168.064575][ T7760] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  168.088334][ T7760] Remounting filesystem read-only
[  168.112027][ T5980] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[  168.179315][  T123] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  168.326692][ T7763] loop2: detected capacity change from 0 to 32768
[  168.338327][  T123] usb 4-1: Using ep0 maxpacket: 32
[  168.342151][  T123] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10
[  168.345448][  T123] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  168.352051][  T123] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  168.357342][ T7763] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  168.359035][  T123] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  168.363080][  T123] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  168.368360][   T13] (kworker/u8:1,13,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2
[  168.373350][  T123] usb 4-1: Product: syz
[  168.374634][  T123] usb 4-1: Manufacturer: syz
[  168.376046][  T123] usb 4-1: SerialNumber: syz
[  168.392477][  T123] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input10
[  168.412966][ T7772] loop0: detected capacity change from 0 to 32768
[  168.518875][ T5977] ocfs2: Unmounting device (7,2) on (node local)
[  168.593424][ T6196] usb 4-1: USB disconnect, device number 2
[  168.637422][ T6196] appletouch 4-1:1.0: input: appletouch disconnected
[  168.733809][ T7779] loop0: detected capacity change from 0 to 1024
[  168.846682][   T36] hfsplus: b-tree write err: -5, ino 4
[  168.926490][ T7789] netlink: 'syz.2.786': attribute type 10 has an invalid length.
[  168.936879][ T7789] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  169.088529][ T7797] netlink: 12 bytes leftover after parsing attributes in process `syz.0.790'.
[  169.262969][ T7809] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.794'.
[  169.308388][ T5981] Bluetooth: hci2: command tx timeout
[  169.362677][   T33] audit: type=1326 audit(1755067417.393:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.2.796" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  169.376711][   T33] audit: type=1326 audit(1755067417.393:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.2.796" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  169.399248][   T33] audit: type=1326 audit(1755067417.403:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.2.796" exe="/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  169.407545][   T33] audit: type=1326 audit(1755067417.403:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.2.796" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  169.428697][   T33] audit: type=1326 audit(1755067417.403:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7812 comm="syz.2.796" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  169.562806][ T7822] loop0: detected capacity change from 0 to 4096
[  169.587279][ T7822] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.663960][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.495247][ T7850] loop3: detected capacity change from 0 to 2048
[  170.510511][ T7850] hpfs: filesystem error: invalid size in superblock: ffffffff; already mounted read-only
[  170.759028][ T7860] loop0: detected capacity change from 0 to 512
[  170.771069][ T7860] EXT4-fs (loop0): Test dummy encryption mode enabled
[  170.773503][ T7860] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  170.780843][ T7860] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.817: bad orphan inode 131083
[  170.786701][ T7860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.898482][   T33] audit: type=1326 audit(1755067418.933:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  170.909246][   T33] audit: type=1326 audit(1755067418.933:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  170.916568][   T33] audit: type=1326 audit(1755067418.933:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.2.821" exe="/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fe99898ebe9 code=0x7ffc0000
[  170.924862][ T7860] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  170.981520][ T5980] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.033990][ T7882] loop0: detected capacity change from 0 to 512
[  171.055210][ T7882] EXT4-fs error (device loop0): ext4_init_orphan_info:585: comm syz.0.825: inode #0: comm syz.0.825: iget: illegal inode #
[  171.065533][ T7882] EXT4-fs (loop0): get orphan inode failed
[  171.067566][ T7882] EXT4-fs (loop0): mount failed
[  171.209476][ T5258] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  171.223384][ T7885] loop3: detected capacity change from 0 to 32768
[  171.237893][ T7885] ERROR: (device loop3): diNewExt: no free extents
[  171.237893][ T7885] 
[  171.249398][ T7885] ialloc: diAlloc returned -5!
[  171.358048][ T5258] usb 3-1: Using ep0 maxpacket: 16
[  171.362926][ T5258] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  171.366236][ T5258] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.369212][ T5258] usb 3-1: config 0 interface 0 has no altsetting 0
[  171.371372][ T5258] usb 3-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  171.374635][ T5258] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.383291][ T5258] usb 3-1: config 0 descriptor??
[  171.416296][ T7893] (unnamed net_device) (uninitialized): up delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[  171.421058][ T7893] (unnamed net_device) (uninitialized): down delay (7) is not a multiple of miimon (3), value rounded to 6 ms
[  171.439476][ T7893] 8021q: adding VLAN 0 to HW filter on device bond1
[  171.494257][ T7896] loop3: detected capacity change from 0 to 64
[  171.502733][ T7896] BFS-fs: bfs_fill_super(): Inode 0x00000002 corrupted on loop3
[  171.605300][ T7900] loop3: detected capacity change from 0 to 256
[  171.623709][ T7900] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xecfd5def, utbl_chksum : 0xe619d30d)
[  171.821705][   T24] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  171.843907][ T5258] cougar 0003:060B:500A.0005: unexpected long global item
[  171.847616][ T5258] cougar 0003:060B:500A.0005: parse failed
[  171.851754][ T5258] cougar 0003:060B:500A.0005: probe with driver cougar failed with error -22
[  172.129989][ T6038] usb 3-1: USB disconnect, device number 12
[  172.188141][   T24] usb 1-1: Using ep0 maxpacket: 16
[  172.192700][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  172.196645][   T24] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  172.202718][   T24] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  172.206303][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.209672][   T24] usb 1-1: Product: syz
[  172.211633][   T24] usb 1-1: Manufacturer: syz
[  172.213582][   T24] usb 1-1: SerialNumber: syz
[  172.625188][   T24] usb 1-1: cannot find UAC_HEADER
[  172.646536][   T24] snd-usb-audio 1-1:1.0: probe with driver snd-usb-audio failed with error -22
[  172.657506][   T24] usb 1-1: USB disconnect, device number 11
[  172.736735][ T5850] udevd[5850]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  172.826721][ T7920] netlink: 76 bytes leftover after parsing attributes in process `syz.3.841'.
[  172.830847][ T7920] netlink: 76 bytes leftover after parsing attributes in process `syz.3.841'.
[  172.920330][ T7925] loop3: detected capacity change from 0 to 1024
[  172.924386][ T7925] EXT4-fs: Ignoring removed bh option
[  172.926122][ T7925] EXT4-fs: inline encryption not supported
[  172.930223][ T7927] netlink: 4 bytes leftover after parsing attributes in process `syz.2.843'.
[  172.937348][ T7925] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  172.952466][ T7925] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  172.963983][ T7925] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.844: lblock 2 mapped to illegal pblock 2 (length 1)
[  172.975385][ T7925] __quota_error: 2 callbacks suppressed
[  172.975400][ T7925] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  172.982355][ T7925] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.844: lblock 0 mapped to illegal pblock 48 (length 1)
[  172.992300][ T7925] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  172.996070][ T7925] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.844: Failed to acquire dquot type 0
[  173.003639][ T7925] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  173.010571][ T7925] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.844: mark_inode_dirty error
[  173.015321][ T7925] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  173.020781][ T7925] EXT4-fs (loop3): 1 orphan inode deleted
[  173.024374][ T7925] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.038236][  T717] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  173.051603][  T717] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  173.056149][  T717] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u9:3: Failed to release dquot type 0
[  173.067069][ T7925] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  173.114012][ T7516] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.300668][ T7947] netlink: 12 bytes leftover after parsing attributes in process `syz.3.852'.
[  173.304284][ T7947] netlink: 28 bytes leftover after parsing attributes in process `syz.3.852'.
[  173.311067][ T7947] netlink: 12 bytes leftover after parsing attributes in process `syz.3.852'.
[  173.315049][ T7947] netlink: 28 bytes leftover after parsing attributes in process `syz.3.852'.
[  173.318989][ T7947] netlink: 'syz.3.852': attribute type 6 has an invalid length.
[  174.239568][ T7970] loop2: detected capacity change from 0 to 32768
[  174.274681][ T7970] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  174.290905][ T7970] 
[  174.291756][ T7970] ======================================================
[  174.293915][ T7970] WARNING: possible circular locking dependency detected
[  174.296000][ T7970] 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 Not tainted
[  174.298492][ T7970] ------------------------------------------------------
[  174.301371][ T7970] syz.2.861/7970 is trying to acquire lock:
[  174.303198][ T7970] ffff8881194409c0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.307268][ T7970] 
[  174.307268][ T7970] but task is already holding lock:
[  174.309496][ T7970] ffff888119441578 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  174.312371][ T7970] 
[  174.312371][ T7970] which lock already depends on the new lock.
[  174.312371][ T7970] 
[  174.315533][ T7970] 
[  174.315533][ T7970] the existing dependency chain (in reverse order) is:
[  174.318212][ T7970] 
[  174.318212][ T7970] -> #5 (&oi->ip_xattr_sem){++++}-{4:4}:
[  174.320584][ T7970]        lock_acquire+0x120/0x360
[  174.322104][ T7970]        down_read+0x46/0x2e0
[  174.323552][ T7970]        ocfs2_init_acl+0x2f9/0x720
[  174.325117][ T7970]        ocfs2_mknod+0x1321/0x2050
[  174.326687][ T7970]        ocfs2_create+0x1a5/0x440
[  174.328228][ T7970]        path_openat+0x14f4/0x3830
[  174.329816][ T7970]        do_filp_open+0x1fa/0x410
[  174.331388][ T7970]        do_sys_openat2+0x121/0x1c0
[  174.333036][ T7970]        __x64_sys_openat+0x138/0x170
[  174.334740][ T7970]        do_syscall_64+0xfa/0x3b0
[  174.336311][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.338222][ T7970] 
[  174.338222][ T7970] -> #4 (jbd2_handle){++++}-{0:0}:
[  174.340476][ T7970]        lock_acquire+0x120/0x360
[  174.342073][ T7970]        start_this_handle+0x1fa7/0x21c0
[  174.343825][ T7970]        jbd2__journal_start+0x2c1/0x5b0
[  174.345524][ T7970]        jbd2_journal_start+0x2a/0x40
[  174.347192][ T7970]        ocfs2_start_trans+0x376/0x6d0
[  174.348887][ T7970]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  174.350787][ T7970]        ocfs2_dismount_volume+0x201/0x8d0
[  174.352579][ T7970]        generic_shutdown_super+0x135/0x2c0
[  174.354439][ T7970]        kill_block_super+0x44/0x90
[  174.356081][ T7970]        deactivate_locked_super+0xbc/0x130
[  174.357957][ T7970]        cleanup_mnt+0x425/0x4c0
[  174.359455][ T7970]        task_work_run+0x1d4/0x260
[  174.360996][ T7970]        exit_to_user_mode_loop+0xec/0x110
[  174.362823][ T7970]        do_syscall_64+0x2bd/0x3b0
[  174.364439][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.366370][ T7970] 
[  174.366370][ T7970] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  174.368919][ T7970]        lock_acquire+0x120/0x360
[  174.370511][ T7970]        down_read+0x46/0x2e0
[  174.372002][ T7970]        ocfs2_start_trans+0x36a/0x6d0
[  174.373683][ T7970]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  174.375653][ T7970]        ocfs2_dismount_volume+0x201/0x8d0
[  174.377509][ T7970]        generic_shutdown_super+0x135/0x2c0
[  174.379278][ T7970]        kill_block_super+0x44/0x90
[  174.380896][ T7970]        deactivate_locked_super+0xbc/0x130
[  174.382750][ T7970]        cleanup_mnt+0x425/0x4c0
[  174.384210][ T7970]        task_work_run+0x1d4/0x260
[  174.385729][ T7970]        exit_to_user_mode_loop+0xec/0x110
[  174.387529][ T7970]        do_syscall_64+0x2bd/0x3b0
[  174.389130][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.391163][ T7970] 
[  174.391163][ T7970] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  174.393507][ T7970]        lock_acquire+0x120/0x360
[  174.395020][ T7970]        ocfs2_start_trans+0x26b/0x6d0
[  174.396656][ T7970]        ocfs2_mknod+0xe93/0x2050
[  174.398169][ T7970]        ocfs2_create+0x1a5/0x440
[  174.399676][ T7970]        path_openat+0x14f4/0x3830
[  174.401186][ T7970]        do_filp_open+0x1fa/0x410
[  174.402693][ T7970]        do_sys_openat2+0x121/0x1c0
[  174.404245][ T7970]        __x64_sys_open+0x11e/0x150
[  174.405813][ T7970]        do_syscall_64+0xfa/0x3b0
[  174.407365][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.409252][ T7970] 
[  174.409252][ T7970] -> #1 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  174.412360][ T7970]        lock_acquire+0x120/0x360
[  174.413851][ T7970]        down_write+0x96/0x1f0
[  174.415306][ T7970]        ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  174.417305][ T7970]        ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[  174.419320][ T7970]        ocfs2_mknod+0xe32/0x2050
[  174.420823][ T7970]        ocfs2_create+0x1a5/0x440
[  174.422352][ T7970]        path_openat+0x14f4/0x3830
[  174.423876][ T7970]        do_filp_open+0x1fa/0x410
[  174.425413][ T7970]        do_sys_openat2+0x121/0x1c0
[  174.427050][ T7970]        __x64_sys_open+0x11e/0x150
[  174.428696][ T7970]        do_syscall_64+0xfa/0x3b0
[  174.430299][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.432246][ T7970] 
[  174.432246][ T7970] -> #0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  174.435405][ T7970]        validate_chain+0xb9b/0x2140
[  174.437002][ T7970]        __lock_acquire+0xab9/0xd20
[  174.438568][ T7970]        lock_acquire+0x120/0x360
[  174.440117][ T7970]        down_write+0x96/0x1f0
[  174.441586][ T7970]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.443519][ T7970]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  174.445580][ T7970]        ocfs2_init_xattr_set_ctxt+0x307/0x700
[  174.447381][ T7970]        ocfs2_xattr_set+0xb70/0x11f0
[  174.448957][ T7970]        __vfs_setxattr+0x43c/0x480
[  174.450585][ T7970]        __vfs_setxattr_noperm+0x12d/0x660
[  174.452362][ T7970]        vfs_setxattr+0x16b/0x2f0
[  174.453932][ T7970]        filename_setxattr+0x274/0x600
[  174.455632][ T7970]        path_setxattrat+0x364/0x3a0
[  174.457252][ T7970]        __x64_sys_setxattr+0xbc/0xe0
[  174.458845][ T7970]        do_syscall_64+0xfa/0x3b0
[  174.460428][ T7970]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.462413][ T7970] 
[  174.462413][ T7970] other info that might help us debug this:
[  174.462413][ T7970] 
[  174.465446][ T7970] Chain exists of:
[  174.465446][ T7970]   &ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem
[  174.465446][ T7970] 
[  174.470072][ T7970]  Possible unsafe locking scenario:
[  174.470072][ T7970] 
[  174.472611][ T7970]        CPU0                    CPU1
[  174.474315][ T7970]        ----                    ----
[  174.475919][ T7970]   lock(&oi->ip_xattr_sem);
[  174.477346][ T7970]                                lock(jbd2_handle);
[  174.479334][ T7970]                                lock(&oi->ip_xattr_sem);
[  174.481458][ T7970]   lock(&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]);
[  174.483790][ T7970] 
[  174.483790][ T7970]  *** DEADLOCK ***
[  174.483790][ T7970] 
[  174.486266][ T7970] 3 locks held by syz.2.861/7970:
[  174.487835][ T7970]  #0: ffff888108fa2428 (sb_writers#21){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  174.490712][ T7970]  #1: ffff888119441840 (&type->i_mutex_dir_key#14){+.+.}-{4:4}, at: vfs_setxattr+0x144/0x2f0
[  174.494632][ T7970]  #2: ffff888119441578 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  174.498250][ T7970] 
[  174.498250][ T7970] stack backtrace:
[  174.500069][ T7970] CPU: 1 UID: 0 PID: 7970 Comm: syz.2.861 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  174.500082][ T7970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  174.500088][ T7970] Call Trace:
[  174.500094][ T7970]  <TASK>
[  174.500099][ T7970]  dump_stack_lvl+0x189/0x250
[  174.500113][ T7970]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.500124][ T7970]  ? __pfx__printk+0x10/0x10
[  174.500136][ T7970]  ? print_lock_name+0xde/0x100
[  174.500148][ T7970]  print_circular_bug+0x2ee/0x310
[  174.500160][ T7970]  check_noncircular+0x134/0x160
[  174.500169][ T7970]  validate_chain+0xb9b/0x2140
[  174.500177][ T7970]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  174.500190][ T7970]  ? look_up_lock_class+0x74/0x170
[  174.500199][ T7970]  ? register_lock_class+0x51/0x320
[  174.500211][ T7970]  __lock_acquire+0xab9/0xd20
[  174.500223][ T7970]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.500231][ T7970]  lock_acquire+0x120/0x360
[  174.500241][ T7970]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.500251][ T7970]  down_write+0x96/0x1f0
[  174.500262][ T7970]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.500290][ T7970]  ? __pfx_down_write+0x10/0x10
[  174.500305][ T7970]  ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  174.500316][ T7970]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  174.500326][ T7970]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.500337][ T7970]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  174.500346][ T7970]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  174.500358][ T7970]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[  174.500371][ T7970]  ? stack_depot_save_flags+0x41b/0x860
[  174.500382][ T7970]  ? kasan_save_track+0x4f/0x80
[  174.500391][ T7970]  ? kasan_save_track+0x3e/0x80
[  174.500400][ T7970]  ? __kasan_kmalloc+0x93/0xb0
[  174.500409][ T7970]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  174.500419][ T7970]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  174.500431][ T7970]  ? ocfs2_init_xattr_set_ctxt+0x307/0x700
[  174.500439][ T7970]  ? ocfs2_xattr_set+0xb70/0x11f0
[  174.500447][ T7970]  ? __vfs_setxattr+0x43c/0x480
[  174.500457][ T7970]  ? __vfs_setxattr_noperm+0x12d/0x660
[  174.500467][ T7970]  ? vfs_setxattr+0x16b/0x2f0
[  174.500477][ T7970]  ? filename_setxattr+0x274/0x600
[  174.500487][ T7970]  ? path_setxattrat+0x364/0x3a0
[  174.500495][ T7970]  ? __x64_sys_setxattr+0xbc/0xe0
[  174.500501][ T7970]  ? do_syscall_64+0xfa/0x3b0
[  174.500510][ T7970]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.500525][ T7970]  ? __kasan_kmalloc+0x93/0xb0
[  174.500535][ T7970]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  174.500547][ T7970]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  174.500560][ T7970]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[  174.500572][ T7970]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[  174.500583][ T7970]  ? __lock_acquire+0xab9/0xd20
[  174.500595][ T7970]  ocfs2_init_xattr_set_ctxt+0x307/0x700
[  174.500605][ T7970]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[  174.500614][ T7970]  ? ocfs2_xattr_set+0xb36/0x11f0
[  174.500623][ T7970]  ? up_write+0x1c4/0x420
[  174.500630][ T7970]  ? ocfs2_xattr_set+0x334/0x11f0
[  174.500638][ T7970]  ocfs2_xattr_set+0xb70/0x11f0
[  174.500649][ T7970]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  174.500657][ T7970]  ? ocfs2_permission+0x107/0x1b0
[  174.500667][ T7970]  ? __pfx_ocfs2_permission+0x10/0x10
[  174.500679][ T7970]  ? inode_permission+0x149/0x470
[  174.500693][ T7970]  ? __pfx_ocfs2_permission+0x10/0x10
[  174.500704][ T7970]  ? look_up_lock_class+0x74/0x170
[  174.500713][ T7970]  ? register_lock_class+0x51/0x320
[  174.500726][ T7970]  ? posix_xattr_acl+0x93/0xc0
[  174.500735][ T7970]  ? evm_protect_xattr+0x4d4/0xa90
[  174.500744][ T7970]  ? __pfx_evm_protect_xattr+0x10/0x10
[  174.500753][ T7970]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[  174.500761][ T7970]  __vfs_setxattr+0x43c/0x480
[  174.500774][ T7970]  __vfs_setxattr_noperm+0x12d/0x660
[  174.500785][ T7970]  vfs_setxattr+0x16b/0x2f0
[  174.500797][ T7970]  ? __pfx_vfs_setxattr+0x10/0x10
[  174.500807][ T7970]  ? mnt_get_write_access+0x223/0x2a0
[  174.500816][ T7970]  filename_setxattr+0x274/0x600
[  174.500829][ T7970]  ? __pfx_filename_setxattr+0x10/0x10
[  174.500840][ T7970]  ? getname_flags+0x1e5/0x540
[  174.500847][ T7970]  path_setxattrat+0x364/0x3a0
[  174.500857][ T7970]  ? __pfx_path_setxattrat+0x10/0x10
[  174.500865][ T7970]  ? do_futex+0x333/0x420
[  174.500879][ T7970]  ? rcu_is_watching+0x15/0xb0
[  174.500887][ T7970]  __x64_sys_setxattr+0xbc/0xe0
[  174.500895][ T7970]  do_syscall_64+0xfa/0x3b0
[  174.500904][ T7970]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.500912][ T7970]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.500919][ T7970]  ? exc_page_fault+0x9f/0xf0
[  174.500928][ T7970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.500935][ T7970] RIP: 0033:0x7fe99898ebe9
[  174.500944][ T7970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.500952][ T7970] RSP: 002b:00007fe99973e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  174.500962][ T7970] RAX: ffffffffffffffda RBX: 00007fe998bb5fa0 RCX: 00007fe99898ebe9
[  174.500968][ T7970] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000240
[  174.500973][ T7970] RBP: 00007fe998a11e19 R08: 0000000000000000 R09: 0000000000000000
[  174.500978][ T7970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.500983][ T7970] R13: 00007fe998bb6038 R14: 00007fe998bb5fa0 R15: 00007ffc667a2318
[  174.500993][ T7970]  </TASK>
[  174.720659][ T5977] ocfs2: Unmounting device (7,2) on (node local)
[  174.938085][ T6196] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  175.098032][ T6196] usb 4-1: Using ep0 maxpacket: 32
[  175.102417][ T6196] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  175.105558][ T6196] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  175.109304][ T6196] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  175.112166][ T6196] usb 4-1: config 1 has no interface number 0
[  175.114169][ T6196] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  175.117581][ T6196] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  175.122717][ T6196] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  175.126307][ T6196] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.135777][ T6196] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  175.336480][ T6196] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  175.755299][ T5258] usb 4-1: USB disconnect, device number 3
[  175.757807][ T5258] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected

VM DIAGNOSIS:
06:43:42  Registers:
info registers vcpu 0

CPU#0
RAX=1ffff92000709e37 RBX=ffffc9000384f1a0 RCX=ffff888021411cc0 RDX=0000000000000000
RSI=0000000000000002 RDI=ffffc9000384f1b8 RBP=ffffc9000384f258 RSP=ffffc9000384f0f0
R8 =ffff8881194804f7 R9 =1ffff1102329009e R10=dffffc0000000000 R11=ffffed102329009f
R12=0000000000000001 R13=dffffc0000000000 R14=057ff6800002002d R15=0000000000000000
RIP=ffffffff8b76c21d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8621000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f130e3d4fc8 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff823c6f02 ffffffff823c6eae
XMM02=ffffffff823c7bad ffffffff823c71c4 XMM03=ffffffff823c719d ffffffff823c6f02
XMM04=00007f1310eed100 00007f1310387460 XMM05=00007f1310387478 00007f13103874c0
XMM06=00007f13103874b8 00007f13103874b0 XMM07=00007f13103874a8 00007f13103874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f1310212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002d RBX=000000000000002d RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000140a RDI=000000000000140b RBP=00000000000003f8 RSP=ffffc9000387e4b0
R8 =ffff888021858237 R9 =1ffff1100430b046 R10=dffffc0000000000 R11=ffffffff854e7aa0
R12=dffffc0000000000 R13=ffffffff99af48e2 R14=ffffffff99de94e0 R15=0000000000000000
RIP=ffffffff854e7b1c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe99973e6c0 ffffffff 00c00000
GS =0000 ffff8881a3c21000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b32723ffc CR3=000000003c094000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=006e696769726f2e 79616c7265766f2e
XMM02=00007fe998b87498 00007fe998b87470 XMM03=00007fe998b874a8 00007fe998b874a0
XMM04=00007fe9996ed100 00007fe998b87460 XMM05=00007fe998b87478 00007fe998b874c0
XMM06=00007fe998b874b8 00007fe998b874b0 XMM07=00007fe998b874a8 00007fe998b874a0
XMM08=0000000000000000 0000000000000dbe XMM09=0000000000000000 00007fe998a12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
